Problems wpa2-tls eap mschapv2 ldap

Alan DeKok aland at deployingradius.com
Mon Jun 3 15:13:19 CEST 2013


Roberto Ortega Ramiro wrote:
> Hi, the changes i have done in FreeRadius configuration:
> 
> I have read than client and user files are not necesary, the others
> files are:

  Which aren't necessary.  We ask for the debug output because we need
it.  We *don't* ask for other files.  We don't need them.

...
>     Sending Access-Challenge of id 180 to 192.168.202.252 port 46850
>     EAP-Message =
>     0x0105040015c000000aab0102020900efd0613949b1baab300d06092a864886f70d0101050500308191310b3009060355040613024553310f300d060355040813065261646975733111300f0603550407130845736375656c617331133011060355040a130a45736375656c6173534a3121301f06092a864886f70d01090116127469634065736375656c6173736a2e636f6d312630240603550403131d4578616d706c6520436572746966696361746520417574686f72697479301e170d3133303533303038313533385a170d3133303732393038313533385a308191310b3009060355040613024553310f300d060355040813065261646975733111
>     EAP-Message =
>     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
>     EAP-Message =
>     0x2378c42fb79dfe3ea604f8685af42d3061b26a28f6a3d5ddd5cc5791a11841f93fc94f722cecd6e149fc22df5578b708f1ca2fdfa542ff88ffc9d9ada134dcc995537e8ac728352a769db3183d5a2f4201840a3c374674e50433e6a2354c3b9128777cd6d87607972077d2f018672438515b4ee44238e07f53cc2b1864b245bdaded300c59081e93096d6fa48ef6a53ffc85f59cdb0203010001a381f93081f6301d0603551d0e041604142abebda37fff69e3d2e86331827670f67d284ced3081c60603551d230481be3081bb80142abebda37fff69e3d2e86331827670f67d284ceda18197a48194308191310b3009060355040613024553310f300d
>     EAP-Message =
>     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
>     EAP-Message = 0x83f82d312c7744ab946edc5e
>     Message-Authenticator = 0x00000000000000000000000000000000
>     State = 0x4300b9324005ac785bc66cf0b8940050
>     Finished request 3.

  Fix the client PC.  It is receiving the EAP message, and doing nothing
more with it.

  If you wait for a few more seconds, the server will print out a
WARNING message.  That message tells you what the problem is, and how to
fix it.

  Alan DeKok.


More information about the Freeradius-Users mailing list