Authentication wrong

Stefan Paetow Stefan.Paetow at
Sat May 10 17:14:18 CEST 2014

This is usually pre-provisioned, i.e. you tell your users to either download a utility (like 1x-config) or a profile (like on iPhone) that contains the CA and some other preferred settings for the supplicant on the user's system. Once they've installed that, they're set.


From: at [ at] on behalf of Serdar Metin [kingebeng at]
Sent: 10 May 2014 15:40
To: FreeRadius users mailing list; Efrayim Metin; Efrayim Metin
Subject: Re: Authentication wrong

Hell yeah!!!

This looks good. I will have a look at this 1x-config. But some (stupid) question pops in my head now.
How is it possible that i can install this CA on the device before connecting to the radius?

On May 10, 2014, at 8:32, "Stefan Winter" <stefan.winter at<mailto:stefan.winter at>> wrote:


How can i achieve this?

Installing a CA is manual process; setting all the right settings so that EAP login is /secure/ involves a few extra steps; all those steps are different per client OS.

You can make your life easier by using web services which create client-side installers for many OSes which pack all into one executable/config file.

Take for example a look at this one:


Stefan Winter

but there is also something else i noticed:

for request 4auth: Failed to validate the user.Login incorrect: [bob/<no User-Password attribute>] (from client testing123 port 0 cli 00-1F-3B-B2-F5-09

i'm 100 sure this user and some password is beeing saved in the users.conf file

List info/subscribe/unsubscribe? See

List info/subscribe/unsubscribe? See

Janet(UK) is a trading name of Jisc Collections and Janet Limited, a 
not-for-profit company which is registered in England under No. 2881024 
and whose Registered Office is at Lumen House, Library Avenue,
Harwell Oxford, Didcot, Oxfordshire. OX11 0SG. VAT No. 614944238

More information about the Freeradius-Users mailing list