Problems with EAP-SIM in Freeradius 2.2.5

Iliya Peregoudov iperegudov at cboss.ru
Mon Oct 6 09:52:14 CEST 2014


On 05.10.2014 6:02, Alan DeKok wrote:
> rizal.m.nur at arc.itb.ac.id wrote:
>> I tried to test
>> using false RAND, SRES, and KC before with radeapclient command, and then
>> server still be able to process it as EAP-SIM, although it just end with
>> Access-Challenge reply (not Access-Accept).
>
>    Because EAP-SIM involves multiple challenges.  If the client doesn't
> like the response from the server, it stops talking to the server.  This
> is what you're seeing.

You should read at least three GSM triplets (RAND, SRES, Kc) from your 
test SIM card. You can do that by using PC/SC compatible smart-card 
reader and agsm2 program (http://sourceforge.net/projects/agsm).



More information about the Freeradius-Users mailing list