Correct login in TLS tunnel, but rejected

Thomas Hermarij Maimann Andersen than at itu.dk
Tue Sep 2 12:52:31 CEST 2014


Hi,

We have +3000 users on our wifi setup using freeradius.
A few users have problems logging from their personal computers where we have setup wifi with cat.eduroam.org. So we are confident that the wifi profile is correct.

However when they login we get the following in the radius log
Sep  2 11:34:41 server radiusd[20048]: Login OK: [xuser/<via Auth-Type = EAP>] (from client aerohive-net port 0 via TLS tunnel)
Sep  2 11:34:41 server radiusd[20048]: Login OK: [xuser/<via Auth-Type = EAP>] (from client aerohive-net port 0 via TLS tunnel)
Sep  2 11:34:41 server radiusd[20048]: Login incorrect: [xuser/<via Auth-Type = EAP>] (from client aerohive-net port 0 cli 90-48-9A-69-XX-XX)
Sep  2 11:34:41 server radiusd[20048]: Login incorrect: [xuser/<via Auth-Type = EAP>] (from client aerohive-net port 0 cli 90-48-9A-69-XX-XX)

The same user, on the same radio, on a different computer can login fine. So I am sure it’s a problem with the computer setup.

Can anyone explain to me what the difference is and possibly why it would fail?

--
With best regards
Thomas Andersen



More information about the Freeradius-Users mailing list