EAP-sim using freeradius

Siddharth Katragadda siddharthk at google.com
Fri Aug 21 19:15:16 CEST 2015


Hi Matthew
Thanks for the suggestion.  I  tried by changing the EAP-Sim-IMSI to  User-Name
-
but I still get the  eap_sim: ERROR: EAP-SIM-RAND1 not found
Although the  passwd file now says:  [passwd] = ok

So it looks like passwd file was able to find the User-Name in
simtriplets.dat, so it should have extracted the  EAP-SIM-RAND1 etc from it
right?

I've attached the debug log, passwd and simtriplets.dat

Btw, I did have 10 fields in the simtriplets.dat (delimited by colon). Why
did you find only 4??

Thanks
Sid




On Fri, Aug 21, 2015 at 3:29 AM, Matthew Newton <mcn4 at leicester.ac.uk>
wrote:

> On Thu, Aug 20, 2015 at 05:12:00PM -0700, Siddharth Katragadda via
> Freeradius-Users wrote:
> > So far, most of the vendors we work with seem to be using
> > rlm_sim_files on Freeradius 2.x
>
> I don't do EAP-SIM, so these are only observations on things that
> don't look quite right to me.
>
> You've got
>
> passwd passwd {
> ...
>   format =
> "*EAP-Sim-IMSI:EAP-Sim-RAND1:EAP-Sim-SRES1:EAP-Sim-KC1:EAP-Sim-RAND2:EAP-Sim-SRES2:EAP-Sim-KC2:EAP-Sim-RAND2:EAP-Sim-SRES2:EAP-Sim-KC2"
> ...
> }
>
> which has 10 fields, but your simtriplets file only has 4 fields.
>
> The incoming request has
>
>   User-Name = "1001010123456789 at wlan.mnc001.mcc001.3gppnetwork.org"
>
> but does not have an EAP-Sim-IMSI attribute (I'm not sure if this
> should be encoded within the EAP-Message), which is why you're
> getting [passwd] = notfound.
>
> Does, for example,
>
>   format = "*User-Name:EAP-Sim-RAND1:EAP-Sim-SRES1:EAP-Sim-KC1"
>
> work?
>
> But, as I said - only things that look wrong to me, and I have no
> knowledge of EAP-SIM at all. This might be the wrong thing to do.
>
> Matthew
>
>
>
> --
> Matthew Newton, Ph.D. <mcn4 at le.ac.uk>
>
> Systems Specialist, Infrastructure Services,
> I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom
>
> For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: simtriplets.dat
Type: application/octet-stream
Size: 233 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20150821/fd64b698/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Debug log
Type: application/octet-stream
Size: 4390 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20150821/fd64b698/attachment-0001.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: passwd
Type: application/octet-stream
Size: 2079 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20150821/fd64b698/attachment-0002.obj>


More information about the Freeradius-Users mailing list