configure jradius (with free radius )

Jim Shi hanmao_shi at apple.com
Wed Jan 14 01:21:24 CET 2015 

Hi David,
 I was able to set up free radius 2.1.12 with jradius. 
I tested PAP and it was a success.
But PEAP is failing with 

++[digest] returns noop
[suffix] No '@' in User-Name = "test", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 6 length 80
[eap] Continuing tunnel setup.
++[eap] returns ok
Found Auth-Type = EAP
# Executing group from file /Users/jshi/freeradius/etc/raddb/sites-enabled/default
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/peap
[eap] processing type peap
[peap] processing EAP-TLS
[peap] eaptls_verify returned 7
[peap] Done initial handshake
[peap] eaptls_process returned 7
[peap] EAPTLS_OK
[peap] Session established.  Decoding tunneled attributes.
[peap] Peap state ?
[peap] Identity - test
[peap] Unhandled state in peap
[eap] Handler failed in EAP/peap
[eap] Failed in EAP select
++[eap] returns invalid
Failed to authenticate the user.
Using Post-Auth-Type Reject
# Executing group from file /Users/jshi/freeradius/etc/raddb/sites-enabled/default
+- entering group REJECT {...}
[attr_filter.access_reject]     expand: %{User-Name} -> test
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated


Thanks
Jim





On Jan 13, 2015, at 12:42 PM, David Bird <dbird at google.com> wrote:

> Contributors welcome! :)
> 
> https://github.com/coova/jradius/tree/master/freeradius
> 
> On Tue, Jan 13, 2015 at 12:11 AM, Arran Cudbard-Bell <
> a.cudbardb at freeradius.org> wrote:
> 
>> 
>>> On 13 Jan 2015, at 14:06, adrian.p.smith at bt.com wrote:
>>> 
>>> Have you considered using version 3 with the REST module instead?
>> 
>> Especially as the jradius module has been removed from version 3
>> and won't be supported moving forwards.
>> 
>> The rlm_rest module will convert the RADIUS request into JSON
>> and send it over to a REST API endpoint of your choosing.
>> 
>> The REST API can be implemented in any language, even java :)
>> 
>> -Arran
>> 
>> Arran Cudbard-Bell <a.cudbardb at freeradius.org>
>> FreeRADIUS development team
>> 
>> FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
>> 
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>> 
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

More information about the Freeradius-Users mailing list