use_tunneled_reply = yes didn't help.

Frank Rizzo thefrankrizzo at hotmail.com
Sat Nov 21 01:49:59 CET 2015


Hello list,

I'm using FreeRADIUS Version 2.1.12, for host x86_64-pc-linux-gnu, built  
on Aug 26 2015 at 14:47:03 on Ubuntu 14.04 LTS.  I'm using hostapd v2.1 as  
the AP front end.

I'm getting this:
Nov 20 16:43:57 test-desktop hostapd: wlan0: STA 08:d4:2b:xx:xx:xx IEEE  
802.1X: authentication server did not include required VLAN ID in  
Access-Accept
Nov 20 16:43:57 test-desktop hostapd: wlan0: STA 08:d4:2b:xx:xx:xx IEEE  
802.1X: authentication failed - EAP type: 25 (PEAP)

My eap.conf looks like this:

eap {
         default_eap_type = peap
         timer_expire = 60
         ignore_unknown_eap_types = no
         cisco_accounting_username_bug = no
	use_tunneled_reply = yes

         md5 {
         }
         leap {
         }
         gtc {
                 auth_type = PAP
         }
         tls {
                 private_key_password = password
                 private_key_file = /etc/certs/wpa2_priv.pem
                 certificate_file = /etc/certs/wpa2_cert.pem
                 CA_file = /etc/certs/wpa2_ca_cert.pem
                 dh_file = ${raddbdir}/certs/dh
                 random_file = /dev/urandom
         }
         peap {
			default_eap_type = mschapv2
			use_tunneled_reply = yes
         }
         mschapv2 {
         }
}

My project was due to ship on TUESDAY.  So, I'm in a bit of a panic.

Can anyone help?

THANK YOU!
-Frank


More information about the Freeradius-Users mailing list