Freeradius 2.2.9 not works

[Alan DeKok]

On Mar 12, 2016, at 10:06 AM, Mr Dini <diniboy74 at gmail.com> wrote:
> 
> Sorry, I missed the debugger output. I changed the Password to
> Cleartext-Password, but it not solved the problem. So I changed the
> password to a longer one and now it sends Access-Accept to radtest! :D

  That's weird.

> But when I try it with my router and a client with PEAP it gives me
> "Access-Reject" message...
> 
> Here is the debugger output: http://pastebin.com/raw/5TYG0vhS

  The relevant portion is here:

Sending Access-Challenge of id 0 to 192.168.1.1 port 13048
        EAP-Message = 0x010200061920
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0xdcf80390ddfa1a45d157fcd070d8538a
Finished request 1.
Going to the next request
Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 192.168.1.1 port 13048, id=0, length=121
Cleaning up request 1 ID 0 with timestamp +37
        User-Name = "sqltest"
        NAS-IP-Address = 192.168.1.1
        Called-Station-Id = "1eb72cd00f4f"
        Calling-Station-Id = "00e3b22aafa3"
        NAS-Identifier = "1eb72cd00f4f"
        NAS-Port = 38
        Framed-MTU = 1400
        NAS-Port-Type = Wireless-802.11
        EAP-Message = 0x020100060319
        Message-Authenticator = 0xb5d4d4fc0b4f3bd750dd632538e44460
# Executing section authorize from file /ffp/etc/raddb/sites-enabled/default

  The Access-Request MUST include the State attribute which was sent in the Access-Challenge.  But it's not there.

   Your AP is broken.  Throw it in the garbage, and buy one that works.

  If you're using an EAP test client instead of a real AP, the EAP test client is broken.  Throw it in the garbage, and buy one that works.

  No amount of poking FreeRADIUS will fix this problem.  The AP and/or EAP test client is broken.

  Use software that works.

  Alan DeKok.