Sending Access-Challenge instead of Access-Accept using MS-CHAPv2
Alan DeKok
aland at deployingradius.com
Mon Mar 13 13:48:17 CET 2017
On Mar 13, 2017, at 7:31 AM, Lasse Odden <lasse.odden at gmail.com> wrote:
> This is the response I got from Cisco:
>
> _________________
>
> Thank you for the very detailed instructions. I was able to reproduce the
> issue and I believe that freeradius is violating rfc2548 section 2.3.3:
So... you configured the server to send Ms-Chap-Challenge in an Access-Challenge packet.
FreeRADIUS largely does what you tell it to do.
> Do you have any suggestion or answer to Cisco?
What you're trying to do is impossible. Don't do it.
Alan DeKok.
More information about the Freeradius-Users
mailing list