freeradius 3 - wifi eap authentication with many Calling-station-id
Alan DeKok
aland at deployingradius.com
Wed Jul 25 21:33:07 CEST 2018
On Jul 25, 2018, at 12:53 PM, Maksim Bessonov <maksim.bessonov2 at gmail.com> wrote:
> i have FR 3 with mysql. There is no problem with one Calling-station-id -
> to wifi connects only with correct mac address. If i add new calling
> station id - no one authenticate.
That's not what the debug log shows.
> Is it possible to use more that one Calling-station-id?
Yes.
>
> (8) Calling-Station-Id = "5C-8D-4E-45-26-7E"
Only one Calling-Station-Id.
> /etc/freeradius/3.0/sites-enabled/inner-tunnel
> (8) eap_mschapv2: authenticate {
> (8) mschap: WARNING: No Cleartext-Password configured. Cannot create
> NT-Password
> (8) mschap: WARNING: No Cleartext-Password configured. Cannot create
> LM-Password
> (8) mschap: Creating challenge hash with username: 6696
> (8) mschap: Client is using MS-CHAPv2
> (8) mschap: ERROR: FAILED: No NT/LM-Password. Cannot perform authentication
> (8) mschap: ERROR: MS-CHAP2-Response is incorrect
> (8) [mschap] = reject
You didn't tell FreeRADIUS what the users "known good" password was.
Fix that, and it will work.
Alan DeKok.
More information about the Freeradius-Users
mailing list