(RADIATOR) eap_peap: Malformed UTF-8 character

Jose Borges Ferreira jcbf at accao.net
Mon Nov 18 16:10:28 CST 2002 

Hi there!
Need some help with the beta patches do EAP/PEAP support.

I'm using Radiator 3.3.1 w/patches-3.3.1 on a updated Radhat 8.0 with openssl 0.9.7beta3 and try to setup 802.1x authentication solution on a Cisco AP 350 ( Firmware 12.0.0T ) and Windows 2000 client. The clients aren't configured to request server certificate.

Whe triyng to authenticate we got the folowing error:


radiusd -config_file eap_peap.cfg -foreground -trace 4
Mon Nov 18 13:41:19 2002: DEBUG: Reading users file ./users
Mon Nov 18 13:41:19 2002: DEBUG: Reading users file ./users
Mon Nov 18 13:41:20 2002: DEBUG: Creating authentication port 0.0.0.0:1645
Mon Nov 18 13:41:20 2002: DEBUG: Creating accounting port 0.0.0.0:1646
Mon Nov 18 13:41:20 2002: INFO: Server started: Radiator 3.3.1 on localhost.localdomain
Malformed UTF-8 character (unexpected end of string) at /usr/lib/perl5/site_perl/5.8.0/Radius/Radius.pm line 644.
Mon Nov 18 13:41:42 2002: WARNING: Malformed request packet: Attribute 0 with length 0: ignored
Mon Nov 18 13:41:42 2002: DEBUG: Packet dump:
*** Received from 192.168.51.88 port 1030 ....
Code:       Access-Request
Identifier: 5
Authentic:  <236>S-p<174>oV<227><147>{<29><197>2<248><240><143>
Attributes:

Mon Nov 18 13:41:42 2002: DEBUG: Handling request with Handler ''
Mon Nov 18 13:41:42 2002: DEBUG:  Deleting session for , 192.168.51.88,
Mon Nov 18 13:41:42 2002: DEBUG: Handling with Radius::AuthFILE:
Mon Nov 18 13:41:42 2002: DEBUG: Radius::AuthFILE looks for match with
Mon Nov 18 13:41:42 2002: DEBUG: Access accepted for
Mon Nov 18 13:41:42 2002: DEBUG: Packet dump:
*** Sending to 192.168.51.88 port 1030 ....
Code:       Access-Accept
Identifier: 5
Authentic:  <236>S-p<174>oV<227><147>{<29><197>2<248><240><143>
Attributes:


The config file is :

Foreground
LogStdout
LogDir          .
DbDir           .
Trace           4

<Client DEFAULT>
        Secret  mysecret
        DupInterval 0
</Client>

<Handler TunnelledByPEAP=1>
        <AuthBy FILE>
                Filename ./users
                EAPType MSCHAP-V2
        </AuthBy>
</Handler>

<Handler>
        <AuthBy FILE>
                Filename ./users
                EAPType PEAP
                EAPTLS_CAFile /home/mikem/os/linux/certxp/demoCA/cacert.pem
                EAPTLS_CertificateFile /home/mikem/os/linux/certxp/cert-srv.pem
                EAPTLS_CertificateType PEM
                EAPTLS_PrivateKeyFile /home/mikem/os/linux/certxp/cert-srv.pem
                EAPTLS_PrivateKeyPassword whatever
                EAPTLS_MaxFragmentSize 1024
                AutoMPPEKeys
                SSLeayTrace 4
        </AuthBy>
</Realm>

-- 
Best regards!

José Carlos Borges Ferreira
Vodafone (Portugal)
DRE - Corporate Networks
Tel: +351 21 091 4352
Fax: +351 21 091 4195
-- 
Linux is not user-friendly. It _is_ user-friendly.
It is not ignorant-friendly and idiot-friendly.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list