(RADIATOR) Re: (RADIATOR) EAP-TLS error (Belso használatra)

Hugh Irvine hugh at open.com.au
Wed Jun 20 22:11:58 CDT 2007


Hello Andras -

I suspect you have not installed the prerequisites that are required  
for EAP.

See this FAQ item:

	http://www.open.com.au/radiator/faq.html#141

And the best way to do testing is like this in a terminal window:

	cd c:\your\Radiator\distribution

	perl radiusd -foreground -log_stdout -trace 4 -config_file c:\your 
\Radiator\configuration\file

You will then be able to see any Perl error messages.

hope that helps

regards

Hugh



On 20 Jun 2007, at 23:59, Lipták András wrote:

> Hi!
>
> I am Andras from hungary, and I try to test EAP-TLS with a Cisco  
> wireless access point!
>
> I have a radiator 3.7.11 with test license, and test certificates.
>
> My .cfg is:
>
> Foreground
> LogStdout
> LogDir          c:/Program Files/Radiator
> DbDir           c:/Program Files/Radiator
> Trace           4
>
> <Client DEFAULT>
>         Secret  mysecret
>         DupInterval 0
> </Client>
>
> <Realm DEFAULT>
>         <AuthBy FILE>
>                 # Users must be in this file to get anywhere
>                 Filename %D/users
>                 EAPType TLS
>                 EAPTLS_CAFile %D/certificates/demoCA/cacert.pem
>                 EAPTLS_CertificateFile %D/certificates/cert-srv.pem
>                 EAPTLS_CertificateType PEM
>                 EAPTLS_PrivateKeyFile %D/certificates/cert-srv.pem
>                 EAPTLS_PrivateKeyPassword whatever
>                 EAPTLS_MaxFragmentSize 1000
>                 AutoMPPEKeys
>         </AuthBy>
> </Realm>
>
>
> And the error while client tries to authenticate:
>
> Wed Jun 20 14:38:06 2007: DEBUG: Handling request with Handler  
> 'Realm=DEFAULT'
> Wed Jun 20 14:38:06 2007: DEBUG:  Deleting session for testUser,  
> 217.79.136.11,
> 286
> Wed Jun 20 14:38:06 2007: DEBUG: Handling with Radius::AuthFILE:
> Wed Jun 20 14:38:06 2007: DEBUG: Handling with EAP: code 2, 2, 13
> Wed Jun 20 14:38:06 2007: DEBUG: Response type 1
> Wed Jun 20 14:38:06 2007: ERR: Could not handle an EAP request:  
> Can't locate obj
> ect method "response_identity" via package  
> "Radius::EAP_13" (perhaps you forgot
> to load "Radius::EAP_13"?) at C:/Perl/site/lib/Radius/EAP.pm line 143.
>
> Wed Jun 20 14:38:06 2007: DEBUG: AuthBy FILE result: REJECT, Could  
> not handle an
>  EAP request
> Wed Jun 20 14:38:06 2007: INFO: Access rejected for testUser: Could  
> not handle a
> n EAP request
> Wed Jun 20 14:38:06 2007: DEBUG: Packet dump:
> *** Sending to 217.79.136.11 port 1645 ....
> Code:       Access-Reject
> Identifier: 17
> Authentic:  M<10><9><<222><175><232>s?<28>E<166>2Z<11><182>
> Attributes:
>         Reply-Message = "Request Denied"
>
>
>
> Can you help me, what is the problem?
>
>
> Thanks in advance,
> Andras Liptak
> Pannon GSM, Hungary
> Core network planning office
> Tel.: +36209302348
>
>



NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
Have you checked the RadiusExpert wiki:
http://www.open.com.au/wiki/index.php/Main_Page

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.



--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list