[RADIATOR] does OpenSSL 0.9.8n need patched for use with EAP-FAST?
Jim Veneskey
jvene at cisco.com
Thu Mar 31 07:51:55 CDT 2011
Hi,
I am getting much futher now :-)
I have gone back to openssl 1.0.0d and installed newer versions of the
modules.
Attached is a full log of my test session, including the radius.cfg and
users file I am using.
My radius.cfg is basically the example one found in goodies/.
I am testing the setup using a Windows client running Funk Odyssey and I
have verified that
the credentials I am using on the client match what is in the users file.
Funk will prompt me to acquire new EAP-FAST credentials, however, when
I instruct it to do so - it just
keeps popping back up.
It appears to be failing here: (for full trace - see attachment)
> Mar 31 08:29:51 2011: DEBUG: Handling request with Handler '',
> Identifier ''
> Thu Mar 31 08:29:51 2011: DEBUG: Deleting session for anonymous,
> 194.1.0.18, 1
> Thu Mar 31 08:29:51 2011: DEBUG: Handling with Radius::AuthFILE:
> Thu Mar 31 08:29:51 2011: DEBUG: Handling with EAP: code 2, 1, 68, 26
> Thu Mar 31 08:29:51 2011: DEBUG: Response type 26
> Thu Mar 31 08:29:51 2011: DEBUG: Radius::AuthFILE looks for match with
> anonymous [anonymous]
> Thu Mar 31 08:29:51 2011: DEBUG: Radius::AuthFILE ACCEPT: : anonymous
> [anonymous]
> Thu Mar 31 08:29:51 2011: DEBUG: EAP result: 1, EAP MSCHAP-V2
> Authentication failure
> Thu Mar 31 08:29:51 2011: DEBUG: AuthBy FILE result: REJECT, EAP
> MSCHAP-V2 Authentication failure
> Thu Mar 31 08:29:51 2011: INFO: Access rejected for anonymous: EAP
> MSCHAP-V2 Authentication failure
> Thu Mar 31 08:29:51 2011: DEBUG: Returned FAST inner Packet dump:
> Code: Access-Reject
> Identifier: UNDEF
At this point, I am not sure if I now have Radiator configured properly,
and the issue is with my client.
Radiator is not displaying any errors about modules any more - so I'm
guessing it may be configured properly?
I appreciate your help in getting me this far :-)
Jim
-------------- next part --------------
A non-text attachment was scrubbed...
Name: attachment.tar
Type: application/x-tar
Size: 40448 bytes
Desc: not available
Url : http://www.open.com.au/pipermail/radiator/attachments/20110331/511df620/attachment-0001.tar
More information about the radiator
mailing list