[RADIATOR] does OpenSSL 0.9.8n need patched for use with EAP-FAST?

Jim Veneskey jvene at cisco.com
Thu Mar 31 07:51:55 CDT 2011 

Hi,
I am getting much futher now :-)

I have gone back to openssl 1.0.0d and installed newer versions of the 
modules.

Attached is a full log of my test session, including the radius.cfg and 
users file I am using.
My radius.cfg is basically the example one found in goodies/.

I am testing the setup using a Windows client running Funk Odyssey and I 
have verified that
the credentials I am using on the client match what is in the users file.

Funk will prompt me to acquire new EAP-FAST credentials,  however, when 
I instruct it to do so - it just
keeps popping back up.

It appears to be failing here:  (for full trace - see attachment)

>  Mar 31 08:29:51 2011: DEBUG: Handling request with Handler '', 
> Identifier ''
> Thu Mar 31 08:29:51 2011: DEBUG:  Deleting session for anonymous, 
> 194.1.0.18, 1
> Thu Mar 31 08:29:51 2011: DEBUG: Handling with Radius::AuthFILE:
> Thu Mar 31 08:29:51 2011: DEBUG: Handling with EAP: code 2, 1, 68, 26
> Thu Mar 31 08:29:51 2011: DEBUG: Response type 26
> Thu Mar 31 08:29:51 2011: DEBUG: Radius::AuthFILE looks for match with 
> anonymous [anonymous]
> Thu Mar 31 08:29:51 2011: DEBUG: Radius::AuthFILE ACCEPT: : anonymous 
> [anonymous]
> Thu Mar 31 08:29:51 2011: DEBUG: EAP result: 1, EAP MSCHAP-V2 
> Authentication failure
> Thu Mar 31 08:29:51 2011: DEBUG: AuthBy FILE result: REJECT, EAP 
> MSCHAP-V2 Authentication failure
> Thu Mar 31 08:29:51 2011: INFO: Access rejected for anonymous: EAP 
> MSCHAP-V2 Authentication failure
> Thu Mar 31 08:29:51 2011: DEBUG: Returned FAST inner Packet dump:
> Code:       Access-Reject
> Identifier: UNDEF

At this point, I am not sure if I now have Radiator configured properly, 
and the issue is with my client.
Radiator is not displaying any errors about modules any more - so I'm 
guessing it may be configured properly?

I appreciate your help in getting me this far :-)

Jim



-------------- next part --------------
A non-text attachment was scrubbed...
Name: attachment.tar
Type: application/x-tar
Size: 40448 bytes
Desc: not available
Url : http://www.open.com.au/pipermail/radiator/attachments/20110331/511df620/attachment-0001.tar

More information about the radiator mailing list