Help with EAP-TTLS/EAP-MD5

Ivan Sanchez Valencia isanchez
Sun Jul 4 12:14:14 PDT 2004


On Sun, 4 Jul 2004 10:28:53 -0700, Jouni Malinen wrote
> On Sun, Jul 04, 2004 at 06:58:08PM +0200, Ivan Sanchez Valencia wrote:
> 
> > Now I'm trying to configure EAP-TTLS/EAP-MD5. I do this changes:
> > In users
> > --------
> > 
> > anonimo  Auth-Type := EAP
> > user     Auth-Type := Local, User-Password == "secret"
> 
> This is incorrect. You do not need to add user for the anonymous
> (Phase1/outer) identity. However, you do need to set the inner (real)
> identity to use Auth-Type := EAP.

I have this now:

users
-----

user    Auth-Type := EAP

-------

and in logs appears this...

==> /usr/local/var/log/radius/radius.log <==
Sun Jul  4 21:12:51 2004 : Error:     TLS_accept:error in SSLv3 read client certificate A
Sun Jul  4 21:12:51 2004 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Sun Jul  4 21:12:51 2004 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Sun Jul  4 21:12:51 2004 : Info:     (other): SSL negotiation finished successfully
Sun Jul  4 21:12:51 2004 : Info: rlm_eap_md5: Issuing Challenge
Sun Jul  4 21:12:51 2004 : Info: rlm_eap_md5: User-Password is required for EAP-MD5 authentication
Sun Jul  4 21:12:51 2004 : Auth: Login incorrect: [user/<no User-Password attribute>] (from client localhost port 0)
Sun Jul  4 21:12:51 2004 : Auth: Login incorrect: [anonimo/<no User-Password attribute>] (from client machine.domain.com
port 1 cli XX-XX-XX-XX-XX-XX)
-------------------------------------------

Note that line:

Sun Jul  4 21:12:51 2004 : Info: rlm_eap_md5: Issuing Challenge

before doesn't appear, but it continuous saying:

Sun Jul  4 21:12:51 2004 : Auth: Login incorrect: [user/<no User-Password attribute>] (from client localhost port 0)

and I don't know where configure the passwd in FreeRADIUS for user "user"


--

               "I didn't know it was impossible when I did it."

        ---------------------------------------------------------------
         Iv?n S?nchez Valencia
         Email: isanchez at piltrafa.dhis.org
         PGP public key: http://www.piltrafa.dhis.org/pubkey.asc
        ---------------------------------------------------------------





More information about the Hostap mailing list