PEAP not initiated for wired user authentication
Sanchez, Ricardo J
ricardo.j.sanchez
Wed Apr 13 11:29:31 PDT 2005
Hello,
I am trying to run a PEAP user authentication over the wired driver
without success. I have a hostapd running as authenticator on the other
end of the wired link. I must note that I have this wired setup working
between Xsupplicant and hostapd. However, I want to try the same with
wpa_supplicant and hostapd. I do not see any EAPOL-Start messages
generated
by wpa_supplicant using the latest 4.0 in this particular mode. Is this
a reasonable setup or not?
Below is my configuration (wpa_supplicant.conf) and log created by
wpa_supplicant.
I also want to know how to exactly pass the username/password of the
inner method
(MSCHAPv2) for PEAP.
Thanks,
- Ricardo
wpa_supplicant_wired.conf:
--BEGIN
ctrl_interface=/var/run/wpa_supplicant
eapol_version=1
ap_scan=0
fast_reauth=1
network={
ssid="example"
key_mgmt=IEEE8021X // have also tried WPA-EAP with same results
eap=PEAP
anonymous_identity="my-anonymous-username"
identity="username"
password="password"
ca_cert="/etc/1x/my-root-cert.pem"
phase1="peaplabel=0"
phase2="auth=MSCHAPV2"
priority=10
}
--END
Is the identity/password above the parameters used for the inner method
MSCHAPv2
(PEAP-phase2)? How to configure the initial identity sent during
EAP-Response-Identity
(PEAP-phase1) - is that the anonymous_identity?
output-log:
--BEGIN
[root at linksec-supplicant wpa_supplicant]# wpa_supplicant -ddt -K -ieth1
-cwpa_supplicant.conf -Dwired
Apr 13 10:22:50.197481: Initializing interface 'eth1' conf
'wpa_supplicant.conf'
driver 'wired'
Apr 13 10:22:50.197942: Configuration file 'wpa_supplicant.conf' ->
/home/rjsanchez/hostap/hostap/wpa_supplicant/wpa_supplicant.conf'
Apr 13 10:22:50.198059: Reading configuration file
'/home/rjsanchez/hostap/hostap/wpa_supplicant/wpa_supplicant.conf'
Apr 13 10:22:50.198272: ctrl_interface='/var/run/wpa_supplicant'
Apr 13 10:22:50.198419: eapol_version=1
Apr 13 10:22:50.198533: ap_scan=0
Apr 13 10:22:50.198632: fast_reauth=1
Apr 13 10:22:50.198909: Line: 266 - start of a new network block
Apr 13 10:22:50.199020: ssid - hexdump_ascii(len=7):
65 78 61 6d 70 6c 65 example
Apr 13 10:22:50.199234: key_mgmt: 0x8
Apr 13 10:22:50.199349: eap methods - hexdump(len=2): 19 00
Apr 13 10:22:50.199458: anonymous_identity - hexdump_ascii(len=9):
72 72 73 61 6e 63 68 65 7a rrsanchez
Apr 13 10:22:50.199693: identity - hexdump_ascii(len=9):
72 72 73 61 6e 63 68 65 7a rrsanchez
Apr 13 10:22:50.199921: password - hexdump_ascii(len=7):
6c 69 6e 6b 6b 6b 6b linkkkk
Apr 13 10:22:50.200122: ca_cert - hexdump_ascii(len=22):
2f 65 74 63 2f 31 78 2f 69 6e 74 65 6c 2d 72 6f /etc/1x/bogus-ro
6f 74 2e 70 65 6d ot.pem
Apr 13 10:22:50.200431: phase1 - hexdump_ascii(len=11):
70 65 61 70 6c 61 62 65 6c 3d 30 peaplabel=0
Apr 13 10:22:50.200635: phase2 - hexdump_ascii(len=13):
61 75 74 68 3d 4d 53 43 48 41 50 56 32 auth=MSCHAPV2
Apr 13 10:22:50.201046: priority=10 (0xa)
Apr 13 10:22:50.201181: Priority group 10
Apr 13 10:22:50.201278: id=0 ssid='example'
Apr 13 10:22:50.201379: Initializing interface (2) 'eth1'
Apr 13 10:22:50.209164: EAPOL: SUPP_PAE entering state DISCONNECTED
Apr 13 10:22:50.209384: EAPOL: KEY_RX entering state NO_KEY_RECEIVE
Apr 13 10:22:50.209488: EAPOL: SUPP_BE entering state INITIALIZE
Apr 13 10:22:50.209605: EAP: EAP entering state DISABLED
Apr 13 10:22:50.209830: EAPOL: External notification - portEnabled=0
Apr 13 10:22:50.209992: EAPOL: External notification - portValid=0
Apr 13 10:22:50.210222: Own MAC address: 00:d0:b7:20:92:93
Apr 13 10:22:50.210346: Setting scan request: 0 sec 100000 usec
...
--END
---
Ricardo J Sanchez
More information about the Hostap
mailing list