PEAP not initiated for wired user authentication

Sanchez, Ricardo J ricardo.j.sanchez
Wed Apr 13 11:29:31 PDT 2005


Hello,

I am trying to run a PEAP user authentication over the wired driver
without success. I have a hostapd running as authenticator on the other
end of the wired link. I must note that I have this wired setup working
between Xsupplicant and hostapd. However, I want to try the same with
wpa_supplicant and hostapd. I do not see any EAPOL-Start messages
generated
by wpa_supplicant using the latest 4.0 in this particular mode. Is this 
a reasonable setup or not?

Below is my configuration (wpa_supplicant.conf) and log created by
wpa_supplicant. 
I also want to know how to exactly pass the username/password of the
inner method 
(MSCHAPv2) for PEAP.

Thanks,
- Ricardo

wpa_supplicant_wired.conf:
--BEGIN
ctrl_interface=/var/run/wpa_supplicant
eapol_version=1
ap_scan=0
fast_reauth=1
network={
        ssid="example"
        key_mgmt=IEEE8021X  // have also tried WPA-EAP with same results
        eap=PEAP
	  anonymous_identity="my-anonymous-username"
        identity="username"
        password="password"
        ca_cert="/etc/1x/my-root-cert.pem"
        phase1="peaplabel=0"
        phase2="auth=MSCHAPV2"
        priority=10
}
--END

Is the identity/password above the parameters used for the inner method
MSCHAPv2
(PEAP-phase2)? How to configure the initial identity sent during
EAP-Response-Identity
(PEAP-phase1) - is that the anonymous_identity?

output-log:
--BEGIN
[root at linksec-supplicant wpa_supplicant]# wpa_supplicant -ddt -K -ieth1
-cwpa_supplicant.conf -Dwired
Apr 13 10:22:50.197481: Initializing interface 'eth1' conf
'wpa_supplicant.conf'
 driver 'wired'
Apr 13 10:22:50.197942: Configuration file 'wpa_supplicant.conf' ->
/home/rjsanchez/hostap/hostap/wpa_supplicant/wpa_supplicant.conf'
Apr 13 10:22:50.198059: Reading configuration file
'/home/rjsanchez/hostap/hostap/wpa_supplicant/wpa_supplicant.conf'
Apr 13 10:22:50.198272: ctrl_interface='/var/run/wpa_supplicant'
Apr 13 10:22:50.198419: eapol_version=1
Apr 13 10:22:50.198533: ap_scan=0
Apr 13 10:22:50.198632: fast_reauth=1
Apr 13 10:22:50.198909: Line: 266 - start of a new network block
Apr 13 10:22:50.199020: ssid - hexdump_ascii(len=7):
     65 78 61 6d 70 6c 65                              example
Apr 13 10:22:50.199234: key_mgmt: 0x8
Apr 13 10:22:50.199349: eap methods - hexdump(len=2): 19 00
Apr 13 10:22:50.199458: anonymous_identity - hexdump_ascii(len=9):
     72 72 73 61 6e 63 68 65 7a                        rrsanchez
Apr 13 10:22:50.199693: identity - hexdump_ascii(len=9):
     72 72 73 61 6e 63 68 65 7a                        rrsanchez
Apr 13 10:22:50.199921: password - hexdump_ascii(len=7):
     6c 69 6e 6b 6b 6b 6b                              linkkkk
Apr 13 10:22:50.200122: ca_cert - hexdump_ascii(len=22):
     2f 65 74 63 2f 31 78 2f 69 6e 74 65 6c 2d 72 6f   /etc/1x/bogus-ro
     6f 74 2e 70 65 6d                                 ot.pem
Apr 13 10:22:50.200431: phase1 - hexdump_ascii(len=11):
     70 65 61 70 6c 61 62 65 6c 3d 30                  peaplabel=0
Apr 13 10:22:50.200635: phase2 - hexdump_ascii(len=13):
     61 75 74 68 3d 4d 53 43 48 41 50 56 32            auth=MSCHAPV2
Apr 13 10:22:50.201046: priority=10 (0xa)
Apr 13 10:22:50.201181: Priority group 10
Apr 13 10:22:50.201278:    id=0 ssid='example'
Apr 13 10:22:50.201379: Initializing interface (2) 'eth1'
Apr 13 10:22:50.209164: EAPOL: SUPP_PAE entering state DISCONNECTED
Apr 13 10:22:50.209384: EAPOL: KEY_RX entering state NO_KEY_RECEIVE
Apr 13 10:22:50.209488: EAPOL: SUPP_BE entering state INITIALIZE
Apr 13 10:22:50.209605: EAP: EAP entering state DISABLED
Apr 13 10:22:50.209830: EAPOL: External notification - portEnabled=0
Apr 13 10:22:50.209992: EAPOL: External notification - portValid=0
Apr 13 10:22:50.210222: Own MAC address: 00:d0:b7:20:92:93
Apr 13 10:22:50.210346: Setting scan request: 0 sec 100000 usec

...

--END

---
Ricardo J Sanchez




More information about the Hostap mailing list