eap-md5 using cisco

Fri, 10 Oct 2003 05:10:33 -0700

i am trying to authenticate winxp using cisco 1200 series ap and freeradius.

i am able to trace out that eap-request and eap-response messages are sent between winxp machine and cisco ap.

and radius -s -d output is as follows:

length=132
>         User-Name ="test"
>         NAS-IP-Address = 192.x.x.x
>         Called-Station-Id = "00-20-a6-48-22-f7"
>         Calling-Station-Id = "00-20-a6-4c-a9-a5"

>         NAS-Identifier = "CTI-AP-2000"
>         Framed-MTU = 1400
>         NAS-Port-Type =Wireless-802.11
>         EAP-Message = 0x0202000d0168656c706465736b
>         Message-Authenticator =3D 0x66e088c10d28c82a8f08b1b283dca42f
> modcall: entering group authorize
>   modcall[authorize]: module "preprocess" returns ok
>   modcall[authorize]: module "attr_filter" returns noop
>   rlm_eap: EAP packet type notification id 2 length 13
>   rlm_eap: EAP Start not found
>   modcall[authorize]: module "eap" returns updated
>     rlm_realm: No '@' in User-Name =3D "helpdesk", looking up realm NUL=
L
>  ! ;   rlm_realm: No such realm "NULL"
>   modcall[authorize]: module "suffix" returns noop
>     users: Matched DEFAULT at 152
>   modcall[authorize]: module "files" returns ok
> modcall: group authorize returns updated
>   rad_check_password:  Found Auth-Type Eap
> auth: type "EAP"
> modcall: entering group authenticate
>   rlm_eap: EAP packet type notification id 2 length 13
>   rlm_eap: EAP Start not found
>   rlm_eap: EAP Identity
>   rlm_eap: processing type tls
>   modcall[authenticate]: module "eap" returns ok
> modcall: group authenticate returns ok
> Sending Access-Challenge of id 110 to 192.x.x.x:1158
>         EAP-Message = 0x010300060d20
>         Message-Authenticator = 0x00000000! 000000000000000000000000
>         State = 0x3913e3477fcb9f86ced7207700dfc54c9040313f49dfb963be36bd7adf9af0035595f=
ce8
> Finished request 0
> Going to the next request


my users file contains;

test Auth-Type:=EAP User-Password="test"

 

also in radiusd.conf i have specified bind_addr=192.x.x.x and port=1812 .

in clients.conf file i specified cisco ap's address and shared secret.Also i have made changes to cisco ap to support freeradius.

so,where should be problem?

i have searched mailing list but i cannot find answer.

thanks in advance

sorry for so long mail.............................


My Presence
Click onthe image to chat with me

Reply via email to