Using freeradius 0.9.3 I have eap-tls+WPA working with a cisco airnet
1200. Everything was working fine until I tried installing the
certificate into the local machine store. It looks like Windows is
prepending "host/" to the CN of the certificate when it is passing the
username. Of course this isn't matching the username in the users
file. I have tried changing the CN during cert creation to every
permutation of the hostname I can think of. Sadly this machine is a
member of a NT style domain, and I'm not really sure what it wants the
CN to be. Here's a portion of the ouput of radiusd -X -A:
rad_recv: Access-Request packet from host 172.23.1.100:21696, id=200,
length=161
User-Name = "host/ELCIPSE\\newplasma"
Framed-MTU = 1400
Called-Station-Id = "000f.3489.13a9"
Calling-Station-Id = "0040.96a4.2fac"
Message-Authenticator = 0x41771e9ca54cee074316338f3d433f5b
EAP-Message =
0x0202001b01686f73742f454c43495053455c6e6577706c61736d61
NAS-Port-Type = Wireless-802.11
NAS-Port = 616
Service-Type = Framed-User
NAS-IP-Address = 172.23.1.100
NAS-Identifier = "FabAP1"
Any help would be appreciated.
Chris Childress
Sundowner Trailers Inc
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
