This works on an AP350 - it's IOS 12.2 which also runs on 1200 AFAIK.
Seems the trick is getting getting the Cisco eap config correct. If it's
not correct, the AP won't recognize the 802.1x request as an eap request
and won't contact the radius server for authentication. The freeradius
configuration is straightforward.
Mearl
aaa new-model
!
!
aaa group server radius rad_eap
server xxx.xxx.xxx.xxx auth-port 1812 acct-port 1813
!
aaa authentication login eap_methods group rad_eap
!
bridge irb
!
!
interface Dot11Radio0
no ip address
no ip route-cache
!
encryption key 1 size 128bit 7 xxxxxxxxxxxxxxxxxxxxxxxxxxxx
transmit-key
encryption mode wep mandatory
!
!
ssid WPATest
authentication open eap eap_methods
interface BVI1
ip address xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx
no ip route-cache
!
ip radius source-interface BVI1
!
radius-server host 199.20.16.13 auth-port 1812 acct-port 1813 key 7
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
radius-server attribute 32 include-in-access-req format %h
radius-server authorization permit missing Service-Type
radius-server vsa send accounting
radius-server vsa send authentication
>>> [EMAIL PROTECTED] 11/1/2004 10:40:52 AM >>>
Dear list,
has anybody succeeded in getting WinXP supplicants
to authenticate successfully using EAP-PEAP via cisco
aironet 1200 APs against a freeRADIUS server?
I managed to get freeRADIUS working fine, XP supplicant
working fine too but the AP doesn't want to forward the
radius requests to the freeRADIUS server
Regards,
Gilbert
==========================================================
This email is intended only for the use of the individual to whom it is
addressed. As it may contain confidential or privileged information, if
you are not a named addressee, intended recipient, or the person
responsible for delivering the message to the named addressee, be
advised that you have received this email in error and that you should
not disseminate, distribute, print, copy this mail or otherwise divulge
its contents. In such instances, please notify Vodafone Malta Limited on
telephone number +356 21482820 and delete this email from your system.
Since this transmission was effected via email, Vodafone Malta Limited
cannot guarantee that it is secure or error-free as information could be
intercepted, corrupted, lost, destroyed, arrive late or incomplete, or
contain viruses. Vodafone Malta Limited does not accept liability for
any errors or omissions in the contents of this message which arise as a
result of email transmission.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
