Hi,
I have setup freeradius-0.9.3-106.6 on SuSE Linux 9.1 for EAP/TLS
Authentication using a US Robotics Wifi AP2249. I followed the steps
described on http://text.dslreports.com/forum/remark,9286052~mode=flat
- CA certs & private key OK
- radius server cert & private key OK
- wifi client cert & private succesfully imported with pkcs12 into WinXP Home
Edition SP1
(all certs are generated by openssl-0.9.7d-15.13)
- wifi AP configured for 802.1x with shared secret (also on radius server):
client 10.123.27.5 {
secret = secret
shortname = wifi
}
- configured Radius server for tls auth:
eap {
default_eap_type = tls
tls {
private_key_file = /etc/raddb/eapow/eapow_priv.pem
certificate_file = /etc/raddb/eapow/eapow.cert
CA_file = /etc/raddb/eapow/ca_cert.pem
dh_file = /etc/raddb/eapow/dh
random_file = /etc/raddb/eapow/random
fragment_size = 1024
include_length = yes
}
}
- WinXP client configured for EAP/TLS using the imported certificate
- created the user in the radius server
When I try to connect my WinXP client to the AP, i can see incoming request
but i get this error:
Sat Jan 29 12:20:41 2005 : Error: Received packet from 10.123.27.5 with
invalid Message-Authenticator! (Shared secret is incorrect.)
Although the same secret is configured in both the AP and the Radius server.
Any ideas ?
--
Friendly regards,
Jelle Vink
X-Truder Networks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
