Hi, > hi everybody, i have problems using freeradius 1.0.5, i cann't get it works > as i hope. well i installed freeradius in my server and tried to see if > clients can authenticate, so first tried test over server, my ip is > 192.168.10.1, i generate certificates to use TLS. > > this is my users file: > > "mec01" Auth-Type := EAP
dont do this. just dont do this at all. read the docs. > and clients.conf file: > > client 192.168.10.1 { > secret = clue > shortname = www.kill.com > > } 192.168.10.1 is the freeradius server? if so, just keep this as 127.0.0.1. > www:~# radtest mec01 clue www.kill.com 0 clue > Sending Access-Request of id 49 to 192.168.10.1 port 1812 > User-Name = "mec01" > User-Password = "clue" > NAS-IP-Address = 255.255.255.255 > NAS-Port = 0 > rad_recv: Access-Reject packet from host 192.168.10.1:1812, id=49, length=20 that wont work. radtest is a very basic program that does basic plain authentication to FreeRADIUS. if you want to test EAP, you'll need to use the EAP test program...and do a straight plain test that way - radeapclient (read the docs and examples). for more extensive EAP tests you need to use a full-fledged tool.... eg wpa_supplicant (read the eap-testing.txt doc that comes with that!) > rlm_eap: EAP-Message not found > rlm_eap: Malformed EAP Message exactly. this says its not doing EAP alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html