Re: PEAP MS_CHAP V2: problem with tunnel attributes on enterasys V2 switch
Hello, I run my FreeRadius in debug mode. I put a sniffer between the freeRadius server and the novell Server (users LDAP base). I don't have users file because the users base is on the novell server. I set the tunnel AVs on each user with the e-directory tool of novell server(v6.5). In debug mode and with the sniffer,i see the filter_id attributs but not the tunnel attributs. Authentication with filter_id attributes work but not with the tunnel attributes. Is it necessary to active or configure something on FreeRADIUS to use "tunnel" parameters ??? Best regards Stephane Selon "Zoltan A. Ori" <[EMAIL PROTECTED]>: > On Wednesday 02 November 2005 04:50, you wrote: > > It wasn´t a problem to configure EAP-PEAP with freeradius server (running > > on suse) and Enterasys switches. > > I want to implement VLAN assignment at a > > enterasys switch. > > > > Any tips ?? > > Is it necessary to active or configure something on FreeRADIUS to use > > "tunnel" parameters ??? > > If you have the tunnel AVs set in you users file as replies, FreeRADIUS will > send them. Run in debug mode to see. > > Zoltan Ori > > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: PEAP MS_CHAP V2: problem with tunnel attributes on enterasys V2 switch
Yes ,i know that The V2 switches (and all Enterasys switches) support EAP-MD5 but i want to implement EAP-PEAP with ms-chapv2 and VLAN assignment It wasn´t a problem to configure EAP-PEAP with freeradius server (running on suse) and Enterasys switches. I want to implement VLAN assignment at a enterasys switch. Any tips ?? Is it necessary to active or configure something on FreeRADIUS to use "tunnel" parameters ??? thank you in advance. Best regards Stephane Selon Zoltan Ori <[EMAIL PROTECTED]>: > On Friday 28 October 2005 10:40, [EMAIL PROTECTED] wrote: > > > I am new to this list and would like to know if someone out there > > has been successfull in implementing eap-PEAP user authentication > > and VLAN assignment with freeradius and Enterasys V2 switches ? > > > > The V2 switches (and all Enterasys switches) support EAP-MD5. > > > Zoltan Ori > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: PEAP MS_CHAP V2: problem with tunnel attributes on enterasys V2 switch
On Friday 28 October 2005 10:40, [EMAIL PROTECTED] wrote: > I am new to this list and would like to know if someone out there > has been successfull in implementing eap-PEAP user authentication > and VLAN assignment with freeradius and Enterasys V2 switches ? > The V2 switches (and all Enterasys switches) support EAP-MD5. Zoltan Ori - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
PEAP MS_CHAP V2: problem with tunnel attributes on enterasys V2 switch
Hello, I am new to this list and would like to know if someone out there has been successfull in implementing eap-PEAP user authentication and VLAN assignment with freeradius and Enterasys V2 switches ? It wasn´t a problem to configure EAP-PEAP with freeradius server (running on suze) and Enterasys switches. I already use it for client authentication but I had no success with switch/port based authentication and VLAN assignment at a enterasys switch. The users and their RADIUS attributes are on LDAP base on a Novell server (version 6.5) I know from reading our enterasys notice that the switch expects the following parameters within access_accept "tunnel-type= 13 (VLAN)" "tunnel-medium-type=6 (802) "tunnel-private-group-ID=vlan_id" but with no success. I didnt see the attribute on FreeRADIUS LOG. I have put a sniffer machine between the FreeRadius Server and the Novell server, but I didnt see any Tunnel attribute. In fact, I dont know: - if the switch dont receive the tunnel parameters - OR if the switch dont understand the tunnel parameters it is receiving Any tips ?? Is it necessary to active or configure something on FreeRADIUS to use tunnel parameters ??? thank you in advance. Best regards Stephane - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
