Reveal MAP escribió:
installing ca.der and putting user pass into client machine, the
authentication doesn't work?
-- no, it doesn't!
you only need ca.der but, if you have an active directory like LDAP,
check if your comunication with AD server also have tls authentication.
Into ldap
see the logf there: http://tinypaste.com/5b99b
Your problem is nothing to do with certificates. The PEAP tunnel gets
setup correctly, the MS-CHAP client-server auth succeeds, but the final
server-client (mutual) auth appears to fail.
This could be for a number of reasons, but it's a
Adding additional IP ranges, which are non-contiguous, and at the same time
not adding a new ippool, seems to me to be really impossible. Either you
have static ranges in-between, or, worse still, you do not own/operate the
IPs in-between but someone else does. . .
Either you should have a larger
thanx for responding dude. let's take a look at this part of log!
(remember too that i am a new linux, many thing are still chinese for
me)
i agree, my certificate are OK to do EAP in general
my coments are the red lines :
my mschap module config is:
--
mschap {
use_mppe =
I read the post: PEAP or TTLS and Microsoft Vista.
what i remain is i have to test another wireless mlanager differentthan trhe
built-in of windows XP. ok, i will as soon as i will be infront of the server
(no chance, it's week-end now)
- Message d'origine
De : nf-vale [EMAIL
[snip]
rlm_pap: WARNING! No known good password found for the user. Authentication
may fail because of this.//Normal, i am not willing to do
PAP but mschapv2
me If you¹re not using a module, disable it. All it¹ll do is add latency,
delays and unnecessary log
hmm... it's true i didn't test authentication with another laptop! i will! and
i will too with secureW2 instead ofXP built-in wireless manager, and see!!
see the logf there: http://tinypaste.com/5b99b
Your problem is nothing to do with certificates. The PEAP tunnel gets
setup correctly, the
e: Re : cert bootstrap bug? (was Re: definitively, I have a problem with
eap-tls)
http://tinypaste.com/5b99b = Radiusd -X output.
[snip]
rlm_pap: WARNING! No known good password found for the user. Authentication
may fail because of this.//Normal, i am not willing to do
8 matches
Mail list logo