Hi!
rlm_eap_tls: Received unexpected tunneled data after successful
handshake.
The conf file is default for the build apart from the location of the
certs,
and tls is uncommented to enable. I have attempted to run the server as
root
as ssl can be difficult with permissions. Below is debug
rlm_eap_tls: Received unexpected tunneled data
after successful handshake.
I had the same problem a while ago. It turned out the
error lay with the generated certificates.
I never pinpointed the exact problem (i fiddled with
the scripts a lot), so i can't give any detailed
solution but i'd
I was hoping the list could assist with a particular problem using EAP/TLS.
The version of freeradius is : FreeRADIUS Version 1.0.0-pre0, for host ,
built on Mar 3 2004 at 01:53:39.
The setup involves an XP supplicant, Cisco AP and freeradius.
System authentication using PEAP is successful.
From
Lefteris St [EMAIL PROTECTED] wrote:
I noticed someone else having from with TLV i am not
sure what that is, but i got a
rlm_eap_peap: Had sent TLV failure, rejecting.
Any hints there?
PLEASE read the ENTIRE debugging output. I know it's large, but
it's the ONLY WAY to see what's
Lefteris St [EMAIL PROTECTED] wrote:
I think i have configured everything properly (openssl
certs and stuff) but i still can't get freeradius to
authenticate EAP users properly.
It succeeds, which means you've got it working right.
The problem is that it goes too far. I'm not sure why,
What client are you using, and how have you
configured it?
I am using a Cisco Aironet 1200.
I configured it to use Open Authentication with EAP,
set the radius server IP and shared secret.
I did all these through the AP's html interface.
On the user side were running window 2000 with SP4 and
the
Lefteris St [EMAIL PROTECTED] wrote:
On the user side were running window 2000 with SP4 and
the authentication patch.
Ok... but the configuration is more than just use EAP-TLS. Please
describe *exactly* the configuration you used.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Ok, here's some more info about my configuration on
the user-side:
I have installed the client and CA certificates
(cert-clt.p12, root.der) which I created using the
script described in Ken Roser's How-To
(doc/EAP/TLS.pdf). They seem to be working fine (the
TLS handshake doesn't complain about
Lefteri,
Rule of thumb.
If you have a Cisco AP you should use AAA,
For a Cisco client you don't need AAA.
-Yiannis
*** REPLY SEPARATOR ***
On 27/1/2004 at 2:13 ìì Lefteris St wrote:
Ok, here's some more info about my configuration on
the user-side:
I have installed the
Lefteris St [EMAIL PROTECTED] wrote:
Note that since i don't have winXP, i use my card's
software to detect and connect to my AP.
Hmm... I'm not sure if that software has been tested with
FreeRADIUS.
I have also tried using PEAP and TTLS(SecureW2) but
(as was expected) to no avail.
The
10 matches
Mail list logo