--- James J J Hooper [EMAIL PROTECTED] wrote:
Hi,
We had similar problems. An example of what we put
in the switch config
to get it to work is here:
http://www.bristol.ac.uk/is/computing/advice/networks/documentation/dot1x/cisco.html
... as Josh said - pay particular attention to the
--- James J J Hooper [EMAIL PROTECTED] wrote:
Hi,
We had similar problems. An example of what we put
in the switch config
to get it to work is here:
http://www.bristol.ac.uk/is/computing/advice/networks/documentation/dot1x/cisco.html
... as Josh said - pay particular attention to the
--On Friday, July 28, 2006 02:36:42 -0700 Thai Duong [EMAIL PROTECTED]
wrote:
--- James J J Hooper [EMAIL PROTECTED] wrote:
Hi,
We had similar problems. An example of what we put
in the switch config
to get it to work is here:
--- Thai Duong [EMAIL PROTECTED] wrote:
Attachment is the debug log of freeradius, please
take
a look at it. It's been two weeks and I still can
not
make this work. Deadline is comming, please help.
Regards,
Thai Duong.
Sorry forgot to attach the debug log.
--- James J J Hooper [EMAIL PROTECTED]
wrote:
Hi,
We had similar problems. An example of what we
put
in the switch config
to get it to work is here:
http://www.bristol.ac.uk/is/computing/advice/networks/documentation/dot1x/cisco.html
... as Josh said - pay particular
--On Wednesday, 26 July 2006 18:39 -0700 Thai Duong [EMAIL PROTECTED]
wrote:
--- Josh Howlett [EMAIL PROTECTED] wrote:
Is there a RADIUS or EAP timer set on the switch?
If it's set too low, the switch might be ignoring
the Access-
Challenge from the server.
best regards, josh.
Yup
Thai Duong wrote:
I can be sure the client certificate has the Enhanced
Key Usage showing Client Authentication
(1.3.6.1.5.5.7.3.2). I have no way to verify whether
the server certificate contains proper OID but here is
openssl x509 -noout -text -in theserver.crt
...will show things like:
--- Phil Mayers [EMAIL PROTECTED] wrote:
openssl x509 -noout -text -in theserver.crt
...will show things like:
X509v3 Key Usage:
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication
...the
On 26 Jul 2006, at 12:11, Thai Duong wrote:
As you advise, I turned tracing on and found that the
SSL handshake was not completed, the client kept
sending Client Hello packet but got no response from
the server. But when looking at Ethereal's dump file,
I saw that the server actually sent its
--- Josh Howlett [EMAIL PROTECTED] wrote:
Is there a RADIUS or EAP timer set on the switch?
If it's set too low, the switch might be ignoring
the Access-
Challenge from the server.
best regards, josh.
Yup there're some timers on the switch but as far as I
know they have no effect on
Hi all,
I'm new to this list. I have spent hours searching
Google but still cant not find the solution for my
problem so I decide it's time for the first post.
I follow instructions from
http://www.linuxjournal.com/article/8017 with the
following configuration (instead of WLAN, I'm going to
Thai Duong [EMAIL PROTECTED] wrote:
This setup never works as expected. WinXP kept
complaining Unable to join to the network. I could
not figure out what was the problem. There were no
clue in freeradiusd's logfile and ethereal's dumpfile.
Read the debug log to see what's going on.
You
Hi Alan,
--- Alan DeKok [EMAIL PROTECTED] wrote:
Read the debug log to see what's going on.
You *do* have the Microsoft OID's in the
certificates?
Alan DeKok.
yes of course. I follow the instruction from
http://www.linuxjournal.com/node/8095/print to
generate certificates for
Thai Duong [EMAIL PROTECTED] wrote:
- The server replied with a Access-Challenge and then
went to sleep.
That is exactly what happens when the certificate doesn't have the
proper OID's.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thai Duong [EMAIL PROTECTED] wrote:
I can be sure the client certificate has the Enhanced
Key Usage showing Client Authentication
(1.3.6.1.5.5.7.3.2). I have no way to verify whether
the server certificate contains proper OID
OpenSSL? It displays information about the certificate.
Is it
15 matches
Mail list logo
