Hello!
we are using freeradius2 version 2.1.10 on a centos/rhel 5 Server. We
authenticate several ubnt clients on ubnt AP's via EAP-PEAP/MSCHAPV2.
This works very well, but sometimes the clients got an Access-Reject and i
don't know why ;(
I set the radius Server to debug mode and get those
On Wed, Aug 8, 2012 at 2:44 PM, stefan novak lms.bruba...@gmail.com wrote:
Hello!
we are using freeradius2 version 2.1.10 on a centos/rhel 5 Server. We
authenticate several ubnt clients on ubnt AP's via EAP-PEAP/MSCHAPV2.
This works very well, but sometimes the clients got an Access-Reject
If it's sometimes, then it would be wise to compare the debug log of
when the client succeeds and when it does not. Also, IIRC RHEL5 has
2.1.12 already, so you should upgrade just in case this is a fixed
bug.
just updated my testserver to 2.1.12.
I test now with rad_eap_test utility to
Hi,
just updated my testserver to 2.1.12.
I test now with rad_eap_test utility to eliminate a client failure. the
behaviour gets more stranger. the test utility also fails sometimes, but
the radius server seams to be ok now?
[root@wlan-radius rad_eap_test-0.23]#
stefan novak wrote:
just updated my testserver to 2.1.12.
I test now with rad_eap_test utility to eliminate a client failure. the
behaviour gets more stranger. the test utility also fails sometimes, but
the radius server seams to be ok now?
Your method is wrong.
You ran the client 5
On Wed, Aug 8, 2012 at 3:43 PM, stefan novak lms.bruba...@gmail.com wrote:
If it's sometimes, then it would be wise to compare the debug log of
when the client succeeds and when it does not. Also, IIRC RHEL5 has
2.1.12 already, so you should upgrade just in case this is a fixed
bug.
just
On Wed, Aug 8, 2012 at 3:49 PM, alan buxey a.l.m.bu...@lboro.ac.uk wrote:
byt he way rad_eap_test isnt the best tool to use - use 'eapol_test' instead
http://wiki.freeradius.org/EAP-Clients#rad_eap_test says rad_eap_test
also uses eapol_test from wpa_supplicant. Shouldn't it produce the
same
http://wiki.freeradius.org/EAP-Clients#rad_eap_test says rad_eap_test
also uses eapol_test from wpa_supplicant. Shouldn't it produce the
same behavior?
rad_eap_test is only a wrapper script around eapol_test because it
produces much output.
Those are all access-accept, aren't they? The
Hi,
rad_eap_test is only a wrapper script around eapol_test because it
produces much output.
yes..and i believe it has a bug or 2
yes, sorry. understand that false
ok, then it seams that radius server is ok, but the clients are generating
false eap packets.
i will
when you say clients, you just mean these rad_eap_test requests? I assume
you are using
NAGIOS...and that occasionally you are getting a WARNING for the RADIUS
server? yes?
its a bug in rap_eap_test as far as I can see - I moved to a native
eapol_test with my NAGIOS
because of this bug.
Output from the ubnt client:
Aug 7 07:15:18 wpa-supplicant: CTRL-EVENT-EAP-STARTED EAP authentication
started
Aug 7 07:15:21 wpa-supplicant: CTRL-EVENT-EAP-METHOD EAP vendor 0 method
25 (PEAP) selected
Aug 7 07:15:57 pppd[1714]: No response to 5 echo-requests
Aug 7 07:15:57 pppd[1714]: Serial
I'm not 100% sure but as I know the UBNT equipment has introduced RADIUS
client support in firmw. 5.x which is still active and under development...
RADIUS MAC authentication was introduced in latest firmware (5.5) so I
believe that some things are still not as they should.
On 8.8.2012
12 matches
Mail list logo