I got a Lull in my school work long enough such that I can work on
Free Radius, homework combined with minor Illness did that.
Allright, just so everyone is on the same page. I want to implement Host
based 802.1X with PEAP or EAP-TLS. Currently, all my Samba Hosts have a
Object in the LDAP
Evan Vittitow wrote:
I got a Lull in my school work long enough such that I can work on
Free Radius, homework combined with minor Illness did that.
Allright, just so everyone is on the same page. I want to implement Host
based 802.1X with PEAP or EAP-TLS. Currently, all my Samba Hosts have a
To repeat my previous email - xsupplicant does not have a CA cert that
allows it to trust the server.
The line:
Loaded root certificate /etc/raddb/certs/cert-clt.pem
...looks wrong. It looks as if you've told xsupp that the CA cert is
the client cert, which it isn't. They're different
Evan Vittitow wrote:
This uid does exist and has the NT and LM password attributes.
If that output is all you see, then the client has stopped halfway
through. Fix the client, whatever the problem is
If it's a windows client, you're probably missing the magic oids. See
the list archives.
[CONFIG] Socket 4 (frame handler) had an event!
Network ID from EAP hint : Pukey
If this is a wired network, the above ID can be used in the
configuration file to identify this network.
[CONFIG] Working from config file /etc/xsupplicant.conf.
Network ID from EAP hint : Pukey
If this is a wired
Evan Vittitow wrote:
[CONFIG] Socket 4 (frame handler) had an event!
Network ID from EAP hint : Pukey
If this is a wired network, the above ID can be used in the
configuration file to identify this network.
[CONFIG] Working from config file /etc/xsupplicant.conf.
Network ID from EAP hint : Pukey
Phil Mayers ([EMAIL PROTECTED]) wrote:
Evan Vittitow wrote:
[CONFIG] Socket 4 (frame handler) had an event!
Network ID from EAP hint : Pukey
If this is a wired network, the above ID can be used in the
configuration file to identify this network.
[CONFIG] Working from config file
I keep getting this.
I have been following documentation.
A username and password, and optionally the CA cert so they can
trust the radius server cert.
- List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
rlm_eap: SSL error error:0B080074:x509 certificate
rad_recv: Access-Request packet from host 192.168.0.250:1175, id=66,
length=149
User-Name = kurama
Cisco-AVPair = ssid=Pukey
NAS-IP-Address = 192.168.0.250
Called-Station-Id = 004096285ceb
Calling-Station-Id = 00095b679ccf
NAS-Identifier =
Alan DeKok wrote:
Evan Vittitow wrote:
I think a large part of my problem is the creation of a Certificate
authority.
Why? See the various 802.1x howto's (pointed to from freeradius.org
the wiki) for how to create certificates for the server.
Its very possible, that said
Evan Vittitow wrote:
Alan DeKok wrote:
Evan Vittitow wrote:
I think a large part of my problem is the creation of a Certificate
authority.
Why? See the various 802.1x howto's (pointed to from freeradius.org
the wiki) for how to create certificates for the server.
Its very
Here is the result of my first attempt. I added a Pukey-EAP entry in
the LDAP tree but it didn't do much good. And I can't tell whats the
matter with my CA.
rad_recv: Access-Request packet from host 192.168.0.250:1110, id=8,
length=159
User-Name = Pukey-EAP
Cisco-AVPair =
Evan Vittitow wrote:
Here is the result of my first attempt. I added a Pukey-EAP entry in
the LDAP tree but it didn't do much good. And I can't tell whats the
matter with my CA.
You have configured your LDAP tree to contain either the plaintext
password or NT/LM hashes, yes? And configured
I think a large part of my problem is the creation of a Certificate
authority.
This will get a little Hypothetical so let me lay a few facts out on the
table.
Mandriva 2007 discontinues CA.sh in favor of CA.pl
Certificates as far as I know, at least the demo certs are in
/etc/pki/tls - not
Evan Vittitow wrote:
I think a large part of my problem is the creation of a Certificate
authority.
Why? See the various 802.1x howto's (pointed to from freeradius.org
the wiki) for how to create certificates for the server.
Its very possible, that said Certificate authority for Radius
15 matches
Mail list logo
