Yes, radius is now working fine. What are you using (? going to use) to
assign an IP address to the client - radius or DHCP? If you are using
DHCP something is wrong with address/netmask assignment. If you are not
using anything at the moment you will need to pick one.
As for wpasupplicant log -
This looks OK now:
State: DISCONNECTED - ASSOCIATING
..
State: ASSOCIATING - ASSOCIATED
..
EAP: EAP entering state INITIALIZE
..
EAPOL: SUPP_PAE entering state AUTHENTICATING
This is now a supplicant issue EAP is failing despite Access-Accept.
Something is broken there. You will need to post
Client output isn't showing Access-Accept packet content. Post radiusd
-X output and your users file.
Ivan Kalik
Kalik Informatika ISP
Dana 31/5/2007, shantanu choudhary [EMAIL PROTECTED] piše:
hello,
this is my client side output:
Authentication with 00:03:7f:09:60:a0 timed out.
Added BSSID
this is server side output
rad_recv: Access-Request packet from host 192.168.2.182:1027, id=4, length=177
Message-Authenticator = 0x758e436fc2b17672ad389e0ffeca2982
Service-Type = Framed-User
User-Name = testuser
Framed-MTU = 1488
Called-Station-Id =
You haven't posted your users file.
Ivan Kalik
Kalik Informatika ISP
Dana 31/5/2007, shantanu choudhary [EMAIL PROTECTED] piše:
this is server side output
rad_recv: Access-Request packet from host 192.168.2.182:1027, id=4, length=177
Message-Authenticator =
Sorry, didn't see the atach. Have you restarted the server since
changing user config? That DEFAULT entry for Framed-User should also
match.
Ivan Kalik
Kalik Informatika ISP
Dana 31/5/2007, shantanu choudhary [EMAIL PROTECTED] piše:
this is server side output
rad_recv: Access-Request
OK, change you testuser entry to:
steve Cleartext-Password := whatever
Service-Type = Framed-User,
Framed-IP-Address = 192.168.2.132,
Framed-IP-Netmask = 255.255.255.255,
Framed-MTU = 1438
Ivan Kalik
Kalik Informatika ISP
Dana 31/5/2007, shantanu choudhary
we have restarted that server with this user file,
one question i want to ask, what address is the client requesting for which it
is failing, where do u thik the problem is?
regards
shantanu
[EMAIL PROTECTED] wrote: Sorry, didn't see the atach. Have you restarted the
server since
changing user
I think that problem is that supplicant expects IP adress, netmask etc.
in the accept packet. Witout those it cant configure the connection.
Return appropriate parameters and connection should be established.
Ivan Kalik
Kalik Informatika ISP
Dana 31/5/2007, shantanu choudhary [EMAIL PROTECTED]
we tried to use service type, framed protocol, framed ip address(what are they
used for???), framed ipnetmask but after making those changes, my server was
unable to startup giving an error relate to some parsiing failure.
can u tell me what should i add, and is it not supposed to work and i
what is final state or message of this authentication?
is it associated or authenticated??
regards
shantanu
-
Heres a new way to find what you're looking for - Yahoo! Answers -
List info/subscribe/unsubscribe? See
this is the user file, i dont think there is any spelling mistake or else why
server is giving access accept? is it problem with AP?
#Please read the documentation file ../doc/processing_users_file,
#or 'man 5 users' (after installing the server) for more information.
#
#As of
This is the same one as before. Where is the one that gives parsing error?
Ivan Kalik
Kalik Informatika ISP
Dana 31/5/2007, shantanu choudhary [EMAIL PROTECTED] piše:
this is the user file, i dont think there is any spelling mistake or else why
server is giving access accept? is it problem
Server is giving access-accept because you have correct user and correct
password. But for connection to work you need more parameters.
Ivan Kalik
Kalik Informatika ISP
Dana 31/5/2007, shantanu choudhary [EMAIL PROTECTED] piše:
this is the user file, i dont think there is any spelling mistake
Your request is accepted but you are picking up an IP adress of
255.255.255.254 from the DEFAULT entry in users file for Service-Type
Framed-User. Assign a proper IP address or address pool in your user
configuration. And put the user before DEFAULT entries.
Ivan Kalik
Kalik Informatika ISP
i changed user file and now what i am getting is:
on client or supplicant side EAP FAILURE :-(
response:
No keys have been configured - skip key clearing
wpa_driver_wext_set_drop_unencrypted
State: DISCONNECTED - ASSOCIATING
wpa_driver_wext_set_operstate: operstate 0-0 (DORMANT)
WEXT:
Well, now you dont have any IP address in your accept packet. Not a
problem if you are doing DHCP. Otherwise you need to return IP address,
netmask, MTU, Service-Type, DNS servers etc.
Leave that Framed-User DEFAULT entry alone - it should be there. You need
to add stuff to your user config:
hello,
this is my client side output:
Authentication with 00:03:7f:09:60:a0 timed out.
Added BSSID 00:03:7f:09:60:a0 into blacklist
State: ASSOCIATED - DISCONNECTED
wpa_driver_wext_set_operstate: operstate 0-0 (DORMANT)
WEXT: Operstate: linkmode=-1, operstate=5
wpa_driver_wext_disassociate
No keys
18 matches
Mail list logo