Hi,
As I am verifying EAP-FAST which uses inner authentication as MSCHAPv2, for
this our device requires any certificates like client certificates?
I red that it requires PAC means pac key should match from both sides like
radius sever and our device?
Thanks
Sudhir
Larsen & Toubro Limited
On 04/04/2012 04:17 PM, Eike Lohmann wrote:
Hello Eike,
> Logging with: PasswordLogFileName %L/radpasswd.log
>
> Wed Apr 4 15:08:10 2012:1333544890:user1:UNKNOWN-CHAP:u2q6tf9xxx:PASS
> Wed Apr 4 15:11:48 2012:1333545108:user2:UNKNOWN-CHAP:wcscwmmxxx:PASS
>
> It's a mobile router, if I cha
On 04/05/2012 10:15 AM, Sudhir Harwalkar wrote:
Hello Sudhir,
> As I am verifying EAP-FAST which uses inner authentication as MSCHAPv2,
> for this our device requires any certificates like client certificates?
>
> I red that it requires PAC means pac key should match from both sides
> like radi
On 04/03/2012 07:45 PM, Karl Gaissmaier wrote:
Hello Charly,
> I've a problem with AuthBy RADSEC and the failure algorithm.
>
> In the eduroam confederation it's nearly impossible to find proper
> values for NoreplyTimeout, MaxFailedRequests, ... for Access-Requests.
>
> It takes sometimes many
Hi Heikki,
thanks for your fast reply! The radiator team is great!
Am 05.04.2012 14:00, schrieb Heikki Vatiainen:
> On 04/03/2012 07:45 PM, Karl Gaissmaier wrote:
>
> Hello Charly,
>
>> I've a problem with AuthBy RADSEC and the failure algorithm.
>>
>> In the eduroam confederation it's nearly i
Hugh,
I attempted to use the config provided but the handler is not picking my device
up. I have specified to specific IP address instead of DEFAULT, this did not
seem to work either.
Thu Apr 5 09:09:57 2012: DEBUG: Creating StreamServer tcp port 0.0.0.0:8100
Thu Apr 5 09:09:57 2012: DEBUG:
On 04/05/2012 04:12 PM, Robb Pfrank wrote:
Hello Robb,
> I attempted to use the config provided but the handler is not picking my
> device up. I have specified to specific IP address instead of DEFAULT, this
> did not seem to work either.
Try this:
instead of this:
Now it fails to match
On 04/05/2012 04:07 PM, Karl Gaissmaier wrote:
Hello Charly,
>> Would the current behaviour of returning nothing (IGNORE) to the
>> previous server still be fine?
>
> Hm, I didn't catch you?
I was just thinking the case when a request times out and all retries
have been tried. Should something
Hello Robb -
As Heikki rightly says, you will need to alter the Handler definition to match
what is actually in the incoming request.
It is always essential to study the contents of the incoming requests with a
trace 4 debug so you can see exactly what is happening.
My example was just that -