> I lastly sent a query about MAC authentication. Till now I couldn't fix the problem. > Please could > you try and help me on this one. The pb is that everything works (EAP-TLS on a > Radius server) > exepts for the MAC Authentication part. The acces point doesn't seem to send any > signal to the > Radius server.
Then that's not really the fault of FreeRadius is it? I'm not quite sure why you even need MAC authentication if you're using EAP-TLS unless you're using it in a way for which it was not designed. On top of this, it seems to me from your email that you're expecting the AP to perform TWO autz/auth sequences. I could be wrong, but that's the impression I'm getting. This is totally unnecessary since you get the Calling-Station-Id, aka the wireless client MAC address, in the RADIUS requests. You can perform MAC checking based on this attribute. And, if you're using EAP-TLS and you *must* have MAC address checking, this is pretty much how you *must* do it. Again, though, with proper use of certificates, MAC address authentication seems like needless overhead and a pain in the rear to administer. -- --Mike -------------------------------- Michael Griego Wireless Network Administrator University of Texas at Dallas - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
