Hi, I have this problem that is probably already documented, and I guess the solution is simple but I still cannot find the answer. I followed the HOWTOs and the authentication service seems to be working now, but it works just once.
It happens that when I add a new user to the users file it can be authenticated with no problems for the first time, when I restart the user PC (that is when it tries to be authenticated for a second time) the radius server in debug mode says "Failed to validate the user", it can be seen at http://www.ece.udel.edu/~barrera/logfail.txt The first time the user was authenticated looked like: http://www.ece.udel.edu/~barrera/log.txt As soon as I run the radius server with the options -xxxyz the messages look pretty normal, with no errors, http://www.ece.udel.edu/~barrera/start.txt which is the same that appears at http://www.impossiblereflex.com/8021x/eap-tls-HOWTO.htm I found that if I want the user to be authenticated once again I have to change something on users file and try to authenticate and then back to the original configuration. (a copy of the users file is below). Right now I'm using redhat 8.0 (2.4.18-14), freeradius 0.8.1., The AP is a Cisco 350 series and it was configured as http://www.missl.cs.umd.edu/wireless/eaptls/ says, using MAC address authentication. Any idea? Thanks a lot for your help and invaluable time!, please let me know the information supplied is enough. Ivan Barrera Users file: (Anyway they can be checked at http://www.ece.udel.edu/~barrera/radius/ ) DEFAULT Group == "disabled", Auth-Type := Reject Reply-Message = "Your account has been disabled." 00022d0bea39 Auth-Type := EAP, NAS-Port-Type := Wireless-802.11, Password == "00022d0bea39" Service-Type = Framed-User, Framed-IP-Address = 128.4.132.81 "Ivan Barrera" Auth-Type := EAP Service-Type = Framed-User ibarrera Auth-Type := EAP Service-Type = Framed-User "test" Auth-Type := Local, User-Password=="test" "guest" Auth-Type := Local, User-Password=="test" DEFAULT Auth-Type = System Fall-Through = 1 DEFAULT Service-Type == Framed-User Framed-IP-Address = 255.255.255.254, Framed-MTU = 576, Service-Type = Framed-User, Fall-Through = Yes DEFAULT Framed-Protocol == PPP Framed-Protocol = PPP, Framed-Compression = Van-Jacobson-TCP-IP DEFAULT Hint == "CSLIP" Framed-Protocol = SLIP, Framed-Compression = Van-Jacobson-TCP-IP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
