"Ivan Dario Barrera" <[EMAIL PROTECTED]> wrote: > It happens that when I add a new user to the users file it can be > authenticated with no problems for the first time, when I restart the user > PC (that is when it tries to be authenticated for a second time) the radius > server in debug mode says "Failed to validate the user", it can be seen at > http://www.ece.udel.edu/~barrera/logfail.txt
Which is a COMPLETELY DIFFERENT request packet than: > http://www.ece.udel.edu/~barrera/log.txt So the problem is that you've configured your server to handle the second kind of request, but not the first. > 00022d0bea39 Auth-Type := EAP, NAS-Port-Type := Wireless-802.11, Password == > "00022d0bea39" Don't set Auth-Type. The EAP module will set it for you, IF the request contains EAP. This 'users' file entry will make the EAP module try to authenticate the request, EVEN IF there's no EAP. So the EAP module will not do anything. LOOK at the request packet in: 'logfail.txt', there is NO EAP-Message attribute, so the EAP module WILL NOT be able to authenticate that user. You can make changes on the servet to make the 'logfail.txt' request pass authentication, but the problem is that the client is sending two different kinds of requests. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
