Jean-Marie GUILLEMOT <[EMAIL PROTECTED]> wrote:
> 1 - to meet CISCO requirements, I modified the dictionnary.tunnel file like
> this :
Which was absolutely wrong. The Cisco requirements did NOT say to
edit the dictionaries.
> # VALUE Tunnel-Medium-Type IEEE-802 6
> VALUE Tunnel-Medium-Type 802 6
Please read the RADIUS book, the RFC's, and the 'man' page for the
'dictionary' file. The names in the dictionary are irrelevant, as
they are used ONLY in the configuration files on the server.
Further, by changing the name from "IEEE-802" to "802", you
guarantee that the value "6" will NEVER be sent to the NAS when you
type the name "802" into the configuration files on the server.
> # ATTRIBUTE Tunnel-Private-Group-Id 81 string has_tag
> ATTRIBUTE Tunnel-Private-Group-Id 81 integer has_tag
I have no clue why you would change that. See:
http://www.freeradius.org/rfc/attributes.html
Click on the "Tunnel-Private-Group-Id" link, and read the text.
> 2 - My user is :
> "
> jmguillemot Auth-Type := eap, User-Password == "XXXXX"
> Service-Type = Login-User,
> Tunnel-Type = 13,
> Tunnel-Medium-Type = 6,
If you changed the name from "IEEE-802" to "802", then why the
*heck* would you use "6" as the value here? You seem to be interested
in doing extra work for no point.
> Is it a mis-configuration ? a freeradius problem ? a cisco problem ?...
User -> keyboard problem.
Don't play games with the dictionaries unless you know what you're
doing. Change the entries back, and I'll bet it will work.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
