Hi.
I'm having some trouble with freeradius-1.0.0-pre3 and TTLS.
The problem is this:
rlm_eap_peap: EAPTLS_OK rlm_eap_peap: Session established. Decoding tunneled attributes. rlm_eap_tls: <<< TLS 1.0 Alert [length 0002], fatal access_denied TLS Alert read:fatal:access denied rlm_eap_peap: No data inside of the tunnel. rlm_eap: Handler failed in EAP/peap rlm_eap: Failed in EAP select modcall[authenticate]: module "eap" returns invalid for request 9 modcall: group authenticate returns invalid for request 9 auth: Failed to validate the user.
This is my eap.conf:
eap {
default_eap_type = md5
timer_expire = 60
ignore_unknown_eap_types = no
cisco_accounting_username_bug = no
md5 {
}
leap {
}
gtc {
auth_type = PAP
}
tls {
private_key_password = pass
private_key_file = ${raddbdir}/certs/privkey.pem
certificate_file = ${raddbdir}/certs/cacert.pem
CA_file = ${raddbdir}/certs/cacert.pem
dh_file = ${raddbdir}/certs/dh
random_file = ${raddbdir}/certs/random
fragment_size = 1024
include_length = yes
}
ttls {
default_eap_type = md5
copy_request_to_tunnel = yes
use_tunneled_reply = yes }
peap {
default_eap_type = mschapv2
}
mschapv2 {
}
}I've tested this with a Cisco 1200AP and Cisco 2950. Both created the same problem.
Anyone able to help me?
Regards Vidar Stokke
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
