Hi:
I am a new guy to deal with freeradius/wireless stuff.
I use freeradius 2.0.5 with LDAP back end.
If I test with radtest (localhost) or with NTRadPing (from another WINXP
machine)it works fine(return Access-Accept).
But if I test with MAC Airport as a client and Netgear WG 302 as a AP it fails
again and agian no matter how I adjust the configuration file around (e.g.
eap.conf, sites-eabled/ldap, radiusd.conf etc.)
Thanks in advance for any help/clue/guide.
P.S.
-----------Mac client settings:
802.1x enabled with PEAP(outer identity: none) and TTLS(inner auth:
mschapv2 outer identity: none)
Security: WPA enterprise
-----------Netgear WG302 settings:
Security: WPA with radius
Data encrypt: TKIP+AES
Auth server port: 1812
Acc server port: 1813
----------- the info cut from the radiusd.-X output:
rlm_ldap: looking for reply items in directory...
WARNING: No "known good" password was found in LDAP. Are you sure that
the user is configured correctly?
rlm_ldap: user andyan authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
++[ldap] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
auth: No authenticate method (Auth-Type) configuration found for the
request: Rejecting the user *(It might be problematic from here)*
auth: Failed to validate the user.
TTLS: Got tunneled Access-Reject
rlm_eap: Handler failed in EAP/ttls
rlm_eap: Failed in EAP select
++[eap] returns invalid
auth: Failed to validate the user.
Found Post-Auth-Type Reject
+- entering group REJECT
expand: %{User-Name} -> andyan
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Sending Access-Reject of id 23 to 10.10.10.228 port 1059
EAP-Message = 0x04050004
Message-Authenticator = 0x00000000000000000000000000000000
Finished request 5.
Going to the next request
-----------------
--
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
