Nagaraj Panyam <[email protected]> wrote: > > In my previous mail while asking for help, I did not fully explain what > I wanted to configure. > So here goes: I want to configure freeradius to setup MAC based > authentication for laptops and hand held devices in my organization. > My first preference is to make it purely MAC based and paswordless. > You are not reading what we have been telling you, please re-read the replies in this thread. You *cannot* do mac-auth on 802.1X networks, period, end of story, game-over, FIN.
WPA Enterprise enabled wireless networks *are* 802.1X networks, so you cannot do mac-auth. The request your RADIUS server is receiving (that you have given below) is a 802.1X request because it has an EAP-Message attribute. What you want to do cannot be done. Cheers > ------ Debug output: > rad_recv: Access-Request packet from host 192.168.55.107 port 3072, id=35, > length=175 > User-Name = "TEST\\test" > NAS-IP-Address = 192.168.55.107 > NAS-Port = 0 > Called-Station-Id = "001f1fd74ce9" > Calling-Station-Id = "001a734337c9" > NAS-Identifier = "Realtek Access Point. 8181" > Framed-MTU = 1400 > NAS-Port-Type = Wireless-802.11 > Service-Type = Framed-User > Connect-Info = "CONNECT 11Mbps 802.11b" > EAP-Message = 0x0200000e01544553545c74657374 > Message-Authenticator = 0x0fc7203c788350352965da25a7a1049e -- Alexander Clouter .sigmonster says: Illegally parked cars will be towed at owner's expense. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
