with RADIUS.
http://code.google.com/p/openssh-lpk/
Hope it helps,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 1/13/10 5:06 PM, Alan DeKok wrote:
Lech Karol Pawłaszek wrote:
Right now I'm deploying (yes. at this particular moment!) IPsec/L2TP VPN
which will be utilizing RADIUS via ppp connection. And for PAP it works
nice. However MSCHAP doesn't want to work. I'm kinda lost because EAP
connection
.
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
FreeRADIUS Version 2.0.4, for host i486-pc-linux-gnu, built on Aug 18 2009 at
19:08:27
Copyright (C) 1999-2008 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY
... it works also.
I would like to force that the CA certification Authentication part must
be mandatory also.
Use EAP-TLS. It requires client-side certificate.
Kind regards,
- --
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-BEGIN PGP SIGNATURE-
Version: GnuPG
that :
It should be replyItem.
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
replyItem Tunnel-Medium-Type
radiusTunnelMediumType
replyItem Tunnel-Private-Group-Id
radiusTunnelPrivateGroupId
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-Station-Id})
{
$never_here
}
Kind regards,
PS script2 looks like this:
#!/usr/bin/python
import sys
if __name__ == __main__:
print sys.argv[1]
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
Phil Mayers wrote:
Lech Karol Pawłaszek wrote:
[...]
switch %{exec:/script %{User-Name}
%{outer.request:Calling-Station-Id} {
You're missing a closing }
I suspect this is adding a trailing to the output
[...]
if (%{Calling-Station-Id} == %{exec:/script2
%{Calling-Station-Id
Sebo PL wrote:
Hi all!
Is it possible to test whether EAP works from the shell?
I'm looking for something simullar to:
Sure there is:
http://deployingradius.com/scripts/eapol_test/
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe
localhost 0 testing
User-Name = John
User-Password = hello
NAS-IP-Address = 192.168.1.2
NAS-Port = 0
Can you see a difference? Try to connect at 192.168.0.10 using radtest
or change FreeRADIUS' listening ports.
Kind regards,
--
Lech Karol Pawłaszek ike
You will never
' FAQ (however IMVHO it should be on the ML
front page).
http://wiki.freeradius.org/FAQ#It_still_doesn.27t_work.21
PS: I followed your Reply-To however I don't think that was necessary -
do you really have to set it that way?
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall
is 3com - check out this post.
http://lists.freeradius.org/mailman/htdig/freeradius-users/2008-July/msg00563.html
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
= 0x010d00061900
Message-Authenticator = 0x
State = 0x61fcdc3965f1c5fd5ac44742bec48a4e
Finished request 9.
Lucky guess...
http://deployingradius.com/documents/configuration/eap-problems.html
:-) kind regards,
--
Lech Karol Pawłaszek ike
You
method instead of the default mac based
[5500] dot1x port-method portbased
If you will have any further questions - feel free to ask.
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
SecureW2 EAPSuite which supports EAP-TTLS/EAP-PEAPv0/v1 and EAP-GTC
and has been tested quite extensively with Vista SP0/SP1.
Awesome. I hope it'll work with my Vista's...
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
eaphost.txt.gz
Description: GNU
Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Phil Mayers wrote:
Lech Karol Pawłaszek wrote:
SecureW2 (List) wrote:
http://msdn.microsoft.com/en-us/library/aa813696(VS.85).aspx
Nice article. However I don't understand a few things. What's pdb
pdbpath? I'm not good at Windows.
Good lord... they've made the EAP logging *worse*. I didn't
sending
Access-Challenge.
I'll try to debug this issue more with netsh ;-) later.
OTOH i'll recommend my users to use secureW2 EAP suite (which works).
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List info/subscribe/unsubscribe? See http
Alan DeKok wrote:
Lech Karol Pawłaszek wrote:
I've tested my configuration with eapol_test command (as suggested at
this site[1]) and it works fine. I've tested it against MacOsX 10.4 and
MacOsX 10.5 and it works fine. I even tested it against Windows XP SP2
and it works fine. It doesn't work
.
Thanks in advance.
--
Lech Karol Pawłaszek ike
You will never see me fall from grace. [KoRn]
freeradius.log.gz
Description: GNU Zip compressed data
freeradius-securew2.log.gz
Description: GNU Zip compressed data
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
20 matches
Mail list logo
