DrayTek UK Users' Community Forum
Help, Advice and Solutions from DrayTek Users
8.011x Radius
- pologen
- Topic Author
- Offline
- New Member
Less
More
- Posts: 1
- Thank you received: 0
09 Jul 2010 19:45 #62795
by pologen
8.011x Radius was created by pologen
Hello all,
I recently bought a Vigor 2820vn because it advertised Radius support. However, when I point the device to a known-working MacOS X Freeradius server it doesn't seem to respond to Access-Challenge requests. The following repeats itself endlessly on the Freeradius end...
I'm using a valid certificate signed by Digicert for the Freeradius server, so it should match any sensible x509 chains. Has anyone else got Radius working for 8.011x?
I recently bought a Vigor 2820vn because it advertised Radius support. However, when I point the device to a known-working MacOS X Freeradius server it doesn't seem to respond to Access-Challenge requests. The following repeats itself endlessly on the Freeradius end...
Code:
rad_recv: Access-Request packet from host 192.168.100.1 port 3675, id=128, length=135
User-Name = "Test Account"
NAS-IP-Address = 192.168.100.1
NAS-Port = 29
NAS-Port-Type = Wireless-802.11
Called-Station-Id = "00507f6b09c8"
Calling-Station-Id = "f81edfe42cdd"
NAS-Identifier = "00507f6b09c8"
Framed-MTU = 1396
EAP-Message = 0x02000010014461766964204279617264
Message-Authenticator = 0xc57ef3b1ed7a6b60a2ce7c6a08a0c5d4
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "Test Account", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 0 length 16
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns updated
++[files] returns noop
rlm_opendirectory: The SACL group "com.apple.access_radius" does not exist on this system.
rlm_opendirectory: The host 192.168.100.1 does not have an access group.
rlm_opendirectory: no access control groups, all users allowed.
++[opendirectory] returns ok
++[expiration] returns noop
++[logintime] returns noop
[pap] Found existing Auth-Type, not changing it.
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] EAP Identity
[eap] processing type tls
[tls] Initiate
[tls] Start returned 1
++[eap] returns handled
Sending Access-Challenge of id 128 to 192.168.100.1 port 3675
EAP-Message = 0x010100061520
Message-Authenticator = 0x00000000000000000000000000000000
State = 0x814bbbd7814aaee7d0e7422cb70c69e7
Finished request 0.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 0 ID 128 with timestamp +440
Ready to process requests.
I'm using a valid certificate signed by Digicert for the Freeradius server, so it should match any sensible x509 chains. Has anyone else got Radius working for 8.011x?
Please Log in or Create an account to join the conversation.
- coderus
- Offline
- Junior Member
Less
More
- Posts: 67
- Thank you received: 0
Moderators: Chris, Sami
Copyright © 2024 DrayTek