Hi,
> Hi,
>
>
>> I have been trying with a 'out-of-box' configuration but it seems to
>> have issues with a anonymous outer userID I have added our certs for the
>> TLS outer and it seems happy with this, and I can use a valid Ldap
>> account on the server with the radtest tool although so far it fails
>> over a wireless connection with the secureW2 supplicant.
>>
> radtest doesnt do the EAP stuff needed - therefore you will be hitting the 'outer'
> mapping - and therefore just hitting LDAP etc in the standard default virtual server
> (radiusd -X will show you all you need to know about the process path and
> decisions being made).
>
I was using radtest to see if it would validate an account against the
ldap server, this was succsessful
> radeapclient or eapol_test etc (former with FR, latter is part of wpa_supplicant package)
> will help you further with EAP testing on command line
>
>
Ok I'll try that, I have been using the securew2 supplicant as thats
what the users use.
Thanks again
Colin
>> We are aware that some devices cant use a PAP inner, we intend to offer
>> more EAP types but need to replicate what we currently offer with Radiator.
>>
> thats fair enough! :-)
>
> alan
>
--
-----------------------------------------------------------------------
Colin Byelong Email: [log in to unmask]
Senior Network Development Officer
Network Group
Information Systems Division
University College London
Gower Street Phone: 020 7679-2572
London WC1E 6BT
------------------------------------------------------------------------
|