Ok, I am very close to getting my EAP-TLS setup working. I have created and verified certificates, I have configured FreeRADIUS to EAP-TLS. I finally tested with eapol_test (would have saved me a lot of time if I had done that from the start).
eapol_test against 127.0.0.1 port 18120 (inner-tunnel) works, eapol_test against FreeRADIUS_server_IP port 1812 fails.
Has anyone had this happen, if so, how did you solve it?
Comparing eapol_test outputs:
FAIL:
Attribute 79 (EAP-Message) length=21 Value: 02440013016d61676e7573407537312e6f7267 Attribute 80 (Message-Authenticator) length=18 Value: d905c98d8f4a73dfea4e7e43ba25e1a1 Next RADIUS client retransmit in 3 seconds EAPOL: SUPP_BE entering state RECEIVE Received 44 bytes from RADIUS server Received RADIUS message RADIUS message: code=3 (Access-Reject) identifier=0 length=44 Attribute 79 (EAP-Message) length=6 Value: 04440004 Attribute 80 (Message-Authenticator) length=18 Value: d433e80b33f97487d5867bac9499f4b1 PASS
Attribute 79 (EAP-Message) length=21 Value: 02670013016d61676e7573407537312e6f7267 Attribute 80 (Message-Authenticator) length=18 Value: fee59636631849759ca6077671414f63 Next RADIUS client retransmit in 3 seconds EAPOL: SUPP_BE entering state RECEIVE Received 64 bytes from RADIUS server Received RADIUS message RADIUS message: code=11 (Access-Challenge) identifier=0 length=64 Attribute 79 (EAP-Message) length=8 Value: 016800060d20 Attribute 80 (Message-Authenticator) length=18 Value: e63fd7e619ea39afcdd944e8c9ce03b8 Attribute 24 (State) length=18 
No comments:
Post a Comment