Configure LEAP in AAA

John Barfknecht · ‎08-13-2002

I am running AAA server, radiusd starts fine and i can do radpwtest -i xxx.xxx.xxx.xxx against the user in queastion, yet from the Cisco access point I get failed because of no response from the radius server. The aaa logfile shows
Tue Aug 13 08:37:44 2002: Received-Authentication: 73/1 'doc' via 150.150.250.25
0 from AP350-40b15e port 37
Tue Aug 13 08:37:44 2002: Authentication: 73/1 'doc' via 150.150.250.250 from AP
350-40b15e port 37 - FAILED Authentication failure -- total 0, holding 0
Tue Aug 13 08:37:44 2002: get_radrequest: non-RFC packet from 150.150.250.250[11
02] - access (type 1), len = 132
Tue Aug 13 08:37:44 2002: Hex dump at 0x7f78f328/0x0 for 132 bytes
Tue Aug 13 08:37:44 2002: 0x7f78f328: 0x0000| 014A0084 780B4FFF 89DC4485 25C12D8
0| |.J..x.O...D.%.-.|
Tue Aug 13 08:37:44 2002: 0x7f78f338: 0x0010| 1A8B2C23 1A140000 0009010E 7373696
4| |..,#........ssid|
where could I be going wrong ??

TIA

"some days it's not worth chewing through the leather straps"

Narasimha Murthy · ‎08-19-2002

Looks like you have not configured your access
point to support cisco attributes in /etc/opt/aaa/client files. If you have configured type=none:nas..for access point entry then you sometmies get as non-RFC packet error.

Example:
In clients
----------
type=none:proxy v1
type=cisco:nas v1

Where AP-is your Access Point. IP address

In authfile
------------

example.com EAP "example"
{
EAP-Type CiscoLEAP
}

In Users file
------------------

user@example.com Authentication-Type=Realm, Password="test"

From your cisco AP..try authenticating..as
user@example.com.It should work.

Note: radpwtst cannot be used for testing with EAP users.

Believe and Succeed

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Configure LEAP in AAA

Configure LEAP in AAA

Re: Configure LEAP in AAA