802.1X PEAP EAP MASCHAPv2

Lucia Di Occhi saint_lucy at hotmail.com
Wed Aug 17 11:58:49 EDT 2005


I am having problems connecting to a network using PEAP
They use CISCO Aironet 1200 and a CISCO Secure ACS configured for PEAP  
EAP-MSCHAPv2.

I have tried oll kind of configurations on my wpa_supplicant.conf and this 
my last config:

network={
        ssid="NSUWIFI"
        key_mgmt=IEEE8021X
        eap=TTLS
        identity="lucy"
        password="mypass"
        phase2="auth=MSCHAPV2"
}

but I can't ever seem to be able to connect.  Can soeone help?

GenTooLap ~ # wpa_supplicant -i wlan0 -Dndiswrapper 
-c/etc/wpa_supplicant.conf -dd
Initializing interface 'wlan0' conf '/etc/wpa_supplicant.conf' driver 
'ndiswrapper'
Configuration file '/etc/wpa_supplicant.conf' -> '/etc/wpa_supplicant.conf'
Reading configuration file '/etc/wpa_supplicant.conf'
ctrl_interface='/var/run/wpa_supplicant'
ctrl_interface_group=0
eapol_version=1
ap_scan=2
Line: 273 - start of a new network block
ssid - hexdump_ascii(len=4):
     57 49 46 49                              WIFI
key_mgmt: 0x8
eap methods - hexdump(len=2): 15 00
identity - hexdump_ascii(len=5):
     xx xx xx xx xx                                    xxxxx
password - hexdump_ascii(len=8): [REMOVED]
phase2 - hexdump_ascii(len=13):
     61 75 74 68 3d 4d 53 43 48 41 50 56 32            auth=MSCHAPV2
priority=10 (0xa)
Priority group 10
   id=0 ssid='WIFI'
Initializing interface (2) 'wlan0'
EAPOL: SUPP_PAE entering state DISCONNECTED
EAPOL: KEY_RX entering state NO_KEY_RECEIVE
EAPOL: SUPP_BE entering state INITIALIZE
EAP: EAP entering state DISABLED
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
Own MAC address: 00:90:4b:c6:b4:22
Setting scan request: 0 sec 100000 usec
Wireless event: cmd=0x8b06 len=8
RTM_NEWLINK, IFLA_IFNAME: Interface 'wlan0' added
RTM_NEWLINK, IFLA_IFNAME: Interface 'wlan0' added
Trying to associate with SSID 'WIFI'
Cancelling scan request
Automatic auth_alg selection: 0x1
No keys have been configured - skip key clearing
Setting authentication timeout: 5 sec 0 usec
EAPOL: External notification - portControl=Auto
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 idleWhile=0
EAPOL: Port Timers tick - authWhile=0 heldWhile=0 startWhen=0 idleWhile=0
Authentication with 00:00:00:00:00:00 timed out.
Added BSSID 00:00:00:00:00:00 into blacklist
No keys have been configured - skip key clearing
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
Setting scan request: 0 sec 0 usec
Trying to associate with SSID 'WIFI'
Cancelling scan request
Automatic auth_alg selection: 0x1
No keys have been configured - skip key clearing
Setting authentication timeout: 5 sec 0 usec
EAPOL: External notification - portControl=Auto
Wireless event: cmd=0x8c02 len=243
Custom wireless event: 
'ASSOCINFO(ReqIEs=00074e535557494649010482848b96851c00006600000000001800000000000000000000000000000000000000dd050010180100 
RespIEs=010482848b96851e000084001f00ff03010052543330323a332d31303500008181a002000022950a00409600c0a803690100)'
Association info event
req_ies - hexdump(len=52): 00 07 4e 53 55 57 49 46 49 01 04 82 84 8b 96 85 
1c 00 00 66 00 00 00 00 00 18 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
00 00 00 00 dd 05 00 10 18 01 00
resp_ies - hexdump(len=50): 01 04 82 84 8b 96 85 1e 00 00 84 00 1f 00 ff 03 
01 00 52 54 33 30 32 3a 33 2d 31 30 35 00 00 81 81 a0 02 00 00 22 95 0a 00 
40 96 00 c0 a8 03 69 01 00
Wireless event: cmd=0x8b15 len=20
Wireless event: new AP: 00:0e:38:7a:42:da
Association event - clear replay counter
Associated to a new BSS: BSSID=00:0e:38:7a:42:da
No keys have been configured - skip key clearing
Network configuration found for the current AP
EAPOL: External notification - portControl=Auto
Associated with 00:0e:38:7a:42:da
EAPOL: External notification - portEnabled=0
EAPOL: External notification - portValid=0
EAPOL: External notification - portEnabled=1
EAPOL: SUPP_PAE entering state CONNECTING
EAPOL: txStart
TX EAPOL - hexdump(len=18): 00 0e 38 7a 42 da 00 90 4b c6 b4 22 88 8e 01 01 
00 00
EAPOL: SUPP_BE entering state IDLE
EAP: EAP entering state INITIALIZE
EAP: EAP entering state IDLE
Setting authentication timeout: 10 sec 0 usec
RX EAPOL from 00:0e:38:7a:42:da
RX EAPOL - hexdump(len=46): 01 00 00 05 01 01 00 05 01 00 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
00 00 00 00 00
Setting authentication timeout: 70 sec 0 usec
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_PAE entering state RESTART
EAP: EAP entering state INITIALIZE
EAP: EAP entering state IDLE
EAPOL: SUPP_PAE entering state AUTHENTICATING
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Request method=1 id=1
EAP: EAP entering state IDENTITY
EAP: EAP-Request Identity data - hexdump_ascii(len=0):
EAP: using real identity - hexdump_ascii(len=5):
     xx xx xx xx xx                                    xxxxx
EAP: EAP entering state SEND_RESPONSE
EAP: EAP entering state IDLE
EAPOL: SUPP_BE entering state RESPONSE
EAPOL: txSuppRsp
TX EAPOL - hexdump(len=28): 00 0e 38 7a 42 da 00 90 4b c6 b4 22 88 8e 01 00 
00 0a 02 01 00 0a 01 66 61 62 69 6f
EAPOL: SUPP_BE entering state RECEIVE
WPA: EAPOL frame too short, len 46, expecting at least 99
RX EAPOL from 00:0e:38:7a:42:da
RX EAPOL - hexdump(len=46): 01 00 00 05 01 02 00 05 01 00 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
00 00 00 00 00
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Request method=1 id=2
EAP: EAP entering state IDENTITY
EAP: EAP-Request Identity data - hexdump_ascii(len=0):
EAP: using real identity - hexdump_ascii(len=5):
     xx xx xx xx xx                                    xxxxx
EAP: EAP entering state SEND_RESPONSE
EAP: EAP entering state IDLE
EAPOL: SUPP_BE entering state RESPONSE
EAPOL: txSuppRsp
TX EAPOL - hexdump(len=28): 00 0e 38 7a 42 da 00 90 4b c6 b4 22 88 8e 01 00 
00 0a 02 02 00 0a 01 66 61 62 69 6f
EAPOL: SUPP_BE entering state RECEIVE
WPA: EAPOL frame too short, len 46, expecting at least 99
RX EAPOL from 00:0e:38:7a:42:da
RX EAPOL - hexdump(len=46): 01 00 00 05 01 03 00 05 01 00 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
00 00 00 00 00
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Request method=1 id=3
EAP: EAP entering state IDENTITY
EAP: EAP-Request Identity data - hexdump_ascii(len=0):
EAP: using real identity - hexdump_ascii(len=5):
     66 61 62 69 6f                                    fabio
EAP: EAP entering state SEND_RESPONSE
EAP: EAP entering state IDLE
EAPOL: SUPP_BE entering state RESPONSE
EAPOL: txSuppRsp
TX EAPOL - hexdump(len=28): 00 0e 38 7a 42 da 00 90 4b c6 b4 22 88 8e 01 00 
00 0a 02 03 00 0a 01 66 61 62 69 6f
EAPOL: SUPP_BE entering state RECEIVE
WPA: EAPOL frame too short, len 46, expecting at least 99
RX EAPOL from 00:0e:38:7a:42:da
RX EAPOL - hexdump(len=46): 01 00 00 06 01 43 00 06 19 21 00 00 00 00 00 00 
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
00 00 00 00 00
EAPOL: Received EAP-Packet frame
EAPOL: SUPP_BE entering state REQUEST
EAPOL: getSuppRsp
EAP: EAP entering state RECEIVED
EAP: Received EAP-Request method=25 id=67
EAP: EAP entering state GET_METHOD
EAP: Building EAP-Nak (requested type 25 not allowed)
EAP: allowed methods - hexdump(len=1): 15
EAP: EAP entering state SEND_RESPONSE
EAP: EAP entering state IDLE
EAPOL: SUPP_BE entering state RESPONSE
EAPOL: txSuppRsp
TX EAPOL - hexdump(len=24): 00 0e 38 7a 42 da 00 90 4b c6 b4 22 88 8e 01 00 
00 06 02 43 00 06 03 15
EAPOL: SUPP_BE entering state RECEIVE
WPA: EAPOL frame too short, len 46, expecting at least 99

and I always get stuck here :-(

_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar – get it now! 
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/




More information about the HostAP mailing list