About the EAP-AKA
wanqingsong_1983 at 126.com
Fri Oct 7 22:07:32 EDT 2011
在 2011-10-02 01:57:05，"Jouni Malinen" <j at w1.fi> 写道：
>On Fri, Sep 30, 2011 at 02:56:57PM +0800, 万青松 wrote: >> I just make the hostapd as an Authentication server to test the EAP-AKA. >> In the hlr_auc_gw.milenage_db there's some parameters, such as IMSI Ki OPc AMF SQN. >> #232010000000000 90dca4eda45b53cf0f12d7c9c3bc6a89 cb9cccc4b9258e6dca4760379fb82581 61df 000000000000 >> I've got an USIM card and its IMSI, but can not get the others. >> Maybe the "Ki OPc AMF SQN" should not be changed, only change the IMSI ? > >Is that a test USIM card? The Milenage implementation in hlr_auc_gw >depends on you knowing the parameters to allow matching UMTS >authentication to be implemented. If you do not have this type of >parameters for the USIM card, you cannot use it in tests with >hlr_auc_gw.>
The one which I tested is not a "test card". Do you mean that I should know the "IMSI Ki OPc AMF SQN" all the five parameters about the USIM card? That could be a BIG problem. Anyone know how to get these parameters?
>> And another issue is the hostapd.eap_user. This is my configuration: >> #"cisco"* AKA >> The "cisco" is the radius user name. >> Is there something wrong?> >Is that like commented out ('#') on purpose? In addition, EAP-AKA user >names are normal used with a special prefix (0, 2, or 4) to indicate >which identity type is being used.
Yes, the "#" is for comment purpose. If I do not add a special prefix in the EAP-AKA user name, will the authentication success? If the user name is "cisco", please give me a example for how to set the configuration file. Thanks!
>>-- >Jouni Malinen PGP id EFC895FA >_______________________________________________ >HostAP mailing list>HostAP at lists.shmoo.com >http://lists.shmoo.com/mailman/listinfo/hostap
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the HostAP