Hello!<br>My provider required 802.1X authorization with dynamic WEP keys for wired network. I've got it from my desktop computer, with next config:<br>##################################<br>### wpa_supplicant_wired.conf
<br>ctrl_interface=/var/run/wpa_supplicant<br>ap_scan=0<br>network={<br> key_mgmt=IEEE8021X WPA-EAP<br> eap=PEAP<br> phase2="auth=MSCHAPV2"<br> identity= (my user)<br> password= (my password)
<br>}<br>##################################<br><br>With command:<br>wpa_supplicant -ieth0 -Dwired -c wpa_supplicant_wired.conf -dd<br><br>After that I compiled wpa_supplicant for my router, and tried to do such thing with router. I got following log:
<br><br>Initializing interface 'vlan1' conf 'wpa_supplicant.conf' driver 'wired' ctrl_interface 'N/A' bridge 'N/A'<br>Configuration file 'wpa_supplicant.conf' -> '/tmp/harddisk/wpa_supplicant.conf'
<br>Reading configuration file '/tmp/harddisk/wpa_supplicant.conf'<br>ctrl_interface='/var/run/wpa_supplicant'<br>ap_scan=0<br>Line: 5 - start of a new network block<br>key_mgmt: 0x9<br>eap methods - hexdump(len=16): 00 00 00 00 19 00 00 00 00 00 00 00 00 00 00 00
<br>phase2 - hexdump_ascii(len=13):<br> XX XX XX XX XX XX XX XX XX XX XX XX auth=MSCHAPV2 <br>identity - hexdump_ascii(len=7):<br> XX XX XX XX XX XX XX aaaaaaa<br>password - hexdump_ascii(len=8): [REMOVED]
<br>Priority group 0<br> id=0 ssid=''<br>Initializing interface (2) 'vlan1'<br>EAPOL: SUPP_PAE entering state DISCONNECTED<br>EAPOL: KEY_RX entering state NO_KEY_RECEIVE<br>EAPOL: SUPP_BE entering state INITIALIZE
<br>EAP: EAP entering state DISABLED<br>EAPOL: External notification - portEnabled=0<br>EAPOL: External notification - portValid=0<br>wpa_driver_wired_init: Added multicast membership with packet socket<br>Own MAC address: 00:15:f2:88:fb:31
<br>Setting scan request: 0 sec 100000 usec<br>Added interface vlan1<br>EAPOL: External notification - portControl=Auto<br>Already associated with a configured network - generating associated event<br>Association info event
<br>State: DISCONNECTED -> ASSOCIATED<br>Associated to a new BSS: BSSID=01:80:c2:00:00:03<br>No keys have been configured - skip key clearing<br>Network configuration found for the current AP<br>WPA: No WPA/RSN IE available from association info
<br>WPA: Set cipher suites based on configuration<br>WPA: Selected cipher suites: group 30 pairwise 24 key_mgmt 9 proto 2<br>WPA: clearing AP WPA IE<br>WPA: clearing AP RSN IE<br>WPA: using GTK CCMP<br>WPA: using PTK CCMP
<br>WPA: using KEY_MGMT 802.1X<br>WPA: Set own WPA IE default - hexdump(len=22): 30 14 01 00 00 0f ac 04 01 00 00 0f ac 04 01 00 00 0f ac 01 00 00<br>EAPOL: External notification - portControl=Auto<br>Associated with 01:80:c2:00:00:03
<br>WPA: Association event - clear replay counter<br>EAPOL: External notification - portEnabled=0<br>EAPOL: External notification - portValid=0<br>EAPOL: External notification - portEnabled=1<br>EAPOL: SUPP_PAE entering state CONNECTING
<br>EAPOL: SUPP_BE entering state IDLE<br>EAP: EAP entering state INITIALIZE<br>EAP: EAP entering state IDLE<br>Cancelling scan request<br>EAPOL: startWhen --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: txStart
<br>TX EAPOL - hexdump(len=4): 01 01 00 00<br>EAPOL: startWhen --> 0<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: txStart<br>TX EAPOL - hexdump(len=4): 01 01 00 00<br>EAPOL: idleWhile --> 0<br>EAP: EAP entering state FAILURE
<br>CTRL-EVENT-EAP-FAILURE EAP authentication failed<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state FAIL<br>EAPOL: SUPP_PAE entering state HELD<br>EAPOL: SUPP_BE entering state IDLE<br>EAPOL: startWhen --> 0
<br>CTRL-EVENT-TERMINATING - signal 2 received<br>Removing interface vlan1<br>State: ASSOCIATED -> DISCONNECTED<br>No keys have been configured - skip key clearing<br>EAPOL: External notification - portEnabled=0<br>EAPOL: SUPP_PAE entering state DISCONNECTED
<br>EAPOL: SUPP_BE entering state INITIALIZE<br>EAP: EAP entering state DISABLED<br>EAPOL: External notification - portValid=0<br>No keys have been configured - skip key clearing<br>Cancelling scan request<br>Cancelling authentication timeout
<br><br><br>I've tried to compare log of router and of desktop, and I found that difference begin from line "EAPOL: idleWhile --> 0". Desktop doesn't have this line. It has "RX EAPOL from 00:15:62:a3:53:86".
<br><br>I cannot understand, why it happens on router. I am using the same configuration of wpa_supplicant, the same configuration of compilation (exclude options for CC compiler). <br>Where is the problem?<br>