From owner-freebsd-wireless@FreeBSD.ORG Thu May 21 08:41:38 2015 Return-Path: Delivered-To: freebsd-wireless@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 7B815385 for ; Thu, 21 May 2015 08:41:38 +0000 (UTC) Received: from cpsmtpb-ews04.kpnxchange.com (cpsmtpb-ews04.kpnxchange.com [213.75.39.7]) by mx1.freebsd.org (Postfix) with ESMTP id D369918D5 for ; Thu, 21 May 2015 08:41:37 +0000 (UTC) Received: from cpsps-ews07.kpnxchange.com ([10.94.84.174]) by cpsmtpb-ews04.kpnxchange.com with Microsoft SMTPSVC(7.5.7601.17514); Thu, 21 May 2015 10:40:24 +0200 Received: from CPSMTPM-CMT106.kpnxchange.com ([195.121.3.22]) by cpsps-ews07.kpnxchange.com with Microsoft SMTPSVC(7.5.7601.17514); Thu, 21 May 2015 10:40:24 +0200 Received: from donald.offrom.nl ([77.170.60.162]) by CPSMTPM-CMT106.kpnxchange.com over TLS secured channel with Microsoft SMTPSVC(7.0.6002.18264); Thu, 21 May 2015 10:40:22 +0200 Received: from squid (squid.vpn.offrom.nl [10.168.0.72]) by donald.offrom.nl (8.14.9/8.14.9) with ESMTP id t4L8e73i070563 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO); Thu, 21 May 2015 10:40:11 +0200 (CEST) (envelope-from Willem@Offermans.Rompen.nl) Received: from willy by squid with local (Exim 4.80) (envelope-from ) id 1YvM1G-0007tr-DR; Thu, 21 May 2015 10:39:58 +0200 Date: Thu, 21 May 2015 10:39:57 +0200 From: Willem Offermans To: Johann Cc: freebsd-wireless@freebsd.org Subject: Re: hostapd + freeradius can't connect Message-ID: <20150521083957.GB5453@vpn.offrom.nl> Reply-To: Willem@Offermans.Rompen.nl References: <01e701d08d75$fed02bd0$fc708370$@gmail.com> <003c01d08dbe$6018b900$204a2b00$@gmail.com> <555CB658.6040103@gmail.com> <555CC261.8080505@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <555CC261.8080505@gmail.com> User-Agent: Mutt/1.5.21 (2010-09-15) X-Spam-Status: No, score=-1.0 required=5.0 tests=ALL_TRUSTED autolearn=unavailable autolearn_force=no version=3.4.0 X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on donald.offrom.nl X-OriginalArrivalTime: 21 May 2015 08:40:23.0636 (UTC) FILETIME=[C74B4140:01D093A1] X-RcptDomain: freebsd.org X-BeenThere: freebsd-wireless@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: "Discussions of 802.11 stack, tools device driver development." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 May 2015 08:41:38 -0000 Dear FreeBSD friends, Sorry to interrupt here, but I got triggered by this e-mail thread. Do I understand correctly that it is possible to connect hostapd with FreeRadius and OpenLDAP? Would it be possible to do the authentication of wireless access over the ldap server? If yes, do I need FreeRadius to intermediate between hostapd and OpenLDAP? Is there some documentation around to setup hostapd + OpenLDAP or hostapd + FreeRadius + OpenLDAP under FreeBSD? Sorry, to interrp On Wed, May 20, 2015 at 07:20:33PM +0200, Johann wrote: > On 2015/05/20 06:29 PM, Johann wrote: > >On 2015/05/16 08:03 AM, Adrian Chadd wrote: > >>Hi, > >>Has this ever worked? > > > >Yes. > > > >I got it working in April 2012 on FreeBSD 8 and 9. I've used a > >FreeRadius server and a FreeBSD client with wpa_supplicant to test > >it. > > > >At that stage you had to enable the eap_server when you compile hostapd > > > ># echo HOSTAPD_CFLAGS+=-DEAP_SERVER >> /etc/src.conf > ># cd /usr/src/usr.sbin/wpa/hostapd > ># make > ># make install > > > >but Bernhard Schmidt fixed it so that EAP_SERVER was enabled by default. > > > > > >Here is the configs that I used: > > > >rc.conf > >hostname="AP-vlan" > >wlans_ath0="wlan0" > >create_args_wlan0="wlanmode hostap country ZA" > >ifconfig_wlan0="146.64.5.5/24 mode 11g channel 6" > >defaultrouter="146.64.5.1" > >hostapd_enable="YES" > >cloned_interfaces="bridge0" > >ifconfig_bridge0="addm sis0 addm wlan0 up" > >ifconfig_sis0="up" > > > > > >hostapd.conf > >interface=wlan0 > >ctrl_interface=/var/run/hostapd > >ctrl_interface_group=wheel > >ssid=testAP > >hw_mode=g > >channel=6 > > > >wpa=1 > >wpa_pairwise=CCMP TKIP > >wpa_key_mgmt=WPA-EAP > >wpa_pairwise=TKIP CCMP > >rsn_pairwise=CCMP > > > >Hope it helps > > > >Regards > >Johann > >_______________________________________________ > >freebsd-wireless@freebsd.org mailing list > >http://lists.freebsd.org/mailman/listinfo/freebsd-wireless > >To unsubscribe, send any mail to > >"freebsd-wireless-unsubscribe@freebsd.org" > > > Looks like this part of hostapd.conf got lost. > > ieee8021x=1 > own_ip_addr=146.64.5.5 > auth_server_addr=146.64.8.25 > auth_server_port=1812 > auth_server_shared_secret=same-as-on-freeradius > > Johann > > _______________________________________________ > freebsd-wireless@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-wireless > To unsubscribe, send any mail to "freebsd-wireless-unsubscribe@freebsd.org" -- Met vriendelijke groeten, With kind regards, Mit freundlichen Gruessen, De jrus wah, Wiel ************************************* W.K. Offermans