hostapd + freeradius can't connect

Johann jhugo.meraka at gmail.com
Thu May 21 17:13:10 UTC 2015 


On 2015/05/21 10:39 AM, Willem Offermans wrote:
> Dear FreeBSD friends,
>
> Sorry to interrupt here, but I got triggered by this e-mail thread.
>
> Do I understand correctly that it is possible to connect hostapd with
> FreeRadius and OpenLDAP?
Yes.

> Would it be possible to do the authentication of
> wireless access over the ldap server?
Yes

> If yes, do I need FreeRadius to
> intermediate between hostapd and OpenLDAP?
Yes
>
> Is there some documentation around to setup hostapd + OpenLDAP or hostapd +
> FreeRadius + OpenLDAP under FreeBSD?
No

>
> Sorry, to interrp
>
> On Wed, May 20, 2015 at 07:20:33PM +0200, Johann wrote:
>> On 2015/05/20 06:29 PM, Johann wrote:
>>> On 2015/05/16 08:03 AM, Adrian Chadd wrote:
>>>> Hi,
>>>> Has this ever worked?
>>> Yes.
>>>
>>> I got it working in April 2012 on FreeBSD 8 and 9. I've used a
>>> FreeRadius server and a FreeBSD client with wpa_supplicant to test
>>> it.
>>>
>>> At that stage you had to enable the eap_server when you compile hostapd
>>>
>>> # echo HOSTAPD_CFLAGS+=-DEAP_SERVER >> /etc/src.conf
>>> # cd /usr/src/usr.sbin/wpa/hostapd
>>> # make
>>> # make install
>>>
>>> but Bernhard Schmidt fixed it so that EAP_SERVER was enabled by default.
>>>
>>>
>>> Here is the configs that I used:
>>>
>>> rc.conf
>>> hostname="AP-vlan"
>>> wlans_ath0="wlan0"
>>> create_args_wlan0="wlanmode hostap country ZA"
>>> ifconfig_wlan0="146.64.5.5/24 mode 11g channel 6"
>>> defaultrouter="146.64.5.1"
>>> hostapd_enable="YES"
>>> cloned_interfaces="bridge0"
>>> ifconfig_bridge0="addm sis0 addm wlan0 up"
>>> ifconfig_sis0="up"
>>>
>>>
>>> hostapd.conf
>>> interface=wlan0
>>> ctrl_interface=/var/run/hostapd
>>> ctrl_interface_group=wheel
>>> ssid=testAP
>>> hw_mode=g
>>> channel=6
>>>
>>> wpa=1
>>> wpa_pairwise=CCMP TKIP
>>> wpa_key_mgmt=WPA-EAP
>>> wpa_pairwise=TKIP CCMP
>>> rsn_pairwise=CCMP
>>>
>>> Hope it helps
>>>
>>> Regards
>>> Johann
>>> _______________________________________________
>>> freebsd-wireless at freebsd.org mailing list
>>> http://lists.freebsd.org/mailman/listinfo/freebsd-wireless
>>> To unsubscribe, send any mail to
>>> "freebsd-wireless-unsubscribe at freebsd.org"
>>>
>> Looks like this part of hostapd.conf got lost.
>>
>> ieee8021x=1
>> own_ip_addr=146.64.5.5
>> auth_server_addr=146.64.8.25
>> auth_server_port=1812
>> auth_server_shared_secret=same-as-on-freeradius
>>
>> Johann
>>
>> _______________________________________________
>> freebsd-wireless at freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-wireless
>> To unsubscribe, send any mail to "freebsd-wireless-unsubscribe at freebsd.org"

More information about the freebsd-wireless mailing list