|
楼主 |
发表于 2008-6-30 17:54:12
|
显示全部楼层
conf文件如下:
network_list = all
default_netname = default
# EAP request identity messages may contain a network id field in it. This
# network ID can be useful for determining a network name on wired networks.
# For wireless networks, this ID usually matches the SSID so leaving it
# enabled is a good idea unless you have a reason not to.
# use_eap_hints = yes
logfile = /var/log/xsupplicant.log
default
{
type = wired
association_type = open
allow_types = eap-peap
identity = "beijing_domain/cloudiness"
eap-peap {
# inner_id = my_inner_id
# user_cert = /path/to/certificate
# As in tls, define either a root certificate or a directory
# containing root certificates.
#root_cert = /path/to/root/certificate
# root_dir = /path/to/root/certificate/dir
# crl_dir = /path/to/dir/with/crl
# user_key = /path/to/private/key
# user_key_pass = "password for key"
root_cert = NONE
chunk_size = 1398
random_file = /dev/urandom
cncheck = myradius.radius.com # Verify the server certificate
# has this value in it's CN field.
cnexact = yes # Should it be an exact match?
session_resume = yes
proper_peap_v1_keying = yes # Many RADIUS servers use the
# wrong string constant to dervie
# the keying material. Setting
# this to 'yes' will cause
# xsupplicant to use the value
# defined in the internet draft
# instead of the wrong one. The
# default is to use the wrong
# constant, since that is what
# most RADIUS servers do.
#Currently 'all' is just mschapv2
#If no allow_types is defined, all is assumed
#allow_types = all # where all = MSCHAPv2, MD5, OTP, GTC, SIM
allow_types = eap-mschapv2
# When doing EAP MS-CHAPv2 you need a password, or an ntpwdhash. If you
# have both, Xsupplicant will try to use the ntpwdhash.
eap-mschapv2 {
username = "beijing_domain/cloudiness"
# ntpwdhash = E653E6452753C97E46792567DFF599B6
password = "111111"
}
}
} |
|