SmartBridges sB3210 User Manual
Page 49
Page 49 of 55
airPoint™ Nexus User Configuration Guide
i n t e l l i g e n t w i r e l e s s p l a t f o r m
At the RADIUS tab for authentication:
Active = Yes
Server IP = 192.168.1.10
Port Number = 1812
Shared Secret = AP_Shared_Secret
6. Test TLS
The final step is to test the server. With Windows XP computer off, start the server in the debug mode
by entering:
/usr/local/radius/sbin/run-radius -X -A
The server should start, displaying various debug information before it displays:
----- Example --------------------------------------------
Listening on IP address *, ports 1812/udp and 1813/udp, with proxy on 1814/udp.
Ready to process requests
----------------------------------------------------------
If you don't see the message, look through the debug information for errors and missing information. If
you see this message, start the Windows XP computer.
When the Windows XP starts, you will see various messages and certificates exchanged between the
client and the server. If all is well, you should see the client authenticated and the user logged on. The
following partial example is from Document 3. It shows the last few lines of a successful
authentication:
----- Example ---------------------------------------------
...
MS-MPPE-Recv-Key = 0xe032765ca06c052e5fe7c2a7534a4252daec44a08505bdb459d4
fa81e70390f2221d2b06071eb0625e0ba67452a890909662
MS-MPPE-Send-Key = 0xe03131ce085bc266127528e749bd4753d3e1702df2d4d8c080351
380f52eae2c24a9fa78015c24e0d140bcd01b23d6c0cacc
EAP-Message = "\003_\000\004"
Message-Authenticator = 0x00000000000000000000000000000000
Finished request 5
Going to the next request
-----------------------------------------------------------
If you see MS-MPPE-Recv-Key and MS-MPPE-Send-Key, the server authenticated the client. You
should be able to surf.
7. Change Server Configuration for PEAP
To change the server for PEAP authentication, only a few changes need to be made.
a. users -- Return to the users file and add the user password:
jbibe User-Password == "My-XP-Password"
b. Radiusd.conf -- Return to the radiusd.conf file and make the following changes: