| eap peap query | <– Date –> <– Thread –> |
From: Avinash Agarwal (aagarwal GoRemote.com)
|
|
| Date: Fri, 3 Sep 2004 08:39:51 -0400 (EDT) | |
Hello All, I'm implementing EAP PEAP on my radius server and was unsure on what keys are used on the server side to encrypt and sign the TLS app data for PEAP phase-2 msg exchanges. I'm using the 16 byte server_write_key and 16 byte server_write_mac for encryption and signing respectively. I enabled the eap logging on the client side and see the following log ###################################### [1200] 18:05:52:122: Successfully negotiated TLS with following parametersdwProtocol = 0x80, Cipher= 0x6801, CipherStrength=0x80, Hash=0x8003 [1200] 18:05:52:122: PeapGetTunnelProperties done [1200] 18:05:52:122: PeapClientDecryptTunnelData [1200] 18:05:52:122: IsDuplicatePacket [1200] 18:05:52:122: PeapDecryptTunnelData dwSizeofData = 0x1a, pData = 0x46e4d64 [1200] 18:05:52:122: PeapDecryptTunnelData completed with status 0x8009030f [1200] 18:05:52:122: Failed to decrypt packet. [1200] 18:05:52:122: PeapDecryptTunnelData failed: silently discarding packet [1200] 18:05:52:122: EapPeapCMakeMessage done [1200] 18:05:52:122: EapPeapMakeMessage done ###################################### Could someone tell me if the above keys are the correct ones? Regards, Avinash
- (no other messages in thread)
Results generated by Tiger Technologies using MHonArc.