0
I successfully set up an enterprise Wi-Fi connection with LDAP authentication by way of FreeRADIUS. I used EAP-TTLS PAP because I have hashed passwords in my OpenLDAP directory.
When I use TKIP wireless encryption for that WPA2 access point, everything goes very well and my Android phone clients connect just normally (until now all clients have just been Android phones).
BUT when I use AES, the clients cannot connect any more, and I don't know why. The log seems very good, and I tried and searched a lot with unfortunately no success.
Here is my FreeRADIUS log: http://pastebin.com/gF1tBGkM
You may ask why I want AES. That is because Microsoft Windows does NOT allow the TKIP algorithm for enterprise WPA2 connections (maybe just to annoy us and make the matter harder).
I tried all the open source free third party software to be able to use the unsupported protocols, but they where all very old and they didn't work, and I am trying to do everything natively without any third party software.
Could anybody help me please to find any solution for that (to get my client connects successfully with AES)?
What AP are you using? – user1686 – 2016-01-23T00:02:12.143
@grawity TP-LINK router, dd-wrt firmware – Mohammed Noureldin – 2016-01-23T00:18:00.417
Which version of Windows? – Ramhound – 2016-01-23T00:40:51.193
@Ramhound Windows 10,
The problem is not just with windows when I switch to AES, android cannot connect with AES as well – Mohammed Noureldin – 2016-01-23T00:45:03.353
By the way, I think you just exposed your LDAP password, and possibly Alice's password. – Spiff – 2016-01-23T03:31:23.097
1Also, WPA2 basically is AES-CCMP. The major reason original WPA was created was to replace WEP encryption with TKIP, and the major reason WPA2 was created was to replace TKIP encryption with AES-CCMP. Microsoft is absolutely doing the right thing by requiring AES-CCMP with WPA2. – Spiff – 2016-01-23T03:38:52.860
@Spiff It is just a test server, I use it to learn. – Mohammed Noureldin – 2016-01-23T10:12:51.443