AW: AW: Basic usage: What do I do next to get this to work?

Bernd s4ndm4n at gmx.de
Wed Oct 31 14:57:48 CET 2007


I think we do.

 

Lately I tried to get PEAP MSCHAPv2 to work. 

 

All settings in conf.s and laptop are made like described in “tutorial for
AD integration”. And I get a response in Debug Mode when I try to connect to
my WLAN. 

It says this:

 

rad_recv: Access-Request packet from host 192.168.1.6:1027, id=171,
length=139

        User-Name = "bnickaes"

        NAS-IP-Address = 192.168.1.6

        NAS-Identifier = "BBi5"

        Framed-MTU = 1496

        Called-Station-Id = "00-19-cb-1f-66-2d:BBi WLAN test"

        Calling-Station-Id = "00-14-a5-3e-a8-ba"

        NAS-Port-Type = Wireless-802.11

        EAP-Message = 0x0201000d01626e69636b616573

        Message-Authenticator = 0x90e3fac9ac07c6554cc915f9084b7e7e

rlm_sql (sql): Reserving sql socket id: 4

rlm_sql_mysql: query:  SELECT id, UserName, Attribute, Value, op
FROM radcheck           WHERE Username = 'bnickaes'           ORDER BY id

rlm_sql_mysql: query:  SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
ck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
usergroup.Username = 'bnickaes' AND usergroup.GroupName =
radgroupcheck.GroupName ORDER BY radgroupcheck.id

rlm_sql_mysql: query:  SELECT id, UserName, Attribute, Value, op
FROM radreply           WHERE Username = 'bnickaes'           ORDER BY id

rlm_sql_mysql: query:  SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgrouprep
ly.Value,radgroupreply.op  FROM radgroupreply,usergroup WHERE
usergroup.Username = 'bnickaes' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id

rlm_sql (sql): Released sql socket id: 4

Warning:  Found 2 auth-types on request for user 'bnickaes'

Sending Access-Challenge of id 171 to 192.168.1.6 port 1027

        EAP-Message = 0x010200061920

        Message-Authenticator = 0x00000000000000000000000000000000

        State = 0xae0040259c6e0027d20f07497ad772e3

rad_recv: Access-Request packet from host 192.168.1.6:1027, id=172,
length=256

        User-Name = "bnickaes"

        NAS-IP-Address = 192.168.1.6

        NAS-Identifier = "BBi5"

        Framed-MTU = 1496

        Called-Station-Id = "00-19-cb-1f-66-2d:BBi WLAN test"

        Calling-Station-Id = "00-14-a5-3e-a8-ba"

        NAS-Port-Type = Wireless-802.11

        EAP-Message =
0x0202007019800000006616030100610100005d0301472883f5c4aedc6e4983d6084e41a67f
7f0241f4463d2d4fd718ccdf9a8123b12008bc4f684a5c373d3851e80c2a33ad09d141a57835
6d335d892ac642491e6dec001600040005000a000900640062000300060013001200630100

        State = 0xae0040259c6e0027d20f07497ad772e3

        Message-Authenticator = 0xa1fa011f6381228ee1c9140adce8c222

rlm_sql (sql): Reserving sql socket id: 3

rlm_sql_mysql: query:  SELECT id, UserName, Attribute, Value, op
FROM radcheck           WHERE Username = 'bnickaes'           ORDER BY id

rlm_sql_mysql: query:  SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
ck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
usergroup.Username = 'bnickaes' AND usergroup.GroupName =
radgroupcheck.GroupName ORDER BY radgroupcheck.id

rlm_sql_mysql: query:  SELECT id, UserName, Attribute, Value, op
FROM radreply           WHERE Username = 'bnickaes'           ORDER BY id

rlm_sql_mysql: query:  SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgrouprep
ly.Value,radgroupreply.op  FROM radgroupreply,usergroup WHERE
usergroup.Username = 'bnickaes' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id

rlm_sql (sql): Released sql socket id: 3

Warning:  Found 2 auth-types on request for user 'bnickaes'

 

The output is much longer -> many attempts, I think

 

So
 I belief this is the problem, but I don’t know how to solve it.

 

Warning:  Found 2 auth-types on request for user 'bnickaes' ?

 

There is an entry “auth-type” in mySQL Database, but I can find only one
auth-type option for my user “bnickaes” there. 

 

 

  _____  

Von: freeradius-users-bounces at lists.freeradius.org
[mailto:freeradius-users-bounces at lists.freeradius.org] Im Auftrag von Doc.
Caliban
Gesendet: Mittwoch, 31. Oktober 2007 13:14
An: FreeRadius users mailing list
Betreff: Re: AW: Basic usage: What do I do next to get this to work?

 

Bernd wrote: 

<snip>

when I just do this: 
 
"Simplest thing for your users with Win XP/Vista would be PEAP. Setup is the
same for wired and wireless. Connection/Properties/click on Authentication
tab/tick enable 802.1x box/select PEAP from the box/click on Properties
button/" and use MSCHAPv2 on configure button it does not work. 
So I tried to create a certificate and import it - still doesn't work -
think the cause is me and my missing experience with Radius. ;)
  


It sounds like we're in the same boat, but you're one step ahead of me.  I
haven't been able to try the latest suggestions yet.  (Probably tomorrow).
I'm hoping to not have to deal with certificates unless it's completely
automated for my users.  Most of them have little or no computer skills
beyond basic usage.

-Doc

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20071031/bc861718/attachment.html>


More information about the Freeradius-Users mailing list