Perl/Peap-MSChapV2 Issues
tnt at kalik.net
tnt at kalik.net
Thu Mar 19 23:13:57 CET 2009
>Ok, I've made a little progress. The perl script is now being called
>correctly and returning the correct data. There seems to be something
>else now.
>
Yes, there is something else.
>I added DEFAULT Auth-Type = Perl Fall-Through = 1 to users, I think
>that's what you were wanting.
Fine. Only you haven't listed files in inner-tunnel, so this is never
used.
>
>
>Inner-tunnel authorize
>------------------------------
>Authorize {
>
> Mschap
> Suffix
> Update control {
> Proxy-To-Realm := LOCAL
> }
Remove that.
> Eap {
> Ok=return
> }
> Perl
> Expiration
> Logintime
> Pap
>}
>
..
>perl_pool: item 0x8192020 asigned new request. Handled so far: 1
>found interpetator at address 0x8192020
>rlm_perl: Added pair User-Name = testUser
>rlm_perl: Added pair EAP-Message = 0x0207000d016c6a61636b736f6e
>rlm_perl: Added pair EAP-Type = Identity
>rlm_perl: Added pair FreeRADIUS-Proxied-To = 127.0.0.1
>rlm_perl: Added pair Filter-Id = Enterasys:version=1:policy=CCP_Student
>rlm_perl: Added pair Cleartext-Password = password09
>rlm_perl: Added pair Proxy-To-Realm = LOCAL
>rlm_perl: Added pair EAP-Type = MS-CHAP-V2
>perl_pool total/active/spare [64/0/64]
>Unreserve perl at address 0x8192020
>++[perl] returns ok
>++[expiration] returns noop
>++[logintime] returns noop
>rlm_pap: No clear-text password in the request. Not performing PAP.
>++[pap] returns noop
>auth: type Local
This is breaking EAP. Remove forcing Auth-Type Local.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list