Problem with EAP Authentication working not every time
stefan novak
lms.brubaker at gmail.com
Wed Aug 8 09:44:00 CEST 2012
Hello!
we are using freeradius2 version 2.1.10 on a centos/rhel 5 Server. We
authenticate several ubnt clients on ubnt AP's via EAP-PEAP/MSCHAPV2.
This works very well, but sometimes the clients got an Access-Reject and i
don't know why ;(
I set the radius Server to debug mode and get those output:
Waking up in 0.7 seconds.
Waking up in 2.2 seconds.
Waking up in 1.9 seconds.
WARNING:
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
WARNING: !! EAP session for state 0x69522edb6a233743 did not finish!
WARNING: !! Please read http://wiki.freeradius.org/Certificate_Compatibility
WARNING:
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Waking up in 0.3 seconds.
Ready to process requests.
Waking up in 0.9 seconds.
[<thread>] # Executing section authorize from file
/etc/raddb/sites-enabled/default
rlm_sql (sql): Reserving sql socket id: 1
rlm_sql (sql): Released sql socket id: 1
# Executing group from file /etc/raddb/sites-enabled/default
Waking up in 0.9 seconds.
[<thread>] # Executing section authorize from file
/etc/raddb/sites-enabled/default
rlm_sql (sql): Reserving sql socket id: 0
rlm_sql (sql): Released sql socket id: 0
# Executing group from file /etc/raddb/sites-enabled/default
Waking up in 0.9 seconds.
[<thread>] # Executing section authorize from file
/etc/raddb/sites-enabled/default
# Executing group from file /etc/raddb/sites-enabled/default
Waking up in 3.9 seconds.
Waking up in 1.9 seconds.
Waking up in 0.9 seconds.
[<thread>] # Executing section authorize from file
/etc/raddb/sites-enabled/default
# Executing group from file /etc/raddb/sites-enabled/default
rlm_eap: No EAP session matching the State variable.
[eap] Either EAP-request timed out OR EAP-response to an unknown EAP-request
Login incorrect: [m1588a00 at EAP/<via Auth-Type = EAP>] (from client
10.55.0.0/16 port 0 cli 00-27-22-D2-CD-83)
# Executing group from file /etc/raddb/sites-enabled/default
rlm_sql (sql): Reserving sql socket id: 4
rlm_sql (sql): Released sql socket id: 4
Waking up in 0.9 seconds.
The wiki talks about windows clients and decreasing the tunnel MTU. I'm not
sure what they mean.
How can i get a more detailed debug msg on what is actually wrong.
thx for your help
Stefan
__________________
www.epb.at
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120808/a723df6b/attachment.html>
More information about the Freeradius-Users
mailing list