HI,<br> <br> The freeradius is comunicate with the IAS through a proxy, but dont authenticate.<br> The windows show me this error:<br> <br> "Event type: Error<br> Source: IAS<br> A malformed request was received from client XXXX. The data is the packet."<br> <br> The freeradius debug:<br> <br> modcall[authorize]: module "auth_log" returns ok for request 3<br>    modcall[authorize]: module "chap" returns noop for request 3<br>      rlm_realm: Looking up realm "voip.domain.br" for User-Name = <br> "<a target="_blank" rel="nofollow" _="" href="http://mail.yahoo.com/config/login?/ym/Compose?To=teste@voip.domain.br&YY=78873&order=down&sort=date&pos=0&view=a&head=b"><font color="#003399">teste@voip.domain.br</font></a>"<br>      rlm_realm: Found realm  "DEFAULT"<br>      rlm_realm: Proxying request from user teste to realm DEFAULT<br>      rlm_realm: Adding
 Realm = "DEFAULT"<br>      rlm_realm: Preparing to proxy authentication request to realm <br> "DEFAULT"<br>    modcall[authorize]: module "suffix" returns updated for request 3<br>  rlm_digest: Adding Auth-Type = DIGEST<br>    modcall[authorize]: module "digest" returns ok for request 3<br>  rlm_ldap: - authorize<br>  rlm_ldap: performing user authorization for <a target="_blank" rel="nofollow" _="" href="http://mail.yahoo.com/config/login?/ym/Compose?To=teste@voip.domain.br&YY=78873&order=down&sort=date&pos=0&view=a&head=b"><font color="#003399">teste@voip.domain.br</font></a><br>  radius_xlat:  '(uid=<a target="_blank" rel="nofollow" _="" href="http://mail.yahoo.com/config/login?/ym/Compose?To=teste@voip.domain.br&YY=78873&order=down&sort=date&pos=0&view=a&head=b"><font color="#003399">teste@voip.domain.br</font></a>)'<br>   radius_xlat: 
 'ou=users,dc=voip,dc=domain,dc=br'<br>  rlm_ldap: ldap_get_conn: Checking Id: 0<br>  rlm_ldap: ldap_get_conn: Got Id: 0<br>  rlm_ldap: performing search in ou=users,dc=voip,dc=domain,dc=br, with <br> filter (uid=<a target="_blank" rel="nofollow" _="" href="http://mail.yahoo.com/config/login?/ym/Compose?To=teste@voip.domain.br&YY=78873&order=down&sort=date&pos=0&view=a&head=b"><font color="#003399">teste@voip.domain.br</font></a>)<br>  rlm_ldap: object not found or got ambiguous search result<br>  rlm_ldap: search failed<br>  rlm_ldap: ldap_release_conn: Release Id: 0<br>    modcall[authorize]: module "ldap" returns notfound for request 3<br>  modcall: leaving group authorize (returns notfound) for request 3<br>  Sending Access-Request of id 3 to 10.2.1.XY port 1600<br>          User-Name = "<a target="_blank" rel="nofollow" _=""
 href="http://mail.yahoo.com/config/login?/ym/Compose?To=teste@voip.domain.br&YY=78873&order=down&sort=date&pos=0&view=a&head=b"><font color="#003399">teste@voip.domain.br</font></a>"<br>          Digest-Attributes = 0x0a077465737465<br>          Digest-Attributes = 0x010e766f69702e756662612e6272<br>          Digest-Attributes = <br> 0x022a34353039343233343264313165616336306262366262633263373539643630666362383939656131<br>          Digest-Attributes = 0x04127369703a766f69702e756662612e6272<br>          Digest-Attributes = 0x030a5245474953544552<br>          Digest-Response = "4283445dcb36643dab5f437e10f692bf"<br>          Service-Type =  IAPP-Register<br>
          X-Ascend-PW-Lifetime = 0x7465737465<br>          NAS-IP-Address = 10.2.1.XX<br>          NAS-Port = 5060<br>          Proxy-State = 0x323038<br>  Re-sending Access-Request of id 0 to 10.2.1.XX port 1600<br>          User-Name = "<a target="_blank" rel="nofollow" _="" href="http://mail.yahoo.com/config/login?/ym/Compose?To=teste@voip.domain.br&YY=78873&order=down&sort=date&pos=0&view=a&head=b"><font color="#003399">teste@voip.domain.br</font></a>"<br>          Digest-Attributes = 0x0a077465737465<br>          Digest-Attributes = 0x010e766f69702e756662612e6272<br>          Digest-Attributes =  <br>
 0x022a34353039343233343264313165616336306262366262633263373539643630666362383939656131<br>          Digest-Attributes = 0x04127369703a766f69702e756662612e6272<br>          Digest-Attributes = 0x030a5245474953544552<br>          Digest-Response = "4283445dcb36643dab5f437e10f692bf"<br>          Service-Type = IAPP-Register<br>          X-Ascend-PW-Lifetime = 0x7465737465<br>          NAS-IP-Address = 10.2.1.XX<br>          NAS-Port = 5060<br>          Client-IP-Address = 10.2.1.XX<br>          Realm = "DEFAULT"<br>          Module-Failure-Message = "rlm_ldap: User not  found"<br>
          Realm = "DEFAULT"<br>          Proxy-State = 0x323035<br>  Waking up in 1 seconds...<br>  rad_recv: Access-Request packet from host 10.2.1.XX:33634, id=206, <br> length=200<br>  Ignoring duplicate packet from client OpenSER:33634 - ID: 206, due to <br> outstanding proxied request 1.<br> <br> What is worng? I dont undestand: freeradius and IAS use the same protocol... It is attribute question? Cryptografy?<br> Please any Idea...  a tip…  anybody already had some similar experience?<br> <br> I tried in some ways:<br> <br> <div>|Openser| -> |Freeradius| -> |AD|</div>    <div>|Openser| -> |Radiusclient| -> |IAS| -> |AD|</div>    <div>|Openser| -> |Freeradius| -> |IAS| -> |AD|<br> <br> help!<br> <br> thanks... <br> </div>  <p>
                <hr size=1> 
O Yahoo! está de cara nova. Venha <a href="http://us.rd.yahoo.com/mail/br/tagline/spirit/*http://br.yahoo.com">conferir</a>!