<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman, new york, times, serif;font-size:10pt">Hi list ,<br><br>I am still have problem with the radwho , i will show you the out put of radiusd -X and some Access-Requests and Accounting-Requests. My Ap (3Com 7250) has the option for accounting and i have enable it. However when i try to do radwho i get this: " radwho: Error reading /usr/local/var/log/radius/radutmp: No such file or directory "<br><div><br>Is there something i have to configure in the radiusd.conf file to make radwho work ? Or just my AP (Access Point) doesn't provide to the freeradius the necessary information in the Acct-Request packets ? <br><br>Starting - reading configuration files ...<br>reread_config: reading radiusd.conf<br>Config: including file: /usr/local/etc/raddb/proxy.conf<br>Config: including file:
/usr/local/etc/raddb/clients.conf<br>Config: including file: /usr/local/etc/raddb/snmp.conf<br>Config: including file: /usr/local/etc/raddb/eap.conf<br>Config: including file: /usr/local/etc/raddb/sql.conf<br> main: prefix = "/usr/local"<br> main: localstatedir = "/usr/local/var"<br> main: logdir = "/usr/local/var/log/radius"<br> main: libdir = "/usr/local/lib"<br> main: radacctdir = "/usr/local/var/log/radius/radacct"<br> main: hostname_lookups = no<br> main: max_request_time = 30<br> main: cleanup_delay = 5<br> main: max_requests = 1024<br> main: delete_blocked_requests = 0<br> main: port = 0<br> main: allow_core_dumps = no<br> main: log_stripped_names = no<br> main: log_file = "/usr/local/var/log/radius/radius.log"<br> main: log_auth = no<br> main: log_auth_badpass = no<br> main: log_auth_goodpass = no<br> main: pidfile =
"/usr/local/var/run/radiusd/radiusd.pid"<br> main: bind_address = 10.0.0.15 IP address [10.0.0.15]<br> main: user = "(null)"<br> main: group = "(null)"<br> main: usercollide = no<br> main: lower_user = "no"<br> main: lower_pass = "no"<br> main: nospace_user = "no"<br> main: nospace_pass = "no"<br> main: checkrad = "/usr/local/sbin/checkrad"<br> main: proxy_requests = yes<br> proxy: retry_delay = 5<br> proxy: retry_count = 3<br> proxy: synchronous = no<br> proxy: default_fallback = yes<br> proxy: dead_time = 120<br> proxy: post_proxy_authorize = no<br> proxy: wake_all_if_all_dead = no<br> security: max_attributes = 200<br> security: reject_delay = 1<br> security: status_server = no<br> main: debug_level = 0<br>read_config_files: reading dictionary<br>read_config_files: reading naslist<br>Using deprecated naslist file. Support for this will go away
soon.<br>read_config_files: reading clients<br>read_config_files: reading realms<br>radiusd: entering modules setup<br>Module: Library search path is /usr/local/lib<br>Module: Loaded exec <br> exec: wait = yes<br> exec: program = "(null)"<br> exec: input_pairs = "request"<br> exec: output_pairs = "(null)"<br> exec: packet_type = "(null)"<br>rlm_exec: Wait=yes but no output defined. Did you mean output=none?<br>Module: Instantiated exec (exec) <br>Module: Loaded expr <br>Module: Instantiated expr (expr) <br>Module: Loaded MS-CHAP <br> mschap: use_mppe = no<br> mschap: require_encryption = yes<br> mschap: require_strong = yes<br> mschap: with_ntdomain_hack = yes<br> mschap: passwd = "(null)"<br> mschap: ntlm_auth = "(null)"<br>Module: Instantiated mschap (mschap) <br>Module: Loaded eap <br> eap: default_eap_type = "peap"<br> eap: timer_expire = 60<br> eap: ignore_unknown_eap_types =
no<br> eap: cisco_accounting_username_bug = no<br> tls: rsa_key_exchange = no<br> tls: dh_key_exchange = yes<br> tls: rsa_key_length = 512<br> tls: dh_key_length = 512<br> tls: verify_depth = 0<br> tls: CA_path = "(null)"<br> tls: pem_file_type = yes<br> tls: private_key_file = "/usr/local/etc/raddb/certs/server_keycert.pem"<br> tls: certificate_file = "/usr/local/etc/raddb/certs/server_keycert.pem"<br> tls: CA_file = "/usr/local/etc/raddb/certs/demoCA/cacert.pem"<br> tls: private_key_password = "whatever"<br> tls: dh_file = "/usr/local/etc/raddb/certs/dh"<br> tls: random_file = "/usr/local/etc/raddb/certs/random"<br> tls: fragment_size = 1024<br> tls: include_length = yes<br> tls: check_crl = no<br> tls: check_cert_cn = "(null)"<br> tls: cipher_list = "(null)"<br> tls: check_cert_issuer = "(null)"<br>rlm_eap_tls: Loading the certificate file as a chain<br>rlm_eap: Loaded
and initialized type tls<br> peap: default_eap_type = "mschapv2"<br> peap: copy_request_to_tunnel = yes<br> peap: use_tunneled_reply = no<br> peap: proxy_tunneled_request_as_eap = yes<br>rlm_eap: Loaded and initialized type peap<br> mschapv2: with_ntdomain_hack = no<br>rlm_eap: Loaded and initialized type mschapv2<br>Module: Instantiated eap (eap) <br>Module: Loaded preprocess <br> preprocess: huntgroups = "/usr/local/etc/raddb/huntgroups"<br> preprocess: hints = "/usr/local/etc/raddb/hints"<br> preprocess: with_ascend_hack = no<br> preprocess: ascend_channels_per_line = 23<br> preprocess: with_ntdomain_hack = no<br> preprocess: with_specialix_jetstream_hack = no<br> preprocess: with_cisco_vsa_hack = no<br> preprocess: with_alvarion_vsa_hack = no<br>Module: Instantiated preprocess (preprocess) <br>Module: Loaded files <br> files: usersfile = "/usr/local/etc/raddb/users"<br> files: acctusersfile =
"/usr/local/etc/raddb/acct_users"<br> files: preproxy_usersfile = "/usr/local/etc/raddb/preproxy_users"<br> files: compat = "no"<br>Module: Instantiated files (files) <br>Module: Loaded Acct-Unique-Session-Id <br> acct_unique: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"<br>Module: Instantiated acct_unique (acct_unique) <br>Module: Loaded realm <br> realm: format = "suffix"<br> realm: delimiter = "@"<br> realm: ignore_default = no<br> realm: ignore_null = no<br>Module: Instantiated realm (suffix) <br>Module: Loaded detail <br> detail: detailfile = "/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d"<br> detail: detailperm = 384<br> detail: dirperm = 493<br> detail: locking = no<br>Module: Instantiated detail (detail) <br>Module: Loaded radutmp <br> radutmp: filename = "/usr/local/var/log/radius/radutmp"<br> radutmp: username =
"%{User-Name}"<br> radutmp: case_sensitive = yes<br> radutmp: check_with_nas = yes<br> radutmp: perm = 384<br> radutmp: callerid = yes<br>Module: Instantiated radutmp (radutmp) <br>Listening on authentication 10.0.0.15:1812<br>Listening on accounting 10.0.0.15:1813<br>Ready to process requests.<br>rad_recv: Access-Request packet from host 10.0.0.10:1408, id=198, length=138<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> EAP-Message = 0x0201000f0161706f6c7978726f6e6f<br> Message-Authenticator = 0x47cc3024d51fb19485e90cd52962ad61<br> Processing the authorize section
of radiusd.conf<br>modcall: entering group authorize for request 0<br> modcall[authorize]: module "preprocess" returns ok for request 0<br> rlm_eap: EAP packet type response id 1 length 15<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 0<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 0<br>modcall: leaving group authorize (returns updated) for request 0<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 0<br> rlm_eap: EAP Identity<br> rlm_eap: processing type tls<br> rlm_eap_tls: Initiate<br> rlm_eap_tls: Start returned 1<br> modcall[authenticate]:
module "eap" returns handled for request 0<br>modcall: leaving group authenticate (returns handled) for request 0<br>Sending Access-Challenge of id 198 to 10.0.0.10 port 1408<br> Reply-Message = "Welcome , %u"<br> EAP-Message = 0x010200061920<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x234c381b5cc68119faa7499b3cb59fee<br>Finished request 0<br>Going to the next request<br>--- Walking the entire request list ---<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1409, id=199, length=253<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id =
"000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State = 0x234c381b5cc68119faa7499b3cb59fee<br> EAP-Message = 0x0202007019800000006616030100610100005d0301459c110f9b82999f23a84db7a26eb27c0b9c6711dd4390cdfbf5c2db4aa57bec2050182aa819b8b58cd0adaeb387a3a622e8709999ff8180a08b02ddb68a7f6840001600040005000a000900640062000300060013001200630100<br> Message-Authenticator = 0x433ccf5b0655d036f762b73192f98553<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 1<br> modcall[authorize]: module "preprocess" returns ok for request 1<br> rlm_eap: EAP packet type response id 2 length 112<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 1<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry
apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 1<br>modcall: leaving group authorize (returns updated) for request 1<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 1<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br> rlm_eap_tls: processing TLS<br>rlm_eap_tls: Length Included<br> eaptls_verify returned 11 <br> (other): before/accept initialization <br> TLS_accept: before/accept initialization <br> rlm_eap_tls: <<< TLS 1.0 Handshake [length 0061], ClientHello <br> TLS_accept: SSLv3 read client hello A <br> rlm_eap_tls: >>> TLS 1.0 Handshake [length 004a],
ServerHello <br> TLS_accept: SSLv3 write server hello A <br> rlm_eap_tls: >>> TLS 1.0 Handshake [length 05c7], Certificate <br> TLS_accept: SSLv3 write certificate A <br> rlm_eap_tls: >>> TLS 1.0 Handshake [length 0004], ServerHelloDone <br> TLS_accept: SSLv3 write server done A <br> TLS_accept: SSLv3 flush data <br> TLS_accept:error in SSLv3 read client certificate A <br>rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)<br>In SSL Handshake Phase <br>In SSL Accept mode <br> eaptls_process returned 13 <br> rlm_eap_peap: EAPTLS_HANDLED<br> modcall[authenticate]: module "eap" returns handled for request 1<br>modcall: leaving group authenticate (returns handled) for request 1<br>Sending Access-Challenge of id 199 to 10.0.0.10 port 1409<br> Reply-Message = "Welcome , %u"<br>
EAP-Message = 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<br> EAP-Message =
0x706f6c7978726f6e6f407961686f6f2e636f2e756b301e170d3036313232393134353531305a170d3037313232393134353531305a308198310b3009060355040613024752310f300d06035504081306416368616961310e300c060355040713055061747261310c300a060355040a130365636531123010060355040b13096563652e63736c6162311f301d0603550403131661706f6c7978726f6e6f322e64796e646e732e6f72673125302306092a864886f70d010901161661706f6c7978726f6e6f407961686f6f2e636f2e756b30819f300d06092a864886f70d010101050003818d0030818902818100c9fb97cf2d9a82ed3ab81aebddf5b1e7<br> EAP-Message =
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<br> EAP-Message =
0x47e3aa91c4a7c62d855ebefbb225c270321d32ce654de2912e25c66095225ba00c3a0bd8000307308203033082026ca003020102020100300d06092a864886f70d0101050500308188310b3009060355040613024752310f300d06035504081306416368616961310c300a060355040a130365636531123010060355040b13096563652e63736c6162311f301d0603550403131661706f6c7978726f6e6f322e64796e646e732e6f72673125302306092a864886f70d010901161661706f6c7978726f6e6f407961686f6f2e636f2e756b301e170d3036313232393134343730345a170d3039313232383134343730345a308188310b30090603550406<br> EAP-Message = 0x13024752310f300d0603550408130641636861696131<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0xda4ab1c620d6543d234fea807c3610fd<br>Finished request 1<br>Going to the next request<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1410, id=200, length=147<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type =
Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State = 0xda4ab1c620d6543d234fea807c3610fd<br> EAP-Message = 0x020300061900<br> Message-Authenticator = 0xb2c20697f1b00778ece132668b102f09<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 2<br> modcall[authorize]: module "preprocess" returns ok for request 2<br> rlm_eap: EAP packet type response id 3 length 6<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 2<br> users: Matched entry DEFAULT at line 155<br>
users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 2<br>modcall: leaving group authorize (returns updated) for request 2<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 2<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br> rlm_eap_tls: processing TLS<br>rlm_eap_tls: Received EAP-TLS ACK message<br> rlm_eap_tls: ack handshake fragment handler<br> eaptls_verify returned 1 <br> eaptls_process returned 13 <br> rlm_eap_peap: EAPTLS_HANDLED<br> modcall[authenticate]: module "eap" returns handled for request 2<br>modcall: leaving group authenticate (returns handled) for request 2<br>Sending Access-Challenge of id 200 to 10.0.0.10
port 1410<br> Reply-Message = "Welcome , %u"<br> EAP-Message = 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<br> EAP-Message =
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<br> EAP-Message = 0x552ebd7278944fa0618f2f18622a0961279cce8b46d7def9fe29728f1abcacb913c9d0fba7f5f416030100040e000000<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0xe5971a6cf703ba3d34e50a5601826968<br>Finished request 2<br>Going to the next request<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1411, id=201, length=333<br> NAS-IP-Address
= 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State = 0xe5971a6cf703ba3d34e50a5601826968<br> EAP-Message = 0x020400c01980000000b61603010086100000820080940d782ad49cef7da548211b2c6775484f6be3b48f45bc5c2bde617b77263903ceec02088ff173c3f35faa83d3df22947969a7744b08374c00f453ac0d3c3e355416136ab709d25db736b0ab88d57f98ced91b799a1f86fe29c00d5efc2339946745d8ae5bcf52d46f28ac95b7085e20ffc3406d2e7cd460c727eb99806f472b1403010001011603010020aa06319174db144f78daf52ca226c3812f18c1c8e066e6880307700708bf4508<br> Message-Authenticator = 0x73d01bd8b079e8bc0d49909e2cb39700<br> Processing the authorize section of
radiusd.conf<br>modcall: entering group authorize for request 3<br> modcall[authorize]: module "preprocess" returns ok for request 3<br> rlm_eap: EAP packet type response id 4 length 192<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 3<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 3<br>modcall: leaving group authorize (returns updated) for request 3<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 3<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br>
rlm_eap_tls: processing TLS<br>rlm_eap_tls: Length Included<br> eaptls_verify returned 11 <br> rlm_eap_tls: <<< TLS 1.0 Handshake [length 0086], ClientKeyExchange <br> TLS_accept: SSLv3 read client key exchange A <br> rlm_eap_tls: <<< TLS 1.0 ChangeCipherSpec [length 0001] <br> rlm_eap_tls: <<< TLS 1.0 Handshake [length 0010], Finished <br> TLS_accept: SSLv3 read finished A <br> rlm_eap_tls: >>> TLS 1.0 ChangeCipherSpec [length 0001] <br> TLS_accept: SSLv3 write change cipher spec A <br> rlm_eap_tls: >>> TLS 1.0 Handshake [length 0010], Finished <br> TLS_accept: SSLv3 write finished A <br> TLS_accept: SSLv3 flush data <br> (other): SSL negotiation finished successfully <br>rlm_eap: SSL error error:00000000:lib(0):func(0):reason(0)<br>SSL Connection
Established <br> eaptls_process returned 13 <br> rlm_eap_peap: EAPTLS_HANDLED<br> modcall[authenticate]: module "eap" returns handled for request 3<br>modcall: leaving group authenticate (returns handled) for request 3<br>Sending Access-Challenge of id 201 to 10.0.0.10 port 1411<br> Reply-Message = "Welcome , %u"<br> EAP-Message = 0x010500311900140301000101160301002092640e9bc3fcce865c35b8528a7f206a309454b72226f26d8d107e3a0cb7a755<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0xa5a5d4a87f265e058a85b60ce58a7cb6<br>Finished request 3<br>Going to the next request<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1412, id=202, length=147<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU =
1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State = 0xa5a5d4a87f265e058a85b60ce58a7cb6<br> EAP-Message = 0x020500061900<br> Message-Authenticator = 0x1e3917b24041754e476563660eb4c159<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 4<br> modcall[authorize]: module "preprocess" returns ok for request 4<br> rlm_eap: EAP packet type response id 5 length 6<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 4<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module
"files" returns ok for request 4<br>modcall: leaving group authorize (returns updated) for request 4<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 4<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br> rlm_eap_tls: processing TLS<br>rlm_eap_tls: Received EAP-TLS ACK message<br> rlm_eap_tls: ack handshake is finished<br> eaptls_verify returned 3 <br> eaptls_process returned 3 <br> rlm_eap_peap: EAPTLS_SUCCESS<br> modcall[authenticate]: module "eap" returns handled for request 4<br>modcall: leaving group authenticate (returns handled) for request 4<br>Sending Access-Challenge of id 202 to 10.0.0.10 port 1412<br> Reply-Message = "Welcome , %u"<br>
EAP-Message = 0x0106002019001703010015a5e4c6ef8df54c0af887510e0c454fc9c925240453<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x6f3444032f54184c98c36e48843a19fb<br>Finished request 4<br>Going to the next request<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1413, id=203, length=179<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State = 0x6f3444032f54184c98c36e48843a19fb<br> EAP-Message = 0x020600261900170301001b1ac5bbbeeaf972dfe254c4d9d8994af2df354179c44d399937a9a8<br>
Message-Authenticator = 0xe9929230d068c0cfb686d1edc0254c24<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 5<br> modcall[authorize]: module "preprocess" returns ok for request 5<br> rlm_eap: EAP packet type response id 6 length 38<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 5<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 5<br>modcall: leaving group authorize (returns updated) for request 5<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 5<br> rlm_eap: Request found, released from the list<br> rlm_eap:
EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br> rlm_eap_tls: processing TLS<br> eaptls_verify returned 7 <br> rlm_eap_tls: Done initial handshake<br> eaptls_process returned 7 <br> rlm_eap_peap: EAPTLS_OK<br> rlm_eap_peap: Session established. Decoding tunneled attributes.<br> rlm_eap_peap: Identity - apolyxrono<br> rlm_eap_peap: Tunneled data is valid.<br> PEAP: Got tunneled identity of apolyxrono<br> PEAP: Setting default EAP type for tunneled EAP session.<br> PEAP: Setting User-Name to apolyxrono<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 5<br> modcall[authorize]: module "preprocess" returns ok for request 5<br> rlm_eap: EAP packet type response id 6 length 15<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap"
returns updated for request 5<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 5<br>modcall: leaving group authorize (returns updated) for request 5<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 5<br> rlm_eap: EAP Identity<br> rlm_eap: processing type mschapv2<br>rlm_eap_mschapv2: Issuing Challenge<br> modcall[authenticate]: module "eap" returns handled for request 5<br>modcall: leaving group authenticate (returns handled) for request 5<br> PEAP: Got tunneled Access-Challenge<br> modcall[authenticate]: module "eap" returns handled for request 5<br>modcall: leaving group authenticate (returns handled) for request 5<br>Sending Access-Challenge of id 203 to
10.0.0.10 port 1413<br> Reply-Message = "Welcome , %u"<br> EAP-Message = 0x0107003b19001703010030bf95008eecd47ff31262d612d1974351e866dc9784d2bf0c90ee40b9878d1a2d53f184267dee7c301bcf369f5290042e<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x217d9fd513bdaefaf143de9dd53e661c<br>Finished request 5<br>Going to the next request<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1414, id=204, length=233<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State =
0x217d9fd513bdaefaf143de9dd53e661c<br> EAP-Message = 0x0207005c1900170301005142250a1eb7f636498a5f6402e9d43b70c634ef5ece8bd44c67dd9b0b3b5d300d5571bb362d4629003f5eee3bb00bb17ea98d3706a7016e0956a9964f1abf1166fca19ff1bff4073b5ba57e164c054902ca<br> Message-Authenticator = 0x3c8d531291a8cce0e8cd9cbd6483281e<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 6<br> modcall[authorize]: module "preprocess" returns ok for request 6<br> rlm_eap: EAP packet type response id 7 length 92<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 6<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 6<br>modcall: leaving group authorize (returns updated)
for request 6<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 6<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br> rlm_eap_tls: processing TLS<br> eaptls_verify returned 7 <br> rlm_eap_tls: Done initial handshake<br> eaptls_process returned 7 <br> rlm_eap_peap: EAPTLS_OK<br> rlm_eap_peap: Session established. Decoding tunneled attributes.<br> rlm_eap_peap: EAP type mschapv2<br> rlm_eap_peap: Tunneled data is valid.<br> PEAP: Setting User-Name to apolyxrono<br> PEAP: Adding old state with 97 52<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 6<br> modcall[authorize]: module "preprocess"
returns ok for request 6<br> rlm_eap: EAP packet type response id 7 length 69<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 6<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 6<br>modcall: leaving group authorize (returns updated) for request 6<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 6<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/mschapv2<br> rlm_eap: processing type mschapv2<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group MS-CHAP for request 6<br> rlm_mschap: Told to do MS-CHAPv2 for
apolyxrono with NT-Password<br> modcall[authenticate]: module "mschap" returns ok for request 6<br>modcall: leaving group MS-CHAP (returns ok) for request 6<br>MSCHAP Success <br> modcall[authenticate]: module "eap" returns handled for request 6<br>modcall: leaving group authenticate (returns handled) for request 6<br> PEAP: Got tunneled Access-Challenge<br> modcall[authenticate]: module "eap" returns handled for request 6<br>modcall: leaving group authenticate (returns handled) for request 6<br>Sending Access-Challenge of id 204 to 10.0.0.10 port 1414<br> Reply-Message = "Welcome , %u"<br> EAP-Message = 0x0108004a1900170301003f2f9e49443ff7ee46c8e5ffe8a2e92ef9306fdae10f5465276e42faa291bdc286c3b07291242c2c79dac47c1cefaf93b4e2595e87dd9604d6b97e3df8e789f9<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x3199fe744bdd4d6520d40c3aa9d0b14f<br>Finished
request 6<br>Going to the next request<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1415, id=205, length=170<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State = 0x3199fe744bdd4d6520d40c3aa9d0b14f<br> EAP-Message = 0x0208001d1900170301001205ab33d832d8bc53b98060e66dc86305eb2d<br> Message-Authenticator = 0xcbc6bab94afd70655df82f4376410ccc<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 7<br> modcall[authorize]: module "preprocess" returns ok for request 7<br>
rlm_eap: EAP packet type response id 8 length 29<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 7<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 7<br>modcall: leaving group authorize (returns updated) for request 7<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 7<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br> rlm_eap_tls: processing TLS<br> eaptls_verify returned 7 <br> rlm_eap_tls: Done initial handshake<br> eaptls_process returned 7 <br>
rlm_eap_peap: EAPTLS_OK<br> rlm_eap_peap: Session established. Decoding tunneled attributes.<br> rlm_eap_peap: EAP type mschapv2<br> rlm_eap_peap: Tunneled data is valid.<br> PEAP: Setting User-Name to apolyxrono<br> PEAP: Adding old state with 91 96<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 7<br> modcall[authorize]: module "preprocess" returns ok for request 7<br> rlm_eap: EAP packet type response id 8 length 6<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 7<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 7<br>modcall: leaving group authorize (returns updated) for request 7<br> rad_check_password: Found
Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 7<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/mschapv2<br> rlm_eap: processing type mschapv2<br> rlm_eap: Freeing handler<br> modcall[authenticate]: module "eap" returns ok for request 7<br>modcall: leaving group authenticate (returns ok) for request 7<br>radius_xlat: 'Welcome , apolyxrono'<br> PEAP: Tunneled authentication was successful.<br> rlm_eap_peap: SUCCESS<br> modcall[authenticate]: module "eap" returns handled for request 7<br>modcall: leaving group authenticate (returns handled) for request 7<br>Sending Access-Challenge of id 205 to 10.0.0.10 port 1415<br> Reply-Message = "Welcome , %u"<br> EAP-Message = 0x010900261900170301001bc78ceb72a50f9f225f6367014d4d16aa2decfbd89251db50f6911c<br>
Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x2dbeeebf66adfa7162cb48fcca366dc8<br>Finished request 7<br>Going to the next request<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 10.0.0.10:1416, id=206, length=179<br> NAS-IP-Address = 10.0.0.10<br> NAS-Port-Type = Wireless-802.11<br> NAS-Port = 1<br> Framed-MTU = 1400<br> User-Name = "apolyxrono"<br> Calling-Station-Id = "00166f122595"<br> Called-Station-Id = "000d545c4190"<br> NAS-Identifier = "3Com Access Point"<br> State = 0x2dbeeebf66adfa7162cb48fcca366dc8<br> EAP-Message = 0x020900261900170301001bb2aa704bedf0387c6419429b7adae92b476fc1df7c8cf339d09ed1<br> Message-Authenticator = 0xb006210dadcffc92b4807279b50f58f1<br> Processing the authorize section
of radiusd.conf<br>modcall: entering group authorize for request 8<br> modcall[authorize]: module "preprocess" returns ok for request 8<br> rlm_eap: EAP packet type response id 9 length 38<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 8<br> users: Matched entry DEFAULT at line 155<br> users: Matched entry apolyxrono at line 220<br> modcall[authorize]: module "files" returns ok for request 8<br>modcall: leaving group authorize (returns updated) for request 8<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 8<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/peap<br> rlm_eap: processing type peap<br> rlm_eap_peap: Authenticate<br>
rlm_eap_tls: processing TLS<br> eaptls_verify returned 7 <br> rlm_eap_tls: Done initial handshake<br> eaptls_process returned 7 <br> rlm_eap_peap: EAPTLS_OK<br> rlm_eap_peap: Session established. Decoding tunneled attributes.<br> rlm_eap_peap: Received EAP-TLV response.<br> rlm_eap_peap: Tunneled data is valid.<br> rlm_eap_peap: Success<br> rlm_eap: Freeing handler<br> modcall[authenticate]: module "eap" returns ok for request 8<br>modcall: leaving group authenticate (returns ok) for request 8<br>radius_xlat: 'Welcome , apolyxrono'<br>Sending Access-Accept of id 206 to 10.0.0.10 port 1416<br> Reply-Message = "Welcome , apolyxrono"<br> MS-MPPE-Recv-Key = 0x4f07bfd7b31f4bcf95c4537ee9dd4054b6ed23c353b8dfa380a1bee24b059371<br> MS-MPPE-Send-Key = 0x9b6219695728c1cf01e13abd0e73b2e08b52e5ceeaec910669d8cac5a5100657<br> EAP-Message =
0x03090004<br> Message-Authenticator = 0x00000000000000000000000000000000<br> User-Name = "apolyxrono"<br>Finished request 8<br>Going to the next request<br>Waking up in 6 seconds...<br>--- Walking the entire request list ---<br>Cleaning up request 0 ID 198 with timestamp 459c110c<br>Cleaning up request 1 ID 199 with timestamp 459c110c<br>Cleaning up request 2 ID 200 with timestamp 459c110c<br>Cleaning up request 3 ID 201 with timestamp 459c110c<br>Cleaning up request 4 ID 202 with timestamp 459c110c<br>Cleaning up request 5 ID 203 with timestamp 459c110c<br>Cleaning up request 6 ID 204 with timestamp 459c110c<br>Cleaning up request 7 ID 205 with timestamp 459c110c<br>Cleaning up request 8 ID 206 with timestamp 459c110c<br>Nothing to do. Sleeping until we see a request.<br>rad_recv: Accounting-Request packet from host 10.0.0.10:1406, id=2, length=158<br> Acct-Status-Type = Start<br>
Acct-Session-Id = "00166f122595-000d54fdb5ea-4d5e"<br> NAS-IP-Address = 10.0.0.10<br> Acct-Input-Octets = 37687<br> Acct-Output-Octets = 21336<br> Acct-Input-Packets = 124<br> Acct-Output-Packets = 152<br> User-Name = "apolyxrono"<br> Vendor-Specific = 0x564c414e2049442069733a2030<br> Vendor-Specific = 0x4553534944203d206d794170<br> Vendor-Specific = 0x45415020547970652069733a204541502d50454150<br> Acct-Session-Time = 32<br> Processing the preacct section of radiusd.conf<br>modcall: entering group preacct for request 9<br> modcall[preacct]: module "preprocess" returns noop for request 9<br>rlm_acct_unique: WARNING: Attribute NAS-Port was not found in request, unique ID MAY be inconsistent<br>rlm_acct_unique: Hashing ',Client-IP-Address = 10.0.0.10,NAS-IP-Address =
10.0.0.10,Acct-Session-Id = "00166f122595-000d54fdb5ea-4d5e",User-Name = "apolyxrono"'<br>rlm_acct_unique: Acct-Unique-Session-ID = "e27dcefb66f90e5e".<br> modcall[preacct]: module "acct_unique" returns ok for request 9<br> rlm_realm: No '@' in User-Name = "apolyxrono", looking up realm NULL<br> rlm_realm: No such realm "NULL"<br> modcall[preacct]: module "suffix" returns noop for request 9<br> modcall[preacct]: module "files" returns noop for request 9<br>modcall: leaving group preacct (returns ok) for request 9<br> Processing the accounting section of radiusd.conf<br>modcall: entering group accounting for request 9<br>radius_xlat: '/usr/local/var/log/radius/radacct/10.0.0.10/detail-20070103'<br>rlm_detail: /usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /usr/local/var/log/radius/radacct/10.0.0.10/detail-20070103<br> modcall[accounting]: module "detail" returns ok for
request 9<br>radius_xlat: '/usr/local/var/log/radius/radutmp'<br>radius_xlat: 'apolyxrono'<br> rlm_radutmp: No NAS-Port seen. Cannot do anything.<br> rlm_radumtp: WARNING: checkrad will probably not work!<br> modcall[accounting]: module "radutmp" returns noop for request 9<br>modcall: leaving group accounting (returns ok) for request 9<br>Sending Accounting-Response of id 2 to 10.0.0.10 port 1406<br>Finished request 9<br>Going to the next request<br>--- Walking the entire request list ---<br>Cleaning up request 9 ID 2 with timestamp 459c112d<br>Nothing to do. Sleeping until we see a request.<br><br><br>thanks<br></div><span style="font-weight: bold; color: rgb(0, 0, 255); font-family: comic sans ms;">Adreas Polyxronopoulos</span><br style="font-weight: bold; color: rgb(0, 0, 255); font-family: comic sans ms;"><div style="font-family: times new roman,new york,times,serif; font-size: 10pt;"><br><br><div style="font-family: times new
roman,new york,times,serif; font-size: 12pt;">----- Forwarded Message ----<br>From: adreas Polyxronopoulos <apolyxrono@yahoo.co.uk><br>To: freeradius users-list <freeradius-users@lists.freeradius.org><br>Sent: Wednesday, 3 January, 2007 3:03:23 PM<br>Subject: My AP does accountig but radwho doesn't work..<br><br><div style="font-family: times new roman,new york,times,serif; font-size: 10pt;">Hi list,<br><br>I am trying to work the radwho command but i get this error : radwho: Error reading /usr/local/var/log/radius/radutmp: No such file or directory<br><br>My AccessPoint (3com 7250) has the accounting option i have set it enable and i have detail files in /usr/local/var/log/radius/radacct/10.0.0.10 . <br><br>In my radiusd.conf :<br><br><pre style="margin: 0em;">radutmp {<br> filename = ${LOGDIR}/radutmp<br> username = %{User-Name}<br> case_sensitive = yes<br> check_with_nas = yes<br> perm = 0600<br> callerid = yes<br>}<br><br><br>accounting {<br>
detail<br> radutmp<br>}<br><br><br>session {<br> radutmp<br>}<br><br>-----</pre><br><br>and when running radiusd -X :<br><br>..............<br><br><pre style="margin: 0em;">Module: Loaded radutmp<br>radutmp: filename =<br> "/var/log/radius/radutmp"<br>radutmp: username = "%{User-Name}"<br>radutmp: case_sensitive = yes<br>radutmp: check_with_nas = yes<br>radutmp: perm = 384<br>radutmp: callerid = yes<br>....<br><br>Module: Instantiated radutmp (radutmp)</pre><br><div><br>thanks<br> </div><span style="font-weight: bold; color: rgb(0, 0, 255); font-family: comic sans ms;">Adreas Polyxronopoulos</span><br style="font-weight: bold; color: rgb(0, 0, 255); font-family: comic sans ms;"><div><br></div></div><br><span>Send instant messages to your online friends <a target="_blank" href="http://uk.messenger.yahoo.com">http://uk.messenger.yahoo.com</a> </span></div><br></div></div><br>Send instant messages to your online friends http://uk.messenger.yahoo.com </body></html>