i changed user file and now what i am getting is:<br>on client or supplicant side EAP FAILURE :-(<br>response:<br>No keys have been configured - skip key clearing<br>wpa_driver_wext_set_drop_unencrypted<br>State: DISCONNECTED -> ASSOCIATING<br>wpa_driver_wext_set_operstate: operstate 0->0 (DORMANT)<br>WEXT: Operstate: linkmode=-1, operstate=5<br>wpa_driver_wext_associate<br>Setting authentication timeout: 10 sec 0 usec<br>EAPOL: External notification - portControl=Auto<br>RTM_NEWLINK: operstate=0 ifi_flags=0x1003 ([UP])<br>Wireless event: cmd=0x8b06 len=8<br>RTM_NEWLINK: operstate=0 ifi_flags=0x1003 ([UP])<br>Wireless event: cmd=0x8b04 len=12<br>RTM_NEWLINK: operstate=0 ifi_flags=0x1003 ([UP])<br>Wireless event: cmd=0x8b1a len=14<br>RTM_NEWLINK: operstate=0 ifi_flags=0x11003 ([UP][LOWER_UP])<br>Wireless event: cmd=0x8b15 len=20<br>Wireless event: new AP: 00:03:7f:09:60:a0<br>State: ASSOCIATING -> ASSOCIATED<br>wpa_driver_wext_set_operstate:
operstate 0->0 (DORMANT)<br>WEXT: Operstate: linkmode=-1, operstate=5<br>Associated to a new BSS: BSSID=00:03:7f:09:60:a0<br>No keys have been configured - skip key clearing<br>Associated with 00:03:7f:09:60:a0<br>WPA: Association event - clear replay counter<br>EAPOL: External notification - portEnabled=0<br>EAPOL: External notification - portValid=0<br>EAPOL: External notification - portEnabled=1<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_BE entering state IDLE<br>EAP: EAP entering state INITIALIZE<br>EAP: deinitialize previously used EAP method (4, MD5) at INITIALIZE<br>EAP: EAP entering state IDLE<br>Setting authentication timeout: 10 sec 0 usec<br>Cancelling scan request<br>RTM_NEWLINK: operstate=0 ifi_flags=0x11003 ([UP][LOWER_UP])<br>RTM_NEWLINK, IFLA_IFNAME: Interface 'ath0' added<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=9): 01 00 00 05 01 00 00 05 01<br>Setting authentication timeout: 70 sec 0 usec<br>EAPOL: Received
EAP-Packet frame<br>EAPOL: SUPP_PAE entering state RESTART<br>EAP: EAP entering state INITIALIZE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Request id=0 method=1 vendor=0 vendorMethod=0<br>EAP: EAP entering state IDENTITY<br>CTRL-EVENT-EAP-STARTED EAP authentication started<br>EAP: EAP-Request Identity data - hexdump_ascii(len=0):<br>EAP: using real identity - hexdump_ascii(len=8):<br> 74 65 73 74 75 73 65 72 testuser<br>EAP: EAP entering state SEND_RESPONSE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RESPONSE<br>EAPOL: txSuppRsp<br>TX EAPOL - hexdump(len=17): 01 00 00 0d 02 00 00 0d 01 74 65 73 74 75 73 65 72<br>EAPOL:
SUPP_BE entering state RECEIVE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=26): 01 00 00 16 01 01 00 16 04 10 12 e6 77 bb e2 c5 16 59 16 f3 d7 ed 57 79 14 9d<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Request id=1 method=4 vendor=0 vendorMethod=0<br>EAP: EAP entering state GET_METHOD<br>EAP: Initialize selected EAP method: vendor 0 method 4 (MD5)<br>CTRL-EVENT-EAP-METHOD EAP vendor 0 method 4 (MD5) selected<br>EAP: EAP entering state METHOD<br>EAP-MD5: Challenge - hexdump(len=16): 12 e6 77 bb e2 c5 16 59 16 f3 d7 ed 57 79 14 9d<br>EAP-MD5: Generating Challenge Response<br>EAP-MD5: Response - hexdump(len=16): 8c 3f 26 07 9d 3a ad b5 37 fb 5a 61 8e a9 c9 04<br>EAP: method process -> ignore=FALSE methodState=DONE decision=UNCOND_SUCC<br>EAP: EAP entering state SEND_RESPONSE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state
RESPONSE<br>EAPOL: txSuppRsp<br>TX EAPOL - hexdump(len=26): 01 00 00 16 02 01 00 16 04 10 8c 3f 26 07 9d 3a ad b5 37 fb 5a 61 8e a9 c9 04<br>EAPOL: SUPP_BE entering state RECEIVE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=8): 01 00 00 04 04 01 00 04<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Failure<br>EAP: EAP entering state DISCARD<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RECEIVE<br>EAPOL: startWhen --> 0<br>EAPOL: authWhile --> 0<br>EAPOL: SUPP_BE entering state TIMEOUT<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_BE entering state IDLE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=9): 01 00 00 05 01 02 00 05 01<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_PAE entering state RESTART<br>EAP: EAP entering state INITIALIZE<br>EAP: deinitialize previously used EAP method (4, MD5)
at INITIALIZE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_PAE entering state AUTHENTICATING<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Request id=2 method=1 vendor=0 vendorMethod=0<br>EAP: EAP entering state IDENTITY<br>CTRL-EVENT-EAP-STARTED EAP authentication started<br>EAP: EAP-Request Identity data - hexdump_ascii(len=0):<br>EAP: using real identity - hexdump_ascii(len=8):<br> 74 65 73 74 75 73 65 72 testuser<br>EAP: EAP entering state SEND_RESPONSE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RESPONSE<br>EAPOL: txSuppRsp<br>TX EAPOL - hexdump(len=17): 01 00 00 0d 02 02 00 0d 01 74 65 73 74 75 73 65 72<br>EAPOL: SUPP_BE entering state RECEIVE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL -
hexdump(len=26): 01 00 00 16 01 03 00 16 04 10 c2 73 c1 bc 8f 95 e1 3e 31 e0 67 5a b0 4e 4b b7<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Request id=3 method=4 vendor=0 vendorMethod=0<br>EAP: EAP entering state GET_METHOD<br>EAP: Initialize selected EAP method: vendor 0 method 4 (MD5)<br>CTRL-EVENT-EAP-METHOD EAP vendor 0 method 4 (MD5) selected<br>EAP: EAP entering state METHOD<br>EAP-MD5: Challenge - hexdump(len=16): c2 73 c1 bc 8f 95 e1 3e 31 e0 67 5a b0 4e 4b b7<br>EAP-MD5: Generating Challenge Response<br>EAP-MD5: Response - hexdump(len=16): 7e fc ef e7 cd c7 3d 07 49 80 8a 43 11 10 3c d1<br>EAP: method process -> ignore=FALSE methodState=DONE decision=UNCOND_SUCC<br>EAP: EAP entering state SEND_RESPONSE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RESPONSE<br>EAPOL: txSuppRsp<br>TX EAPOL - hexdump(len=26): 01 00 00 16 02 03 00 16 04
10 7e fc ef e7 cd c7 3d 07 49 80 8a 43 11 10 3c d1<br>EAPOL: SUPP_BE entering state RECEIVE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=8): 01 00 00 04 04 03 00 04<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Failure<br>EAP: EAP entering state DISCARD<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RECEIVE<br>EAPOL: startWhen --> 0<br>EAPOL: authWhile --> 0<br>EAPOL: SUPP_BE entering state TIMEOUT<br>EAPOL: SUPP_PAE entering state CONNECTING<br>EAPOL: SUPP_BE entering state IDLE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=9): 01 00 00 05 01 04 00 05 01<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_PAE entering state RESTART<br>EAP: EAP entering state INITIALIZE<br>EAP: deinitialize previously used EAP method (4, MD5) at INITIALIZE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_PAE entering state
AUTHENTICATING<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Request id=4 method=1 vendor=0 vendorMethod=0<br>EAP: EAP entering state IDENTITY<br>CTRL-EVENT-EAP-STARTED EAP authentication started<br>EAP: EAP-Request Identity data - hexdump_ascii(len=0):<br>EAP: using real identity - hexdump_ascii(len=8):<br> 74 65 73 74 75 73 65 72 testuser<br>EAP: EAP entering state SEND_RESPONSE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RESPONSE<br>EAPOL: txSuppRsp<br>TX EAPOL - hexdump(len=17): 01 00 00 0d 02 04 00 0d 01 74 65 73 74 75 73 65 72<br>EAPOL: SUPP_BE entering state RECEIVE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=26): 01 00 00 16 01 05 00 16 04 10 01 2d 73 38 fb 62 76 d1 6f bd 47 50
9e bd 9f 21<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Request id=5 method=4 vendor=0 vendorMethod=0<br>EAP: EAP entering state GET_METHOD<br>EAP: Initialize selected EAP method: vendor 0 method 4 (MD5)<br>CTRL-EVENT-EAP-METHOD EAP vendor 0 method 4 (MD5) selected<br>EAP: EAP entering state METHOD<br>EAP-MD5: Challenge - hexdump(len=16): 01 2d 73 38 fb 62 76 d1 6f bd 47 50 9e bd 9f 21<br>EAP-MD5: Generating Challenge Response<br>EAP-MD5: Response - hexdump(len=16): af 0f d8 8c b5 ef 19 2d ac 34 15 84 20 21 6c 2e<br>EAP: method process -> ignore=FALSE methodState=DONE decision=UNCOND_SUCC<br>EAP: EAP entering state SEND_RESPONSE<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RESPONSE<br>EAPOL: txSuppRsp<br>TX EAPOL - hexdump(len=26): 01 00 00 16 02 05 00 16 04 10 af 0f d8 8c b5 ef 19 2d ac 34 15 84 20 21 6c 2e<br>EAPOL: SUPP_BE entering state
RECEIVE<br>RX EAPOL from 00:03:7f:09:60:a0<br>RX EAPOL - hexdump(len=8): 01 00 00 04 04 05 00 04<br>EAPOL: Received EAP-Packet frame<br>EAPOL: SUPP_BE entering state REQUEST<br>EAPOL: getSuppRsp<br>EAP: EAP entering state RECEIVED<br>EAP: Received EAP-Failure<br>EAP: EAP entering state DISCARD<br>EAP: EAP entering state IDLE<br>EAPOL: SUPP_BE entering state RECEIVE<br>EAPOL: startWhen --> 0<br>Authentication with 00:03:7f:09:60:a0 timed out.<br>Added BSSID 00:03:7f:09:60:a0 into blacklist<br>State: ASSOCIATED -> DISCONNECTED<br><br>it is getting an EAP-FAILURE and disconnected!!!!!<br>on server side i am getting::-<br><br>rad_recv: Access-Request packet from host 192.168.2.182:1028, id=1, length=177<br> Message-Authenticator = 0x4dbd919a94aef63f5f7c98a53564e16a<br> Service-Type = Framed-User<br> User-Name =
"testuser"<br> Framed-MTU = 1488<br> Called-Station-Id = "00-03-7F-09-60-A0:ATH182"<br> Calling-Station-Id = "00-03-7F-05-C0-9C"<br> NAS-Port-Type = Wireless-802.11<br> Connect-Info = "CONNECT 54Mbps 802.11g"<br> EAP-Message = 0x0201000d017465737475736572<br> NAS-IP-Address = 192.168.2.182<br> NAS-Port = 1<br> NAS-Port-Id = "STA port # 1"<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 0<br> modcall[authorize]: module "preprocess" returns ok for request 0<br> modcall[authorize]: module "chap" returns noop for request 0<br>
modcall[authorize]: module "mschap" returns noop for request 0<br> rlm_realm: No '@' in User-Name = "testuser", looking up realm NULL<br> rlm_realm: No such realm "NULL"<br> modcall[authorize]: module "suffix" returns noop for request 0<br> rlm_eap: EAP packet type response id 1 length 13<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 0<br> users: Matched entry testuser at line 155<br> modcall[authorize]: module "files" returns ok for request 0<br>rlm_pap: Found existing Auth-Type, not changing it.<br> modcall[authorize]: module "pap" returns noop for request 0<br>modcall: leaving group authorize (returns updated) for request 0<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group
authenticate for request 0<br> rlm_eap: EAP Identity<br> rlm_eap: processing type md5<br>rlm_eap_md5: Issuing Challenge<br> modcall[authenticate]: module "eap" returns handled for request 0<br>modcall: leaving group authenticate (returns handled) for request 0<br>Sending Access-Challenge of id 1 to 192.168.2.182 port 1028<br> EAP-Message = 0x0102001604100cb0085e760ad18f68b23c2841499fbc<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x7896162694484bb6e2351d3dd2fe9be6<br>Finished request 0<br>Going to the next request<br>--- Walking the entire request list ---<br>Waking up in 6 seconds...<br>rad_recv: Access-Request packet from host 192.168.2.182:1028, id=2, length=204<br> Message-Authenticator =
0x85fab68d100d5316c3033ba5faeaacc1<br> Service-Type = Framed-User<br> User-Name = "testuser"<br> Framed-MTU = 1488<br> State = 0x7896162694484bb6e2351d3dd2fe9be6<br> Called-Station-Id = "00-03-7F-09-60-A0:ATH182"<br> Calling-Station-Id = "00-03-7F-05-C0-9C"<br> NAS-Port-Type = Wireless-802.11<br> Connect-Info = "CONNECT 54Mbps 802.11g"<br> EAP-Message = 0x02020016041090f6880a694790dad2ff127e5e3841aa<br> NAS-IP-Address = 192.168.2.182<br> NAS-Port = 1<br> NAS-Port-Id = "STA port
# 1"<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 1<br> modcall[authorize]: module "preprocess" returns ok for request 1<br> modcall[authorize]: module "chap" returns noop for request 1<br> modcall[authorize]: module "mschap" returns noop for request 1<br> rlm_realm: No '@' in User-Name = "testuser", looking up realm NULL<br> rlm_realm: No such realm "NULL"<br> modcall[authorize]: module "suffix" returns noop for request 1<br> rlm_eap: EAP packet type response id 2 length 22<br> rlm_eap: No EAP Start, assuming it's an on-going EAP conversation<br> modcall[authorize]: module "eap" returns updated for request 1<br> users: Matched entry testuser at line 155<br> modcall[authorize]: module "files" returns ok for request 1<br>rlm_pap: Found existing Auth-Type, not changing it.<br> modcall[authorize]: module
"pap" returns noop for request 1<br>modcall: leaving group authorize (returns updated) for request 1<br> rad_check_password: Found Auth-Type EAP<br>auth: type "EAP"<br> Processing the authenticate section of radiusd.conf<br>modcall: entering group authenticate for request 1<br> rlm_eap: Request found, released from the list<br> rlm_eap: EAP/md5<br> rlm_eap: processing type md5<br> rlm_eap: Freeing handler<br> modcall[authenticate]: module "eap" returns ok for request 1<br>modcall: leaving group authenticate (returns ok) for request 1<br>Sending Access-Accept of id 2 to 192.168.2.182 port 1028<br> EAP-Message = 0x03020004<br> Message-Authenticator = 0x00000000000000000000000000000000<br> User-Name = "testuser"<br>Finished request 1<br>Going to the next request<br>Waking up in 6 seconds...<br>--- Walking
the entire request list ---<br>Cleaning up request 0 ID 1 with timestamp 465d506e<br>Cleaning up request 1 ID 2 with timestamp 465d506e<br>Nothing to do. Sleeping until we see a request.<br><br>it is sending ACCESS ACCEPT but no access reject or failure!!!!<br>and when i try to check AP statistics from server it is showing an entry for AUTHENTICATION FAILURE!!!!!!!<br><br>sorry for disturbing u again n again but can u help me out????<br>please!!<br>shantanu<br><br><b><i>tnt@kalik.co.yu</i></b> wrote:<blockquote class="replbq" style="border-left: 2px solid rgb(16, 16, 255); margin-left: 5px; padding-left: 5px;"> Your request is accepted but you are picking up an IP adress of<br>255.255.255.254 from the DEFAULT entry in users file for Service-Type<br>Framed-User. Assign a proper IP address or address pool in your user<br>configuration. And put the user before DEFAULT entries.<br><br>Ivan Kalik<br>Kalik Informatika ISP<br><br>---snip ---<br>> users: Matched entry
DEFAULT at line 153<br>> users: Matched entry DEFAULT at line 172<br>> users: Matched entry testuser at line 216<br>--- snip ---<br>>Sending Access-Accept of id 1 to 192.168.2.183 port 1079<br>> Framed-IP-Address = 255.255.255.254<br>> Framed-MTU = 576<br>> Service-Type = Framed-User<br>> EAP-Message = 0x03010004<br>> Message-Authenticator = 0x00000000000000000000000000000000<br>> User-Name = "testuser"<br>>Finished request 1<br>>Going to the next request<br>>--- Walking the entire request list ---<br>>Waking up in 6 seconds...<br>>--- Walking the entire request list ---<br>>Cleaning up request 1 ID 1 with timestamp 465abee0<br>>Nothing to do. Sleeping until we see a request.<br>>>><br>>can any one help me out it is really important and urgent.<br>>if u need i will also tell u my radius.conf, eap.conf and users file!!<br>>thank you<br>>regards<br>>shantanu<br><br>- <br>List
info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html<br></blockquote><br><BR><BR><p>
<hr size=1></hr> Download prohibited? No problem! <a href="http://us.rd.yahoo.com/mail/in/ywebmessenger/*http://in.messenger.yahoo.com/webmessengerpromo.php">CHAT</a> from any browser, without download.