<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><div>OK<br><br>radtest maman maman localhost 1812 testing123<br>Sending Access-Request of id 48 to 127.0.0.1 port 1812<br> User-Name = "maman"<br> User-Password = "maman"<br> NAS-IP-Address = 127.0.0.2<br> NAS-Port = 1812<br>rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=48, length=20<br><br><br>Log<br>------------------------------------------------------------------------------------<br>Ready to process requests.<br>rad_recv: Access-Request packet from host 127.0.0.1 port 32769, id=48, length=57<br> User-Name = "maman"<br>
User-Password = "maman"<br> NAS-IP-Address = 127.0.0.2<br> NAS-Port = 1812<br>+- entering group authorize<br>++[preprocess] returns ok<br>++[chap] returns noop<br>++[mschap] returns noop<br> rlm_realm: No '@' in User-Name = "maman", looking up realm NULL<br> rlm_realm: No such realm "NULL"<br>++[suffix] returns noop<br> rlm_eap: No EAP-Message, not doing EAP<br>++[eap] returns noop<br>++[unix] returns notfound<br>++[files] returns noop<br> expand: %{User-Name} -> maman<br>rlm_sql (sql): sql_set_user escaped user --> 'maman'<br>rlm_sql (sql): Reserving sql socket id: 3<br> expand: SELECT id, username, attribute, value, op FROM
radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'maman' ORDER BY id<br>rlm_sql (sql): User found in radcheck table<br> expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM
radreply WHERE username = 'maman' ORDER BY id<br> expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'maman' ORDER BY priority<br> expand: SELECT id, groupname, attribute, Value,
op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'Professeurs' ORDER BY id<br>rlm_sql (sql): User found in group Professeurs<br> expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname =
'%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'Professeurs' ORDER BY id<br>rlm_sql (sql): Released sql socket id: 3<br>++[sql] returns ok<br>++[expiration] returns noop<br>++[logintime] returns noop<br>++[pap] returns updated<br> rad_check_password: Found Auth-Type<br>auth: type "PAP"<br>+- entering group PAP<br>rlm_pap: login attempt with password "maman"<br>rlm_pap: Using clear text password "maman"<br>rlm_pap: User authenticated successfully<br>++[pap] returns ok<br>Login OK: [maman/maman] (from client localhost port 1812)<br>+- entering group post-auth<br>rlm_sql (sql):
Processing sql_postauth<br> expand: %{User-Name} -> maman<br>rlm_sql (sql): sql_set_user escaped user --> 'maman'<br> expand: %{User-Password} -> maman<br> expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES (
'%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES (
'maman', 'maman', 'Access-Accept', '2008-07-19 18:38:59')<br>rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES (
'maman', 'maman', 'Access-Accept', '2008-07-19 18:38:59')<br>rlm_sql (sql): Reserving sql socket id: 2<br>rlm_sql (sql): Released sql socket id: 2<br>++[sql] returns ok<br>++[exec] returns noop<br>Sending Access-Accept of id 48 to 127.0.0.1 port 32769<br>Finished request 359.<br>Going to the next request<br>Waking up in 4.9 seconds.<br>Cleaning up request 359 ID 48 with timestamp +81320<br>Ready to process requests.<br>rad_recv: Accounting-Request packet from host 10.10.44.246 port 1035, id=53, length=153<br> Acct-Session-Id = "00000000-00000007"<br>
Acct-Status-Type = Stop<br> Acct-Authentic = RADIUS<br> User-Name = "testuser01"<br> NAS-IP-Address = 10.10.44.246<br> NAS-Port = 1<br> Called-Station-Id = "00-1C-F0-08-FB-F9:TLS"<br> Calling-Station-Id = "00-12-F0-0C-97-61"<br> NAS-Port-Type = Wireless-802.11<br> Connect-Info = "CONNECT 54Mbps 802.11g"<br> Acct-Session-Time = 85<br>+- entering group preacct<br>++[preprocess] returns ok<br>rlm_acct_unique: Hashing 'NAS-Port = 1,Client-IP-Address = 10.10.44.246,NAS-IP-Address = 10.10.44.246,Acct-Session-Id = "00000000-00000007",User-Name = "testuser01"'<br>rlm_acct_unique:
Acct-Unique-Session-ID = "73713cdd1b906342".<br>++[acct_unique] returns ok<br> rlm_realm: No '@' in User-Name = "testuser01", looking up realm NULL<br> rlm_realm: No such realm "NULL"<br>++[suffix] returns noop<br>++[files] returns noop<br>+- entering group accounting<br> expand: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radius/radacct/10.10.44.246/detail-20080719<br>rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radius/radacct/10.10.44.246/detail-20080719<br> expand: %t -> Sat Jul 19 18:39:41 2008<br>++[detail] returns ok<br>++[unix] returns ok<br> expand: /var/log/radius/radutmp -> /var/log/radius/radutmp<br> expand: %{User-Name} -> testuser01<br>++[radutmp] returns
ok<br> expand: %{User-Name} -> testuser01<br>rlm_sql (sql): sql_set_user escaped user --> 'testuser01'<br> expand: %{Acct-Input-Gigawords} -><br> expand: %{Acct-Input-Octets} -><br> expand: %{Acct-Output-Gigawords} -><br> expand: %{Acct-Output-Octets} -><br> expand: %{Acct-Delay-Time} -><br> expand: UPDATE radacct SET acctstoptime = '%S', acctsessiontime =
'%{Acct-Session-Time}', acctinputoctets = '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct-Input-Octets}:-0}', acctoutputoctets = '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', acctterminatecause =
'%{Acct-Terminate-Cause}', acctstopdelay = '%{%{Acct-Delay-Time}:-0}', connectinfo_stop = '%{Connect-Info}' WHERE acctsessionid = '%{Acct-Session-Id}' AND username = '%{SQL-User-Name}' AND nasipaddress = '%{NAS-IP-Address}' -> UPDATE radacct SET acctstoptime = '2008-07-19
18:39:41', acctsessiontime = '85', acctinputoctets = '0' << 32 | '0', acctoutputoctets = '0' << 32 | '0', acctterminatecause =
'', acctstopdelay = '0', connectinfo_stop = 'CONNECT 54Mbps 802.11g' WHERE acctsessionid = '00000000-00000007' AND username = 'testuser01' AND nasipaddress = '10.10.44.246'<br>rlm_sql (sql): Reserving sql socket id: 1<br>rlm_sql (sql): Released sql socket id: 1<br>++[sql] returns ok<br> expand: %{User-Name} -> testuser01<br> attr_filter: Matched entry DEFAULT at line 12<br>++[attr_filter.accounting_response] returns updated<br>Sending
Accounting-Response of id 53 to 10.10.44.246 port 1035<br>Finished request 360.<br>Cleaning up request 360 ID 53 with timestamp +81362<br>Going to the next request<br>Ready to process requests.<br> <br><br></div><div style="font-family: times new roman,new york,times,serif; font-size: 12pt;"><br><div style="font-family: arial,helvetica,sans-serif; font-size: 13px;">----- Message d'origine ----<br>De : Alan DeKok <aland@deployingradius.com><br>À : FreeRadius users mailing list <freeradius-users@lists.freeradius.org><br>Envoyé le : Samedi, 19 Juillet 2008, 17h19mn 58s<br>Objet : Re: Re : Re : EAP-TLS OK - EAP-PEAP KO!! why that?<br><br>Reveal MAP wrote:<br>> Now i am trying to authenticate via PEAP a user existing onmy
sql database:<br><br> The debug log doesn't show that.<br><br>> the output is too long, mailing list parameters won't accept it. i post<br>> part of the output that seem to give the point of misconfiguration. if<br>> it is not sufficient, please let me know, and i will find a way to put<br>> somewher the whole output of RADIUD -X. thank you.<br>...<br>> Exec-Program output: Logon failure (0xc000006d)<br>> Exec-Program-Wait: plaintext: Logon failure (0xc000006d)<br>> Exec-Program: returned: 1<br>> rlm_mschap: External script failed.<br>> rlm_mschap: FAILED: MS-CHAP2-Response is incorrect<br><br> What's the problem? You're using Samba to authenticate to Active<br>Directory, and the password is wrong.<br><br> Check that the passwords are correct.<br><br> Alan DeKok.<br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html"
target="_blank">http://www.freeradius.org/list/users.html</a><br></div></div></div><br>
<hr size="1">
Envoyé avec <a href="http://us.rd.yahoo.com/mailuk/taglines/isp/control/*http://us.rd.yahoo.com/evt=52423/*http://fr.docs.yahoo.com/mail/overview/index.html">Yahoo! Mail</a>.<br>Une boite mail plus intelligente. </a></body></html>