rad_recv: Access-Request packet from host 172.17.254.100 port 1645, id=38, length=142 User-Name = "test" Service-Type = Framed-User Framed-MTU = 1500 Called-Station-Id = "00-1D-E5-9C-29-03" Calling-Station-Id = "00-11-43-FE-80-19" EAP-Message = 0x020300090174657374 Message-Authenticator = 0xb7e1af078821999a9539e4a8a67a18ee NAS-Port-Type = Ethernet NAS-Port = 50101 NAS-Port-Id = "FastEthernet1/0/1" NAS-IP-Address = 172.17.254.100 +- entering group authorize {...} ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop [suffix] No '@' in User-Name = "test", looking up realm NULL [suffix] No such realm "NULL" ++[suffix] returns noop [eap] EAP packet type response id 3 length 9 [eap] No EAP Start, assuming it's an on-going EAP conversation ++[eap] returns updated ++[unix] returns notfound [files] users: Matched entry test at line 6 ++[files] returns ok ++[expiration] returns noop ++[logintime] returns noop [pap] Found existing Auth-Type, not changing it. ++[pap] returns noop Found Auth-Type = EAP +- entering group authenticate {...} [eap] EAP Identity [eap] processing type tls [tls] Initiate [tls] Start returned 1 ++[eap] returns handled Sending Access-Challenge of id 38 to 172.17.254.100 port 1645 Tunnel-Type:0 = VLAN Tunnel-Medium-Type:0 = IEEE-802 Tunnel-Private-Group-Id:0 = "3" EAP-Message = 0x010400061920 Message-Authenticator = 0x00000000000000000000000000000000 State = 0x06410c2a064515fdc71ce0662eaaee5a Finished request 0. Going to the next request Waking up in 4.9 seconds. rad_recv: Access-Request packet from host 172.17.254.100 port 1645, id=39, length=157 User-Name = "test" Service-Type = Framed-User Framed-MTU = 1500 Called-Station-Id = "00-1D-E5-9C-29-03" Calling-Station-Id = "00-11-43-FE-80-19" EAP-Message = 0x020400060304 Message-Authenticator = 0xdf2cf3e248b7edc1b30ff3590933fad6 NAS-Port-Type = Ethernet NAS-Port = 50101 NAS-Port-Id = "FastEthernet1/0/1" State = 0x06410c2a064515fdc71ce0662eaaee5a NAS-IP-Address = 172.17.254.100 +- entering group authorize {...} ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop [suffix] No '@' in User-Name = "test", looking up realm NULL [suffix] No such realm "NULL" ++[suffix] returns noop [eap] EAP packet type response id 4 length 6 [eap] No EAP Start, assuming it's an on-going EAP conversation ++[eap] returns updated ++[unix] returns notfound [files] users: Matched entry test at line 6 ++[files] returns ok ++[expiration] returns noop ++[logintime] returns noop [pap] Found existing Auth-Type, not changing it. ++[pap] returns noop Found Auth-Type = EAP +- entering group authenticate {...} [eap] Request found, released from the list [eap] EAP NAK [eap] EAP-NAK asked for EAP-Type/md5 [eap] processing type md5 rlm_eap_md5: Issuing Challenge ++[eap] returns handled Sending Access-Challenge of id 39 to 172.17.254.100 port 1645 Tunnel-Type:0 = VLAN Tunnel-Medium-Type:0 = IEEE-802 Tunnel-Private-Group-Id:0 = "3" EAP-Message = 0x010500160410e343050cf9ec62f1eb7245084532e6e7 Message-Authenticator = 0x00000000000000000000000000000000 State = 0x06410c2a074408fdc71ce0662eaaee5a Finished request 1. Going to the next request Waking up in 4.9 seconds. rad_recv: Access-Request packet from host 172.17.254.100 port 1645, id=40, length=177 User-Name = "test" Service-Type = Framed-User Framed-MTU = 1500 Called-Station-Id = "00-1D-E5-9C-29-03" Calling-Station-Id = "00-11-43-FE-80-19" EAP-Message = 0x0205001a0410c1dd2df55894ca969a795e30b773b87e74657374 Message-Authenticator = 0xd48cbc388827413f80f606ae16522697 NAS-Port-Type = Ethernet NAS-Port = 50101 NAS-Port-Id = "FastEthernet1/0/1" State = 0x06410c2a074408fdc71ce0662eaaee5a NAS-IP-Address = 172.17.254.100 +- entering group authorize {...} ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop [suffix] No '@' in User-Name = "test", looking up realm NULL [suffix] No such realm "NULL" ++[suffix] returns noop [eap] EAP packet type response id 5 length 26 [eap] No EAP Start, assuming it's an on-going EAP conversation ++[eap] returns updated ++[unix] returns notfound [files] users: Matched entry test at line 6 ++[files] returns ok ++[expiration] returns noop ++[logintime] returns noop [pap] Found existing Auth-Type, not changing it. ++[pap] returns noop Found Auth-Type = EAP +- entering group authenticate {...} [eap] Request found, released from the list [eap] EAP/md5 [eap] processing type md5 [eap] Freeing handler ++[eap] returns ok Login OK: [test/] (from client switches port 50101 cli 00-11-43-FE-80-19) +- entering group post-auth {...} ++[exec] returns noop Sending Access-Accept of id 40 to 172.17.254.100 port 1645 Tunnel-Type:0 = VLAN Tunnel-Medium-Type:0 = IEEE-802 Tunnel-Private-Group-Id:0 = "3" EAP-Message = 0x03050004 Message-Authenticator = 0x00000000000000000000000000000000 User-Name = "test" Finished request 2. Going to the next request Waking up in 4.9 seconds. rad_recv: Accounting-Request packet from host 172.17.254.100 port 1646, id=155, length=135 Acct-Session-Id = "000000A0" User-Name = "test" Acct-Authentic = RADIUS Acct-Status-Type = Start NAS-Port-Type = Ethernet NAS-Port = 50101 NAS-Port-Id = "FastEthernet1/0/1" Called-Station-Id = "00-1D-E5-9C-29-03" Calling-Station-Id = "00-11-43-FE-80-19" Service-Type = Framed-User NAS-IP-Address = 172.17.254.100 Acct-Delay-Time = 0 +- entering group preacct {...} ++[preprocess] returns ok [acct_unique] Hashing 'NAS-Port = 50101,Client-IP-Address = 172.17.254.100,NAS-IP-Address = 172.17.254.100,Acct-Session-Id = "000000A0",User-Name = "test"' [acct_unique] Acct-Unique-Session-ID = "41223b50d18ce718". ++[acct_unique] returns ok [suffix] No '@' in User-Name = "test", looking up realm NULL [suffix] No such realm "NULL" ++[suffix] returns noop ++[files] returns noop +- entering group accounting {...} [detail] expand: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radius/radacct/172.17.254.100/detail-20091217 [detail] /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radius/radacct/172.17.254.100/detail-20091217 [detail] expand: %t -> Thu Dec 17 17:42:38 2009 ++[detail] returns ok ++[unix] returns ok [radutmp] expand: /var/log/radius/radutmp -> /var/log/radius/radutmp [radutmp] expand: %{User-Name} -> test ++[radutmp] returns ok [attr_filter.accounting_response] expand: %{User-Name} -> test attr_filter: Matched entry DEFAULT at line 12 ++[attr_filter.accounting_response] returns updated Sending Accounting-Response of id 155 to 172.17.254.100 port 1646 Finished request 3. Cleaning up request 3 ID 155 with timestamp +15 Going to the next request Waking up in 3.9 seconds. Cleaning up request 0 ID 38 with timestamp +14 Cleaning up request 1 ID 39 with timestamp +14 Cleaning up request 2 ID 40 with timestamp +14 Ready to process requests.