<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Verdana
}
--></style>
</head>
<body class='hmmessage'>
Hi everyone,<br><br>I managed to install Freeradius with OpenSSL under Debian Lenny and it did work like a charm for a while. However, after I did the same process of installation in another virtualbox machine, it has not worked anymore. The console log report the following error:<br><br>[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.<br><br>The complete log is:<br><br>xmobileb155ce:~# freeradius -X<br>FreeRADIUS Version 2.1.8, for host i486-pc-linux-gnu, built on Mar 18 2010 at 04:07:54<br>Copyright (C) 1999-2009 The FreeRADIUS server project and contributors. <br>There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A <br>PARTICULAR PURPOSE. <br>You may redistribute copies of FreeRADIUS under the terms of the <br>GNU General Public License v2. <br>Starting - reading configuration files ...<br>including configuration file /etc/freeradius/radiusd.conf<br>including configuration file /etc/freeradius/proxy.conf<br>including configuration file /etc/freeradius/clients.conf<br>including files in directory /etc/freeradius/modules/<br>including configuration file /etc/freeradius/modules/detail.log<br>including configuration file /etc/freeradius/modules/attr_rewrite<br>including configuration file /etc/freeradius/modules/acct_unique<br>including configuration file /etc/freeradius/modules/radutmp<br>including configuration file /etc/freeradius/modules/files<br>including configuration file /etc/freeradius/modules/perl<br>including configuration file /etc/freeradius/modules/chap<br>including configuration file /etc/freeradius/modules/inner-eap<br>including configuration file /etc/freeradius/modules/krb5<br>including configuration file /etc/freeradius/modules/ippool<br>including configuration file /etc/freeradius/modules/wimax<br>including configuration file /etc/freeradius/modules/otp<br>including configuration file /etc/freeradius/modules/sqlcounter_expire_on_login<br>including configuration file /etc/freeradius/modules/mac2vlan<br>including configuration file /etc/freeradius/modules/sradutmp<br>including configuration file /etc/freeradius/modules/ldap<br>including configuration file /etc/freeradius/modules/always<br>including configuration file /etc/freeradius/modules/logintime<br>including configuration file /etc/freeradius/modules/mschap<br>including configuration file /etc/freeradius/modules/checkval<br>including configuration file /etc/freeradius/modules/mac2ip<br>including configuration file /etc/freeradius/modules/001mschap-default<br>including configuration file /etc/freeradius/modules/linelog<br>including configuration file /etc/freeradius/modules/attr_filter<br>including configuration file /etc/freeradius/modules/preprocess<br>including configuration file /etc/freeradius/modules/sql_log<br>including configuration file /etc/freeradius/modules/detail.example.com<br>including configuration file /etc/freeradius/modules/ntlm_auth<br>including configuration file /etc/freeradius/modules/smsotp<br>including configuration file /etc/freeradius/modules/cui<br>including configuration file /etc/freeradius/modules/realm<br>including configuration file /etc/freeradius/modules/digest<br>including configuration file /etc/freeradius/modules/unix<br>including configuration file /etc/freeradius/modules/expiration<br>including configuration file /etc/freeradius/modules/001ntlm_auth-default<br>including configuration file /etc/freeradius/modules/exec<br>including configuration file /etc/freeradius/modules/passwd<br>including configuration file /etc/freeradius/modules/detail<br>including configuration file /etc/freeradius/modules/smbpasswd<br>including configuration file /etc/freeradius/modules/etc_group<br>including configuration file /etc/freeradius/modules/pap<br>including configuration file /etc/freeradius/modules/counter<br>including configuration file /etc/freeradius/modules/pam<br>including configuration file /etc/freeradius/modules/expr<br>including configuration file /etc/freeradius/modules/echo<br>including configuration file /etc/freeradius/modules/policy<br>including configuration file /etc/freeradius/eap.conf<br>including configuration file /etc/freeradius/policy.conf<br>including files in directory /etc/freeradius/sites-enabled/<br>including configuration file /etc/freeradius/sites-enabled/innet-tunnel-default<br>including configuration file /etc/freeradius/sites-enabled/inner-tunnel<br>including configuration file /etc/freeradius/sites-enabled/default<br>including configuration file /etc/freeradius/sites-enabled/default-default<br>main {<br> user = "freerad"<br> group = "freerad"<br> allow_core_dumps = no<br>}<br>including dictionary file /etc/freeradius/dictionary<br>main {<br> prefix = "/usr"<br> localstatedir = "/var"<br> logdir = "/var/log/freeradius"<br> libdir = "/usr/lib/freeradius"<br> radacctdir = "/var/log/freeradius/radacct"<br> hostname_lookups = no<br> max_request_time = 30<br> cleanup_delay = 5<br> max_requests = 1024<br> pidfile = "/var/run/freeradius/freeradius.pid"<br> checkrad = "/usr/sbin/checkrad"<br> debug_level = 0<br> proxy_requests = yes<br> log {<br> stripped_names = no<br> auth = no<br> auth_badpass = no<br> auth_goodpass = no<br> }<br> security {<br> max_attributes = 200<br> reject_delay = 1<br> status_server = yes<br> }<br>}<br>radiusd: #### Loading Realms and Home Servers ####<br> proxy server {<br> retry_delay = 5<br> retry_count = 3<br> default_fallback = no<br> dead_time = 120<br> wake_all_if_all_dead = no<br> }<br> home_server localhost {<br> ipaddr = 127.0.0.1<br> port = 1812<br> type = "auth"<br> secret = "testing123"<br> response_window = 20<br> max_outstanding = 65536<br> require_message_authenticator = no<br> zombie_period = 40<br> status_check = "status-server"<br> ping_interval = 30<br> check_interval = 30<br> num_answers_to_alive = 3<br> num_pings_to_alive = 3<br> revive_interval = 120<br> status_check_timeout = 4<br> irt = 2<br> mrt = 16<br> mrc = 5<br> mrd = 30<br> }<br> home_server_pool my_auth_failover {<br> type = fail-over<br> home_server = localhost<br> }<br> realm example.com {<br> auth_pool = my_auth_failover<br> }<br> realm LOCAL {<br> }<br>radiusd: #### Loading Clients ####<br> client localhost {<br> ipaddr = 127.0.0.1<br> require_message_authenticator = no<br> secret = "testing123"<br> nastype = "other"<br> }<br> client WiFi Network/24 {<br> require_message_authenticator = no<br> secret = "alejandro"<br> shortname = "N1P2"<br> }<br> client AP's IP_ADD {<br> require_message_authenticator = no<br> secret = "alejandro"<br> shortname = "mw-ltqFreeradius-N1-P2-01"<br> nastype = "other"<br> }<br>radiusd: #### Instantiating modules ####<br> instantiate {<br> Module: Linked to module rlm_exec<br> Module: Instantiating exec<br> exec {<br> wait = no<br> input_pairs = "request"<br> shell_escape = yes<br> }<br> Module: Linked to module rlm_expr<br> Module: Instantiating expr<br> Module: Linked to module rlm_expiration<br> Module: Instantiating expiration<br> expiration {<br> reply-message = "Password Has Expired "<br> }<br> Module: Linked to module rlm_logintime<br> Module: Instantiating logintime<br> logintime {<br> reply-message = "You are calling outside your allowed timespan "<br> minimum-timeout = 60<br> }<br> }<br>radiusd: #### Loading Virtual Servers ####<br>server inner-tunnel {<br> modules {<br> Module: Checking authenticate {...} for more modules to load<br> Module: Linked to module rlm_pap<br> Module: Instantiating pap<br> pap {<br> encryption_scheme = "auto"<br> auto_header = no<br> }<br> Module: Linked to module rlm_chap<br> Module: Instantiating chap<br> Module: Linked to module rlm_mschap<br> Module: Instantiating mschap<br> mschap {<br> use_mppe = yes<br> require_encryption = no<br> require_strong = no<br> with_ntdomain_hack = yes<br> ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key --username=%{mschap:User-Name:-None} --domain=%{%{mschap:NT-Domain}:-MI_DOMINIO} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"<br> }<br> Module: Linked to module rlm_unix<br> Module: Instantiating unix<br> unix {<br> radwtmp = "/var/log/freeradius/radwtmp"<br> }<br> Module: Linked to module rlm_eap<br> Module: Instantiating eap<br> eap {<br> default_eap_type = "peap"<br> timer_expire = 60<br> ignore_unknown_eap_types = no<br> cisco_accounting_username_bug = no<br> max_sessions = 4096<br> }<br> Module: Linked to sub-module rlm_eap_md5<br> Module: Instantiating eap-md5<br> Module: Linked to sub-module rlm_eap_leap<br> Module: Instantiating eap-leap<br> Module: Linked to sub-module rlm_eap_gtc<br> Module: Instantiating eap-gtc<br> gtc {<br> challenge = "Password: "<br> auth_type = "PAP"<br> }<br> Module: Linked to sub-module rlm_eap_tls<br> Module: Instantiating eap-tls<br> tls {<br> rsa_key_exchange = no<br> dh_key_exchange = yes<br> rsa_key_length = 512<br> dh_key_length = 512<br> verify_depth = 0<br> pem_file_type = yes<br> private_key_file = "/etc/freeradius/certs/privkey.pem"<br> certificate_file = "/etc/freeradius/certs/cert.pem"<br> CA_file = "/etc/freeradius/certs/cacert.pem"<br> private_key_password = "alejandro"<br> dh_file = "/etc/freeradius/certs/dh"<br> random_file = "/dev/urandom"<br> fragment_size = 1024<br> include_length = yes<br> check_crl = no<br> cipher_list = "DEFAULT"<br> make_cert_command = "/etc/freeradius/certs/bootstrap"<br> cache {<br> enable = no<br> lifetime = 24<br> max_entries = 255<br> }<br> }<br> Module: Linked to sub-module rlm_eap_ttls<br> Module: Instantiating eap-ttls<br> ttls {<br> default_eap_type = "md5"<br> copy_request_to_tunnel = no<br> use_tunneled_reply = no<br> virtual_server = "inner-tunnel"<br> include_length = yes<br> }<br> Module: Linked to sub-module rlm_eap_peap<br> Module: Instantiating eap-peap<br> peap {<br> default_eap_type = "mschapv2"<br> copy_request_to_tunnel = no<br> use_tunneled_reply = no<br> proxy_tunneled_request_as_eap = yes<br> virtual_server = "inner-tunnel"<br> }<br> Module: Linked to sub-module rlm_eap_mschapv2<br> Module: Instantiating eap-mschapv2<br> mschapv2 {<br> with_ntdomain_hack = no<br> }<br> Module: Checking authorize {...} for more modules to load<br> Module: Linked to module rlm_realm<br> Module: Instantiating suffix<br> realm suffix {<br> format = "suffix"<br> delimiter = "@"<br> ignore_default = no<br> ignore_null = no<br> }<br> Module: Linked to module rlm_files<br> Module: Instantiating files<br> files {<br> usersfile = "/etc/freeradius/users"<br> acctusersfile = "/etc/freeradius/acct_users"<br> preproxy_usersfile = "/etc/freeradius/preproxy_users"<br> compat = "no"<br> }<br> Module: Checking session {...} for more modules to load<br> Module: Linked to module rlm_radutmp<br> Module: Instantiating radutmp<br> radutmp {<br> filename = "/var/log/freeradius/radutmp"<br> username = "%{User-Name}"<br> case_sensitive = yes<br> check_with_nas = yes<br> perm = 384<br> callerid = yes<br> }<br> Module: Checking post-proxy {...} for more modules to load<br> Module: Checking post-auth {...} for more modules to load<br> Module: Linked to module rlm_attr_filter<br> Module: Instantiating attr_filter.access_reject<br> attr_filter attr_filter.access_reject {<br> attrsfile = "/etc/freeradius/attrs.access_reject"<br> key = "%{User-Name}"<br> }<br> } # modules<br>} # server<br>server inner-tunnel {<br> modules {<br> Module: Checking authenticate {...} for more modules to load<br> Module: Instantiating ntlm_auth<br> exec ntlm_auth {<br> wait = yes<br> program = "/usr/bin/ntlm_auth --request-nt-key --username=%{mschap:User-Name:-None} --domain=%{%{mschap:NT-Domain}:-MI_DOMINIO} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"<br> input_pairs = "request"<br> shell_escape = yes<br> }<br> Module: Checking authorize {...} for more modules to load<br> Module: Checking session {...} for more modules to load<br> Module: Checking post-proxy {...} for more modules to load<br> Module: Checking post-auth {...} for more modules to load<br> } # modules<br>} # server<br>server {<br> modules {<br> Module: Checking authenticate {...} for more modules to load<br> Module: Checking authorize {...} for more modules to load<br> Module: Linked to module rlm_preprocess<br> Module: Instantiating preprocess<br> preprocess {<br> huntgroups = "/etc/freeradius/huntgroups"<br> hints = "/etc/freeradius/hints"<br> with_ascend_hack = no<br> ascend_channels_per_line = 23<br> with_ntdomain_hack = no<br> with_specialix_jetstream_hack = no<br> with_cisco_vsa_hack = no<br> with_alvarion_vsa_hack = no<br> }<br> Module: Checking preacct {...} for more modules to load<br> Module: Linked to module rlm_acct_unique<br> Module: Instantiating acct_unique<br> acct_unique {<br> key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"<br> }<br> Module: Checking accounting {...} for more modules to load<br> Module: Linked to module rlm_detail<br> Module: Instantiating detail<br> detail {<br> detailfile = "/var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d"<br> header = "%t"<br> detailperm = 384<br> dirperm = 493<br> locking = no<br> log_packet_header = no<br> }<br> Module: Instantiating attr_filter.accounting_response<br> attr_filter attr_filter.accounting_response {<br> attrsfile = "/etc/freeradius/attrs.accounting_response"<br> key = "%{User-Name}"<br> }<br> Module: Checking session {...} for more modules to load<br> Module: Checking post-proxy {...} for more modules to load<br> Module: Checking post-auth {...} for more modules to load<br> } # modules<br>} # server<br>radiusd: #### Opening IP addresses and Ports ####<br>listen {<br> type = "auth"<br> ipaddr = *<br> port = 0<br>}<br>listen {<br> type = "acct"<br> ipaddr = *<br> port = 0<br>}<br>Listening on authentication address * port 1812<br>Listening on accounting address * port 1813<br>Listening on proxy address * port 1814<br>Ready to process requests.<br>rad_recv: Access-Request packet from host AP's IP_ADD port 1044, id=0, length=211<br> Message-Authenticator = 0x93930a64fe55679bbf166346dd01c8ee<br> Service-Type = Framed-User<br> User-Name = "MI_DOMINIO\\ORTEGACA"<br> Framed-MTU = 1488<br> Called-Station-Id = "00-18-39-1B-B3-F1:freeradiusg"<br> Calling-Station-Id = "00-1F-3C-2D-62-C1"<br> NAS-Identifier = "WAP55AG"<br> NAS-Port-Type = Wireless-802.11<br> Connect-Info = "CONNECT 54Mbps 802.11g"<br> EAP-Message = 0x02000017015044565341323030305c4f52544547414341<br> NAS-IP-Address = AP's IP_ADD<br> NAS-Port = 1<br> NAS-Port-Id = "STA port # 1"<br>+- entering group authorize {...}<br>++[preprocess] returns ok<br>++[chap] returns noop<br>++[mschap] returns noop<br>[suffix] No '@' in User-Name = "MI_DOMINIO\ORTEGACA", looking up realm NULL<br>[suffix] No such realm "NULL"<br>++[suffix] returns noop<br>[eap] EAP packet type response id 0 length 23<br>[eap] No EAP Start, assuming it's an on-going EAP conversation<br>++[eap] returns updated<br>++[unix] returns notfound<br>++[files] returns noop<br>++[expiration] returns noop<br>++[logintime] returns noop<br>[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.<br>++[pap] returns noop<br>Found Auth-Type = EAP<br>+- entering group authenticate {...}<br>[eap] EAP Identity<br>[eap] processing type tls<br>[tls] Initiate<br>[tls] Start returned 1<br>++[eap] returns handled<br>Sending Access-Challenge of id 0 to AP's IP_ADD port 1044<br> EAP-Message = 0x010100061920<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x3f0f6ba03f0e72e0b3955098d1e297ca<br>Finished request 0.<br>Going to the next request<br>Waking up in 4.9 seconds.<br>rad_recv: Access-Request packet from host AP's IP_ADD port 1044, id=1, length=286<br> Message-Authenticator = 0xe90497c13c690e16d5485c28de3e9496<br> Service-Type = Framed-User<br> User-Name = "MI_DOMINIO\\ORTEGACA"<br> Framed-MTU = 1488<br> State = 0x3f0f6ba03f0e72e0b3955098d1e297ca<br> Called-Station-Id = "00-18-39-1B-B3-F1:freeradiusg"<br> Calling-Station-Id = "00-1F-3C-2D-62-C1"<br> NAS-Identifier = "WAP55AG"<br> NAS-Port-Type = Wireless-802.11<br> Connect-Info = "CONNECT 54Mbps 802.11g"<br> EAP-Message = 0x0201005019800000004616030100410100003d03014c2df82b1aaab762c4848152fd27fc2bf58bd616a171819685cdabc06742c01900001600040005000a000900640062000300060013001200630100<br> NAS-IP-Address = AP's IP_ADD<br> NAS-Port = 1<br> NAS-Port-Id = "STA port # 1"<br>+- entering group authorize {...}<br>++[preprocess] returns ok<br>++[chap] returns noop<br>++[mschap] returns noop<br>[suffix] No '@' in User-Name = "MI_DOMINIO\ORTEGACA", looking up realm NULL<br>[suffix] No such realm "NULL"<br>++[suffix] returns noop<br>[eap] EAP packet type response id 1 length 80<br>[eap] Continuing tunnel setup.<br>++[eap] returns ok<br>Found Auth-Type = EAP<br>+- entering group authenticate {...}<br>[eap] Request found, released from the list<br>[eap] EAP/peap<br>[eap] processing type peap<br>[peap] processing EAP-TLS<br> TLS Length 70<br>[peap] Length Included<br>[peap] eaptls_verify returned 11 <br>[peap] (other): before/accept initialization <br>[peap] TLS_accept: before/accept initialization <br>[peap] <<< TLS 1.0 Handshake [length 0041], ClientHello <br>[peap] TLS_accept: SSLv3 read client hello A <br>[peap] >>> TLS 1.0 Handshake [length 002a], ServerHello <br>[peap] TLS_accept: SSLv3 write server hello A <br>[peap] >>> TLS 1.0 Handshake [length 06da], Certificate <br>[peap] TLS_accept: SSLv3 write certificate A <br>[peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone <br>[peap] TLS_accept: SSLv3 write server done A <br>[peap] TLS_accept: SSLv3 flush data <br>[peap] TLS_accept: Need to read more data: SSLv3 read client certificate A<br>In SSL Handshake Phase <br>In SSL Accept mode <br>[peap] eaptls_process returned 13 <br>[peap] EAPTLS_HANDLED<br>++[eap] returns handled<br>Sending Access-Challenge of id 1 to AP's IP_ADD port 1044<br> EAP-Message = 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<br> EAP-Message = 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<br> EAP-Message = 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<br> EAP-Message = 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<br> EAP-Message = 0x312e70647673612e636f6d31<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x3f0f6ba03e0d72e0b3955098d1e297ca<br>Finished request 1.<br>Going to the next request<br>Waking up in 4.9 seconds.<br>rad_recv: Access-Request packet from host AP's IP_ADD port 1044, id=2, length=212<br> Message-Authenticator = 0xf5bf8d910858176aa660a0b84bb59a47<br> Service-Type = Framed-User<br> User-Name = "MI_DOMINIO\\ORTEGACA"<br> Framed-MTU = 1488<br> State = 0x3f0f6ba03e0d72e0b3955098d1e297ca<br> Called-Station-Id = "00-18-39-1B-B3-F1:freeradiusg"<br> Calling-Station-Id = "00-1F-3C-2D-62-C1"<br> NAS-Identifier = "WAP55AG"<br> NAS-Port-Type = Wireless-802.11<br> Connect-Info = "CONNECT 54Mbps 802.11g"<br> EAP-Message = 0x020200061900<br> NAS-IP-Address = AP's IP_ADD<br> NAS-Port = 1<br> NAS-Port-Id = "STA port # 1"<br>+- entering group authorize {...}<br>++[preprocess] returns ok<br>++[chap] returns noop<br>++[mschap] returns noop<br>[suffix] No '@' in User-Name = "MI_DOMINIO\ORTEGACA", looking up realm NULL<br>[suffix] No such realm "NULL"<br>++[suffix] returns noop<br>[eap] EAP packet type response id 2 length 6<br>[eap] Continuing tunnel setup.<br>++[eap] returns ok<br>Found Auth-Type = EAP<br>+- entering group authenticate {...}<br>[eap] Request found, released from the list<br>[eap] EAP/peap<br>[eap] processing type peap<br>[peap] processing EAP-TLS<br>[peap] Received TLS ACK<br>[peap] ACK handshake fragment handler<br>[peap] eaptls_verify returned 1 <br>[peap] eaptls_process returned 13 <br>[peap] EAPTLS_HANDLED<br>++[eap] returns handled<br>Sending Access-Challenge of id 2 to AP's IP_ADD port 1044<br> EAP-Message = 0x01030327190021301f06092a864886f70d01090116126f727465676163614070647673612e636f6d301e170d3130303632393135323433335a170d3135303632383135323433335a308199310b30090603550406130256453110300e060355040813074d6972616e6461311330110603550407130a4c6f73205465717565733110300e060355040a1307496e7465766570310c300a060355040b13034149543120301e06035504031317786d6f62696c656662663434312e70647673612e636f6d3121301f06092a864886f70d01090116126f727465676163614070647673612e636f6d30819f300d06092a864886f70d010101050003818d00308189<br> EAP-Message = 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<br> EAP-Message = 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<br> EAP-Message = 0xe0f8ab382e453520b31f1571471622b3b167ad75a49437a3155d091693e09f027deedc3d875a9d16030100040e000000<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x3f0f6ba03d0c72e0b3955098d1e297ca<br>Finished request 2.<br>Going to the next request<br>Waking up in 4.9 seconds.<br>rad_recv: Access-Request packet from host AP's IP_ADD port 1044, id=3, length=212<br> Message-Authenticator = 0x816e317a044a6cc3f91a7f579f6126d5<br> Service-Type = Framed-User<br> User-Name = "MI_DOMINIO\\ORTEGACA"<br> Framed-MTU = 1488<br> State = 0x3f0f6ba03d0c72e0b3955098d1e297ca<br> Called-Station-Id = "00-18-39-1B-B3-F1:freeradiusg"<br> Calling-Station-Id = "00-1F-3C-2D-62-C1"<br> NAS-Identifier = "WAP55AG"<br> NAS-Port-Type = Wireless-802.11<br> Connect-Info = "CONNECT 54Mbps 802.11g"<br> EAP-Message = 0x020300061900<br> NAS-IP-Address = AP's IP_ADD<br> NAS-Port = 1<br> NAS-Port-Id = "STA port # 1"<br>+- entering group authorize {...}<br>++[preprocess] returns ok<br>++[chap] returns noop<br>++[mschap] returns noop<br>[suffix] No '@' in User-Name = "MI_DOMINIO\ORTEGACA", looking up realm NULL<br>[suffix] No such realm "NULL"<br>++[suffix] returns noop<br>[eap] EAP packet type response id 3 length 6<br>[eap] Continuing tunnel setup.<br>++[eap] returns ok<br>Found Auth-Type = EAP<br>+- entering group authenticate {...}<br>[eap] Request found, released from the list<br>[eap] EAP/peap<br>[eap] processing type peap<br>[peap] processing EAP-TLS<br>[peap] Received TLS ACK<br>[peap] ACK handshake fragment handler<br>[peap] eaptls_verify returned 1 <br>[peap] eaptls_process returned 13 <br>[peap] EAPTLS_HANDLED<br>++[eap] returns handled<br>Sending Access-Challenge of id 3 to AP's IP_ADD port 1044<br> EAP-Message = 0x010400061900<br> Message-Authenticator = 0x00000000000000000000000000000000<br> State = 0x3f0f6ba03c0b72e0b3955098d1e297ca<br>Finished request 3.<br>Going to the next request<br>Waking up in 4.9 seconds.<br>Cleaning up request 0 ID 0 with timestamp +0<br>Cleaning up request 1 ID 1 with timestamp +0<br>Cleaning up request 2 ID 2 with timestamp +0<br>Cleaning up request 3 ID 3 with timestamp +0<br>Ready to process requests.<br>^C<br>xmobileb155ce:~# <br><br>Some help is appreciate.<br><br>Regards,<br><br>Cesar<br> <br><hr>Invite your mail contacts to join your friends list with Windows Live Spaces. It's easy! <a href="http://spaces.live.com/spacesapi.aspx?wx_action=create&wx_url=/friends.aspx&mkt=en-us">Try it!</a> <br /><hr />Explore the seven wonders of the world <a href='http://search.msn.com/results.aspx?q=7+wonders+world&mkt=en-US&form=QBRE' target='_new'>Learn more!</a></body>
</html>