<div>Opa e ae blz?</div>
<div> </div>
<div>Vou fazer isso amanha, te mandei para teu email todo o diretorio do freeradius para voce dar uma olhada nos confs, estou ha 3 semanas tentando fazer essa implementacao e nao consigo cara.</div>
<div> </div>
<div>amanha de manha vou la tentar denovo.</div>
<div> </div>
<div>obrigado pela forca.<br><br></div>
<div class="gmail_quote">2010/11/24 Paulo Maia <span dir="ltr"><<a href="mailto:phc.maia@gmail.com">phc.maia@gmail.com</a>></span><br>
<blockquote style="BORDER-LEFT: #ccc 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">comment everything the users file . <br>Brasileiro mano ?
<div>
<div></div>
<div class="h5"><br><br>
<div class="gmail_quote">On Wed, Nov 24, 2010 at 9:31 AM, Old Eduardo <span dir="ltr"><<a href="mailto:oldeduardo@gmail.com" target="_blank">oldeduardo@gmail.com</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">
<div>no :(</div>
<div>in debug only appears auth type Local</div>
<div>see:</div>
<div>Wed Nov 24 08:30:54 2010 : Debug: +- entering group authorize<br>Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: calling preprocess (rlm_preprocess) for request 0<br>Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: returned from preprocess (rlm_preprocess) for request 0<br>
Wed Nov 24 08:30:54 2010 : Debug: ++[preprocess] returns ok<br>Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: calling mschap (rlm_mschap) for request 0<br>Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: returned from mschap (rlm_mschap) for request 0<br>
Wed Nov 24 08:30:54 2010 : Debug: ++[mschap] returns noop<br>Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: calling ldap (rlm_ldap) for request 0<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: - authorize<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: performing user authorization for ipe-dp<br>
Wed Nov 24 08:30:54 2010 : Debug: WARNING: Deprecated conditional expansion ":-". See "man unlang" for details<br>Wed Nov 24 08:30:54 2010 : Debug: expand: (uid=%{Stripped-User-Name:-%{User-Name}}) -> (uid=ipe-dp)<br>
Wed Nov 24 08:30:54 2010 : Debug: expand: dc=policiacivil,dc=rs,dc=gov,dc=br -> dc=policiacivil,dc=rs,dc=gov,dc=br<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: ldap_get_conn: Checking Id: 0<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: ldap_get_conn: Got Id: 0<br>
Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: attempting LDAP reconnection<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: (re)connect to ldap.intra proxy.intra localhost:389, authentication 0<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: bind as uid=vpnpptp,ou=sistemas,dc=policiacivil,dc=rs,dc=gov,dc=br/dfjk129!@ to ldap.intra proxy.intra localhost:389<br>
Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: waiting for bind result ...<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: Bind was successful<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: performing search in dc=policiacivil,dc=rs,dc=gov,dc=br, with filter (uid=ipe-dp)<br>
Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: Added User-Password = {SSHA}dd3MzvDRyDeyeuDkPTy391H3FX2vynZl in check items<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: No default NMAS login sequence<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: looking for check items in directory...<br>
Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: LDAP attribute userpassword as RADIUS attribute Cleartext-Password == "{SSHA}dd3MzvDRyDeyeuDkPTy391H3FX2vynZl"<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: LDAP attribute sambaNtPassword as RADIUS attribute NT-Password == 0x3244413944423342333039463632333434374232384536393635374142333642<br>
Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: LDAP attribute sambaLmPassword as RADIUS attribute LM-Password == 0x3845433036323546444141393630353041414433423433354235313430344545<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: looking for reply items in directory...<br>
Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: user ipe-dp authorized to use remote access<br>Wed Nov 24 08:30:54 2010 : Debug: rlm_ldap: ldap_release_conn: Release Id: 0<br>Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: returned from ldap (rlm_ldap) for request 0<br>
Wed Nov 24 08:30:54 2010 : Debug: ++[ldap] returns ok<br>Wed Nov 24 08:30:54 2010 : Debug: auth: type Local<br>Wed Nov 24 08:30:54 2010 : Debug: auth: user supplied User-Password does NOT match local User-Password<br>Wed Nov 24 08:30:54 2010 : Debug: auth: Failed to validate the user.<br>
Wed Nov 24 08:30:54 2010 : Auth: Login incorrect: [ipe-dp/\367ҿb5�?\327H6*c\244:\301\245] (from client localhost port 0)<br>Wed Nov 24 08:30:54 2010 : Debug: WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!<br>
Wed Nov 24 08:30:54 2010 : Debug: Delaying reject of request 0 for 1 seconds<br>Wed Nov 24 08:30:54 2010 : Debug: Going to the next request<br>Wed Nov 24 08:30:54 2010 : Debug: Waking up in 0.9 seconds.<br>Wed Nov 24 08:30:55 2010 : Debug: Sending delayed reject for request 0<br>
Sending Access-Reject of id 78 to 127.0.0.1 port 58611<br>Wed Nov 24 08:30:55 2010 : Debug: Waking up in 4.9 seconds.<br>rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=78, length=20<br>rad_verify: Received Access-Reject packet from client 127.0.0.1 port 1812 with invalid signature (err=2)! (Shared secret is incorrect.)<br>
^Cdebian:/etc/freeradius/sites-enabled# Wed Nov 24 08:31:00 2010 : Debug: Cleaning up request 0 ID 78 with timestamp +5<br></div>
<div>ty for u help.<br><br></div>
<div>
<div></div>
<div>
<div class="gmail_quote">2010/11/24 Paulo Maia <span dir="ltr"><<a href="mailto:phc.maia@gmail.com" target="_blank">phc.maia@gmail.com</a>></span><br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">It works ?
<div>
<div></div>
<div><br><br><br>
<div class="gmail_quote">On Wed, Nov 24, 2010 at 8:47 AM, Old Eduardo <span dir="ltr"><<a href="mailto:oldeduardo@gmail.com" target="_blank">oldeduardo@gmail.com</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">
<div>ok i found this.</div>
<div> </div>
<div>sites-enabled/default</div>
<div> </div>
<div>eap auth mode.<br><br></div>
<div class="gmail_quote">2010/11/24 Paulo Maia <span dir="ltr"><<a href="mailto:phc.maia@gmail.com" target="_blank">phc.maia@gmail.com</a>></span>
<div>
<div></div>
<div><br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">What auth method u're trying to use ? <br>EAP/PEAP ?<br><br>Regards ,
<div>
<div></div>
<div><br><br><br>
<div class="gmail_quote">On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo <span dir="ltr"><<a href="mailto:oldeduardo@gmail.com" target="_blank">oldeduardo@gmail.com</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">
<div>HI Paulo,</div>
<div> </div>
<div>Thanks for u reply, see below my authenticate and authorize session.</div>
<div> </div>
<div>authorize {<br> preprocess<br> mschap<br> ldap<br>}<br></div>
<div> </div>
<div>authenticate {<br> Auth-Type LDAP {<br> ldap<br> }<br> Auth-Type MS-CHAP {<br> mschap<br> }</div>
<div>}<br></div>
<div><br><br> </div>
<div class="gmail_quote">2010/11/23 Paulo Maia <span dir="ltr"><<a href="mailto:phc.maia@gmail.com" target="_blank">phc.maia@gmail.com</a>></span>
<div>
<div></div>
<div><br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">Show us your authorize and authenticate session . I had a problem like that once <br><br>Regards ,
<div>
<div></div>
<div><br><br>
<div class="gmail_quote">On Tue, Nov 23, 2010 at 9:49 AM, Old Eduardo <span dir="ltr"><<a href="mailto:oldeduardo@gmail.com" target="_blank">oldeduardo@gmail.com</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">
<div>sorry alan, i understand need to read debug.</div>
<div> </div>
<div>But, i see secret in clients and my test radtest user pass ip 0 secret is corretly.</div>
<div> </div>
<div>And my other doubt is in auth type = Local, why local if i put auth type LDAP in configuration? Only get local ...</div>
<div> </div>
<div>Realy sorry for this, but need u help.</div>
<div> </div>
<div>Regards,</div>
<div><br> </div>
<div class="gmail_quote">2010/11/23 Alan DeKok <span dir="ltr"><<a href="mailto:aland@deployingradius.com" target="_blank">aland@deployingradius.com</a>></span><br>
<blockquote style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">
<div>Old Eduardo wrote:<br>> but i try to configure this in few weeks and no get sucess.<br><br></div> Ask questions earlier.<br><br> Or, read the debug output.<br>
<div><br>> Tue Nov 23 07:37:24 2010 : Debug: WARNING: Unprintable characters in<br>> the password. Double-check the shared secret on the server and the NAS!<br><br></div> That message seems pretty clear.<br><font color="#888888"><br>
Alan DeKok.<br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br></font></blockquote></div><br><br clear="all">
<br>-- <br>Old Eduardo ...<br><br>make a difference ...<br><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote></div><br></div></div><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br></blockquote></div></div>
</div>
<div>
<div></div>
<div><br><br clear="all"><br>-- <br>Old Eduardo ...<br><br>make a difference ...<br></div></div><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote></div><br></div></div><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br></blockquote></div></div>
</div>
<div>
<div></div>
<div><br><br clear="all"><br>-- <br>Old Eduardo ...<br><br>make a difference ...<br></div></div><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote></div><br></div></div><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br></blockquote></div><br>
<br clear="all"><br>-- <br>Old Eduardo ...<br><br>make a difference ...<br></div></div><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote></div><br></div></div><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br></blockquote></div><br>
<br clear="all"><br>-- <br>Old Eduardo ...<br><br>make a difference ...<br>