Here is the output from the debug screen... The authorization process as below loops when I switch on the encryption. Without any encryption it works quite perfect. Or is it 'not' possible to use mac authentication and WEP/WPA with preshared key at the same time? *NoIdeaWhatHappens* - - - - - - - - - Module: Instantiated detail (reply_log) Listening on authentication *:1812 Listening on accounting *:1813 Ready to process requests. rad_recv: Access-Request packet from host 172.19.0.11:1261, id=188, length=73 User-Name = "00-19-d2-2a-61-50" User-Password = 00-19-d2-2a-61-50" Processing the authorize section of radiusd.conf modcall: entering group authorize for request 0 modcall[authorize]: module "preprocess" returns ok for request 0 radius_xlat: '../var/log/radius/radacct/172.19.0.11/auth-detail-20070613.log' rlm_detail: ../var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d.lo g expands to ../var/log/radius/radacct/172.19.0.11/auth-detail-20070613.log modcall[authorize]: module "auth_log" returns ok for request 0 rlm_realm: No '@' in User-Name = "00-19-d2-2a-61-50", looking up realm NULL rlm_realm: No such realm "NULL" modcall[authorize]: module "suffix" returns noop for request 0 users: Matched entry 00-19-d2-2a-61-50 at line 3 modcall[authorize]: module "files" returns ok for request 0 rlm_pap: Found existing Auth-Type, not changing it. modcall[authorize]: module "pap" returns noop for request 0 modcall: leaving group authorize (returns ok) for request 0 rad_check_password: Found Auth-Type Accept rad_check_password: Auth-Type = Accept, accepting the user Login OK: [00-19-d2-2a-61-50/00-19-d2-2a-61-50] (from client wlanedv port 0) Processing the post-auth section of radiusd.conf modcall: entering group post-auth for request 0 radius_xlat: '../var/log/radius/radacct/172.19.0.11/reply-detail-20070613.log' rlm_detail: ../var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d.l og expands to ../var/log/radius/radacct/172.19.0.11/reply-detail-20070613.log modcall[post-auth]: module "reply_log" returns ok for request 0 modcall: leaving group post-auth (returns ok) for request 0 Sending Access-Accept of id 188 to 172.19.0.11 port 1261 Finished request 0 Going to the next request - - - - - - - - Wavin GmbH - Sitz der Gesellschaft: 49767 Twist - Registergericht: AG Osnabr�ck Abt. B 120003 - Gesch�ftsf�hrung: J�rgen Frei, Maarten Roef - Vors.d. Aufsichtsrates: Henk ten Hove
Klaus.Albers@wavin.de wrote:
Here is the output from the debug screen... The authorization process as below loops when I switch on the encryption. Without any encryption it works quite perfect.
Or is it 'not' possible to use mac authentication and WEP/WPA with preshared key at the same time?
That's really up to your AP. ...
Sending Access-Accept of id 188 to 172.19.0.11 port 1261
FreeRADIUS is telling the AP that the MAC is OK. If the AP tries to authenticate again with the same MAC address, it's broken. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
OK. So your client gets accepted. You will need to look at NAS logs to see where the connection breaks. Radius is working fine. Ivan Kalik Kalik Informatika ISP Dana 13/6/2007, "Klaus.Albers@wavin.de" <Klaus.Albers@wavin.de> piše:
Here is the output from the debug screen... The authorization process as below loops when I switch on the encryption. Without any encryption it works quite perfect.
Or is it 'not' possible to use mac authentication and WEP/WPA with preshared key at the same time?
*NoIdeaWhatHappens*
- - - - - - - - -
Module: Instantiated detail (reply_log) Listening on authentication *:1812 Listening on accounting *:1813 Ready to process requests. rad_recv: Access-Request packet from host 172.19.0.11:1261, id=188, length=73 User-Name = "00-19-d2-2a-61-50" User-Password = 00-19-d2-2a-61-50" Processing the authorize section of radiusd.conf modcall: entering group authorize for request 0 modcall[authorize]: module "preprocess" returns ok for request 0 radius_xlat: '../var/log/radius/radacct/172.19.0.11/auth-detail-20070613.log' rlm_detail: .../var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d.lo g expands to .../var/log/radius/radacct/172.19.0.11/auth-detail-20070613.log modcall[authorize]: module "auth_log" returns ok for request 0 rlm_realm: No '@' in User-Name = "00-19-d2-2a-61-50", looking up realm NULL rlm_realm: No such realm "NULL" modcall[authorize]: module "suffix" returns noop for request 0 users: Matched entry 00-19-d2-2a-61-50 at line 3 modcall[authorize]: module "files" returns ok for request 0 rlm_pap: Found existing Auth-Type, not changing it. modcall[authorize]: module "pap" returns noop for request 0 modcall: leaving group authorize (returns ok) for request 0 rad_check_password: Found Auth-Type Accept rad_check_password: Auth-Type = Accept, accepting the user Login OK: [00-19-d2-2a-61-50/00-19-d2-2a-61-50] (from client wlanedv port 0) Processing the post-auth section of radiusd.conf modcall: entering group post-auth for request 0 radius_xlat: '../var/log/radius/radacct/172.19.0.11/reply-detail-20070613.log' rlm_detail: .../var/log/radius/radacct/%{Client-IP-Address}/reply-detail-%Y%m%d.l og expands to .../var/log/radius/radacct/172.19.0.11/reply-detail-20070613.log modcall[post-auth]: module "reply_log" returns ok for request 0 modcall: leaving group post-auth (returns ok) for request 0 Sending Access-Accept of id 188 to 172.19.0.11 port 1261 Finished request 0 Going to the next request - - - - - - - -
Wavin GmbH - Sitz der Gesellschaft: 49767 Twist - Registergericht: AG Osnabrück Abt. B 120003 - Geschäftsführung: Jürgen Frei, Maarten Roef - Vors.d. Aufsichtsrates: Henk ten Hove
participants (3)
-
Alan Dekok -
Klaus.Albers@wavin.de -
tnt@kalik.co.yu