EAP-TTLS and PEAP auth problem ... sorry!!

Gandalf the Gray gtheg1 at yahoo.com
Mon Jul 4 13:22:41 CEST 2005 

I forgot to explain the real problem!

I cannot authenticate any user, try to connect to my
network through a supplicant, both from Windows and
from WPA-supplicant under Linux.

It seems no EAP-challenge is really going on.
this is the output from tre radius server after a try
made by AEGIS client under windows XP, with PEAP
MSCHAPv2.


rad_recv: Access-Request packet from host
192.168.127.36:21646, id=105, length=131
        User-Name = "attoo"
        Framed-MTU = 1400
        Called-Station-Id = "00-12-D9-B3-26-90"
        Calling-Station-Id = "00-0C-30-28-A6-65"
        Message-Authenticator =
0xd58f44466d3cc004486c04c445cfc4e7
        EAP-Message = 0x0202000a016174746f6f
        NAS-Port-Type = Wireless-802.11
        NAS-Port = 507
        Service-Type = Framed-User
        NAS-IP-Address = 192.168.127.36
        NAS-Identifier = "appi"
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 251
  modcall[authorize]: module "preprocess" returns ok
for request 251
  modcall[authorize]: module "mschap" returns noop for
request 251
    rlm_realm: No '@' in User-Name = "attoo", skipping
NULL due to config.
  modcall[authorize]: module "suffix" returns noop for
request 251
  rlm_eap: EAP packet type response id 2 length 10
  rlm_eap: No EAP Start, assuming it's an on-going EAP
conversation
  modcall[authorize]: module "eap" returns updated for
request 251
    users: Matched entry DEFAULT at line 152
  modcall[authorize]: module "files" returns ok for
request 251
modcall: group authorize returns updated for request
251
  rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
  Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 251
  rlm_eap: EAP Identity
  rlm_eap: processing type tls
  rlm_eap_tls: Initiate
  rlm_eap_tls: Start returned 1
  modcall[authenticate]: module "eap" returns handled
for request 251
modcall: group authenticate returns handled for
request 251
Sending Access-Challenge of id 105 to
192.168.127.36:21646
        EAP-Message = 0x010300061920
        Message-Authenticator =
0x00000000000000000000000000000000
        State = 0xfb61d0352bd2bf83c854f36b74c91b5c
Finished request 251
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
rad_recv: Access-Request packet from host
192.168.127.36:21646, id=105, length=131
Sending duplicate reply to client appi:21646 - ID: 105
Re-sending Access-Challenge of id 105 to
192.168.127.36:21646
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Cleaning up request 251 ID 105 with timestamp 42c9343a



One more time, thank you very much for your help!!

Gtheg



		
____________________________________________________ 
Yahoo! Sports 
Rekindle the Rivalries. Sign up for Fantasy Football 
http://football.fantasysports.yahoo.com

More information about the Freeradius-Users mailing list