EAP/TLS PEAP on Suse 9.3 Ldap backend eDirectory

Daniel Hesse dhesse at mmrcsl.org
Wed Sep 21 21:07:47 CEST 2005 

cant seem to make it send the whole log 
 
 
RALINK SUPPLICANT....last try 
 
 
rad_recv: Access-Request packet from host 10.10.4.20:2543, id=212,
length=123 
        NAS-IP-Address = 10.10.4.20 
        NAS-Port-Type = Wireless-802.11 
        NAS-Port = 0 
        Framed-MTU = 1400 
        User-Name = dhesse 
        Calling-Station-Id = 001109229950 
        Called-Station-Id = 000e6acd7ff5 
        NAS-Identifier = dhlab_3com 
        EAP-Message = 0x0201000b01646865737365 
        Message-Authenticator = 0xf3433859c74cded00607917bab4695f2 
  Processing the authorize section of radiusd.conf 
modcall: entering group authorize for request 0 
  modcall[authorize]: module preprocess returns ok for request 0 
  modcall[authorize]: module chap returns noop for request 0 
  modcall[authorize]: module mschap returns noop for request 0 
    rlm_realm: No '@' in User-Name = dhesse, looking up realm NULL 
    rlm_realm: No such realm NULL 
  modcall[authorize]: module suffix returns noop for request 0 
  rlm_eap: EAP packet type response id 1 length 11 
  rlm_eap: No EAP Start, assuming it's an on-going EAP conversation 
  modcall[authorize]: module eap returns updated for request 0 
    users: Matched entry DEFAULT at line 152 
  modcall[authorize]: module files returns ok for request 0 
rlm_ldap: - authorize 
rlm_ldap: performing user authorization for dhesse 
radius_xlat:  '(uid=dhesse)' 
radius_xlat:  'o=StormLake' 
rlm_ldap: ldap_get_conn: Checking Id: 0 
rlm_ldap: ldap_get_conn: Got Id: 0 
rlm_ldap: attempting LDAP reconnection 
rlm_ldap: (re)connect to gwfs1.mmrcsl.org:389, authentication 0 
rlm_ldap: setting TLS CACert File to /etc/raddb/certs/mmrc-ca.b64 
rlm_ldap: setting TLS Require Cert to demand 
rlm_ldap: starting TLS 
rlm_ldap: bind as cn=radical,o=StormLake/g0usa^ to gwfs1.mmrcsl.org:389 
rlm_ldap: waiting for bind result ... 
rlm_ldap: Bind was successful 
rlm_ldap: performing search in o=StormLake, with filter (uid=dhesse) 
rlm_ldap: Added the eDirectory password in check items 
rlm_ldap: looking for check items in directory... 
rlm_ldap: looking for reply items in directory... 
rlm_ldap: user dhesse authorized to use remote access 
rlm_ldap: ldap_release_conn: Release Id: 0 
  modcall[authorize]: module ldap returns ok for request 0 
modcall: group authorize returns updated for request 0 
  rad_check_password:  Found Auth-Type EAP 
auth: type EAP 
  Processing the authenticate section of radiusd.conf 
modcall: entering group authenticate for request 0 
  rlm_eap: EAP Identity 
  rlm_eap: processing type tls 
  rlm_eap_tls: Initiate 
  rlm_eap_tls: Start returned 1 
  modcall[authenticate]: module eap returns handled for request 0 
modcall: group authenticate returns handled for request 0 
Sending Access-Challenge of id 212 to 10.10.4.20:2543 
        EAP-Message = 0x010200061920 
        Message-Authenticator = 0x00000000000000000000000000000000 
        State = 0xd42ed53b218b1d136112f3f7e82b0a57 
Finished request 0 
Going to the next request 
--- Walking the entire request list --- 
Waking up in 6 seconds... 
--- Walking the entire request list --- 
Cleaning up request 0 ID 212 with timestamp 43318085 
Nothing to do.  Sleeping until we see a request. 
 
 
 
rad_recv: Access-Request packet from host 10.10.4.20:2545, id=213,
length=123 
        NAS-IP-Address = 10.10.4.20 
        NAS-Port-Type = Wireless-802.11 
        NAS-Port = 0 
        Framed-MTU = 1400 
        User-Name = dhesse 
        Calling-Station-Id = 001109229950 
        Called-Station-Id = 000e6acd7ff5 
        NAS-Identifier = dhlab_3com 
        EAP-Message = 0x0201000b01646865737365 
        Message-Authenticator = 0x8d112d0f7b1bc7d921e7d92af52bd2e6 
  Processing the authorize section of radiusd.conf 
modcall: entering group authorize for request 1 
  modcall[authorize]: module preprocess returns ok for request 1 
  modcall[authorize]: module chap returns noop for request 1 
  modcall[authorize]: module mschap returns noop for request 1 
    rlm_realm: No '@' in User-Name = dhesse, looking up realm NULL 
    rlm_realm: No such realm NULL 
  modcall[authorize]: module suffix returns noop for request 1 
  rlm_eap: EAP packet type response id 1 length 11 
  rlm_eap: No EAP Start, assuming it's an on-going EAP conversation 
  modcall[authorize]: module eap returns updated for request 1 
    users: Matched entry DEFAULT at line 152 
  modcall[authorize]: module files returns ok for request 1 
rlm_ldap: - authorize 
rlm_ldap: performing user authorization for dhesse 
radius_xlat:  '(uid=dhesse)' 
radius_xlat:  'o=StormLake' 
rlm_ldap: ldap_get_conn: Checking Id: 0 
rlm_ldap: ldap_get_conn: Got Id: 0 
rlm_ldap: performing search in o=StormLake, with filter (uid=dhesse) 
rlm_ldap: Added the eDirectory password in check items 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20050921/5098ade5/attachment.html>

More information about the Freeradius-Users mailing list