LEAP

Sayantan Bhowmick sbhowmick at novell.com
Fri Jan 20 06:18:19 CET 2006


Hi ,
    Please use the latest version of FreeRADIUS (1.1.0). This includes
the the eDirectory integration and you should be able to set up LEAP
authentication with it. Please refer to the following links which
contain documentation on eDirectory integration with FreeRADIUS.
http://www.novell.com/documentation/edir_radius/index.html

-Sayantan.
 
> rad_recv: Access- Request packet from host 172.31.1.79:1645, id=5,
length=131
>         User- Name = "testrad"
>         Framed- MTU = 1400
>         Called- Station- Id = "0015.f947.8560"
>         Calling- Station- Id = "0012.f0e3.7896"
>         Service- Type = Login- User
>         Message- Authenticator = 0xa00609077f82a3396080dcdcc8019804
>         EAP- Message = 0x0201000c0174657374726164
>         NAS- Port- Type = Wireless- 802.11
>         NAS- Port = 466
>         NAS- IP- Address = 172.31.1.79
>         NAS- Identifier = "TESTAP"
> modcall: entering group authorize for request 1
>   modcall[authorize]: module "preprocess" returns ok for request 1
>     rlm_realm: No '@' in User- Name = "testrad", looking up realm
NULL
>     rlm_realm: No such realm "NULL"
>   modcall[authorize]: module "suffix" returns noop for request 1
>     users: Matched DEFAULT at 152
>   modcall[authorize]: module "files" returns ok for request 1
>   modcall[authorize]: module "chap" returns noop for request 1
> rlm_ldap: -  authorize
> rlm_ldap: performing user authorization for testrad
> radius_xlat:  '(uid=testrad)'
> radius_xlat:  'o=Village'
> ldap_get_conn: Got Id: 0
> rlm_ldap: performing search in o=Village, with filter (uid=testrad)
> rlm_ldap: checking if remote access for testrad is allowed by
dialupAccess
> rlm_ldap: looking for check items in directory...
> rlm_ldap: looking for reply items in directory...
> rlm_ldap: user testrad authorized to use remote access
> ldap_release_conn: Release Id: 0
>   modcall[authorize]: module "ldap" returns ok for request 1
> modcall: group authorize returns ok for request 1
>   rad_check_password:  Found Auth- Type LDAP
> auth: type "LDAP"
> modcall: entering group Auth- Type for request 1
> rlm_ldap: -  authenticate
> rlm_ldap: Attribute "User- Password" is required for authentication.
>   modcall[authenticate]: module "ldap" returns invalid for request 1
> modcall: group Auth- Type returns invalid for request 1
> auth: Failed to validate the user.
> Login incorrect: [testrad/<no User- Password attribute>] (from client
testap 
> port 466 cli 0012.f0e3.7896)
> Delaying request 1 for 1 seconds
> Finished request 1
> Going to the next request
> ---  Walking the entire request list ---
> Waking up in 1 seconds...
> ---  Walking the entire request list ---
> Waking up in 1 seconds...
> ---  Walking the entire request list ---
> Sending Access- Reject of id 5 to 172.31.1.79:1645
> Waking up in 4 seconds...
> 
> 
> 
> I can authenticate using a small utility called NTRadPing Test
Utility from 
> my desktop directly connecting to Freeradius.
> 
> any thoughts?
> 
> 
> 
> Thank you,
> John Peebles
> Village of Hoffman Estates
> IS Specialist
> (847) 882- 9100 x2500
> 
> 
> 
> -  
> List info/subscribe/unsubscribe? See 
> http://www.freeradius.org/list/users.html





More information about the Freeradius-Users mailing list