EAP (PEAP) problems

Drew Linsalata drew at gothambus.com
Wed May 31 21:58:40 CEST 2006


This is freeradius 1.1.1 with a Proxim/Orinoco AP700.  We're configured 
to use PEAP.  We seem to be hung up on the EAP start from the AP. 
Here's some log output.  Note the "No EAP Start" part, which I think 
tells us that the AP isn't relaying the EAP Start properly from the 
supplicant.

Any feedback from the gurus? (-:


rad_recv: Access-Request packet from host ***.***.***.***:6001, id=22, 
length=154
         User-Name = "testtwo"
         NAS-IP-Address = ***.***.***.***
         Called-Station-Id = "00-20-a6-5d-9c-d1:ourtestssid"
         Calling-Station-Id = "00-20-a6-4c-16-7f"
         NAS-Identifier = "ORiNOCO-AP-700-5d-9c-d1"
         Framed-MTU = 1400
         NAS-Port-Type = Wireless-802.11
         EAP-Message = 0x0204000c017465737474776f
         Message-Authenticator = 0x62af36a7da3b8f655c8a9cda6dba34eb
Wed May 31 13:50:59 2006 : Debug:   Processing the authorize section of 
radiusd.conf
Wed May 31 13:50:59 2006 : Debug: modcall: entering group authorize for 
request 3
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: calling 
preprocess (rlm_preprocess) for request 3
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: returned from 
preprocess (rlm_preprocess) for request 3
Wed May 31 13:50:59 2006 : Debug:   modcall[authorize]: module 
"preprocess" returns ok for request 3
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: calling suffix 
(rlm_realm) for request 3
Wed May 31 13:50:59 2006 : Debug:     rlm_realm: No '@' in User-Name = 
"testtwo", looking up realm NULL
Wed May 31 13:50:59 2006 : Debug:     rlm_realm: No such realm "NULL"
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: returned from 
suffix (rlm_realm) for request 3
Wed May 31 13:50:59 2006 : Debug:   modcall[authorize]: module "suffix" 
returns noop for request 3
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: calling eap 
(rlm_eap) for request 3
Wed May 31 13:50:59 2006 : Debug:   rlm_eap: EAP packet type response id 
4 length 12
Wed May 31 13:50:59 2006 : Debug:   rlm_eap: No EAP Start, assuming it's 
an on-going EAP conversation
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: returned from 
eap (rlm_eap) for request 3
Wed May 31 13:50:59 2006 : Debug:   modcall[authorize]: module "eap" 
returns updated for request 3
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: calling files 
(rlm_files) for request 3
Wed May 31 13:50:59 2006 : Debug:     users: Matched entry testtwo at line 2
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: returned from 
files (rlm_files) for request 3
Wed May 31 13:50:59 2006 : Debug:   modcall[authorize]: module "files" 
returns ok for request 3
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: calling mschap 
(rlm_mschap) for request 3
Wed May 31 13:50:59 2006 : Debug:   modsingle[authorize]: returned from 
mschap (rlm_mschap) for request 3
Wed May 31 13:50:59 2006 : Debug:   modcall[authorize]: module "mschap" 
returns noop for request 3
Wed May 31 13:50:59 2006 : Debug: modcall: leaving group authorize 
(returns updated) for request 3
Wed May 31 13:50:59 2006 : Debug:   rad_check_password:  Found Auth-Type 
Accept
Wed May 31 13:50:59 2006 : Debug:   rad_check_password: Auth-Type = 
Accept, accepting the user
Wed May 31 13:50:59 2006 : Auth: Login OK: [testtwo/<no User-Password 
attribute>] (from client testAP port 0 cli 00-20-a6-4c-16-7f)
Sending Access-Accept of id 22 to ***.***.***.*** port 6001
Wed May 31 13:50:59 2006 : Debug: Finished request 3
Wed May 31 13:50:59 2006 : Debug: Going to the next request
Wed May 31 13:50:59 2006 : Debug: --- Walking the entire request list ---
Wed May 31 13:50:59 2006 : Debug: Waking up in 6 seconds...
Wed May 31 13:51:05 2006 : Debug: --- Walking the entire request list ---
Wed May 31 13:51:05 2006 : Debug: Cleaning up request 3 ID 22 with 
timestamp 447dd783
Wed May 31 13:51:05 2006 : Debug: Nothing to do.  Sleeping until we see 
a request.



-- 

Drew Linsalata
The Gotham Bus Company, Inc.
Dedicated Servers and Colocation Solutions
Long Island, New York
http://www.gothambus.com



More information about the Freeradius-Users mailing list