EAP (PEAP) problems
Drew Linsalata
drew at gothambus.com
Wed May 31 21:58:40 CEST 2006
This is freeradius 1.1.1 with a Proxim/Orinoco AP700. We're configured
to use PEAP. We seem to be hung up on the EAP start from the AP.
Here's some log output. Note the "No EAP Start" part, which I think
tells us that the AP isn't relaying the EAP Start properly from the
supplicant.
Any feedback from the gurus? (-:
rad_recv: Access-Request packet from host ***.***.***.***:6001, id=22,
length=154
User-Name = "testtwo"
NAS-IP-Address = ***.***.***.***
Called-Station-Id = "00-20-a6-5d-9c-d1:ourtestssid"
Calling-Station-Id = "00-20-a6-4c-16-7f"
NAS-Identifier = "ORiNOCO-AP-700-5d-9c-d1"
Framed-MTU = 1400
NAS-Port-Type = Wireless-802.11
EAP-Message = 0x0204000c017465737474776f
Message-Authenticator = 0x62af36a7da3b8f655c8a9cda6dba34eb
Wed May 31 13:50:59 2006 : Debug: Processing the authorize section of
radiusd.conf
Wed May 31 13:50:59 2006 : Debug: modcall: entering group authorize for
request 3
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: calling
preprocess (rlm_preprocess) for request 3
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: returned from
preprocess (rlm_preprocess) for request 3
Wed May 31 13:50:59 2006 : Debug: modcall[authorize]: module
"preprocess" returns ok for request 3
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: calling suffix
(rlm_realm) for request 3
Wed May 31 13:50:59 2006 : Debug: rlm_realm: No '@' in User-Name =
"testtwo", looking up realm NULL
Wed May 31 13:50:59 2006 : Debug: rlm_realm: No such realm "NULL"
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: returned from
suffix (rlm_realm) for request 3
Wed May 31 13:50:59 2006 : Debug: modcall[authorize]: module "suffix"
returns noop for request 3
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: calling eap
(rlm_eap) for request 3
Wed May 31 13:50:59 2006 : Debug: rlm_eap: EAP packet type response id
4 length 12
Wed May 31 13:50:59 2006 : Debug: rlm_eap: No EAP Start, assuming it's
an on-going EAP conversation
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: returned from
eap (rlm_eap) for request 3
Wed May 31 13:50:59 2006 : Debug: modcall[authorize]: module "eap"
returns updated for request 3
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: calling files
(rlm_files) for request 3
Wed May 31 13:50:59 2006 : Debug: users: Matched entry testtwo at line 2
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: returned from
files (rlm_files) for request 3
Wed May 31 13:50:59 2006 : Debug: modcall[authorize]: module "files"
returns ok for request 3
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: calling mschap
(rlm_mschap) for request 3
Wed May 31 13:50:59 2006 : Debug: modsingle[authorize]: returned from
mschap (rlm_mschap) for request 3
Wed May 31 13:50:59 2006 : Debug: modcall[authorize]: module "mschap"
returns noop for request 3
Wed May 31 13:50:59 2006 : Debug: modcall: leaving group authorize
(returns updated) for request 3
Wed May 31 13:50:59 2006 : Debug: rad_check_password: Found Auth-Type
Accept
Wed May 31 13:50:59 2006 : Debug: rad_check_password: Auth-Type =
Accept, accepting the user
Wed May 31 13:50:59 2006 : Auth: Login OK: [testtwo/<no User-Password
attribute>] (from client testAP port 0 cli 00-20-a6-4c-16-7f)
Sending Access-Accept of id 22 to ***.***.***.*** port 6001
Wed May 31 13:50:59 2006 : Debug: Finished request 3
Wed May 31 13:50:59 2006 : Debug: Going to the next request
Wed May 31 13:50:59 2006 : Debug: --- Walking the entire request list ---
Wed May 31 13:50:59 2006 : Debug: Waking up in 6 seconds...
Wed May 31 13:51:05 2006 : Debug: --- Walking the entire request list ---
Wed May 31 13:51:05 2006 : Debug: Cleaning up request 3 ID 22 with
timestamp 447dd783
Wed May 31 13:51:05 2006 : Debug: Nothing to do. Sleeping until we see
a request.
--
Drew Linsalata
The Gotham Bus Company, Inc.
Dedicated Servers and Colocation Solutions
Long Island, New York
http://www.gothambus.com
More information about the Freeradius-Users
mailing list