EAP-MD5client"rlm_eap_md5 : Password is required for EAP-MD5 Authentication...

Arran Cudbard-Bell A.Cudbard-Bell at sussex.ac.uk
Mon Aug 6 08:44:44 CEST 2007 

rick norman wrote:
>> ----- Original Message -----
>> From: tnt at kalik.co.yu
>> To: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
>> Subject: Re: EAP-MD5client"rlm_eap_md5 : Password is required for EAP-MD5	Authentication...
>> Date: Mon, 06 Aug 2007 00:39:26 +0100
>>
>>
>> Use cleartext password:
>>
>> con_d   Cleartext-Password:="con_d"
>>
>>     
> Okay, I tried Cleartext-Password as well as ==.
> Still fails.
>
>  Following is the new complete output from radiusd -X for this session.
>   
Are you using an old version of FreeRADIUS ?

Cleartext password wasn't available in some of the earlier versions.

In that case use:

con_d    User-Password := "con_d"
>
> --------------------------------------------------------------------------------
>
> rad_recv: Access-Request packet from host 127.0.0.1:57360, id=184, length=63
>          User-Name = "con_d"
>          NAS-Identifier = "rick"
>          Message-Authenticator = 0x5f4c08498fcee5d8497d0a1ec083a4d0
>          EAP-Message = 0x0200000a01636f6e5f64
>    Processing the authorize section of radiusd.conf
> modcall: entering group authorize for request 0
>    modcall[authorize]: module "preprocess" returns ok for request 0
>    modcall[authorize]: module "chap" returns noop for request 0
>    modcall[authorize]: module "mschap" returns noop for request 0
>      rlm_realm: No '@' in User-Name = "con_d", looking up realm NULL
>      rlm_realm: No such realm "NULL"
>    modcall[authorize]: module "suffix" returns noop for request 0
>    rlm_eap: EAP packet type response id 0 length 10
>    rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
>    modcall[authorize]: module "eap" returns updated for request 0
>      users: Matched entry con_d at line 138
>    modcall[authorize]: module "files" returns ok for request 0
> modcall: leaving group authorize (returns updated) for request 0
>    rad_check_password:  Found Auth-Type EAP
> auth: type "EAP"
>    Processing the authenticate section of radiusd.conf
> modcall: entering group authenticate for request 0
>    rlm_eap: EAP Identity
>    rlm_eap: processing type md5
> rlm_eap_md5: Issuing Challenge
>    modcall[authenticate]: module "eap" returns handled for request 0
> modcall: leaving group authenticate (returns handled) for request 0
> Sending Access-Challenge of id 184 to 127.0.0.1 port 57360
>          EAP-Message = 0x010100160410e18639eeac9b901b1e0bd3444aca06f2
>          Message-Authenticator = 0x00000000000000000000000000000000
>          State = 0x6b43db4b270e35f227bf224ccd168b04
> Finished request 0
> Going to the next request
> --- Walking the entire request list ---
> Waking up in 6 seconds...
> rad_recv: Access-Request packet from host 127.0.0.1:57360, id=185, length=93
>          User-Name = "con_d"
>          NAS-Identifier = "rick"
>          State = 0x6b43db4b270e35f227bf224ccd168b04
>          Message-Authenticator = 0xca15f35d9c82f222c56e62e34928f6f1
>          EAP-Message = 0x02010016041037ab0f881c1fa98e477b0a5ad546b160
>    Processing the authorize section of radiusd.conf
> modcall: entering group authorize for request 1
>    modcall[authorize]: module "preprocess" returns ok for request 1
>    modcall[authorize]: module "chap" returns noop for request 1
>    modcall[authorize]: module "mschap" returns noop for request 1
>      rlm_realm: No '@' in User-Name = "con_d", looking up realm NULL
>      rlm_realm: No such realm "NULL"
>    modcall[authorize]: module "suffix" returns noop for request 1
>    rlm_eap: EAP packet type response id 1 length 22
>    rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
>    modcall[authorize]: module "eap" returns updated for request 1
>      users: Matched entry con_d at line 138
>    modcall[authorize]: module "files" returns ok for request 1
> modcall: leaving group authorize (returns updated) for request 1
>    rad_check_password:  Found Auth-Type EAP
> auth: type "EAP"
>    Processing the authenticate section of radiusd.conf
> modcall: entering group authenticate for request 1
>    rlm_eap: Request found, released from the list
>    rlm_eap: EAP/md5
>    rlm_eap: processing type md5
> rlm_eap_md5: User-Password is required for EAP-MD5 authentication
>   rlm_eap: Handler failed in EAP/md5
>    rlm_eap: Failed in EAP select
>    modcall[authenticate]: module "eap" returns invalid for request 1
> modcall: leaving group authenticate (returns invalid) for request 1
> auth: Failed to validate the user.
> Delaying request 1 for 1 seconds
> Finished request 1
> Going to the next request
> Waking up in 6 seconds...
> --- Walking the entire request list ---
> Cleaning up request 0 ID 184 with timestamp 46b647b8
> Sending Access-Reject of id 185 to 127.0.0.1 port 57360
>          EAP-Message = 0x04010004
>          Message-Authenticator = 0x00000000000000000000000000000000
> Cleaning up request 1 ID 185 with timestamp 46b647b8
> Nothing to do.  Sleeping until we see a request.
>
>  
>
>
>
>
>
>

More information about the Freeradius-Users mailing list