problem with eap-tls authentication
HBA BOX
hba_box at yahoo.fr
Tue Aug 28 10:29:39 CEST 2007
Hello,
I'm using radius server and and linksys access point configured to use radius security mode and windows xp in my laptop as wlan client configured like that:
network authentication: open
data encryption: WEP
enable IEEE 802.1x authentication for this NW
EAP type: smartcard or other certificate
use a certificateon this computer
use a simple certificate selection
for the configuration of the radius server and certificate creation i have followed the EAP/TLS HOWTO .when I start connection I'm having the following problem in radius.log:
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:05:26 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:05:56 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:05:56 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:06:26 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:26 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:06:57 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:06:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:07:27 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:07:57 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:07:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:08:27 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:27 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Length Included
Tue Aug 28 09:08:57 2007 : Error: TLS_accept:error in SSLv3 read client certificate A
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Tue Aug 28 09:08:57 2007 : Info: rlm_eap_tls: Received EAP-TLS ACK message
and when I started using radius -X i have the following:
rad_recv: Access-Request packet from host 192.168.0.211:2057, id=0, length=146
User-Name = "habiba allalou"
NAS-IP-Address = 192.168.0.211
Called-Station-Id = "0014bf3d0272"
Calling-Station-Id = "0019d217e488"
NAS-Identifier = "0014bf3d0272"
NAS-Port = 59
Framed-MTU = 1400
State = 0xefb1f9a519b0db2939e6698d5912be56
NAS-Port-Type = Wireless-802.11
EAP-Message = 0x021000060d00
Message-Authenticator = 0xac77fcd608f970b68812970687a7b3f7
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 105
modcall[authorize]: module "preprocess" returns ok for request 105
modcall[authorize]: module "chap" returns noop for request 105
modcall[authorize]: module "mschap" returns noop for request 105
rlm_realm: No '@' in User-Name = "habiba allalou", skipping NULL due to config.
modcall[authorize]: module "suffix" returns noop for request 105
rlm_eap: EAP packet type response id 16 length 6
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
modcall[authorize]: module "eap" returns updated for request 105
users: Matched entry DEFAULT at line 152
modcall[authorize]: module "files" returns ok for request 105
modcall: group authorize returns updated for request 105
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 105
rlm_eap: Request found, released from the list
rlm_eap: EAP/tls
rlm_eap: processing type tls
rlm_eap_tls: Authenticate
rlm_eap_tls: processing TLS
rlm_eap_tls: Received EAP-TLS ACK message
rlm_eap_tls: ack handshake fragment handler
eaptls_verify returned 1
eaptls_process returned 13
modcall[authenticate]: module "eap" returns handled for request 105
modcall: group authenticate returns handled for request 105
Sending Access-Challenge of id 0 to 192.168.0.211:2057
EAP-Message = 0x0111040a0dc000004000060355040a131e41432043616d65726669726d61205341204349462041383237343332383731233021060355040b131a687474703a2f2f7777772e6368616d6265727369676e2e6f726731223020060355040313194368616d62657273206f6620436f6d6d6572636520526f6f74007f307d310b300906035504061302455531273025060355040a131e41432043616d65726669726d61205341204349462041383237343332383731233021060355040b131a687474703a2f2f7777772e6368616d6265727369676e2e6f72673120301e06035504031317476c6f62616c204368616d6265727369676e20526f6f7400b23081
EAP-Message = 0xaf310b30090603550406130248553110300e0603550408130748756e676172793111300f06035504071308427564617065737431273025060355040a131e4e65744c6f636b2048616c6f7a617462697a746f6e73616769204b66742e311a3018060355040b131154616e7573697476616e796b6961646f6b313630340603550403132d4e65744c6f636b204b6f7a6a6567797a6f692028436c6173732041292054616e7573697476616e796b6961646f009c308199310b30090603550406130248553111300f06035504071308427564617065737431273025060355040a131e4e65744c6f636b2048616c6f7a617462697a746f6e73616769204b6674
EAP-Message = 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
EAP-Message = 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
EAP-Message = 0x1c537461726669656c6420546563686e6f6c6f676965
Message-Authenticator = 0x00000000000000000000000000000000
State = 0x729437f6c5463c2e5b4e9bf127df4f1a
Finished request 105
Going to the next request
Waking up in 6 seconds...
rad_recv: Access-Request packet from host 192.168.0.211:2057, id=0, length=146
User-Name = "habiba allalou"
NAS-IP-Address = 192.168.0.211
Called-Station-Id = "0014bf3d0272"
Calling-Station-Id = "0019d217e488"
NAS-Identifier = "0014bf3d0272"
NAS-Port = 59
Framed-MTU = 1400
State = 0x729437f6c5463c2e5b4e9bf127df4f1a
NAS-Port-Type = Wireless-802.11
EAP-Message = 0x021100060d00
Message-Authenticator = 0x49afb397ba61bd8b2efd610433dd072e
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 106
modcall[authorize]: module "preprocess" returns ok for request 106
modcall[authorize]: module "chap" returns noop for request 106
modcall[authorize]: module "mschap" returns noop for request 106
rlm_realm: No '@' in User-Name = "habiba allalou", skipping NULL due to config.
modcall[authorize]: module "suffix" returns noop for request 106
rlm_eap: EAP packet type response id 17 length 6
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
modcall[authorize]: module "eap" returns updated for request 106
users: Matched entry DEFAULT at line 152
modcall[authorize]: module "files" returns ok for request 106
modcall: group authorize returns updated for request 106
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 106
rlm_eap: Request found, released from the list
rlm_eap: EAP/tls
rlm_eap: processing type tls
rlm_eap_tls: Authenticate
rlm_eap_tls: processing TLS
rlm_eap_tls: Received EAP-TLS ACK message
rlm_eap_tls: ack handshake fragment handler
eaptls_verify returned 1
eaptls_process returned 13
modcall[authenticate]: module "eap" returns handled for request 106
modcall: group authenticate returns handled for request 106
Sending Access-Challenge of id 0 to 192.168.0.211:2057
EAP-Message = 0x0112040a0d8000004000732c20496e632e31323030060355040b1329537461726669656c6420436c61737320322043657274696669636174696f6e20417574686f7269747900ca3081c7310b3009060355040613025553311730150603550408130e4e6f727468204361726f6c696e61311f301d06035504071316526573656172636820547269616e676c65205061726b31163014060355040a130d526564204861742c20496e632e3121301f060355040b131852656420486174204e6574776f726b205365727669636573312330210603550403131a52484e5320436572746966696361746520417574686f72697479311e301c06092a864886f70d
EAP-Message = 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
EAP-Message = 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
EAP-Message = 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
EAP-Message = 0x68202620446576656c6f706d656e7420446570617274
Message-Authenticator = 0x00000000000000000000000000000000
State = 0x4d8821a21a94e56deb17ab02273d19f1
Finished request 106
Going to the next request
Waking up in 6 seconds...
rad_recv: Access-Request packet from host 192.168.0.211:2057, id=0, length=146
User-Name = "habiba allalou"
NAS-IP-Address = 192.168.0.211
Called-Station-Id = "0014bf3d0272"
Calling-Station-Id = "0019d217e488"
NAS-Identifier = "0014bf3d0272"
NAS-Port = 59
Framed-MTU = 1400
State = 0x4d8821a21a94e56deb17ab02273d19f1
NAS-Port-Type = Wireless-802.11
EAP-Message = 0x021200060d00
Message-Authenticator = 0xb711e05780b7caf363de8c866ff6f469
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 107
modcall[authorize]: module "preprocess" returns ok for request 107
modcall[authorize]: module "chap" returns noop for request 107
modcall[authorize]: module "mschap" returns noop for request 107
rlm_realm: No '@' in User-Name = "habiba allalou", skipping NULL due to config.
modcall[authorize]: module "suffix" returns noop for request 107
rlm_eap: EAP packet type response id 18 length 6
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
modcall[authorize]: module "eap" returns updated for request 107
users: Matched entry DEFAULT at line 152
modcall[authorize]: module "files" returns ok for request 107
modcall: group authorize returns updated for request 107
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 107
rlm_eap: Request found, released from the list
rlm_eap: EAP/tls
rlm_eap: processing type tls
rlm_eap_tls: Authenticate
rlm_eap_tls: processing TLS
rlm_eap_tls: Received EAP-TLS ACK message
rlm_eap_tls: ack handshake fragment handler
eaptls_verify returned 1
eaptls_process returned 13
modcall[authenticate]: module "eap" returns handled for request 107
modcall: group authenticate returns handled for request 107
Sending Access-Challenge of id 0 to 192.168.0.211:2057
EAP-Message = 0x0113000a0d8000000000
Message-Authenticator = 0x00000000000000000000000000000000
State = 0x1859df1e2a63289dde2fcecf053c07cc
Finished request 107
Going to the next request
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 107 ID 0 with timestamp 46d3d947
Nothing to do. Sleeping until we see a request.
please can any one tell me what am i doing wrong.
best regards
---------------------------------
Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo! Mail
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20070828/789edf61/attachment.html>
More information about the Freeradius-Users
mailing list