Supplicant seems not to send password user
Sergio Belkin
sebelk at gmail.com
Mon Oct 1 21:31:33 CEST 2007
2007/10/1, tnt at kalik.co.yu <tnt at kalik.co.yu>:
> If you have used CA.all or certs.sh they should all be created. You
> should have your root certs, server certs and client certs. You need to
> import root (into Trusted Root CAs) and client (only if you are using
> TLS) certificates onto the (XP, don't now for Linux) client machine.
> You should have both .pem and .der (and p12) versions of those
> certificates created.
>
> Ivan Kalik
> Kalik Informatika ISP
I tested with a wrong passwd problem is the same, so I think that
Windows is not sending password user. Why?
The output of tcpdum -vvv port 1812 is like so:
16:28:15.887844 IP (tos 0x0, ttl 64, id 52184, offset 0, flags [DF],
proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 98
Access Request (1), id: 0x21, Authenticator:
7a871d92f8f77eda1093c5ad8505716f
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:15.888820 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x21, Authenticator:
dc75cc743b219ca824fe2ee823c0665d
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0102 0006 1920 [|radius]
16:28:15.976539 IP (tos 0x0, ttl 64, id 52185, offset 0, flags [DF],
proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 187
Access Request (1), id: 0x22, Authenticator:
0e44d85458ccc2059649d4175a323112
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:15.978521 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 977
Access Challenge (11), id: 0x22, Authenticator:
438fc0ca6183f13c6c2e342291dc8ebe
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74 [|radius]
16:28:16.225632 IP (tos 0x0, ttl 64, id 52186, offset 0, flags [DF],
proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 113
Access Request (1), id: 0x23, Authenticator:
667c0a16eefc30863e6e658cdeae467c
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0203 0006 1900
Framed MTU Attribute (12), zero-length
16:28:16.226297 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x23, Authenticator:
53b1bf433e29c70acbced5a765d7bf09
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0104 0006 1900 [|radius]
16:28:22.551919 IP (tos 0x0, ttl 64, id 52187, offset 0, flags [DF],
proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 98
Access Request (1), id: 0x24, Authenticator:
75f542cb04eabb083f559c6440d3902c
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:22.553033 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x24, Authenticator:
7b9032bce20a9dd6548378e5b14013df
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0102 0006 1920 [|radius]
16:28:22.644487 IP (tos 0x0, ttl 64, id 52188, offset 0, flags [DF],
proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 187
Access Request (1), id: 0x25, Authenticator:
e0c1258190abbd760f75c0f340f8f237
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:22.646339 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 977
Access Challenge (11), id: 0x25, Authenticator:
4254b90367630f81c346b0f4fb8c2ea4
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74 [|radius]
16:28:22.874218 IP (tos 0x0, ttl 64, id 52189, offset 0, flags [DF],
proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 113
Access Request (1), id: 0x26, Authenticator:
85edad2f0655d93d0cc977d9eb0e73e2
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0203 0006 1900
Framed MTU Attribute (12), zero-length
16:28:22.875215 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x26, Authenticator:
793f2729e3ba111bd4ebf72b7c30cdd9
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0104 0006 1900 [|radius]
16:28:30.657219 IP (tos 0x0, ttl 64, id 52190, offset 0, flags [DF],
proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 98
Access Request (1), id: 0x27, Authenticator:
a3ce2ab23845827b5deefe7d95a68d5a
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:30.658187 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x27, Authenticator:
b927521793668b8c495633b16acbfe2c
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0102 0006 1920 [|radius]
16:28:30.768899 IP (tos 0x0, ttl 64, id 52191, offset 0, flags [DF],
proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 187
Access Request (1), id: 0x28, Authenticator:
afcc2a89d9514fba93e7f196de92c18e
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:30.770865 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 977
Access Challenge (11), id: 0x28, Authenticator:
4a9375a56f69dcb9f82863870747ffa9
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74 [|radius]
16:28:31.066463 IP (tos 0x0, ttl 64, id 52192, offset 0, flags [DF],
proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 113
Access Request (1), id: 0x29, Authenticator:
81bb5b35b0edecb0df1a04edcf1a52bf
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0203 0006 1900
Framed MTU Attribute (12), zero-length
16:28:31.067500 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x29, Authenticator:
f93c8740cfa46b36a91351f3a61253b6
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0104 0006 1900 [|radius]
16:28:37.873824 IP (tos 0x0, ttl 64, id 52193, offset 0, flags [DF],
proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 98
Access Request (1), id: 0x2a, Authenticator:
eeacf6a86e7905ed7fc83e57a83a9858
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:37.874881 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x2a, Authenticator:
fa3868e5a85025b1eaee49d8afc26038
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0102 0006 1920 [|radius]
16:28:37.991001 IP (tos 0x0, ttl 64, id 52194, offset 0, flags [DF],
proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 187
Access Request (1), id: 0x2b, Authenticator:
47aa2625439793582ad8f3a47915ff6b
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38 [|radius]
16:28:37.992911 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 977
Access Challenge (11), id: 0x2b, Authenticator:
dec47ad9c4c944c02b707320066fb95e
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74 [|radius]
16:28:38.244467 IP (tos 0x0, ttl 64, id 52195, offset 0, flags [DF],
proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius:
RADIUS, length: 113
Access Request (1), id: 0x2c, Authenticator:
9e84332832573fdedb117de81ca8d5da
Username Attribute (1), length: 6, Value: test
0x0000: 7465 7374
Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18
0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31
0x0010: 38
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0203 0006 1900
Framed MTU Attribute (12), zero-length
16:28:38.245479 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF],
proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036:
RADIUS, length: 75
Access Challenge (11), id: 0x2c, Authenticator:
d8fb757098c06d341967e325b120492f
Reply Attribute (18), length: 11, Value: Hola test
0x0000: 486f 6c61 2074 6573 74
EAP Message Attribute (79), length: 8, Value: ..
0x0000: 0104 0006 1900 [|radius]
>
>
> Dana 1/10/2007, "Sergio Belkin" <sebelk at gmail.com> piše:
>
> >2007/10/1, tnt at kalik.co.yu <tnt at kalik.co.yu>:
> >> > I've imported cacert.pem both Windows XP and Linux too.
> >>
> >> I was under the impression that Windows doesn't accept .pem but need
> >> der certificates. Linux debug also complains about CA certificate.
> >> Latest server distribution has scripts to set this up.
> >>
> >> Ivan Kalik
> >> Kalik Informatika ISP
> >>
> >> -
> >> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> >>
> >
> >Thanks Ivan,
> >Can I convert each certificate or should I create them again?
> >--
> >--
> >Sergio Belkin -
> >-
> >List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> >
> >
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
--
--
Sergio Belkin -
More information about the Freeradius-Users
mailing list