newbie on radiustesting

[Si St]

> ----- Original Message -----
> From: A.L.M.Buxey at lboro.ac.uk
> To: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
> Subject: Re: newbie on radiustesting
> Date: Wed, 16 Apr 2008 19:37:44 +0100
> 
> 
> Hi,
> 
> > linux:/etc/raddb # id radiusd
> > uid=105(radiusd) gid=104(radiusd) Gruppen=104(radiusd)
> >
> > ls -l:
> > drw-r-----   3 root radiusd   472 2008-03-31 22:53 certs/
> 
> and the files within?


> 
> alan
The files within seem to have the same permission setup:
linux:/etc/raddb/certs # l
insgesamt 53
drw-r-----  3 root radiusd  472 2008-03-31 22:53 ./
drwxr-xr-x  5 root root     728 2008-04-16 20:40 ../
-rw-r-----  1 root radiusd  721 2005-09-13 04:15 cert-clt.der
-rw-r-----  1 root radiusd 1741 2005-09-13 04:15 cert-clt.p12
-rw-r-----  1 root radiusd 2452 2005-09-13 04:15 cert-clt.pem
-rw-r-----  1 root radiusd  717 2005-09-13 04:15 cert-srv.der
-rw-r-----  1 root radiusd 1733 2005-09-13 04:15 cert-srv.p12
-rw-r-----  1 root radiusd 2439 2005-09-13 04:15 cert-srv.pem
drw-r-----  2 root radiusd  200 2008-03-31 22:53 demoCA/
-rw-r-----  1 root radiusd    0 2005-09-13 04:15 dh
-rw-r-----  1 root radiusd 2913 2005-09-13 04:15 newcert.pem
-rw-r-----  1 root radiusd 1753 2005-09-13 04:15 newreq.pem
-rw-r-----  1 root radiusd 1024 2005-09-13 04:15 random
-rw-r-----  1 root radiusd  431 2005-09-13 04:15 README
-rw-r-----  1 root radiusd  954 2005-09-13 04:15 root.der
-rw-r-----  1 root radiusd 1973 2005-09-13 04:15 root.p12
-rw-r-----  1 root radiusd 2764 2005-09-13 04:15 root.pem

linux:/etc/raddb/certs/demoCA # l
insgesamt 21
drw-r-----  2 root radiusd  200 2008-03-31 22:53 ./
drw-r-----  3 root radiusd  472 2008-03-31 22:53 ../
-rw-r-----  1 root radiusd 1346 2005-09-13 04:15 cacert.pem
-rw-r-----  1 root radiusd  276 2005-09-13 04:15 index.txt
-rw-r-----  1 root radiusd  140 2005-09-13 04:15 index.txt.old
-rw-r-----  1 root radiusd    3 2005-09-13 04:15 serial
-rw-r-----  1 root radiusd    3 2005-09-13 04:15 serial.old
.......................................

More output:

What I have done now is to start the radiusd with /rcradiusd start/ first with the uchanged eap.conf, and then copy the uncommented eap.conf(EAP-TLS_Part) back to where it should be and run /radeapclient/ in debugmode:
Does the rlm_eap message tell you anything:

linux:/etc/raddb # radeapclient -x -f /usr/share/doc/packages/freeradius/tmp/radius.test 127.0.0.1:1812 auth testing123

+++> About to send encoded packet:
        User-Name = "qvnu"
        User-Password = "ygd"
        NAS-IP-Address = 127.0.0.1
        NAS-Port-Id = "0"
Sending Access-Request of id 244 to 127.0.0.1:1812
        User-Name = "qvnu"
        User-Password = "ygd"
        NAS-IP-Address = 127.0.0.1
        NAS-Port-Id = "0"
Re-sending Access-Request of id 244 to 127.0.0.1:1812
        User-Name = "qvnu"
        User-Password = "\351\371V6$\024\t\315\263\271.\037\003\311\325\320"
        NAS-IP-Address = 127.0.0.1
        NAS-Port-Id = "0"
rad_recv: Access-Reject packet from host 127.0.0.1:1812, id=244, length=20
rlm_eap: EAP-Message not found
<+++ EAP decoded packet:

+++> About to send encoded packet:
        User-Name = "eaoqk"
        User-Password = "uroco"
        NAS-IP-Address = 127.0.0.1


-- 
_______________________________________________
Surf the Web in a faster, safer and easier way:
Download Opera 9 at http://www.opera.com

Powered by Outblaze