Error in the negotiations certificates

Martin Silvero silvero.martin at gmail.com
Fri Oct 17 17:36:31 CEST 2008


Good day mate.

Well, finally understood what I recomendastes and I did, I created a package
with server.pem ca.pem and then convert it to. der, the amount to the
notebook but this time gave an error with the validation of the server:


rad_recv: Access-Request packet from host 10.0.31.40 port 1645, id=13,
length=136
        User-Name = "cert"
        Framed-MTU = 1400
        Called-Station-Id = "0019.2fdb.9e00"
        Calling-Station-Id = "001f.3c22.44c5"
        Service-Type = Login-User
        Message-Authenticator = 0x4c4673bed5a0d93399f5b623d8046b1d
        EAP-Message = 0x020100090163657274
        NAS-Port-Type = Wireless-802.11
        NAS-Port = 1301
        NAS-IP-Address = 10.0.31.40
        NAS-Identifier = "ap-Reconquista-31"
Fri Oct 17 10:47:33 2008 : Debug: +- entering group authorize
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling preprocess
(rlm_preprocess) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from
preprocess (rlm_preprocess) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[preprocess] returns ok
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling chap
(rlm_chap) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from chap
(rlm_chap) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[chap] returns noop
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling mschap
(rlm_mschap) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from
mschap (rlm_mschap) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[mschap] returns noop
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling suffix
(rlm_realm) for request 0
Fri Oct 17 10:47:33 2008 : Debug:     rlm_realm: No '@' in User-Name =
"cert", looking up realm NULL
Fri Oct 17 10:47:33 2008 : Debug:     rlm_realm: No such realm "NULL"
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from
suffix (rlm_realm) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[suffix] returns noop
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling eap
(rlm_eap) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   rlm_eap: EAP packet type response id 1
length 9
Fri Oct 17 10:47:33 2008 : Debug:   rlm_eap: No EAP Start, assuming it's an
on-going EAP conversation
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from eap
(rlm_eap) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[eap] returns updated
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling unix
(rlm_unix) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from unix
(rlm_unix) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[unix] returns notfound
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling files
(rlm_files) for request 0
Fri Oct 17 10:47:33 2008 : Debug:     users: Matched entry cert at line 76
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from
files (rlm_files) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[files] returns ok
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling expiration
(rlm_expiration) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from
expiration (rlm_expiration) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[expiration] returns noop
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling logintime
(rlm_logintime) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from
logintime (rlm_logintime) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[logintime] returns noop
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: calling pap
(rlm_pap) for request 0
Fri Oct 17 10:47:33 2008 : Debug: rlm_pap: Found existing Auth-Type, not
changing it.
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authorize]: returned from pap
(rlm_pap) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[pap] returns noop
Fri Oct 17 10:47:33 2008 : Debug:   rad_check_password:  Found Auth-Type EAP
Fri Oct 17 10:47:33 2008 : Debug: auth: type "EAP"
Fri Oct 17 10:47:33 2008 : Debug: +- entering group authenticate
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authenticate]: calling eap
(rlm_eap) for request 0
Fri Oct 17 10:47:33 2008 : Debug:   rlm_eap: EAP Identity
Fri Oct 17 10:47:33 2008 : Debug:   rlm_eap: processing type md5
Fri Oct 17 10:47:33 2008 : Debug: rlm_eap_md5: Issuing Challenge
Fri Oct 17 10:47:33 2008 : Debug:   modsingle[authenticate]: returned from
eap (rlm_eap) for request 0
Fri Oct 17 10:47:33 2008 : Debug: ++[eap] returns handled
Sending Access-Challenge of id 13 to 10.0.31.40 port 1645
        EAP-Message = 0x0102001604105b73da6c29c23d1018905b343c4fb5c9
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0x267005d0267201665ceab013c67b6d34
Fri Oct 17 10:47:33 2008 : Debug: Finished request 0.
Fri Oct 17 10:47:33 2008 : Debug: Going to the next request
Fri Oct 17 10:47:33 2008 : Debug: Waking up in 4.9 seconds.



a question:

this certificate I'm going to install on multiple computers, can I generate
problems that?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20081017/7dda9971/attachment.html>


More information about the Freeradius-Users mailing list