Perl/Peap-MSChapV2 Issues
tnt at kalik.net
tnt at kalik.net
Thu Mar 19 19:04:19 CET 2009
>I've taken out all perl references from the sites-enabled/default and
>moved them to sites-enabled/inner-tunnel
>
I don't see perl being called:
> rlm_eap_peap: Session established. Decoding tunneled attributes.
> rlm_eap_peap: Identity - 192.168.
> PEAP: Got tunneled identity of 192.168.
> PEAP: Setting default EAP type for tunneled EAP session.
> PEAP: Setting User-Name to 192.168.
>+- entering group authorize
>++[mschap] returns noop
> rlm_realm: No '@' in User-Name = "192.168.", looking up realm NULL
> rlm_realm: No such realm "NULL"
>++[suffix] returns noop
>++[control] returns noop
> rlm_eap: Request is supposed to be proxied to Realm LOCAL. Not doing
>EAP.
>++[eap] returns noop
>++? if (EAP-Message)
>? Evaluating (EAP-Message) -> TRUE
>++? if (EAP-Message) -> TRUE
>++- entering if (EAP-Message)
>+++[noop] returns noop
>++- if (EAP-Message) returns noop
>++ ... skipping elsif for request 6: Preceding "if" was taken
>++ ... skipping elsif for request 6: Preceding "if" was taken
>++[expiration] returns noop
>++[logintime] returns noop
>++[pap] returns noop
> WARNING: You set Proxy-To-Realm = LOCAL, but the realm does not exist!
> Cancelling invalid proxy request.
>auth: No authenticate method (Auth-Type) configuration found for the
>request: Rejecting the user
Post the inner-tunnel authorize section.
>>I assume you hardcoded that in perl sub authorize. That's a good place
>>for it. Put it back.
>
>I'm not sure what you mean.
>
You need to set Auth-Type perl somewhere: users file or perl sub
authorize.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list