Windows XP SP2 and SP3 EAP problem

Balgansuren Batsukh balgaa at boldsoft.mn
Sat May 23 18:01:43 CEST 2009


Hello,

I am new to Freeradius world. Last two days trying to use Freeradius + Alcon AP WPA-Enterprise + Windows XP.

I installed FreeBSD 7.2-STABL with Freeradius 2.1.4 and configured it.

I followed instruction on http://wiki.freeradius.org/index.php?title=EAP-PEAP&redirect=no and http://ubuntuforums.org/showthread.php?t=478804

I have 2 WLAN card on my Windows XP laptop.

After successfully install,configure freebsd/freeradius/AP and Windows XP.

1.My Linksys WPC300N WLAN card can connect to AP using PEAP/MS-CHAPv2.

2.But Intel PRO/Wireless 3945ABG card can't get connect, I tried many different way. First I tried Windows XP with SP2, then installed SP3 and all time same result.

I captured Freeradius debugging information.

1.Linksys
========
Please find second my email. Because maximum mailing-list size is 100K.

2.Intel PRO/Wireless 3945ABG
=======================
.rad_recv: Access-Request packet from host 10.0.1.254 port 1077, id=0, length=176
        Message-Authenticator = 0xa0ca47a1b7294a8b23ae201660398ec5
        Service-Type = Framed-User
        User-Name = "test"
        Framed-MTU = 1488
        Called-Station-Id = "00-C0-A8-ED-84-11:CSMS"
        Calling-Station-Id = "00-1B-77-3D-97-CB"
        NAS-Identifier = "AP CSMS"
        NAS-Port-Type = Wireless-802.11
        Connect-Info = "CONNECT 54Mbps 802.11g"
        EAP-Message = 0x020000090174657374
        NAS-IP-Address = 10.0.1.254
        NAS-Port = 1
        NAS-Port-Id = "STA port # 1"
Sat May 23 06:12:59 2009 : Info: +- entering group authorize {...}
Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok
Sat May 23 06:12:59 2009 : Info: ++[chap] returns noop
Sat May 23 06:12:59 2009 : Info: ++[mschap] returns noop
Sat May 23 06:12:59 2009 : Info: [suffix] No '@' in User-Name = "test", looking up realm NULL
Sat May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"
Sat May 23 06:12:59 2009 : Info: ++[suffix] returns noop
Sat May 23 06:12:59 2009 : Info: [eap] EAP packet type response id 0 length 9
Sat May 23 06:12:59 2009 : Info: [eap] No EAP Start, assuming it's an on-going EAP conversation
Sat May 23 06:12:59 2009 : Info: ++[eap] returns updated
Sat May 23 06:12:59 2009 : Info: ++[unix] returns notfound
Sat May 23 06:12:59 2009 : Info: [files] users: Matched entry test at line 206
Sat May 23 06:12:59 2009 : Info: ++[files] returns ok
Sat May 23 06:12:59 2009 : Info: ++[expiration] returns noop
Sat May 23 06:12:59 2009 : Info: ++[logintime] returns noop
Sat May 23 06:12:59 2009 : Info: [pap] Found existing Auth-Type, not changing it.
Sat May 23 06:12:59 2009 : Info: ++[pap] returns noop
Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP
Sat May 23 06:12:59 2009 : Info: +- entering group authenticate {...}
Sat May 23 06:12:59 2009 : Info: [eap] EAP Identity
Sat May 23 06:12:59 2009 : Info: [eap] processing type tls
Sat May 23 06:12:59 2009 : Info: [tls] Initiate
Sat May 23 06:12:59 2009 : Info: [tls] Start returned 1
Sat May 23 06:12:59 2009 : Info: ++[eap] returns handled
Sending Access-Challenge of id 0 to 10.0.1.254 port 1077
        EAP-Message = 0x010100061920
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0xab2d012bab2c18f6df82958be47c8d15
Sat May 23 06:12:59 2009 : Info: Finished request 65.
Sat May 23 06:12:59 2009 : Debug: Going to the next request
Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 10.0.1.254 port 1077, id=1, length=265
        Message-Authenticator = 0xf38fba12d0d8983cafc03c4357006b1b
        Service-Type = Framed-User
        User-Name = "test"
        Framed-MTU = 1488
        State = 0xab2d012bab2c18f6df82958be47c8d15
        Called-Station-Id = "00-C0-A8-ED-84-11:CSMS"
        Calling-Station-Id = "00-1B-77-3D-97-CB"
        NAS-Identifier = "AP CSMS"
        NAS-Port-Type = Wireless-802.11
        Connect-Info = "CONNECT 54Mbps 802.11g"
        EAP-Message = 0x0201005019800000004616030100410100003d03014a17236630b686d1813e3c6999ff6c9c2bb7411a01b4b1b77582d0dd45012ae300001600040005000a000900640062000300060013001200630100
        NAS-IP-Address = 10.0.1.254
        NAS-Port = 1
        NAS-Port-Id = "STA port # 1"
Sat May 23 06:12:59 2009 : Info: +- entering group authorize {...}
Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok
Sat May 23 06:12:59 2009 : Info: ++[chap] returns noop
Sat May 23 06:12:59 2009 : Info: ++[mschap] returns noop
Sat May 23 06:12:59 2009 : Info: [suffix] No '@' in User-Name = "test", looking up realm NULL
Sat May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"
Sat May 23 06:12:59 2009 : Info: ++[suffix] returns noop
Sat May 23 06:12:59 2009 : Info: [eap] EAP packet type response id 1 length 80
Sat May 23 06:12:59 2009 : Info: [eap] Continuing tunnel setup.
Sat May 23 06:12:59 2009 : Info: ++[eap] returns ok
Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP
Sat May 23 06:12:59 2009 : Info: +- entering group authenticate {...}
Sat May 23 06:12:59 2009 : Info: [eap] Request found, released from the list
Sat May 23 06:12:59 2009 : Info: [eap] EAP/peap
Sat May 23 06:12:59 2009 : Info: [eap] processing type peap
Sat May 23 06:12:59 2009 : Info: [peap] processing EAP-TLS
Sat May 23 06:12:59 2009 : Debug:   TLS Length 70
Sat May 23 06:12:59 2009 : Info: [peap] Length Included
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_verify returned 11
Sat May 23 06:12:59 2009 : Info: [peap]     (other): before/accept initialization
Sat May 23 06:12:59 2009 : Info: [peap]     TLS_accept: before/accept initialization
Sat May 23 06:12:59 2009 : Info: [peap] <<< TLS 1.0 Handshake [length 0041], ClientHello
Sat May 23 06:12:59 2009 : Info: [peap]     TLS_accept: SSLv3 read client hello A
Sat May 23 06:12:59 2009 : Info: [peap] >>> TLS 1.0 Handshake [length 002a], ServerHello
Sat May 23 06:12:59 2009 : Info: [peap]     TLS_accept: SSLv3 write server hello A
Sat May 23 06:12:59 2009 : Info: [peap] >>> TLS 1.0 Handshake [length 0818], Certificate
Sat May 23 06:12:59 2009 : Info: [peap]     TLS_accept: SSLv3 write certificate A
Sat May 23 06:12:59 2009 : Info: [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone
Sat May 23 06:12:59 2009 : Info: [peap]     TLS_accept: SSLv3 write server done A
Sat May 23 06:12:59 2009 : Info: [peap]     TLS_accept: SSLv3 flush data
Sat May 23 06:12:59 2009 : Info: [peap]     TLS_accept: Need to read more data: SSLv3 read client certificate A
Sat May 23 06:12:59 2009 : Debug: In SSL Handshake Phase
Sat May 23 06:12:59 2009 : Debug: In SSL Accept mode
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_process returned 13
Sat May 23 06:12:59 2009 : Info: [peap] EAPTLS_HANDLED
Sat May 23 06:12:59 2009 : Info: ++[eap] returns handled
Sending Access-Challenge of id 1 to 10.0.1.254 port 1077
        EAP-Message = 0x0102040019c000000855160301002a0200002603014a17236b41fb4453090eaddd0875ba0824f11887113654d3439aaabac6b367d70000040016030108180b0008140008110003903082038c30820274a003020102020101300d06092a864886f70d0101040500308183310b3009060355040613024d4e310b3009060355040813025542311430120603550407130b556c61616e6261617461723111300f060355040a1308486f6d656e65742e311f301d06092a864886f70d010901161074736565656b407961686f6f2e636f6d311d301b0603550403131454736572656e646f726a20617574686f72697479301e170d303930353232303131353138
        EAP-Message = 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
        EAP-Message = 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
        EAP-Message = 0xca57298fb83500fed0f2c3f575f86cf242cc938cac77017fd0363d7e66618fc097b2221633733ab7e6ca92c5b02a455ef00820b642cfc955226e708f237981d52f4d25f5dbe60d094a22cdc32b2d09cfa4f4f959af0487552edf4835d20109016bbde20a5b79ab4cdc124ad0d6eb269cc6b2409f7f7c7221c6f03593032d7417d946af889568ca0ac8ee94786b8e8046a7e1e2fd93e1256dc4ed5cd62282b6f2cf02c0d5875867f2869c002bac9f7a6ef27e313e44492c04faa7d320ffe47d21e46b179945379d2834b9f23d8391fc44511ab29cb87950aca10042e2ba48fd3e9c00047b308204773082035fa0030201020209008b45c0e25d2e249a30
        EAP-Message = 0x0d06092a864886f70d010105
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0xab2d012baa2f18f6df82958be47c8d15
Sat May 23 06:12:59 2009 : Info: Finished request 66.
Sat May 23 06:12:59 2009 : Debug: Going to the next request
Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 10.0.1.254 port 1077, id=2, length=191
        Message-Authenticator = 0xe998fa0f52f462e1a8b21e3ec7f5c049
        Service-Type = Framed-User
        User-Name = "test"
        Framed-MTU = 1488
        State = 0xab2d012baa2f18f6df82958be47c8d15
        Called-Station-Id = "00-C0-A8-ED-84-11:CSMS"
        Calling-Station-Id = "00-1B-77-3D-97-CB"
        NAS-Identifier = "AP CSMS"
        NAS-Port-Type = Wireless-802.11
        Connect-Info = "CONNECT 54Mbps 802.11g"
        EAP-Message = 0x020200061900
        NAS-IP-Address = 10.0.1.254
        NAS-Port = 1
        NAS-Port-Id = "STA port # 1"
Sat May 23 06:12:59 2009 : Info: +- entering group authorize {...}
Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok
Sat May 23 06:12:59 2009 : Info: ++[chap] returns noop
Sat May 23 06:12:59 2009 : Info: ++[mschap] returns noop
Sat May 23 06:12:59 2009 : Info: [suffix] No '@' in User-Name = "test", looking up realm NULL
Sat May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"
Sat May 23 06:12:59 2009 : Info: ++[suffix] returns noop
Sat May 23 06:12:59 2009 : Info: [eap] EAP packet type response id 2 length 6
Sat May 23 06:12:59 2009 : Info: [eap] Continuing tunnel setup.
Sat May 23 06:12:59 2009 : Info: ++[eap] returns ok
Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP
Sat May 23 06:12:59 2009 : Info: +- entering group authenticate {...}
Sat May 23 06:12:59 2009 : Info: [eap] Request found, released from the list
Sat May 23 06:12:59 2009 : Info: [eap] EAP/peap
Sat May 23 06:12:59 2009 : Info: [eap] processing type peap
Sat May 23 06:12:59 2009 : Info: [peap] processing EAP-TLS
Sat May 23 06:12:59 2009 : Info: [peap] Received TLS ACK
Sat May 23 06:12:59 2009 : Info: [peap] ACK handshake fragment handler
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_verify returned 1
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_process returned 13
Sat May 23 06:12:59 2009 : Info: [peap] EAPTLS_HANDLED
Sat May 23 06:12:59 2009 : Info: ++[eap] returns handled
Sending Access-Challenge of id 2 to 10.0.1.254 port 1077
        EAP-Message = 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
        EAP-Message = 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
        EAP-Message = 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
        EAP-Message = 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
        EAP-Message = 0xe78e4d77cbec2fb9
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0xab2d012ba92e18f6df82958be47c8d15
Sat May 23 06:12:59 2009 : Info: Finished request 67.
Sat May 23 06:12:59 2009 : Debug: Going to the next request
Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 10.0.1.254 port 1077, id=3, length=191
        Message-Authenticator = 0xdd87b957079c3f4f81b4c7a5ba4be6d6
        Service-Type = Framed-User
        User-Name = "test"
        Framed-MTU = 1488
        State = 0xab2d012ba92e18f6df82958be47c8d15
        Called-Station-Id = "00-C0-A8-ED-84-11:CSMS"
        Calling-Station-Id = "00-1B-77-3D-97-CB"
        NAS-Identifier = "AP CSMS"
        NAS-Port-Type = Wireless-802.11
        Connect-Info = "CONNECT 54Mbps 802.11g"
        EAP-Message = 0x020300061900
        NAS-IP-Address = 10.0.1.254
        NAS-Port = 1
        NAS-Port-Id = "STA port # 1"
Sat May 23 06:12:59 2009 : Info: +- entering group authorize {...}
Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok
Sat May 23 06:12:59 2009 : Info: ++[chap] returns noop
Sat May 23 06:12:59 2009 : Info: ++[mschap] returns noop
Sat May 23 06:12:59 2009 : Info: [suffix] No '@' in User-Name = "test", looking up realm NULL
Sat May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"
Sat May 23 06:12:59 2009 : Info: ++[suffix] returns noop
Sat May 23 06:12:59 2009 : Info: [eap] EAP packet type response id 3 length 6
Sat May 23 06:12:59 2009 : Info: [eap] Continuing tunnel setup.
Sat May 23 06:12:59 2009 : Info: ++[eap] returns ok
Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP
Sat May 23 06:12:59 2009 : Info: +- entering group authenticate {...}
Sat May 23 06:12:59 2009 : Info: [eap] Request found, released from the list
Sat May 23 06:12:59 2009 : Info: [eap] EAP/peap
Sat May 23 06:12:59 2009 : Info: [eap] processing type peap
Sat May 23 06:12:59 2009 : Info: [peap] processing EAP-TLS
Sat May 23 06:12:59 2009 : Info: [peap] Received TLS ACK
Sat May 23 06:12:59 2009 : Info: [peap] ACK handshake fragment handler
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_verify returned 1
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_process returned 13
Sat May 23 06:12:59 2009 : Info: [peap] EAPTLS_HANDLED
Sat May 23 06:12:59 2009 : Info: ++[eap] returns handled
Sending Access-Challenge of id 3 to 10.0.1.254 port 1077
        EAP-Message = 0x0104006f1900dffe3ea966d2f1d6b3f53ff8d7aca3209d32404ff2ea681dfe4e453405f0b9de3eee8c146c2e3ba3dcae73743550c267bc22ca8c9cb6da0d1b78606e707f17f535a4fda33aa48734e794b5e8c345dbe48a9715de963d83ae51473edcafff79bf16030100040e000000
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0xab2d012ba82918f6df82958be47c8d15
Sat May 23 06:12:59 2009 : Info: Finished request 68.
Sat May 23 06:12:59 2009 : Debug: Going to the next request
Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9 seconds.
rad_recv: Access-Request packet from host 10.0.1.254 port 1077, id=4, length=191
        Message-Authenticator = 0x1a9c69cd9f1a6a400346442e1b1da646
        Service-Type = Framed-User
        User-Name = "test"
        Framed-MTU = 1488
        State = 0xab2d012ba82918f6df82958be47c8d15
        Called-Station-Id = "00-C0-A8-ED-84-11:CSMS"
        Calling-Station-Id = "00-1B-77-3D-97-CB"
        NAS-Identifier = "AP CSMS"
        NAS-Port-Type = Wireless-802.11
        Connect-Info = "CONNECT 54Mbps 802.11g"
        EAP-Message = 0x020400061900
        NAS-IP-Address = 10.0.1.254
        NAS-Port = 1
        NAS-Port-Id = "STA port # 1"
Sat May 23 06:12:59 2009 : Info: +- entering group authorize {...}
Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok
Sat May 23 06:12:59 2009 : Info: ++[chap] returns noop
Sat May 23 06:12:59 2009 : Info: ++[mschap] returns noop
Sat May 23 06:12:59 2009 : Info: [suffix] No '@' in User-Name = "test", looking up realm NULL
Sat May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"
Sat May 23 06:12:59 2009 : Info: ++[suffix] returns noop
Sat May 23 06:12:59 2009 : Info: [eap] EAP packet type response id 4 length 6
Sat May 23 06:12:59 2009 : Info: [eap] Continuing tunnel setup.
Sat May 23 06:12:59 2009 : Info: ++[eap] returns ok
Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP
Sat May 23 06:12:59 2009 : Info: +- entering group authenticate {...}
Sat May 23 06:12:59 2009 : Info: [eap] Request found, released from the list
Sat May 23 06:12:59 2009 : Info: [eap] EAP/peap
Sat May 23 06:12:59 2009 : Info: [eap] processing type peap
Sat May 23 06:12:59 2009 : Info: [peap] processing EAP-TLS
Sat May 23 06:12:59 2009 : Info: [peap] Received TLS ACK
Sat May 23 06:12:59 2009 : Info: [peap] ACK handshake fragment handler
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_verify returned 1
Sat May 23 06:12:59 2009 : Info: [peap] eaptls_process returned 13
Sat May 23 06:12:59 2009 : Info: [peap] EAPTLS_HANDLED
Sat May 23 06:12:59 2009 : Info: ++[eap] returns handled
Sending Access-Challenge of id 4 to 10.0.1.254 port 1077
        EAP-Message = 0x010500061900
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0xab2d012baf2818f6df82958be47c8d15
Sat May 23 06:12:59 2009 : Info: Finished request 69.
Sat May 23 06:12:59 2009 : Debug: Going to the next request
Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9 seconds.
Sat May 23 06:13:04 2009 : Info: Cleaning up request 65 ID 0 with timestamp +715
Sat May 23 06:13:04 2009 : Info: Cleaning up request 66 ID 1 with timestamp +715
Sat May 23 06:13:04 2009 : Info: Cleaning up request 67 ID 2 with timestamp +715
Sat May 23 06:13:04 2009 : Info: Cleaning up request 68 ID 3 with timestamp +715
Sat May 23 06:13:04 2009 : Info: Cleaning up request 69 ID 4 with timestamp +715
Sat May 23 06:13:04 2009 : Debug: Ready to process requests.

3.site-enabled/default
================
authorize {
        preprocess
        chap
        mschap
        eap {
                ok = return
        }
        files
        pap
authenticate
        .
        .
        .
        Auth-Type MS-CHAP {
        mschap
        }

4.eap.conf
========
eap {
        default_eap_type = peap
      .
      .
      .
tls  { 
      .
      .
      }
check_cert_cn = %{User-Name}
peap {
                         default_eap_type = mschapv2
                        copy_request_to_tunnel = no
                        use_tunneled_reply = no
}
                mschapv2 {
      authtype = MS-CHAP

      use_mppe = yes

      require_encryption = yes

      require_strong = yes
}
}

5.users
======
test            Cleartext-Password := "test"


Is there anything wrong with configuration or?

My guess is Windows XP wireless client sofware didn't respond to Freeradius Access-Challenge request, but Linksys client software doing well.

Any suggestion?


Thanks,
Balgaa
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090524/2bd4ede0/attachment.html>


More information about the Freeradius-Users mailing list