radius dont work
Aziz YÜCELEN
ayucelen at msn.com
Wed Jul 7 12:05:54 CEST 2010
Hi
Sorry for my carelessness. Debug output is here and I am using eap TTLS but login not success.Please help me thanks.
rad_recv: Access-Request packet from host 10.1.1.252 port 1206, id=20, length=183 User-Name = "deneme" NAS-IP-Address = 10.1.1.252 NAS-Port = 0 Called-Station-Id = "00-30-4F-44-3D-C1" Calling-Station-Id = "00-18-DE-88-62-77" NAS-Identifier = "WirelessAccessPoint" Framed-MTU = 1380 NAS-Port-Type = Wireless-802.11 EAP-Message = 0x0211002219001703010017a5491ed47f0de82246939132f8766cf3c1a85f8c211be5 State = 0x56c2eb4850d3f233efbb27b16d1adb57 Message-Authenticator = 0x1ea576935b901d2c1f156615504ed0da+- entering group authorize {...}++[preprocess] returns ok++[chap] returns noop++[mschap] returns noop[suffix] No '@' in User-Name = "deneme", looking up realm NULL[suffix] No such realm "NULL"++[suffix] returns noop[eap] EAP packet type response id 17 length 34[eap] Continuing tunnel setup.++[eap] returns okFound Auth-Type = EAP+- entering group authenticate {...}[eap] Request found, released from the list[eap] EAP/peap[eap] processing type peap[peap] processing EAP-TLS[peap] eaptls_!
verify returned 7 [peap] Done initial handshake[peap] eaptls_process returned 7 [peap] EAPTLS_OK[peap] Session established. Decoding tunneled attributes.[peap] Identity - deneme[peap] Got tunneled request EAP-Message = 0x0211000b0164656e656d65server { PEAP: Got tunneled identity of deneme PEAP: Setting default EAP type for tunneled EAP session. PEAP: Setting User-Name to denemeSending tunneled request EAP-Message = 0x0211000b0164656e656d65 FreeRADIUS-Proxied-To = 127.0.0.1 User-Name = "deneme"server inner-tunnel {No authenticate method (Auth-Type) configuration found for the request: Rejecting the userFailed to authenticate the user.} # server inner-tunnel[peap] Got tunneled reply code 3[peap] Got tunneled reply RADIUS code 3[peap] Tunneled authentication was rejected.[peap] FAILURE++[eap] returns handledSending Access-Challenge of id 20 to 10.1.1.252 port 1206 EAP-Message = 0x011200261900170301001b3f825aee84e1fd23b0089c976f25f2f4054e5c93627e072882688f Message-Authenti!
cator = 0x00000000000000000000000000000000 State = 0x56c2eb4851d0f233e
fbb27b16d1adb57Finished request 19.Going to the next requestWaking up in 1.9 seconds.Cleaning up request 18 ID 19 with timestamp +78Waking up in 2.9 seconds.rad_recv: Access-Request packet from host 10.1.1.252 port 1206, id=21, length=187 User-Name = "deneme" NAS-IP-Address = 10.1.1.252 NAS-Port = 0 Called-Station-Id = "00-30-4F-44-3D-C1" Calling-Station-Id = "00-18-DE-88-62-77" NAS-Identifier = "WirelessAccessPoint" Framed-MTU = 1380 NAS-Port-Type = Wireless-802.11 EAP-Message = 0x021200261900170301001bd0f786fe5ec27d325f117cb1c6314a2fc09664e18d31038aaa2a5f State = 0x56c2eb4851d0f233efbb27b16d1adb57 Message-Authenticator = 0xe4dd7f51a3fd9548338084267728d316+- entering group authorize {...}++[preprocess] returns ok++[chap] returns noop++[mschap] returns noop[suffix] No '@' in User-Name = "deneme", looking up realm NULL[suffix] No such realm "NULL"++[suffix] returns noop[eap] EAP packet type response id 18 length 38[eap] Continuing tunnel setup.++[eap] returns okFound Auth-Typ!
e = EAP+- entering group authenticate {...}[eap] Request found, released from the list[eap] EAP/peap[eap] processing type peap[peap] processing EAP-TLS[peap] eaptls_verify returned 7 [peap] Done initial handshake[peap] eaptls_process returned 7 [peap] EAPTLS_OK[peap] Session established. Decoding tunneled attributes.[peap] Received EAP-TLV response.[peap] Had sent TLV failure. User was rejected earlier in this session.[eap] Handler failed in EAP/peap[eap] Failed in EAP select++[eap] returns invalidFailed to authenticate the user.Using Post-Auth-Type Reject+- entering group REJECT {...}[attr_filter.access_reject] expand: %{User-Name} -> deneme attr_filter: Matched entry DEFAULT at line 11++[attr_filter.access_reject] returns updatedDelaying reject of request 20 for 1 secondsGoing to the next requestWaking up in 0.9 seconds.Sending delayed reject for request 20Sending Access-Reject of id 21 to 10.1.1.252 port 1206 EAP-Message = 0x04120004 Message-Authenticator = 0x0000000!
0000000000000000000000000Waking up in 0.9 seconds.Cleaning up request
19 ID 20 with timestamp +81
_________________________________________________________________
Windows Live: Arkadaşlarınız size e-posta gönderdiklerinde Flickr, Twitter ve Digg'deki hareketlerinizi görürler.
http://www.microsoft.com/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:tr-tr:SI_SB_3:092010
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20100707/884d6944/attachment.html>
More information about the Freeradius-Users
mailing list