No EAP Start, assuming it's an on-going EAP conversation
Iliya Peregoudov
iperegudov at cboss.ru
Thu Nov 8 07:22:14 CET 2012
> Sending tunneled request
> EAP-Message =
> 0x0208004f1a0208004a319afcbf0d90146863dcce62e55cbf6b2600000000000000003213a6
> 67f5405fe084a9e7291e326e0f0c68ce28482c998a0053554d4f4c434f4d50414c5c53433130
> 31383536
> FreeRADIUS-Proxied-To = 127.0.0.1
> User-Name = "DOMAIN\\userADaccount"
> State = 0xc282d9b6c28ac325c2d75d655a3b20bb
EAP-Message parsed:
02 Code = 2 (EAP-Response)
08 Identifier = 8
00 4f Length = 79
1a Type = 26 (EAP-MSCHAPv2)
02 Opcode = 2 (Response)
08 MS-CHAP-v2-Id = 8
00 4a MS-Length = 74
31 Value-Size = 49
9a fc bf 0d 90 14 Peer-Challenge
68 63 dc ce 62 e5 5c bf 6b 26
00 00 00 00 00 00 Reserved
00 00
32 13 a6 67 f5 40 5f e0 84 a9 e7 29 1e 32 NT-Response
6e 0f 0c 68 ce 28 48 2c 99 8a
00 Flags = 0
53 55 4d 4f 4c
43 4f 4d 50 41 4c 5c 53 43 31 30 31 38 35 36
Name = SUMOLCOMPAL\SC101856
> [peap] Got tunneled reply code 11
> EAP-Message =
> 0x010900331a0308002e533d4436464245433343433334343334373542443835343334333432
> 3745313831384243414639333030
> Message-Authenticator = 0x00000000000000000000000000000000
> State = 0xc282d9b6c38bc325c2d75d655a3b20bb
EAP-Message parsed:
01 Code = 1 (EAP-Request)
09 Identifier = 9
00 33 Length = 51
1a Type = 26 (EAP-MSCHAPv2)
03 Opcode = 2 (Succes)
08 MS-CHAP-v2-Id = 8
00 2e MS-Length = 46
53 3d 44 36 46 42 45
43 33 43 43 33 34 34 33 34 37 35 42 44 38 35 34
33 34 33 34 32 37 45 31 38 31 38 42 43 41 46 39
33 30 30
Message = S=D6FBEC3CC3443475BD854343427E1818BCAF9300
MSCHAPv2 is a mutual authentication protocol. Supplicant has interrupted
authentication process just after it receive EAP-MSCHAPv2 Success
request packet. It means that Success request packet was not calculated
using proper user password. In other words user password available at
supplicant and at authentication server does not match.
More information about the Freeradius-Users
mailing list