Simultaneous-Use in proxy

Renato Sousa rensousa at gmail.com
Mon Jun 15 21:14:35 CEST 2015


Hi Alan,

  Try it without proxying, and without EAP.
>

 Great idea!

Created another freeradius without proxy to test authentication on users
file as line below:

myuser Cleartext-Password: = "test123"
        Simultaneous-Use: = 1

User authentication works, but also allows more than one simultaneous
session.
Analyzing the debug log, you can see information about the Simultaneous-Use
item:

First login (device: notebook)
[Peap] Got tunneled reply code 11
        Simultaneous-Use: = 1
        EAP-Message =
0x014300201a0143001b103aa68684db737872b04dd470becf8bd56d7975736572
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0x182e1712186d0dd5e3788587d7861272
...
[Peap] Got tunneled reply code 2
        Simultaneous-Use: = 1
        MS-MPPE-Encryption-Policy = 0x00000001
        MS-MPPE-Encryption-Types = 0x00000006
        MS-MPPE-Send-Key = 0x6a84396172fbbbd79d0477f5d75517e1
        MS-MPPE-Recv-Key = 0x0f9c3511b4b2862fa73f6241671b319b
        EAP-Message = 0x03440004
        Message-Authenticator = 0x00000000000000000000000000000000
        User-Name = "myuser"


Second login (device: mobile android)
[TTLS] Got tunneled reply code 2
        Simultaneous-Use: = 1

The accountig information is being successfully written to the mysql. The
acctsessionid field displays two distinct connections to the same user
(myuser).
The innertunnel and default files are configured as follows:

session {
        sql
}


Any idea?

Graciously

Renato L. Sousa


More information about the Freeradius-Users mailing list