No subject

[Yuya Yanagi]

Hello! All.

I try to authenticate with EAP-TTLS at the customer's request, but I
would like help if I have a problem.

Authentication itself is also possible on the real machine, but there
is a log of user's Login OK in radius.log at the time of
authentication,
but two of username and anonymous will be output. (Location of the symbol of ★)

The customer's request is very embarrassing to say that the output of
this Login OK log can be combined with the Login OK output by
username.

Are there any good plans or methods?

Paste the problem log below.

Any help would be appreciated.

-------------------------------------------------------------------------------

Jul 12 13:37:54 xradius radiusd[2415]: Loaded virtual server inner-tunnel
Jul 12 13:37:54 xradius radiusd[2415]: Ready to process requests
Jul 12 13:38:37 xradius radiusd[2415]: Need 5 more connections to
reach 10 spares
Jul 12 13:38:37 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Opening additional connection (5), 1 of 27 pending slots used
★Jul 12 13:38:37 xradius radiusd[2415]: (5)   Login OK: [rt015] (from
client testwlc01 port 0 via TLS tunnel)
LDAP;50-3E-AA-6D-ED-7E;;;;;;rt015
★Jul 12 13:38:37 xradius radiusd[2415]: (5) Login OK: [anonymous]
(from client testwlc01 port 12289 cli 50-3E-AA-6D-ED-7E)
eap;50-3E-AA-6D-ED-7E;08-35-71-F2-CE-05;CONNECT 802.11g;;;;anonymous
Jul 12 15:04:23 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Closing connection (2): Hit idle_timeout, was idle for 5189 seconds
Jul 12 15:04:23 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Closing connection (3): Hit idle_timeout, was idle for 5189 seconds
Jul 12 15:04:23 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Closing connection (4): Hit idle_timeout, was idle for 5189 seconds
Jul 12 15:04:23 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Closing connection (0): Hit idle_timeout, was idle for 5146 seconds
Jul 12 15:04:23 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Closing connection (5): Hit idle_timeout, was idle for 5146 seconds
Jul 12 15:04:23 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Closing connection (1): Hit idle_timeout, was idle for 5146 seconds
Jul 12 15:04:23 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Opening additional connection (6), 1 of 32 pending slots used
Jul 12 15:04:24 xradius radiusd[2415]: rlm_ldap (ldap_allusers): Bind
with uid=radius,ou=systems,dc=hoge,dc=fuga,dc=co,dc=jp to
ldaps://ldap.hoge.fuga.co.jp:636 failed: Can't contact LDAP server
Jul 12 15:04:24 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Opening connection failed (6)
Jul 12 15:04:24 xradius radiusd[2415]: (11)   Invalid user: [rt015]
(from client testwlc01 port 0 via TLS tunnel)
;50-3E-AA-6D-ED-7E;;;;;;rt015
Jul 12 15:04:24 xradius radiusd[2415]: (11) Login incorrect (eap:
Failed continuing EAP TTLS (21) session.  EAP sub-module failed):
[anonymous] (from client testwlc01 port 12289 cli 50-3E-AA-6D-ED-7E)
eap;50-3E-AA-6D-ED-7E;08-35-71-F2-CE-05;CONNECT 802.11g;;;;anonymous
Jul 12 15:09:11 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Opening additional connection (7), 1 of 1 pending slots used
Jul 12 15:09:11 xradius radiusd[2415]: Need 2 more connections to
reach min connections (3)
Jul 12 15:09:11 xradius radiusd[2415]: rlm_ldap (ldap_allusers):
Opening additional connection (8), 1 of 2 pending slots used
★Jul 12 15:09:11 xradius radiusd[2415]: (24)   Login OK: [rt015] (from
client testwlc01 port 0 via TLS tunnel)
LDAP;50-3E-AA-6D-ED-7E;;;;;;rt015
★Jul 12 15:09:11 xradius radiusd[2415]: (24) Login OK: [anonymous]
(from client testwlc01 port 12289 cli 50-3E-AA-6D-ED-7E)
eap;50-3E-AA-6D-ED-7E;08-35-71-F2-CE-05;CONNECT 802.11g;;;;anonymous
Jul 12 15:16:48 xradius radiusd[2415]: Signalled to terminate
Jul 12 15:16:48 xradius radiusd[2415]: Exiting normally