Nie jesteś zalogowany.
Jeśli nie posiadasz konta, zarejestruj je już teraz! Pozwoli Ci ono w pełni korzystać z naszego serwisu. Spamerom dziękujemy!
Ogłoszenie
Prosimy o pomoc dla małej Julki — przekaż 1% podatku na Fundacji Dzieciom zdazyć z Pomocą.
Więcej informacji na dug.net.pl/pomagamy/.
#1 2009-10-30 23:22:42
maro - 
Użytkownik
- maro
- Użytkownik
- Zarejestrowany: 2006-10-21
Wpa2 Enterprise+PEAP(mschapv2)+freeradius
Chciałem testowo uruchomić coś takiego i mam następujący problem:
Kod:
rad_recv: Access-Request packet from host 192.168.1.1:3073, id=0, length=129
User-Name = "testuser"
NAS-IP-Address = 192.168.1.1
Called-Station-Id = "00904c910003"
Calling-Station-Id = "0025d34268e4"
NAS-Identifier = "00904c910003"
NAS-Port = 14
Framed-MTU = 1400
NAS-Port-Type = Wireless-802.11
EAP-Message = 0x0200000d017465737475736572
Message-Authenticator = 0x9a5577f962c9bc4db5e5d5575cb250c6
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
modcall[authorize]: module "preprocess" returns ok for request 0
modcall[authorize]: module "mschap" returns noop for request 0
rlm_realm: No '@' in User-Name = "testuser", looking up realm NULL
rlm_realm: No such realm "NULL"
modcall[authorize]: module "suffix" returns noop for request 0
rlm_eap: EAP packet type response id 0 length 13
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
modcall[authorize]: module "eap" returns updated for request 0
users: Matched entry testuser at line 216
modcall[authorize]: module "files" returns ok for request 0
modcall: leaving group authorize (returns updated) for request 0
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 0
rlm_eap: EAP Identity
rlm_eap: processing type tls
rlm_eap_tls: Initiate
rlm_eap_tls: Start returned 1
modcall[authenticate]: module "eap" returns handled for request 0
modcall: leaving group authenticate (returns handled) for request 0
Sending Access-Challenge of id 0 to 192.168.1.1 port 3073
EAP-Message = 0x010100061920
Message-Authenticator = 0x00000000000000000000000000000000
State = 0x7d76c9a868ada1d09f27c1a49dc61175
Finished request 0
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
rad_recv: Access-Request packet from host 192.168.1.1:3073, id=0, length=140
User-Name = "testuser"
NAS-IP-Address = 192.168.1.1
Called-Station-Id = "00904c910003"
Calling-Station-Id = "0025d34268e4"
NAS-Identifier = "00904c910003"
NAS-Port = 14
Framed-MTU = 1400
State = 0x7d76c9a868ada1d09f27c1a49dc61175
NAS-Port-Type = Wireless-802.11
EAP-Message = 0x020100060300
Message-Authenticator = 0x85737b0ef15197197ce0d7c89bd09057
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 1
modcall[authorize]: module "preprocess" returns ok for request 1
modcall[authorize]: module "mschap" returns noop for request 1
rlm_realm: No '@' in User-Name = "testuser", looking up realm NULL
rlm_realm: No such realm "NULL"
modcall[authorize]: module "suffix" returns noop for request 1
rlm_eap: EAP packet type response id 1 length 6
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
modcall[authorize]: module "eap" returns updated for request 1
users: Matched entry testuser at line 216
modcall[authorize]: module "files" returns ok for request 1
modcall: leaving group authorize (returns updated) for request 1
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 1
rlm_eap: Request found, released from the list
rlm_eap: EAP NAK
rlm_eap: NAK asked for bad type 0
rlm_eap: Failed in EAP select
modcall[authenticate]: module "eap" returns invalid for request 1
modcall: leaving group authenticate (returns invalid) for request 1
auth: Failed to validate the user.
Login incorrect: [testuser/<no User-Password attribute>] (from client privnetwork port 14 cli 0025d34268e4)
Delaying request 1 for 1 seconds
Finished request 1
Going to the next request
Waking up in 6 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 0 to 192.168.1.1 port 3073
EAP-Message = 0x04010004
Message-Authenticator = 0x00000000000000000000000000000000Wszystko robiłem wg. http://ubuntuforums.org/showthread.php?t=478804
Niby powinno gadać a nie chce pierwszy raz bawie się radiusem i nie mam zielonego pojęcia co może być źle.
Przeszedłem na freeradius 2.1.0 i skonfigurowałem tak samo i działa :)
Ale z kolei mam inne pytanie podłączone jest to do wap54g z dd-wrt micro v2.4sp1, baza userów w postgresie
czy będzie mi na tym działać acct ?bo jak narazie to nic nie trafia mi do tej tabeli.
A w sumie godzine logowania to minimum musze mieć, długość sesji też by się przydała.
Ostatnio edytowany przez maro (2009-11-01 23:07:11)
Offline
#2 2009-11-01 23:15:10
maro - Użytkownik
- maro
- Użytkownik
- Zarejestrowany: 2006-10-21
Re: Wpa2 Enterprise+PEAP(mschapv2)+freeradius
Tym razem odpowiem sam sobie:
Kod:
# There are no accounting requests inside of EAP-TTLS or PEAP # tunnels.
Offline