Alguien con algo de idea en freeradius???

Todos los comentarios sobre redes y servidores en linux y su interacción con otros sistemas operativos.

Moderadores: doc, Kde_Tony, ps-ax

Responder
Avatar de Usuario
chenyo
Forista Nuevo
Forista Nuevo
Mensajes: 6
Registrado: Jue Sep 17, 2009 7:00 am

Alguien con algo de idea en freeradius???

Mensaje por chenyo » Sab Nov 28, 2009 7:32 pm

Hola a todos, estoy instalando un servidor radius en un ubuntu server con freeradius. Todas las pruebas me funcionan correctamente menos cuando trato de conectar mediante un punto de acceso. Este es el debug que me sale:
rad_recv: Access-Request packet from host 192.168.1.1 port 1084, id=1, length=206
Message-Authenticator = 0x789bf39c8f59de88701888fc6ed3a2f2
Service-Type = Framed-User
User-Name = "diego\000"
Framed-MTU = 1488
State = 0x734ffec0734ee45437bb08e87fc6420c
Called-Station-Id = "00-15-E9-A3-01-CE:radius"
Calling-Station-Id = "00-15-AF-9F-8D-E0"
NAS-Identifier = "D-Link Access Point"
NAS-Port-Type = Wireless-802.11
Connect-Info = "CONNECT 54Mbps 802.11g"
EAP-Message = 0x020100060319
NAS-IP-Address = 192.168.1.1
NAS-Port = 1
NAS-Port-Id = "STA port # 1"
+- entering group authorize {...}
++[preprocess] returns ok
++[mschap] returns noop
[suffix] No '@' in User-Name = "diego", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] EAP packet type response id 1 length 6
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
++[unix] returns notfound
++[files] returns noop
expand: %{User-Name} -> diego
[sql] sql_set_user escaped user --> 'diego'
rlm_sql (sql): Reserving sql socket id: 3
expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'diego' ORDER BY id
[sql] User found in radcheck table
expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'diego' ORDER BY id
expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'diego' ORDER BY priority
rlm_sql (sql): Released sql socket id: 3
++[sql] returns ok
++[expiration] returns noop
++[logintime] returns noop
[pap] Found existing Auth-Type, not changing it.
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP NAK
[eap] NAK asked for unsupported type 25
[eap] No common EAP types found.
[eap] Failed in EAP select
++[eap] returns invalid
Failed to authenticate the user.
Using Post-Auth-Type Reject
+- entering group REJECT {...}
expand: %{User-Name} -> diego
[sql] sql_set_user escaped user --> 'diego'
expand: %{User-Password} ->
expand: %{Chap-Password} ->
expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'diego', '', 'Access-Reject', '2009-11-27 17:33:06')
rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'diego', '', 'Access-Reject', '2009-11-27 17:33:06')
rlm_sql (sql): Reserving sql socket id: 2
rlm_sql (sql): Released sql socket id: 2
++[sql] returns ok
expand: %{User-Name} -> diego
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 1 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 1
Sending Access-Reject of id 1 to 192.168.1.1 port 1084
EAP-Message = 0x04010004
Message-Authenticator = 0x00000000000000000000000000000000
Waking up in 3.9 seconds.
Cleaning up request 0 ID 0 with timestamp +53
Waking up in 0.9 seconds.
Cleaning up request 1 ID 1 with timestamp +53
Ready to process requests.

Yo creo que el error se produce aqui:
[eap] EAP NAK
[eap] NAK asked for unsupported type 25
[eap] No common EAP types found.
[eap] Failed in EAP select

Pero no se como puedo solucionarlo... si alguien puediera ayudarme le estaria tremendamente agradecico, ya que he intentado muchas cosas, pero no lo soluciono.
Gracias por adelantado y saludos
Avatar de Usuario
edit
Forista Nuevo
Forista Nuevo
Mensajes: 7
Registrado: Dom Nov 22, 2009 8:00 am

Mensaje por edit » Jue Dic 03, 2009 12:38 am

hace un tiempo tuve un proyecto con freeradius me parece que lei que el protocolo de autenticacion para equipos cisco (d link) era conveniente que sea PEAP... cual estas usando tu?
Responder
  • Similar Topics
    Respuestas
    Vistas
    Último mensaje