thanks
Rick
Albert Silva Gibert wrote:
I don't know but chek the secret key from the switch and radius.
Albert
On Fri, 6 Feb 2004, Riccardo Veraldi wrote:
I have a big problem with windows XP + cisco catalyst + freeradius. ACtually I am unable to authenticate. The error is independent from the authentication method. Here is the freeradius log:
rad_recv: Access-Request packet from host 192.84.145.6:1812, id=235, length=162 NAS-IP-Address = 192.84.145.6 NAS-Port-Type = Async User-Name = "veraldi" Calling-Station-Id = "\010" Service-Type = Framed-User Framed-MTU = 1500 Calling-Station-Id = "08-00-46-69-d7-19" State = 0xa8ed86bdb579745bc93796d5d187ec60a76423408df1fc0f03a093c3060ce174abdec7be EAP-Message = 0x0201001d041027b0b6bf16e24d7a3884228371bfbeef766572616c6469 Message-Authenticator = 0x76aaed3bbe247dddda92723119811f6c modcall: entering group authorize for request 1 modcall[authorize]: module "preprocess" returns ok for request 1 radius_xlat: '/var/log/radacct/192.84.145.6/auth-detail-20040206' rlm_detail: /var/log/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands to /var/log/radacct/192.84.145.6/auth-detail-20040206 modcall[authorize]: module "auth_log" returns ok for request 1 rlm_eap: EAP packet type notification id 1 length 29 rlm_eap: EAP Start not found modcall[authorize]: module "eap" returns updated for request 1 users: Matched DEFAULT at 152 users: Matched DEFAULT at 171 modcall[authorize]: module "files" returns ok for request 1 modcall: group authorize returns updated for request 1 rad_check_password: Found Auth-Type EAP auth: type "EAP" modcall: entering group authenticate for request 1 rlm_eap: EAP packet type notification id 1 length 29 rlm_eap: EAP Start not found rlm_eap: Request found, released from the list rlm_eap: EAP_TYPE - md5 rlm_eap: processing type md5 rlm_eap_md5: No password configured for this user modcall[authenticate]: module "eap" returns invalid for request 1 modcall: group authenticate returns invalid for request 1 auth: Failed to validate the user. Login incorrect: [veraldi/<no User-Password attribute>] (from client sw-v port 0 cli ?)
no the problem is ALWAYS THE same. I tryed with system authentication, local authentication etc...
the error is always:
Login incorrect: [veraldi/<no User-Password attribute>] (from client sw-v port 0 cli ?)
I also sniffed the rdius comminication with ethereal. The result is that there is a "Radius User" = "veraldi" in the protocol header but there is not "User Password" property.
I am stuck. anyone using a CISCO with freeradius and XP supplicant ??
thank you
Rick
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html