Re: Cisco catalyst + freeradius failing all the time

Fri, 06 Feb 2004 04:53:09 -0800

secret key is correct I am sure.

thanks

Rick


Albert Silva Gibert wrote:

I don't know but chek the secret key from the switch and radius.

Albert

On Fri, 6 Feb 2004, Riccardo Veraldi wrote:



I have a big problem with windows XP + cisco catalyst + freeradius.
ACtually I am unable to authenticate.
The error is independent from the authentication method.
Here is the freeradius log:

rad_recv: Access-Request packet from host 192.84.145.6:1812, id=235,
length=162
       NAS-IP-Address = 192.84.145.6
       NAS-Port-Type = Async
       User-Name = "veraldi"
       Calling-Station-Id = "\010"
       Service-Type = Framed-User
       Framed-MTU = 1500
       Calling-Station-Id = "08-00-46-69-d7-19"
       State =
0xa8ed86bdb579745bc93796d5d187ec60a76423408df1fc0f03a093c3060ce174abdec7be
       EAP-Message =
0x0201001d041027b0b6bf16e24d7a3884228371bfbeef766572616c6469
       Message-Authenticator = 0x76aaed3bbe247dddda92723119811f6c
modcall: entering group authorize for request 1
 modcall[authorize]: module "preprocess" returns ok for request 1
radius_xlat:  '/var/log/radacct/192.84.145.6/auth-detail-20040206'
rlm_detail: /var/log/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d
expands to /var/log/radacct/192.84.145.6/auth-detail-20040206
 modcall[authorize]: module "auth_log" returns ok for request 1
 rlm_eap: EAP packet type notification id 1 length 29
 rlm_eap: EAP Start not found
 modcall[authorize]: module "eap" returns updated for request 1
   users: Matched DEFAULT at 152
   users: Matched DEFAULT at 171
 modcall[authorize]: module "files" returns ok for request 1
modcall: group authorize returns updated for request 1
 rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
modcall: entering group authenticate for request 1
 rlm_eap: EAP packet type notification id 1 length 29
 rlm_eap: EAP Start not found
 rlm_eap: Request found, released from the list
 rlm_eap: EAP_TYPE - md5
 rlm_eap: processing type md5
rlm_eap_md5: No password configured for this user
 modcall[authenticate]: module "eap" returns invalid for request 1
modcall: group authenticate returns invalid for request 1
auth: Failed to validate the user.
Login incorrect: [veraldi/<no User-Password attribute>] (from client
sw-v port 0 cli ?)

no the problem is ALWAYS THE same.
I tryed with system authentication, local authentication etc...

the error is always:

Login incorrect: [veraldi/<no User-Password attribute>] (from client
sw-v port 0 cli ?)


I also sniffed the rdius comminication with ethereal.
The result is that there is a "Radius User" = "veraldi" in the protocol
header but
there is not "User Password" property.

I am stuck.
anyone using a CISCO with freeradius and XP supplicant ??

thank you

Rick






-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html




- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html





- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to