Hi, i need help.
I configured freeradius to authenticate users in Openldap using samba password, it's working 100%.
Now a configured other freeradius server to route the information of users conform Windows Domain Name, then a configured proxy.conf for this.
When I do a test, occurr ther error bellow:
" rlm_eap: Request is supposed to be proxied to Realm TESTE. Not doing EAP."
rad_recv: Access-Request packet from host 172.22.2.32:1520, id=218, length=98
User-Name = "[EMAIL PROTECTED]"
EAP-Message = 0x020100110154455354455c69737261656c
NAS-IP-Address = 172.22.2.32
Service-Type = Login-User
Calling-Station-Id = "0.0.0.0"
NAS-Port-Type = Ethernet
Message-Authenticator = 0x3bd8b99f86bf11e0fd40509088fac01a
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 4
modcall[authorize]: module "preprocess" returns ok for request 4
modcall[authorize]: module "chap" returns noop for request 4
modcall[authorize]: module "mschap" returns noop for request 4
rlm_realm: Looking up realm "TESTE" for User-Name = "[EMAIL PROTECTED]"
rlm_realm: Found realm "TESTE"
rlm_realm: Adding Stripped-User-Name = "israel"
rlm_realm: Proxying request from user israel to realm TESTE
rlm_realm: Adding Realm = "TESTE"
rlm_realm: Preparing to proxy authentication request to realm "TESTE"
modcall[authorize]: module "suffix" returns updated for request 4
rlm_eap: Request is supposed to be proxied to Realm TESTE. Not doing EAP.
modcall[authorize]: module "eap" returns noop for request 4
modcall[authorize]: module "files" returns notfound for request 4
modcall: group authorize returns updated for request 4
Sending Access-Request of id 4 to 172.22.3.69:1812
User-Name = "israel"
EAP-Message = 0x020100110154455354455c69737261656c
NAS-IP-Address = 172.22.2.32
Service-Type = Login-User
Calling-Station-Id = "0.0.0.0"
NAS-Port-Type = Ethernet
Message-Authenticator = 0x00000000000000000000000000000000
Proxy-State = 0x323138
--- Walking the entire request list ---
Waking up in 6 seconds...
rad_recv: Access-Reject packet from host 172.22.3.69:1812, id=4, length=25
Proxy-State = 0x323138
Processing the post-proxy section of radiusd.conf
modcall: entering group post-proxy for request 4
modcall[post-proxy]: module "eap" returns noop for request 4
modcall: group post-proxy returns noop for request 4
Delaying request 4 for 1 seconds
Finished request 4
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
rad_recv: Access-Request packet from host 172.22.2.32:1520, id=218, length=98
Sending Access-Reject of id 218 to 172.22.2.32:1520
--- Walking the entire request list ---
Waking up in 5 seconds...
--- Walking the entire request list ---
Cleaning up request 4 ID 218 with timestamp 41f12c0d
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 172.22.0.47:1814, id=4, length=97
User-Name = "israel"
EAP-Message = 0x020100110154455354455c69737261656c
NAS-IP-Address = 172.22.2.32
Service-Type = Login-User
Calling-Station-Id = "0.0.0.0"
NAS-Port-Type = Ethernet
Message-Authenticator = 0xf46be4650830b6c5e442cc2756cf7411
Proxy-State = 0x323138
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 8
modcall[authorize]: module "preprocess" returns ok for request 8
modcall[authorize]: module "mschap" returns noop for request 8
rlm_eap: EAP packet type response id 1 length 17
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
modcall[authorize]: module "eap" returns updated for request 8
rlm_ldap: - authorize
rlm_ldap: performing user authorization for israel
radius_xlat: '(uid=israel)'
radius_xlat: 'dc=testdomain,dc=com'
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in dc=testdomain,dc=com, with filter (uid=israel)
rlm_ldap: looking for check items in directory...
rlm_ldap: Adding ntPassword as NT-Password, value E16089130E8B7BEE87E6FF312E5B8312 & op=21
rlm_ldap: Adding lmPassword as LM-Password, value E42C92D3C5AE8D6AE68AA26A841A86FA & op=21
rlm_ldap: looking for reply items in directory...
rlm_ldap: Adding radiusServiceType as Service-Type, value Framed-User & op=11
rlm_ldap: user israel authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
modcall[authorize]: module "ldap" returns ok for request 8
modcall: group authorize returns updated for request 8
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 8
rlm_eap: Identity does not match User-Name, setting from EAP Identity.
rlm_eap: Failed in handler
modcall[authenticate]: module "eap" returns invalid for request 8
modcall: group authenticate returns invalid for request 8
auth: Failed to validate the user.
Delaying request 8 for 1 seconds
Finished request 8
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 4 to 172.22.0.47:1814
Proxy-State = 0x323138
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 8 ID 4 with timestamp 41f10fdf
Nothing to do. Sleeping until we see a request.
Thaks for help, Israel Alves
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
