Because conversation hasn't got to password checking. Probably, since this debug doesn't mean much to me.
Ivan Kalik Kalik Informatika ISP Dana 1/10/2007, "Sergio Belkin" <[EMAIL PROTECTED]> piše: >2007/10/1, [EMAIL PROTECTED] <[EMAIL PROTECTED]>: >> If you have used CA.all or certs.sh they should all be created. You >> should have your root certs, server certs and client certs. You need to >> import root (into Trusted Root CAs) and client (only if you are using >> TLS) certificates onto the (XP, don't now for Linux) client machine. >> You should have both .pem and .der (and p12) versions of those >> certificates created. >> >> Ivan Kalik >> Kalik Informatika ISP > > >I tested with a wrong passwd problem is the same, so I think that >Windows is not sending password user. Why? > >The output of tcpdum -vvv port 1812 is like so: >16:28:15.887844 IP (tos 0x0, ttl 64, id 52184, offset 0, flags [DF], >proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 98 > Access Request (1), id: 0x21, Authenticator: >7a871d92f8f77eda1093c5ad8505716f > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:15.888820 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x21, Authenticator: >dc75cc743b219ca824fe2ee823c0665d > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0102 0006 1920 [|radius] >16:28:15.976539 IP (tos 0x0, ttl 64, id 52185, offset 0, flags [DF], >proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 187 > Access Request (1), id: 0x22, Authenticator: >0e44d85458ccc2059649d4175a323112 > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:15.978521 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 977 > Access Challenge (11), id: 0x22, Authenticator: >438fc0ca6183f13c6c2e342291dc8ebe > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 [|radius] >16:28:16.225632 IP (tos 0x0, ttl 64, id 52186, offset 0, flags [DF], >proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 113 > Access Request (1), id: 0x23, Authenticator: >667c0a16eefc30863e6e658cdeae467c > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0203 0006 1900 > Framed MTU Attribute (12), zero-length >16:28:16.226297 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x23, Authenticator: >53b1bf433e29c70acbced5a765d7bf09 > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0104 0006 1900 [|radius] >16:28:22.551919 IP (tos 0x0, ttl 64, id 52187, offset 0, flags [DF], >proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 98 > Access Request (1), id: 0x24, Authenticator: >75f542cb04eabb083f559c6440d3902c > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:22.553033 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x24, Authenticator: >7b9032bce20a9dd6548378e5b14013df > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0102 0006 1920 [|radius] >16:28:22.644487 IP (tos 0x0, ttl 64, id 52188, offset 0, flags [DF], >proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 187 > Access Request (1), id: 0x25, Authenticator: >e0c1258190abbd760f75c0f340f8f237 > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:22.646339 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 977 > Access Challenge (11), id: 0x25, Authenticator: >4254b90367630f81c346b0f4fb8c2ea4 > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 [|radius] >16:28:22.874218 IP (tos 0x0, ttl 64, id 52189, offset 0, flags [DF], >proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 113 > Access Request (1), id: 0x26, Authenticator: >85edad2f0655d93d0cc977d9eb0e73e2 > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0203 0006 1900 > Framed MTU Attribute (12), zero-length >16:28:22.875215 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x26, Authenticator: >793f2729e3ba111bd4ebf72b7c30cdd9 > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0104 0006 1900 [|radius] >16:28:30.657219 IP (tos 0x0, ttl 64, id 52190, offset 0, flags [DF], >proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 98 > Access Request (1), id: 0x27, Authenticator: >a3ce2ab23845827b5deefe7d95a68d5a > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:30.658187 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x27, Authenticator: >b927521793668b8c495633b16acbfe2c > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0102 0006 1920 [|radius] >16:28:30.768899 IP (tos 0x0, ttl 64, id 52191, offset 0, flags [DF], >proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 187 > Access Request (1), id: 0x28, Authenticator: >afcc2a89d9514fba93e7f196de92c18e > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:30.770865 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 977 > Access Challenge (11), id: 0x28, Authenticator: >4a9375a56f69dcb9f82863870747ffa9 > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 [|radius] >16:28:31.066463 IP (tos 0x0, ttl 64, id 52192, offset 0, flags [DF], >proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 113 > Access Request (1), id: 0x29, Authenticator: >81bb5b35b0edecb0df1a04edcf1a52bf > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0203 0006 1900 > Framed MTU Attribute (12), zero-length >16:28:31.067500 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x29, Authenticator: >f93c8740cfa46b36a91351f3a61253b6 > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0104 0006 1900 [|radius] >16:28:37.873824 IP (tos 0x0, ttl 64, id 52193, offset 0, flags [DF], >proto 17, length: 126) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 98 > Access Request (1), id: 0x2a, Authenticator: >eeacf6a86e7905ed7fc83e57a83a9858 > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:37.874881 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x2a, Authenticator: >fa3868e5a85025b1eaee49d8afc26038 > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0102 0006 1920 [|radius] >16:28:37.991001 IP (tos 0x0, ttl 64, id 52194, offset 0, flags [DF], >proto 17, length: 215) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 187 > Access Request (1), id: 0x2b, Authenticator: >47aa2625439793582ad8f3a47915ff6b > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 [|radius] >16:28:37.992911 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 1005) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 977 > Access Challenge (11), id: 0x2b, Authenticator: >dec47ad9c4c944c02b707320066fb95e > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 [|radius] >16:28:38.244467 IP (tos 0x0, ttl 64, id 52195, offset 0, flags [DF], >proto 17, length: 141) ap.cadorna.edu.1036 > lala.cadorna.edu.radius: >RADIUS, length: 113 > Access Request (1), id: 0x2c, Authenticator: >9e84332832573fdedb117de81ca8d5da > Username Attribute (1), length: 6, Value: test > 0x0000: 7465 7374 > Calling Station Attribute (31), length: 19, Value: 00-0e-35-bf-51-18 > 0x0000: 3030 2d30 652d 3335 2d62 662d 3531 2d31 > 0x0010: 38 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0203 0006 1900 > Framed MTU Attribute (12), zero-length >16:28:38.245479 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], >proto 17, length: 103) lala.cadorna.edu.radius > ap.cadorna.edu.1036: >RADIUS, length: 75 > Access Challenge (11), id: 0x2c, Authenticator: >d8fb757098c06d341967e325b120492f > Reply Attribute (18), length: 11, Value: Hola test > 0x0000: 486f 6c61 2074 6573 74 > EAP Message Attribute (79), length: 8, Value: .. > 0x0000: 0104 0006 1900 [|radius] > >> >> >> Dana 1/10/2007, "Sergio Belkin" <[EMAIL PROTECTED]> pi�e: >> >> >2007/10/1, [EMAIL PROTECTED] <[EMAIL PROTECTED]>: >> >> > I've imported cacert.pem both Windows XP and Linux too. >> >> >> >> I was under the impression that Windows doesn't accept .pem but need >> >> der certificates. Linux debug also complains about CA certificate. >> >> Latest server distribution has scripts to set this up. >> >> >> >> Ivan Kalik >> >> Kalik Informatika ISP >> >> >> >> - >> >> List info/subscribe/unsubscribe? See >> >> http://www.freeradius.org/list/users.html >> >> >> > >> >Thanks Ivan, >> >Can I convert each certificate or should I create them again? >> >-- >> >-- >> >Sergio Belkin - >> >- >> >List info/subscribe/unsubscribe? See >> >http://www.freeradius.org/list/usershtml >> > >> > >> >> - >> List info/subscribe/unsubscribe? See >> http://www.freeradius.org/list/users.html >> > > >-- >-- >Sergio Belkin - > >- >List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html