hello Ludovic Yes it's activated on general config / radius / general -> authenticate with local use raccount
________________________________ De: Zammit, Ludovic Envoyé: Vendredi 25 mars 2022 16:48 À: packetfence-users@lists.sourceforge.net Cc: Nicolas BOULET Objet: Re: [PacketFence-users] Configuration the radius test (with user meraki_8021x_test) on Meraki and Packetfence Hello Nicolas, Did you enable the local-authentication to use a local account ? Thanks, Ludovic Zammit Product Support Engineer Principal [https://www.akamai.com/us/en/multimedia/images/custom/2019/logo-no-tag-93x45.png] Cell: +1.613.670.8432 Akamai Technologies - Inverse 145 Broadway Cambridge, MA 02142 Connect with Us: [https://www.akamai.com/us/en/multimedia/images/custom/community.jpg] <https://community.akamai.com> [https://www.akamai.com/us/en/multimedia/images/custom/rss.png] <http://blogs.akamai.com> [https://www.akamai.com/us/en/multimedia/images/custom/twitter.png] <https://twitter.com/akamai> [https://www.akamai.com/us/en/multimedia/images/custom/fb.png] <http://www.facebook.com/AkamaiTechnologies> [https://www.akamai.com/us/en/multimedia/images/custom/in.png] <http://www.linkedin.com/company/akamai-technologies> [https://www.akamai.com/us/en/multimedia/images/custom/youtube.png] <http://www.youtube.com/user/akamaitechnologies?feature=results_main> On Mar 25, 2022, at 10:23 AM, Nicolas BOULET via PacketFence-users <packetfence-users@lists.sourceforge.net<mailto:packetfence-users@lists.sourceforge.net>> wrote: Hello, I'm trying to activate the Meraki option "Radius Testing" on my access policy. (the access policy is working well, but the radius testing is mandatory to recover a lost connection with radius). -> My setup is working well with Windows 802.1X / EAP and LDAP source -> I create a local user in packetfence db (password ntlm) meraki_8021x_test / meraki_8021x_test And try some configuration of profiles, advances radius filter. but i always end with a : Authentication reject. Reason mschap: Program returned code (1) and output 'Reading winbind reply failed! (0xc0000001)' Detail : MS-CHAP-Challenge = 0xde50a834d1fd98271b1b962eebd770d6 Event-Timestamp = "Mar 25 2022 15:10:57 CET" Stripped-User-Name = "meraki_8021x_test" FreeRADIUS-Proxied-To = 127.0.0.1 Called-Station-SSID = "Spare" MS-CHAP-User-Name = "meraki_8021x_test" Framed-MTU = 1400 Realm = "null" EAP-Type = MSCHAPv2 NAS-IP-Address = 6.71.121.100 PacketFence-Radius-Ip = "172.16.31.12" Service-Type = Framed-User PacketFence-Outer-User = "meraki_8021x_test" Called-Station-Id = "98:17:79:64:Spare" NAS-Port-Type = Ethernet PacketFence-KeyBalanced = "3976dec62f5c2690c1ebea08a3d5bfe8" PacketFence-NTLMv2-Only = "" Calling-Station-Id = "02:00:00:00:00:01" User-Name = "meraki_8021x_test" EAP-Message = 0x021f004c1a021f004731b9be6829e682ec4212799155958748750000000000000000c2b97a83129cfc04d55e96ed32d507a006d6572616b695f38303231785f74657374 State = 0xb481d5dfb49eca35ffa6c020ae45 MS-CHAP2-Response = 0x1f65b9be6829e682ec421279915595874875000000083129cfc04d55e96edc05ee743990a629dd32d507a Module-Failure-Message = "mschap: Program returned code (1) and output 'Reading winbind reply failed! (0xc0000001)'" Module-Failure-Message = "mschap: Reading winbind reply failed! (0xc0000001)" User-Password = "******" SQL-User-Name = "meraki_8021x_test" How could i just send an radius accept response to meraki test message ? Regards Nicolas _______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net<mailto:PacketFence-users@lists.sourceforge.net> https://urldefense.com/v3/__https://lists.sourceforge.net/lists/listinfo/packetfence-users__;!!GjvTz_vk!AeZcvic0A4zmuFgj2eA5v8N98xWrUHDd8JV_DHOnWaxKHzdHqdI42u2ottfaMZL2$
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users