runtime error in build 071103
Hi, also the latest snapshot does not run correctly unter RedHat8 with kernel 2.4.20 Regards, Olaf Module: Loaded System unix: cache = no unix: passwd = "(null)" unix: shadow = "(null)" unix: group = "(null)" unix: radwtmp = "/usr/local/var/log/radius/radwtmp" unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = "ttls" eap: timer_expire = 60 eap: ignore_unknown_eap_types = no /usr/local/sbin/radiusd: relocation error: /usr/local/lib/rlm_eap-1.0.0-pre0.so: undefined symbol: eaptype_name2type - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
SNAP20031105 runtime error
When starting Freeradius (latest snap) the program crashes with the following message: Module: Loaded System unix: cache = no unix: passwd = "(null)" unix: shadow = "(null)" unix: group = "(null)" unix: radwtmp = "/usr/local/var/log/radius/radwtmp" unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = "ttls" eap: timer_expire = 60 eap: ignore_unknown_eap_types = no /usr/local/sbin/radiusd: relocation error: /usr/local/lib/rlm_eap-1.0.0-pre0.so: undefined symbol: eaptype_name2type - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Snapshot error
Also snap freeradius-snapshot-20031104.tar.gz did not compile correctly. Olaf Making static in types... gmake[8]: Entering directory `/usr/src/freeradius-snapshot-20031104/src/modules/rlm_eap/types' /usr/bin/gmake -w WHAT_TO_MAKE=static common gmake[9]: Entering directory `/usr/src/freeradius-snapshot-20031104/src/modules/rlm_eap/types' Making static in rlm_eap_gtc... gmake[10]: Entering directory `/usr/src/freeradius-snapshot-20031104/src/modules/rlm_eap/types/rlm_eap_gtc' gcc -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -Wall -D_GNU_SOURCE -g -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -W -Wredundant-decls -Wundef -I../../../../include -I../.. -c rlm_eap_gtc.c -o rlm_eap_gtc.o In file included from rlm_eap_gtc.c:28: ../../eap.h:44:23: eap_types.h: No such file or directory In file included from rlm_eap_gtc.c:28: ../../eap.h:56: parse error before "EAP_PACKET" ../../eap.h:56: warning: no semicolon at end of struct or union ../../eap.h:57: warning: type defaults to `int' in declaration of `request' ../../eap.h:57: warning: data definition has no type or storage class ../../eap.h:59: parse error before '}' token ../../eap.h:59: warning: type defaults to `int' in declaration of `EAP_DS' ../../eap.h:59: warning: data definition has no type or storage class ../../eap.h:116: parse error before "EAP_DS" ../../eap.h:116: warning: no semicolon at end of struct or union ../../eap.h:117: warning: type defaults to `int' in declaration of `eap_ds' ../../eap.h:117: warning: data definition has no type or storage class ../../eap.h:120: warning: declaration of `opaque' shadows a global declaration ../../eap.h:119: warning: shadowed declaration is here ../../eap.h:125: parse error before '}' token ../../eap.h:125: warning: type defaults to `int' in declaration of `EAP_HANDLER' ../../eap.h:125: warning: data definition has no type or storage class ../../eap.h:133: parse error before "EAP_HANDLER" ../../eap.h:133: warning: function declaration isn't a prototype ../../eap.h:134: parse error before "EAP_HANDLER" ../../eap.h:134: warning: function declaration isn't a prototype ../../eap.h:135: parse error before "EAP_HANDLER" ../../eap.h:135: warning: function declaration isn't a prototype rlm_eap_gtc.c: In function `gtc_detach': rlm_eap_gtc.c:60: warning: passing arg 1 of `free' discards qualifiers from pointer target type rlm_eap_gtc.c:61: warning: passing arg 1 of `free' discards qualifiers from pointer target type rlm_eap_gtc.c: In function `gtc_attach': rlm_eap_gtc.c:71: warning: unused parameter `instance' rlm_eap_gtc.c: At top level: rlm_eap_gtc.c:96: parse error before "EAP_HANDLER" rlm_eap_gtc.c:97: warning: function declaration isn't a prototype rlm_eap_gtc.c: In function `gtc_initiate': rlm_eap_gtc.c:99: invalid operands to binary * rlm_eap_gtc.c:99: `handler' undeclared (first use in this function) rlm_eap_gtc.c:99: (Each undeclared identifier is reported only once rlm_eap_gtc.c:99: for each function it appears in.) rlm_eap_gtc.c:100: `type_data' undeclared (first use in this function) rlm_eap_gtc.c:110: request for member `request' in something not a structure or union rlm_eap_gtc.c:110: `PW_EAP_REQUEST' undeclared (first use in this function) rlm_eap_gtc.c:112: request for member `request' in something not a structure or union rlm_eap_gtc.c:113: request for member `request' in something not a structure or union rlm_eap_gtc.c:118: request for member `request' in something not a structure or union rlm_eap_gtc.c:119: request for member `request' in something not a structure or union rlm_eap_gtc.c: At top level: rlm_eap_gtc.c:137: parse error before "EAP_HANDLER" rlm_eap_gtc.c:138: warning: function declaration isn't a prototype rlm_eap_gtc.c: In function `gtc_authenticate': rlm_eap_gtc.c:139: invalid operands to binary * rlm_eap_gtc.c:139: `handler' undeclared (first use in this function) rlm_eap_gtc.c:152: request for member `response' in something not a structure or union rlm_eap_gtc.c:161: request for member `response' in something not a structure or union rlm_eap_gtc.c:164: request for member `response' in something not a structure or union rlm_eap_gtc.c:182: request for member `response' in something not a structure or union rlm_eap_gtc.c:187: request for member `response' in something not a structure or union gmake[10]: *** [rlm_eap_gtc.o] Error 1 gmake[10]: Leaving directory `/usr/src/freeradius-snapshot-20031104/src/modules/rlm_eap/types/rlm_eap_gtc' gmake[9]: *** [common] Error 1 gmake[9]: Leaving directory `/usr/src/freeradius-snapshot-20031104/src/modules/rlm_eap/types' gmake[8]: *** [static] Error 2 gmake[8]: Leaving directory `/usr/src/freeradius-snapshot-20031104/src/modules/rlm_eap/types' gmake[7]: *** [common] Error 1 gmake[7]: Leaving directory `/usr/src/freeradius-snapshot-20031104/src/modules/rlm_eap' gmake[6]: *** [static] Error 2 gmake[6]: Leaving directory `/usr/src/freeradiu
Snapshot compile error
Hi, the latest freeradius cvs snapshot (freeradius-snapshot-20031103.tar.gz ) did not compile, here is the log of the make command. Regards, Olaf Making static in rlm_eap_gtc... gmake[10]: Entering directory `/usr/src/freeradius-snapshot-20031103/src/modules/rlm_eap/types/rlm_eap_gtc' gcc -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -Wall -D_GNU_SOURCE -g -Wshadow -Wpointer-arith -Wcast-qual -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -W -Wredundant-decls -Wundef -I../../../../include -I../.. -c rlm_eap_gtc.c -o rlm_eap_gtc.o In file included from rlm_eap_gtc.c:28: ../../eap.h:44:23: eap_types.h: No such file or directory In file included from rlm_eap_gtc.c:28: ../../eap.h:56: parse error before "EAP_PACKET" ../../eap.h:56: warning: no semicolon at end of struct or union ../../eap.h:57: warning: type defaults to `int' in declaration of `request' ../../eap.h:57: warning: data definition has no type or storage class ../../eap.h:59: parse error before '}' token ../../eap.h:59: warning: type defaults to `int' in declaration of `EAP_DS' ../../eap.h:59: warning: data definition has no type or storage class ../../eap.h:116: parse error before "EAP_DS" ../../eap.h:116: warning: no semicolon at end of struct or union ../../eap.h:117: warning: type defaults to `int' in declaration of `eap_ds' ../../eap.h:117: warning: data definition has no type or storage class ../../eap.h:120: warning: declaration of `opaque' shadows a global declaration ../../eap.h:119: warning: shadowed declaration is here ../../eap.h:125: parse error before '}' token ../../eap.h:125: warning: type defaults to `int' in declaration of `EAP_HANDLER' ../../eap.h:125: warning: data definition has no type or storage class ../../eap.h:133: parse error before "EAP_HANDLER" ../../eap.h:133: warning: function declaration isn't a prototype ../../eap.h:134: parse error before "EAP_HANDLER" ../../eap.h:134: warning: function declaration isn't a prototype ../../eap.h:135: parse error before "EAP_HANDLER" ../../eap.h:135: warning: function declaration isn't a prototype rlm_eap_gtc.c: In function `gtc_detach': rlm_eap_gtc.c:60: warning: passing arg 1 of `free' discards qualifiers from pointer target type rlm_eap_gtc.c:61: warning: passing arg 1 of `free' discards qualifiers from pointer target type rlm_eap_gtc.c: In function `gtc_attach': rlm_eap_gtc.c:71: warning: unused parameter `instance' rlm_eap_gtc.c: At top level: rlm_eap_gtc.c:96: parse error before "EAP_HANDLER" rlm_eap_gtc.c:97: warning: function declaration isn't a prototype rlm_eap_gtc.c: In function `gtc_initiate': rlm_eap_gtc.c:99: invalid operands to binary * rlm_eap_gtc.c:99: `handler' undeclared (first use in this function) rlm_eap_gtc.c:99: (Each undeclared identifier is reported only once rlm_eap_gtc.c:99: for each function it appears in.) rlm_eap_gtc.c:100: `type_data' undeclared (first use in this function) rlm_eap_gtc.c:110: request for member `request' in something not a structure or union rlm_eap_gtc.c:110: `PW_EAP_REQUEST' undeclared (first use in this function) rlm_eap_gtc.c:112: request for member `request' in something not a structure or union rlm_eap_gtc.c:113: request for member `request' in something not a structure or union rlm_eap_gtc.c:118: request for member `request' in something not a structure or union rlm_eap_gtc.c:119: request for member `request' in something not a structure or union rlm_eap_gtc.c: At top level: rlm_eap_gtc.c:137: parse error before "EAP_HANDLER" rlm_eap_gtc.c:138: warning: function declaration isn't a prototype rlm_eap_gtc.c: In function `gtc_authenticate': rlm_eap_gtc.c:139: invalid operands to binary * rlm_eap_gtc.c:139: `handler' undeclared (first use in this function) rlm_eap_gtc.c:152: request for member `response' in something not a structure or union rlm_eap_gtc.c:161: request for member `response' in something not a structure or union rlm_eap_gtc.c:164: request for member `response' in something not a structure or union rlm_eap_gtc.c:182: request for member `response' in something not a structure or union rlm_eap_gtc.c:187: request for member `response' in something not a structure or union gmake[10]: *** [rlm_eap_gtc.o] Error 1 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: TTLS and PEAP problems
I don't know what the problem here is but what I see is that the AEGIS client crashes when using TTLS and MD5. Below you find the messages generated by FreeRADIUS Olaf (See attached file: radius.log) [EMAIL PROTECTED] wrote: > I tried TTLS with MD5 and MSCHAPv2 for the tunnel, MD5 did > not work (authentication did not succeed), Why? > Inside the sequence I find some messages > > rlm_eap_peap: EAP Request packet is too large. Code must be fixed to handle this. > > Can this be the reason for the unsuccessful authentication? It's a bug in the module. Grab the CVS snapshot from tomorrow, it should work. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html radius.log Description: Binary data
TTLS and PEAP problems
Hello, I just made some test with FreeRADIUS cvsSNAP 20031029 and EAP-TTLS and EAP-PEAP. My environment: FreeRADIUS runs on a RedHat8 PC with kernel 2.4.20, access point is a cisco 1200, client is a Notebook with RedHat8, kernel 2.4.20 and Meetinghouse AEGIS client and Cisco350 WLAN card. I tried TTLS with MD5 and MSCHAPv2 for the tunnel, MD5 did not work (authentication did not succeed), MSCHAPv2 was ok. With PEAP I did not get any successful authentication, the client only tries again and again. Below you can find a log sequence generated by run-radius -X -A Inside the sequence I find some messages rlm_eap_peap: EAP Request packet is too large. Code must be fixed to handle this. Can this be the reason for the unsuccessful authentication? Please have a look. Kind regards, Olaf (See attached file: radiuslog.zip) radiuslog.zip Description: Zip archive
EAP TLS SSL_read Error
Hi, I'm in the process of up FreeRADIUS together with CiscoAP1200, xsupplicant from open1x.org. Authentication method is EAP-TLS. After (I suppose) successful generation of root, server and client certifcates I get the following output from FreeRADIUS. What does this mean? TLS_accept: SSLv3 write certificate request A TLS_accept: SSLv3 flush data TLS_accept:error in SSLv3 read client certificate A rlm_eap_tls: SSL_read Error 1445:error:0906D06C:lib(9):func(109):reason(108):pem_lib.c:634:Expecting: DH PARAMETERS Error code is . 2 SSL Error . 2 modcall[authenticate]: module "eap" returns ok The SSL version is a SNAP version (downloaded about 2 weeks ago). Regards, Olaf [EMAIL PROTECTED] root]# ./run-radius -X -A + LD_LIBRARY_PATH=/usr/local/openssl/lib + export LD_LIBRARY_PATH LD_PRELOAD + /usr/local/sbin/radiusd -X -A Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /usr/local/etc/raddb/proxy.conf Config: including file: /usr/local/etc/raddb/clients.conf Config: including file: /usr/local/etc/raddb/snmp.conf Config: including file: /usr/local/etc/raddb/sql.conf main: prefix = "/usr/local" main: localstatedir = "/usr/local/var" main: logdir = "/usr/local/var/log/radius" main: libdir = "/usr/local/lib" main: radacctdir = "/usr/local/var/log/radius/radacct" main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = "/usr/local/var/log/radius/radius.log" main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = "/usr/local/var/run/radiusd/radiusd.pid" main: user = "root" main: group = "root" main: usercollide = no main: lower_user = "no" main: lower_pass = "no" main: nospace_user = "no" main: nospace_pass = "no" main: checkrad = "/usr/local/sbin/checkrad" main: proxy_requests = no proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = yes proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist Using deprecated naslist file. Support for this will go away soon. read_config_files: reading clients Using deprecated clients file. Support for this will go away soon. read_config_files: reading realms Using deprecated realms file. Support for this will go away soon. radiusd: entering modules setup Module: Library search path is /usr/local/lib Module: Loaded expr Module: Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme = "crypt" Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = no mschap: require_strong = no mschap: passwd = "(null)" mschap: authtype = "MS-CHAP" Module: Instantiated mschap (mschap) Module: Loaded System unix: cache = no unix: passwd = "(null)" unix: shadow = "(null)" unix: group = "(null)" unix: radwtmp = "/usr/local/var/log/radius/radwtmp" unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = "tls" eap: timer_expire = 60 rlm_eap: Loaded and initialized the type md5 rlm_eap: Loaded and initialized the type leap tls: rsa_key_exchange = no tls: dh_key_exchange = yes tls: rsa_key_length = 512 tls: dh_key_length = 512 tls: verify_depth = 0 tls: CA_path = "(null)" tls: pem_file_type = yes tls: private_key_file = "/etc/1x/r/cert-srv.pem" tls: certificate_file = "/etc/1x/r/cert-srv.pem" tls: CA_file = "/etc/1x/r/root.pem" tls: private_key_password = "whatever" tls: dh_file = "/etc/1x/r/dh" tls: random_file = "/etc/1x/r/random" tls: fragment_size = 1750 tls: include_length = yes rlm_eap_tls: conf N ctx stored rlm_eap: Loaded and initialized the type tls Module: Instantiated eap (eap) Module: Loaded preprocess preprocess: huntgroups = "/usr/local/etc/raddb/huntgroups" preprocess: hints = "/usr/local/etc/raddb/hints" preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23 preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack = no preprocess: with_cisco_vsa_hack = no Module: Instantiated preprocess (preprocess) Module: Loaded realm realm: format = "suffix" realm: delimiter = "@" Module: Instantiated realm (suffix) Module: Loaded files files: usersfile = "/usr/local/etc/raddb/users" files: acctusersfile = "/usr/local/etc/raddb/acct_users" files: preproxy_usersfile = "/usr/local/etc/raddb/preproxy_users" files: compat = "no" Module: Instantiated files (files) Module: Loaded Acct-Unique-Session-Id acct_unique: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Cli
EAP/TLS SSL certificate error
Hi, during client authentication process FreeRadius (0.9.1) reports the attached messages. Here I see two problems: TLS_accept:error in SSLv3 read client certificate A rlm_eap_tls: SSL_read Error Error code is . 2 SSL Error . 2 and rlm_eap: EAP packet type notification id 6 length 17 rlm_eap: EAP Start not found rlm_eap: Request found, released from the list rlm_eap: EAP_TYPE - tls rlm_eap: processing type tls rlm_eap_tls: Authenticate rlm_eap_tls: Length Included rlm_eap_tls: <<< TLS 1.0 Alert [length 0002], fatal bad_certificate TLS Alert read:fatal:bad certificate TLS_accept:failed in SSLv3 read client certificate A rlm_eap_tls: SSL_read Error Error code is . 1 Error in SSL . 1 rlm_eap_tls: BIO_read Error Error code is . 1 Error in SSL . 1 rlm_eap: Freeing handler I use the example certificates that are available in http://www.missl.cs.umd.edu/wireless/eaptls/ What do these messages mean, what has to be done? Kind regards, Olaf ___ Ready to process requests. rad_recv: Access-Request packet from host 172.31.128.21:32798, id=1, length=150 User-Name = "olaf" NAS-IP-Address = 172.31.128.21 NAS-Port = 1 Called-Station-Id = "00-09-5B-3B-B1-FA:MyMedLAN" Calling-Station-Id = "00-0B-FD-E7-65-9D" Framed-MTU = 1400 NAS-Port-Type = Wireless-802.11 Connect-Info = "CONNECT 11Mbps 802.11b" EAP-Message = 0x02030009016f6c6166 Message-Authenticator = 0xd01c6d88de21535ee0010eef5fad806f modcall: entering group authorize modcall[authorize]: module "preprocess" returns ok modcall[authorize]: module "chap" returns noop rlm_eap: EAP packet type notification id 3 length 9 rlm_eap: EAP Start not found modcall[authorize]: module "eap" returns updated rlm_realm: No '@' in User-Name = "olaf", looking up realm NULL rlm_realm: No such realm "NULL" modcall[authorize]: module "suffix" returns noop users: Matched olaf at 90 modcall[authorize]: module "files" returns ok modcall[authorize]: module "mschap" returns noop modcall: group authorize returns updated rad_check_password: Found Auth-Type EAP auth: type "EAP" modcall: entering group authenticate rlm_eap: EAP packet type notification id 3 length 9 rlm_eap: EAP Start not found rlm_eap: EAP Identity rlm_eap: processing type tls rlm_eap_tls: Initiate rlm_eap_tls: Start returned 1 modcall[authenticate]: module "eap" returns ok modcall: group authenticate returns ok radius_xlat: 'Hello, olaf' Sending Access-Challenge of id 1 to 172.31.128.21:32798 Reply-Message = "Hello, olaf" EAP-Message = 0x010400060d20 Message-Authenticator = 0x State = 0x8d042b88745e96d2f5f4ac980656fcfd64c0693fe7f4ad2c1dc906f9acd5e8f1bc5529be Finished request 0 Going to the next request --- Walking the entire request list --- Waking up in 6 seconds... rad_recv: Access-Request packet from host 172.31.128.21:32798, id=2, length=291 User-Name = "olaf" NAS-IP-Address = 172.31.128.21 NAS-Port = 1 Called-Station-Id = "00-09-5B-3B-B1-FA:MyMedLAN" Calling-Station-Id = "00-0B-FD-E7-65-9D" Framed-MTU = 1400 NAS-Port-Type = Wireless-802.11 Connect-Info = "CONNECT 11Mbps 802.11b" EAP-Message = 0x020400700d8000661603010061015d03013f69bf7192dc0a3fd21b9938493987b5ce7eac9cec59a560ed32835035369c803600390038003500160013000a00330032002f0007006600050004006300620061001500120009006500640060001400110008000600030100 State = 0x8d042b88745e96d2f5f4ac980656fcfd64c0693fe7f4ad2c1dc906f9acd5e8f1bc5529be Message-Authenticator = 0xf89a4df4d08affd50fadb8773ad62fc0 modcall: entering group authorize modcall[authorize]: module "preprocess" returns ok modcall[authorize]: module "chap" returns noop rlm_eap: EAP packet type notification id 4 length 112 rlm_eap: EAP Start not found modcall[authorize]: module "eap" returns updated rlm_realm: No '@' in User-Name = "olaf", looking up realm NULL rlm_realm: No such realm "NULL" modcall[authorize]: module "suffix" returns noop users: Matched olaf at 90 modcall[authorize]: module "files" returns ok modcall[authorize]: module "mschap" returns noop modcall: group authorize returns updated rad_check_password: Found Auth-Type EAP auth: type "EAP" modcall: entering group authenticate rlm_eap: EAP packet type notification id 4 length 112 rlm_eap: EAP Start not found rlm_eap: Request found, released from the list rlm_eap: EAP_TYPE - tls rlm_eap: processing type tls rlm_eap_tls: Authenticate rlm_eap_tls: Length Included undefined: before/accept initialization TLS_accept: before/accept initialization rlm_eap_tls: <<< TLS 1.0 Handshake [length 0061], ClientHello TLS_accept: SSLv3 read client hello A rlm_eap_tls: >>> TLS 1.0 Handshake [length 004a], ServerHello TLS_accept: SSLv3 write server hello A rlm_eap_tls: >>> TLS 1.0 Handshake [length 07aa],
FreeRADIUS EAP/TLS problem
Hello everybody, my Radius server crashes everytime when the supplicant is trying to authenticate. I use Freeradius 0.9.1 on a Linux (Redhat8 Kernel 2.4.20) machine. The supplicant is also installed on a Linux machine (Xsupplicant 0.7), the authentication protocol is EAP-TLS. The access point is a workstation with HostAP. After starting FreeRadius I get this sequence of messages: Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /usr/local/etc/raddb/proxy.conf Config: including file: /usr/local/etc/raddb/clients.conf Config: including file: /usr/local/etc/raddb/snmp.conf Config: including file: /usr/local/etc/raddb/sql.conf main: prefix = "/usr/local" main: localstatedir = "/usr/local/var" main: logdir = "/usr/local/var/log/radius" main: libdir = "/usr/local/lib" main: radacctdir = "/usr/local/var/log/radius/radacct" main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = "/usr/local/var/log/radius/radius.log" main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = "/usr/local/var/run/radiusd/radiusd.pid" main: user = "root" main: group = "root" main: usercollide = no main: lower_user = "no" main: lower_pass = "no" main: nospace_user = "no" main: nospace_pass = "no" main: checkrad = "/usr/local/sbin/checkrad" main: proxy_requests = no proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = yes proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist Using deprecated naslist file. Support for this will go away soon. read_config_files: reading clients Using deprecated clients file. Support for this will go away soon. read_config_files: reading realms Using deprecated realms file. Support for this will go away soon. radiusd: entering modules setup Module: Library search path is /usr/local/lib Module: Loaded expr Module: Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme = "crypt" Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = no mschap: require_strong = no mschap: passwd = "(null)" mschap: authtype = "MS-CHAP" Module: Instantiated mschap (mschap) Module: Loaded System unix: cache = no unix: passwd = "(null)" unix: shadow = "(null)" unix: group = "(null)" unix: radwtmp = "/usr/local/var/log/radius/radwtmp" unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = "tls" eap: timer_expire = 60 rlm_eap: Loaded and initialized the type md5 rlm_eap: Loaded and initialized the type leap tls: rsa_key_exchange = no tls: dh_key_exchange = yes tls: rsa_key_length = 512 tls: dh_key_length = 512 tls: verify_depth = 0 tls: CA_path = "(null)" tls: pem_file_type = yes tls: private_key_file = "/etc/1x/r/cert-srv.pem" tls: certificate_file = "/etc/1x/r/cert-srv.pem" tls: CA_file = "/etc/1x/r/root.pem" tls: private_key_password = "whatever" tls: dh_file = "/etc/1x/r/dh" tls: random_file = "/etc/1x/r/random" tls: fragment_size = 1750 tls: include_length = yes rlm_eap_tls: conf N ctx stored rlm_eap: Loaded and initialized the type tls Module: Instantiated eap (eap) Module: Loaded preprocess preprocess: huntgroups = "/usr/local/etc/raddb/huntgroups" preprocess: hints = "/usr/local/etc/raddb/hints" preprocess: with_ascend_hack = no preprocess: ascend_channels_per_line = 23 preprocess: with_ntdomain_hack = no preprocess: with_specialix_jetstream_hack = no preprocess: with_cisco_vsa_hack = no Module: Instantiated preprocess (preprocess) Module: Loaded realm realm: format = "suffix" realm: delimiter = "@" Module: Instantiated realm (suffix) Module: Loaded files files: usersfile = "/usr/local/etc/raddb/users" files: acctusersfile = "/usr/local/etc/raddb/acct_users" files: preproxy_usersfile = "/usr/local/etc/raddb/preproxy_users" files: compat = "no" Module: Instantiated files (files) Module: Loaded Acct-Unique-Session-Id acct_unique: key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port-Id" Module: Instantiated acct_unique (acct_unique) Module: Loaded detail detail: detailfile = "/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d" detail: detailperm = 384 detail: dirperm = 493 detail: locking = no Module: Instantiated detail (detail) Module: Loaded radutmp radutmp: filename = "/usr/local/var/log/radius/radutmp" radutmp: username = "%{User-Name}" radutmp: case_sensitive = yes radutmp: ch