Re: Freeradius in OpenBSD

2009-10-30 Thread Ivan Kalik
> I would like to know if installing freeradius in any O.S., can be > useful to AAA to LAN users. > As a PPPOE authentication in a ADSL user, but int this case, there are > no phone line, its only a LAN but extended by city, by Fibra Optica. > (F.O.) > > Could i create accounts to authenticate my "

Freeradius in OpenBSD

2009-10-30 Thread C. Diego Raffaelli A.
Hi all. I would like to know if installing freeradius in any O.S., can be useful to AAA to LAN users. As a PPPOE authentication in a ADSL user, but int this case, there are no phone line, its only a LAN but extended by city, by Fibra Optica. (F.O.) Could i create accounts to authenticate my "clie

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-16 Thread Alan DeKok
Maurizio Cimaschi wrote: > OK. So the rlm_mschap will look for the internal check-Item > "Cleartext-Password" and it will use that value for authentication. > > From share/freeradius/dictionary.freeradius.internal Can I ask you to stop quoting the documentation and configuration to me? I wrote

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-16 Thread Maurizio Cimaschi
Alan DeKok wrote: Because User-Password is the password as entered by the user. Cleartext-Password is the "known good" password on the server. They are *not* the same. When you do EAP, there is *no* User-Password attribute in the packets. So doing "User-Password == ..." is *wrong*. There'

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-16 Thread Alan DeKok
Maurizio Cimaschi wrote: > Venkata LK Mula wrote: >> The 'Code: Access-challenge (11)' frame from server to the >> client is showing 'Checksum: 0x921e [incorrect, should be >> 0x206c]' error. please find the ethereal log as attached as >> 'eap-failure1'. > > All the packets from your server have t

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-16 Thread Alan DeKok
Maurizio Cimaschi wrote: > I checked the example, but it's not clear to me why it is so. Because User-Password is the password as entered by the user. Cleartext-Password is the "known good" password on the server. They are *not* the same. When you do EAP, there is *no* User-Password attribut

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-16 Thread Maurizio Cimaschi
Alan DeKok wrote: test100 User-Password == "venkat", No. Use Cleartext-Password := ... This is given in the example in the FAQ. I checked the example, but it's not clear to me why it is so. In my envirnoment I authenticate against an LDAP server, so according to the ldap.attrmap file th

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-16 Thread Maurizio Cimaschi
Venkata LK Mula wrote: The 'Code: Access-challenge (11)' frame from server to the client is showing 'Checksum: 0x921e [incorrect, should be 0x206c]' error. please find the ethereal log as attached as 'eap-failure1'. All the packets from your server have that problems; so it's probably a bug i

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-15 Thread Alan DeKok
Maurizio Cimaschi wrote: > I would modify it in this way > > test100 User-Password == "venkat", No. Use Cleartext-Password := ... This is given in the example in the FAQ. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-15 Thread Venkata LK Mula
x27;eap-failure1'. regards, Venkat - Original Message - From: Maurizio Cimaschi <[EMAIL PROTECTED]> To: Venkata LK Mula <[EMAIL PROTECTED]> Cc: FreeRadius users mailing list Subject: Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (W

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-15 Thread Maurizio Cimaschi
Venkata LK Mula wrote: We are authenticating the clients via 'users' file. In your "users" configuration file user "test100" (the one that log files are referring to) is "test100" Auth-Type := EAP Cleartext-Password == "venkat", Tunnel-Type = 13, Tunnel-Medium-Type =

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-15 Thread Venkata LK Mula
the file at location /usr/local/etc/raddb/sites-available. And also sending the 'users' file. regards, Venkat - Original Message - From: Maurizio Cimaschi <[EMAIL PROTECTED]> To: FreeRadius users mailing list Subject: Re: Failing to authenticate using FreeRadius(in O

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client+Linksys AP (WRT54v2.2) using peap

2008-08-15 Thread Ivan Kalik
What is in this entry: users: Matched entry test100 at line 172 Ivan Kalik Kalik Informatika ISP Dana 15/8/2008, "Venkata LK Mula" <[EMAIL PROTECTED]> piše: >Hi, > >This is with reference to the above mentioned subject, we >are trying to authenticate client in PEAP-MSCHAPv2 >configuration. > >

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client +Linksys AP (WRT54v2.2) using peap

2008-08-15 Thread Maurizio Cimaschi
Venkata LK Mula wrote: modsingle[authenticate]: calling mschap (rlm_mschap) for request 6 rlm_mschap: No Cleartext-Password configured. Cannot create LM-Password. rlm_mschap: No Cleartext-Password configured. Cannot create NT-Password. rlm_mschap: Told to do MS-CHAPv2 for test100 with NT-Password

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client + Cisco AP 1200 using peap

2008-06-17 Thread Raja Peer
Thanks ofr your reponse Alan. Here is the other error message auth: No authenticate method (Auth-Type) configuration found for the request: Rejecting the user auth: Failed to validate the user. Login incorrect: [bob/] (from client myhost port 0) PEAP: Tunneled authentication was reject

Re: Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client + Cisco AP 1200 using peap

2008-06-17 Thread Alan DeKok
Raja Peer wrote: > Trying to authenticate login just using "users" file. > > And getting the following failure: > rlm_eap_peap: Received EAP-TLV response. > rlm_eap_peap: Had sent TLV failure. User was rejected earlier in this > session. That message means you're supposed to read the RES

Failing to authenticate using FreeRadius(in OpenBSD) + XP as a client + Cisco AP 1200 using peap

2008-06-17 Thread Raja Peer
Hello All, Thanks in advance. Trying to authenticate login just using "users" file. And getting the following failure: rlm_eap_peap: Received EAP-TLV response. rlm_eap_peap: Had sent TLV failure. User was rejected earlier in this session. rlm_eap: Handler failed in EAP/peap rlm_eap: F