(RADIATOR) PEAP and MSCHAPv2 question

Hugh Irvine hugh at open.com.au
Fri Dec 5 16:58:57 CST 2003 

Hello Lars -

You should check the startup messages from Radiator when you run 
"radiusd", as I suspect there are some prerequisites missing. Also 
check the example configuration files in "goodies/eap_*.cfg" - you will 
find the lists of prerequisites in the comment blocks at the beginning 
of each file.

regards

Hugh


On 06/12/2003, at 12:28 AM, Lars Olesen wrote:

> Hi there,
>
> I'm trying to get up running Windows XP clients using PEAP and 
> MSCHAPv2.
> However the RADIATOR writes in the log file that the object method
> "response_identity" can't be located :
>
>
> I've also attached the EAP.PM and EAP_26.pm files below.
>
>
> *** Received from 172.30.210.10 port 1027 ....
> Code:       Access-Request
> Identifier: 15
> Authentic:  ;<157>\<198><22>P<249><192>T[<156>q#<8><134><250>
> Attributes:
>       User-Name = "LAO\LAO"
>       NAS-IP-Address = 172.30.210.10
>       NAS-Identifier = "ZYXEL"
>       Framed-MTU = 1496
>       Called-Station-Id = "00-a0-c5-5c-90-2e:ZYXEL"
>       Calling-Station-Id = "00-a0-c5-41-c2-9b"
>       NAS-Port-Type = Wireless-IEEE-802-11
>       EAP-Message = <2><3><0><12><1>LAO\LAO
>       Message-Authenticator = 
> <19>"Q<27>4}0<172><252><244><135><16>hS2<187>
>
> Fri Dec  5 14:10:51 2003: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Fri Dec  5 14:10:51 2003: DEBUG:  Deleting session for LAO\LAO,
> 172.30.210.10,
> Fri Dec  5 14:10:51 2003: DEBUG: Handling with Radius::AuthFILE:
> Fri Dec  5 14:10:51 2003: DEBUG: Handling with EAP: code 2, 3, 12
> Fri Dec  5 14:10:51 2003: DEBUG: Response type 1
> Fri Dec  5 14:10:51 2003: ERR: Could not handle an EAP request: Can't
> locate object method "response_identity" via package "Radius::EAP_26" 
> at
> /usr/lib/perl5/site_perl/5.8.0/Radius/EAP.pm line 143.
>
> Fri Dec  5 14:10:51 2003: INFO: Access rejected for LAO\LAO: Could not
> handle an EAP request
> Fri Dec  5 14:10:51 2003: DEBUG: Packet dump:
> *** Sending to 172.30.210.10 port 1027 ....
> Code:       Access-Reject
> Identifier: 15
> Authentic:  ;<157>\<198><22>P<249><192>T[<156>q#<8><134><250>
> Attributes:
>       Reply-Message = "Request Denied"
>
>
> (See attached file: EAP_26.pm)(See attached file: EAP.pm)
>
>
>
> Med venlig hilsen / Best regards
> Dan Net A/S
>
> Lars Olesen
> Senior System Engineer
>
> =====================================================
> Email from Dan Net A/S
> Advanced solutions for Data Clearing, e- & m-business
>
> Dan Net A/S             Tel:    +45 4582 1600
> Blokken 9               Direct: +45 4590 2091
> DK-3460 Birkeroed       Fax:    +45 4582 1644
>
> Denmark                 Mobile: +45 2961 0332
>
> http://www.dannet.com
> =====================================================
> <EAP_26.pm><EAP.pm>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list