(RADIATOR) Desired EAP type 17 not permitted

Hugh Irvine hugh at open.com.au
Wed Feb 18 01:46:40 CST 2004


Hello Fernando -

EAP_17 is Cisco LEAP, so either you have not specified LEAP in the  
configuration file, or you have not installed the prerequisites that  
are necessary.

You will find an example configuration file in "goodies/leap.cfg".

If you still have problems, please send me a copy of the configuration  
file (no secrets) together with a trace 4 debug showing the startup  
messages and what is happening.

regards

Hugh


On 18 Feb 2004, at 06:44, Fernando Romão wrote:

>     Hi,
>
>
>     What means this error  (type 17)?
>
> Tue Feb 17 18:24:30 2004: INFO: EAP Nak desires type 17
> Tue Feb 17 18:24:30 2004: INFO: Access rejected for mleitao: Desired  
> EAP
> type 17 not permitted
>
>                   Thanks
>                Fernando Romão
>
>
> ----------------------------------------------------------------------- 
> -----
> ----
> ** Received from 172.20.51.30 port 21645 ....
> Code:       Access-Request
> Identifier: 20
> Authentic:  ^<172><197>ii<214>OpE<185><165>A:<31><140><195>
> Attributes:
>         User-Name = "leitao"
>         Framed-MTU = 1400
>         Called-Station-Id = "00-02-8A-21-0E-5B"
>         Calling-Station-Id = "00-0B-FD-B6-AA-08"
>         Message-Authenticator =
> <222><189><149>!<2>D<156>R<<167><154><143>\<213><217><225>
>         EAP-Message = <2><3><0><6><3><17>
>         NAS-Port-Type = Wireless-IEEE-802-11
>         NAS-Port = 373
>         Service-Type = Framed-User
>         NAS-IP-Address = 172.20.51.30
>         NAS-Identifier = "APD-1(0)0501"
>
> Tue Feb 17 18:24:30 2004: DEBUG: Handling request with Handler
> 'Realm=fe.up.pt'
> Tue Feb 17 18:24:30 2004: DEBUG: Rewrote user name to leitao
> Tue Feb 17 18:24:30 2004: DEBUG: accountDB Deleting session for leitao,
> 172.20.51.30, 373
> Tue Feb 17 18:24:30 2004: DEBUG: Handling with Radius::AuthFILE:
> Tue Feb 17 18:24:30 2004: DEBUG: Handling with EAP: code 2, 3, 6
> Tue Feb 17 18:24:30 2004: DEBUG: Response type 3
> Tue Feb 17 18:24:30 2004: INFO: EAP Nak desires type 17
> Tue Feb 17 18:24:30 2004: INFO: Access rejected for leitao: Desired  
> EAP type
> 17 not permitted
> Tue Feb 17 18:24:30 2004: DEBUG: Packet dump:
> *** Sending to 172.20.51.30 port 21645 ....
> Code:       Access-Reject
> Identifier: 20
> Authentic:  ^<172><197>ii<214>OpE<185><165>A:<31><140><195>
> Attributes:
>         Reply-Message = "Request Denied"
>
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list