No subject
Tue Jun 24 01:27:40 CDT 2008
If (!EAPTLS-NoCheckId) {
Compare Subject with username, username_nodomain, identity,
identity_nodomain.
If match check database (e.g. FILE)
}
I would have thought the following would make sense too:
If (!EAPTLS-NoCheckId) {
Compare Subject with username, username_nodomain, identity,
identity_nodomain till one matches.
If match check matched id in database (e.g. FILE)
} else {
Check username, username_nodomain, identity, identity_nodomain in
database (e.g. FILE) till one matches or reject
}
Thank you
Markus
----- Original Message -----
From: "Hugh Irvine" <hugh at open.com.au>
To: "Markus Moeller" <huaraz at moeller.plus.com>
Cc: <radiator at open.com.au>
Sent: Monday, February 25, 2008 11:52 PM
Subject: Re: (RADIATOR) EAPTLS_NoCheckId and AuthBy FILE check
>
> Hello Markus -
>
> Could you please send us a trace 4 debug showing what is happening?
>
> regards
>
> Hugh
>
>
> On 26 Feb 2008, at 09:30, Markus Moeller wrote:
>
>> I have a setup for EAPTLS authentication as follows
>>
>> <AuthBy FILE>
>> Identifier EapTLSTest
>> Filename %D/ADUsers
>>
>> EAPType TLS
>> EAPTLS_CAFile /etc/ssl/certs/allcerts.pem
>> EAPTLS_CAPath /etc/ssl/certs
>> EAPTLS_CertificateFile %D/servercert.pem
>> EAPTLS_CertificateType PEM
>> EAPTLS_PrivateKeyFile %D/serverkey.pem
>> EAPTLS_PrivateKeyPassword password
>> EAPTLS_MaxFragmentSize 1000
>> #EAPTLS_CRLCheck
>> #EAPTLS_CRLFile %D/certificates/crl.pem
>> #EAPTLS_CRLFile %D/certificates/revocations.pem
>> #EAPTLSRewriteCertificateCommonName s/testUsemikem/
>> EAPTLS_NoCheckId
>> AutoMPPEKeys
>> </AuthBy>
>> #
>> <Handler Device-Class=WlanTest>
>> # Mark request as Radius request if not already set by TACACS+
>> AddToRequestIfNotExist Request-Protocol=EapTLS
>> AuthByPolicy ContinueUntilReject
>> AuthBy EapTLSTest
>> AuthLog LogEapTLSAuthentication
>> AuthLog SysLogEapTLSAuthentication
>> AcctLogFileName %L/detail-%d-%v-%Y.log
>> </Handler>
>>
>>
>> with ADUser
>>
>> DEFAULT User-LockedOut=No
>>
>>
>> When I receive a EAPTLS request I don't see any check against the ADUser
>> entries. But when I disable EAPTLS_NoCheckId(e.g. comment it with #) it
>> seems to check against ADUser. Is this the correct behaviour ?
>>
>> Why does EAPTLS_NoCheckId the use of ADUser ?
>>
>> Thank you
>> Markus
>>
>
>
>
> NB:
>
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive (www.open.com.au/archives/
> radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
> Have you checked the RadiusExpert wiki:
> http://www.open.com.au/wiki/index.php/Main_Page
>
> --
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER translation agent.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
>
>
>
------=_NextPart_000_08AA_01C878B8.4BA15900
Content-Type: text/plain;
format=flowed;
name="EAPCheckId.txt";
reply-type=response
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment;
filename="EAPCheckId.txt"
Tue Feb 26 10:47:01 2008: NOTICE: SIGTERM received: stopping
Tue Feb 26 10:47:01 2008: DEBUG: include /etc/radiator/readclients.pl|
Tue Feb 26 10:47:02 2008: DEBUG: Creating TACACSPLUS port 0.0.0.0:49
Tue Feb 26 10:47:02 2008: DEBUG: Creating StreamServer tcp port =
0.0.0.0:9443
Tue Feb 26 10:47:02 2008: DEBUG: Finished reading configuration file =
'/etc/radiator/radius.cfg'
Tue Feb 26 10:47:02 2008: DEBUG: Reading dictionary file =
'/etc/radiator/dictionary'
Tue Feb 26 10:47:02 2008: DEBUG: Creating authentication port =
0.0.0.0:1812
Tue Feb 26 10:47:02 2008: DEBUG: Creating accounting port 0.0.0.0:1813
Tue Feb 26 10:47:02 2008: NOTICE: Server started: Radiator 4.0 on =
lonwhs01tsd03
Tue Feb 26 10:47:09 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 150
...
Code: Access-Request
Identifier: 0
Authentic: <0>[{<194><211><140>z<139><235>r<21><152>]<2><204><195>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><0><0><26><1>markus at moeller.plus.com
Message-Authenticator =3D =
<3>i<221>K<8><221><164><18>2p<154><211>\<195><161><241>
Tue Feb 26 10:47:10 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:10 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:10 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:10 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:10 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:10 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:10 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:10 2008: DEBUG: Handling with EAP: code 2, 0, 26, 1
Tue Feb 26 10:47:10 2008: DEBUG: Response type 1
Tue Feb 26 10:47:10 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:10 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:10 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:10 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 46
...
Code: Access-Challenge
Identifier: 0
Authentic: <0>[{<194><211><140>z<139><235>r<21><152>]<2><204><195>
Attributes:
EAP-Message =3D <1><1><0><6><13>=20
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:10 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 230
...
Code: Access-Request
Identifier: 1
Authentic: -<228><253><149>I4|<133>a<193>E!<145>x<11><131>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ...
Message-Authenticator =3D =
<131>Q<19>2'<220><144>Zf<188>T<151>cD<21>y
Tue Feb 26 10:47:10 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:10 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:10 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:10 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:10 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:10 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:10 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:10 2008: DEBUG: Handling with EAP: code 2, 1, 106, 13
Tue Feb 26 10:47:10 2008: DEBUG: Response type 13
Tue Feb 26 10:47:10 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:10 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:10 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:10 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 1056
...
Code: Access-Challenge
Identifier: 1
Authentic: -<228><253><149>I4|<133>a<193>E!<145>x<11><131>
Attributes:
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:10 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
Code: Access-Request
Identifier: 2
Authentic: Q<162>1<209><21>L<28>7<144><4><164>f<<204><205><187>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><2><0><6><13><0>
Message-Authenticator =3D =
<5><251>45sV<195><202><14>C<217>]q<186>9<131>
Tue Feb 26 10:47:10 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:10 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:10 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:10 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:10 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:10 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:10 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:10 2008: DEBUG: Handling with EAP: code 2, 2, 6, 13
Tue Feb 26 10:47:10 2008: DEBUG: Response type 13
Tue Feb 26 10:47:10 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:10 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:10 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:10 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 1052
...
Code: Access-Challenge
Identifier: 2
Authentic: Q<162>1<209><21>L<28>7<144><4><164>f<<204><205><187>
Attributes:
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:10 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
Code: Access-Request
Identifier: 3
Authentic: <138>1<141><26>q<13><138>P29D<4><209><251><238><186>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><3><0><6><13><0>
Message-Authenticator =3D =
<7>+%<127><172><140><136><200>A<146>5<28><135>r<177>>
Tue Feb 26 10:47:13 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:13 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:13 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:13 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:13 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:13 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:13 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:13 2008: DEBUG: Handling with EAP: code 2, 3, 6, 13
Tue Feb 26 10:47:13 2008: DEBUG: Response type 13
Tue Feb 26 10:47:13 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:13 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:13 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:13 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 1052
...
Code: Access-Challenge
Identifier: 3
Authentic: <138>1<141><26>q<13><138>P29D<4><209><251><238><186>
Attributes:
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:13 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
Code: Access-Request
Identifier: 4
Authentic: =
<204><195>=3D<189>$<219>!<198><2><194><220><234><163><207><139><227>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><4><0><6><13><0>
Message-Authenticator =3D =
<232><237><180><140><188><244><6><6><200><235><16><5><181><10>b#
Tue Feb 26 10:47:14 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:14 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:14 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:14 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:14 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:14 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:14 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:14 2008: DEBUG: Handling with EAP: code 2, 4, 6, 13
Tue Feb 26 10:47:14 2008: DEBUG: Response type 13
Tue Feb 26 10:47:14 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:14 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:14 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:14 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 196
...
Code: Access-Challenge
Identifier: 4
Authentic: =
<204><195>=3D<189>$<219>!<198><2><194><220><234><163><207><139><227>
Attributes:
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:14 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 1542
...
Code: Access-Request
Identifier: 5
Authentic: m<176>/UR<8><130><11><131>#<195><190><16>?!<153>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<192><23><128><243>L^<216><13><134>$<177><220><218>+9<179>
Tue Feb 26 10:47:15 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:15 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:15 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:15 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:15 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:15 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:15 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:15 2008: DEBUG: Handling with EAP: code 2, 5, 1408, 13
Tue Feb 26 10:47:15 2008: DEBUG: Response type 13
Tue Feb 26 10:47:15 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:15 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:15 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:15 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 46
...
Code: Access-Challenge
Identifier: 5
Authentic: m<176>/UR<8><130><11><131>#<195><190><16>?!<153>
Attributes:
EAP-Message =3D <1><6><0><6><13><0>
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:15 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 1538
...
Code: Access-Request
Identifier: 6
Authentic: <152>4<139><210><200>c<191>@<236>e<163><10><250><203><142>R
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<247>#<201>.g<153><20><22><28><173>K<215>uvIN
Tue Feb 26 10:47:15 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:15 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:15 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:15 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:15 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:15 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:15 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:15 2008: DEBUG: Handling with EAP: code 2, 6, 1404, 13
Tue Feb 26 10:47:15 2008: DEBUG: Response type 13
Tue Feb 26 10:47:15 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:15 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:15 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:15 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 46
...
Code: Access-Challenge
Identifier: 6
Authentic: <152>4<139><210><200>c<191>@<236>e<163><10><250><203><142>R
Attributes:
EAP-Message =3D <1><7><0><6><13><0>
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:15 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 824
...
Code: Access-Request
Identifier: 7
Authentic: $<243>~<169><154><156><131><182><140><181>'^<207>2<151><198>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
L<250><159>G<249>;D<15>Vo/3<241>2<19><151>
Tue Feb 26 10:47:15 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:15 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:15 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:15 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:15 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:15 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:15 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:15 2008: DEBUG: Handling with EAP: code 2, 7, 696, 13
Tue Feb 26 10:47:15 2008: DEBUG: Response type 13
Tue Feb 26 10:47:15 2008: DEBUG: Certificate Subject Name is =
/C=3DGB/ST=3DLondon/L=3DLondon/O=3DDB/OU=3DNetwork Security =
Engineering/CN=3Dmarkus at moeller.plus.com/emailAddress=3Dmarkus at moeller.pl=
us.com
Tue Feb 26 10:47:15 2008: DEBUG: Matched certificate CN =
markus at moeller.plus.com with User-Name markus at moeller.plus.com or =
identity markus at moeller.plus.com
Tue Feb 26 10:47:15 2008: DEBUG: Reading users file =
/etc/radiator/DBUsers
Tue Feb 26 10:47:15 2008: DEBUG: Radius::AuthFILE looks for match with =
markus at moeller.plus.com [markus at moeller.plus.com]
Tue Feb 26 10:47:15 2008: DEBUG: Radius::AuthFILE REJECT: No such user: =
markus at moeller.plus.com [markus at moeller.plus.com]
Tue Feb 26 10:47:15 2008: DEBUG: Radius::AuthFILE looks for match with =
DEFAULT [markus at moeller.plus.com]
Tue Feb 26 10:47:15 2008: DEBUG: Radius::AuthFILE ACCEPT: : DEFAULT =
[markus at moeller.plus.com]
Tue Feb 26 10:47:16 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:47:16 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:47:16 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:47:16 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 109
...
Code: Access-Challenge
Identifier: 7
Authentic: $<243>~<169><154><156><131><182><140><181>'^<207>2<151><198>
Attributes:
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:47:16 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
Code: Access-Request
Identifier: 8
Authentic: <193>^<31>y<20><173>Y<231>2P&<147><247>!<8><221>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><8><0><6><13><0>
Message-Authenticator =3D =
<175>d<27><17><25><13><249><3>)5<15>2<204><193><15><1>
Tue Feb 26 10:47:18 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:47:18 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:47:18 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:47:18 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:47:18 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:47:18 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:47:18 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:47:18 2008: DEBUG: Handling with EAP: code 2, 8, 6, 13
Tue Feb 26 10:47:18 2008: DEBUG: Response type 13
Tue Feb 26 10:47:18 2008: DEBUG: EAP result: 0,=20
Tue Feb 26 10:47:18 2008: DEBUG: AuthBy FILE result: ACCEPT,=20
Tue Feb 26 10:47:18 2008: DEBUG: Access accepted for =
markus at moeller.plus.com
Tue Feb 26 10:47:18 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 160
...
Code: Access-Accept
Identifier: 8
Authentic: <193>^<31>y<20><173>Y<231>2P&<147><247>!<8><221>
Attributes:
EAP-Message =3D <3><8><0><4>
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
MS-MPPE-Send-Key =3D =
<158>~j<10><130>9FrPA#x|<9><152><163>4<26><30><192>j<186>i<251>4<144>8<23=
8><13><199><192>d<222><16><175><193><193><245><193><158><191><191><161>^<=
212><245>'h<242><247>
MS-MPPE-Recv-Key =3D =
<151><154><220><184>9<156><187>(<159>U<177>7<147>e<25><180><186><130><129=
><156><160><194><253><235><6><228>7<245><226><21><9>U<14><189>-<237><231>=
<249><22>u<157><255>o<147><17><148><237><145><165><197>
------=_NextPart_000_08AA_01C878B8.4BA15900
Content-Type: text/plain;
format=flowed;
name="EAPNoCheckId.txt";
reply-type=response
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment;
filename="EAPNoCheckId.txt"
Tue Feb 26 10:35:39 2008: NOTICE: SIGTERM received: stopping
Tue Feb 26 10:35:39 2008: DEBUG: include /etc/radiator/readclients.pl|
Tue Feb 26 10:35:40 2008: DEBUG: Creating TACACSPLUS port 0.0.0.0:49
Tue Feb 26 10:35:40 2008: DEBUG: Creating StreamServer tcp port =
0.0.0.0:9443
Tue Feb 26 10:35:40 2008: DEBUG: Finished reading configuration file =
'/etc/radiator/radius.cfg'
Tue Feb 26 10:35:40 2008: DEBUG: Reading dictionary file =
'/etc/radiator/dictionary'
Tue Feb 26 10:35:40 2008: DEBUG: Creating authentication port =
0.0.0.0:1812
Tue Feb 26 10:35:40 2008: DEBUG: Creating accounting port 0.0.0.0:1813
Tue Feb 26 10:35:40 2008: NOTICE: Server started: Radiator 4.0 on =
lonwhs01tsd03
Tue Feb 26 10:35:50 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 150
...
Code: Access-Request
Identifier: 0
Authentic: <24><204>Z<164>w<141><150><19><18><157><198>Z<214>8<16><241>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><0><0><26><1>markus at moeller.plus.com
Message-Authenticator =3D =
G<192><194><171><135>A<27>0V<255><196><132><131>?<181><243>
Tue Feb 26 10:35:51 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:51 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:51 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:51 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:51 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:51 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:51 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:51 2008: DEBUG: Handling with EAP: code 2, 0, 26, 1
Tue Feb 26 10:35:51 2008: DEBUG: Response type 1
Tue Feb 26 10:35:51 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:51 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:51 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:51 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 46
...
Code: Access-Challenge
Identifier: 0
Authentic: <24><204>Z<164>w<141><150><19><18><157><198>Z<214>8<16><241>
Attributes:
EAP-Message =3D <1><1><0><6><13>=20
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:51 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 230
...
Code: Access-Request
Identifier: 1
Authentic: #Dc2<161><166><245><225>q<161>J<174>usP<15>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ....
Message-Authenticator =3D =
<137>q<250><148>z4<176><236>Y<13><4><246>k<202>V<232>
Tue Feb 26 10:35:51 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:51 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:51 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:51 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:51 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:51 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:51 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:51 2008: DEBUG: Handling with EAP: code 2, 1, 106, 13
Tue Feb 26 10:35:51 2008: DEBUG: Response type 13
Tue Feb 26 10:35:51 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:51 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:51 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:51 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 1056
...
Code: Access-Challenge
Identifier: 1
Authentic: #Dc2<161><166><245><225>q<161>J<174>usP<15>
Attributes:
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:51 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
05 35
Code: Access-Request
Identifier: 2
Authentic: <206><146><9>J<180><206><231><134><2>"<132>p<5><3>T6
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><2><0><6><13><0>
Message-Authenticator =3D =
i<<8>L-v2<246><222><135>Ls<215><141><5>5
Tue Feb 26 10:35:52 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:52 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:52 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:52 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:52 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:52 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:52 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:52 2008: DEBUG: Handling with EAP: code 2, 2, 6, 13
Tue Feb 26 10:35:52 2008: DEBUG: Response type 13
Tue Feb 26 10:35:52 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:52 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:52 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:52 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 1052
...
Code: Access-Challenge
Identifier: 2
Authentic: <206><146><9>J<180><206><231><134><2>"<132>p<5><3>T6
Attributes:
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:52 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
50 4f
Code: Access-Request
Identifier: 3
Authentic: =
<135><188><245><169><15><232>&<195><236><170><22>J<219>#<146><0>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><3><0><6><13><0>
Message-Authenticator =3D =
TA<195><151><156><207><19><189><212><20>t<248><214><233>PO
Tue Feb 26 10:35:54 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:54 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:54 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:54 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:54 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:54 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:54 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:54 2008: DEBUG: Handling with EAP: code 2, 3, 6, 13
Tue Feb 26 10:35:54 2008: DEBUG: Response type 13
Tue Feb 26 10:35:54 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:54 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:54 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:54 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 1052
...
Code: Access-Challenge
Identifier: 3
Authentic: =
<135><188><245><169><15><232>&<195><236><170><22>J<219>#<146><0>
Attributes:
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:54 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
Code: Access-Request
Identifier: 4
Authentic: <22><19>JONOE<148><226>M<243><138><23><161>3l
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><4><0><6><13><0>
Message-Authenticator =3D =
<175>(<194><208>u80(18<167>h<234><245><156><0>
Tue Feb 26 10:35:55 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:55 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:55 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:55 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:55 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:55 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:56 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:56 2008: DEBUG: Handling with EAP: code 2, 4, 6, 13
Tue Feb 26 10:35:56 2008: DEBUG: Response type 13
Tue Feb 26 10:35:56 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:56 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:56 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:56 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 196
...
Code: Access-Challenge
Identifier: 4
Authentic: <22><19>JONOE<148><226>M<243><138><23><161>3l
Attributes:
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:56 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 1542
...
Code: Access-Request
Identifier: 5
Authentic: <213>dP<223><16>n<220>t<135><25><130><215>m<227>h=20
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<239><150>k3(:<159><165><221>.X<155>/<203><142><213>
Tue Feb 26 10:35:56 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:56 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:56 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:56 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:56 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:56 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:56 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:56 2008: DEBUG: Handling with EAP: code 2, 5, 1408, 13
Tue Feb 26 10:35:56 2008: DEBUG: Response type 13
Tue Feb 26 10:35:56 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:56 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:56 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:56 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 46
...
Code: Access-Challenge
Identifier: 5
Authentic: <213>dP<223><16>n<220>t<135><25><130><215>m<227>h=20
Attributes:
EAP-Message =3D <1><6><0><6><13><0>
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:56 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 1538
...
Code: Access-Request
Identifier: 6
Authentic: w<180><201><172><127><144>2<204><209>q<183><20>\<128><0><25>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
<17>V<227><134><141><158><248>`s?<143><18><152><130><5>5
Tue Feb 26 10:35:56 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:56 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:56 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:56 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:56 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:56 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:56 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:56 2008: DEBUG: Handling with EAP: code 2, 6, 1404, 13
Tue Feb 26 10:35:56 2008: DEBUG: Response type 13
Tue Feb 26 10:35:56 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:56 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:56 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:56 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 46
...
Code: Access-Challenge
Identifier: 6
Authentic: w<180><201><172><127><144>2<204><209>q<183><20>\<128><0><25>
Attributes:
EAP-Message =3D <1><7><0><6><13><0>
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:56 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 824
...
Code: Access-Request
Identifier: 7
Authentic: <150>h<200><247><164>@<15><11><149><190><209>V3<217>^<185>
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D ...
EAP-Message =3D ...
EAP-Message =3D ...
Message-Authenticator =3D =
&<131>55%C<147><7><139><216><28><199><243><250><127><26>
Tue Feb 26 10:35:57 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:57 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:57 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:57 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:57 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:57 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:57 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:57 2008: DEBUG: Handling with EAP: code 2, 7, 696, 13
Tue Feb 26 10:35:57 2008: DEBUG: Response type 13
Tue Feb 26 10:35:57 2008: DEBUG: Certificate Subject Name is =
/C=3DGB/ST=3DLondon/L=3DLondon/O=3DDB/OU=3DNetwork Security =
Engineering/CN=3Dmarkus at moeller.plus.com/emailAddress=3Dmarkus at moeller.pl=
us.com
Tue Feb 26 10:35:57 2008: DEBUG: EAP result: 3, EAP TLS Challenge
Tue Feb 26 10:35:57 2008: DEBUG: AuthBy FILE result: CHALLENGE, EAP TLS =
Challenge
Tue Feb 26 10:35:57 2008: DEBUG: Access challenged for =
markus at moeller.plus.com: EAP TLS Challenge
Tue Feb 26 10:35:57 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 109
...
Code: Access-Challenge
Identifier: 7
Authentic: <150>h<200><247><164>@<15><11><149><190><209>V3<217>^<185>
Attributes:
EAP-Message =3D ...
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Tue Feb 26 10:35:57 2008: DEBUG: Packet dump:
*** Received from 192.168.10.1 port 35921 ....
Packet length =3D 130
...
Code: Access-Request
Identifier: 8
Authentic: <203>5<238><31>1v<4><157><172>v<4><247>Fly{
Attributes:
User-Name =3D "markus at moeller.plus.com"
NAS-IP-Address =3D 127.0.0.1
Calling-Station-Id =3D "02-00-00-00-00-01"
Framed-MTU =3D 1400
NAS-Port-Type =3D Wireless-IEEE-802-11
Connect-Info =3D "CONNECT 11Mbps 802.11b"
EAP-Message =3D <2><8><0><6><13><0>
Message-Authenticator =3D =
<26>I<194><170><177><222><156>"<137><201>{<149><183><242><207>v
Tue Feb 26 10:35:59 2008: DEBUG: PreHandlerHook added LDAP Attributes:
Tue Feb 26 10:35:59 2008: DEBUG: User-Mail =3D markus at moeller.plus.com
Tue Feb 26 10:35:59 2008: DEBUG: User-Account-Locked =3D No
Tue Feb 26 10:35:59 2008: DEBUG: User-Principal-name =3D =
markus at moeller.plus.com
Tue Feb 26 10:35:59 2008: DEBUG: Handling request with Handler =
'Device-Class=3DWlanTest'
Tue Feb 26 10:35:59 2008: DEBUG: Deleting session for =
markus at moeller.plus.com, 127.0.0.1,=20
Tue Feb 26 10:35:59 2008: DEBUG: Handling with Radius::AuthFILE: =
EapTLSTest
Tue Feb 26 10:35:59 2008: DEBUG: Handling with EAP: code 2, 8, 6, 13
Tue Feb 26 10:35:59 2008: DEBUG: Response type 13
Tue Feb 26 10:35:59 2008: DEBUG: EAP result: 0,=20
Tue Feb 26 10:35:59 2008: DEBUG: AuthBy FILE result: ACCEPT,=20
Tue Feb 26 10:35:59 2008: DEBUG: Access accepted for =
markus at moeller.plus.com
Tue Feb 26 10:35:59 2008: DEBUG: Packet dump:
*** Sending to 192.168.10.1 port 35921 ....
Packet length =3D 160
...
Code: Access-Accept
Identifier: 8
Authentic: <203>5<238><31>1v<4><157><172>v<4><247>Fly{
Attributes:
EAP-Message =3D <3><8><0><4>
Message-Authenticator =3D =
<0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
MS-MPPE-Send-Key =3D =
<201><164>^<16><189><167><198>ryN<28><22>_<188>T<169><244><156><142><218>=
<3><165>_?x<130><168><223><7>O<171><221>z<171><243>'k<181><133><204><244>=
R<167><219>d<200><131><21>{v
MS-MPPE-Recv-Key =3D =
<169><128>}V<150>~8<154><149>yu<135>x<239><203><136><130><251><6><135><18=
7>x<3><20>9LN<23>2,C<219><254><134><7><211><130>$,E<200>d<215>><5><128><1=
99><229><240>-
------=_NextPart_000_08AA_01C878B8.4BA15900--
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list