API tools faq
paste
Advertisement
cogedengbe

Back end Radius server debug output

cogedengbe
Feb 24th, 2015
321
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 55.48 KB | None | 0 0
raw download clone embed print report
  1. FreeRADIUS Version 2.2.0, for host i686-pc-linux-gnu, built on Sep 20 2012 at 09:52:41
  2. Copyright (C) 1999-2012 The FreeRADIUS server project and contributors.
  3. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
  4. PARTICULAR PURPOSE.
  5. You may redistribute copies of FreeRADIUS under the terms of the
  6. GNU General Public License v2.
  7. Starting - reading configuration files ...
  8. including configuration file /etc/freeradius/radiusd.conf
  9. including configuration file /etc/freeradius/proxy.conf
  10. including configuration file /etc/freeradius/clients.conf
  11. including configuration file /etc/freeradius/eap.conf
  12. including configuration file /etc/freeradius/policy.conf
  13. including files in directory /etc/freeradius/sites-enabled/
  14. including configuration file /etc/freeradius/sites-enabled/default
  15. including configuration file /etc/freeradius/sites-enabled/inner-tunnel
  16. main {
  17. user = "freerad"
  18. group = "freerad"
  19. allow_core_dumps = no
  20. }
  21. including dictionary file /etc/freeradius/dictionary
  22. main {
  23. name = "radiusd"
  24. prefix = "/usr"
  25. localstatedir = "/var"
  26. sbindir = "/usr/sbin"
  27. logdir = "/var/log/freeradius"
  28. run_dir = "/var/run/freeradius"
  29. libdir = "/usr/lib/freeradius"
  30. radacctdir = "/var/log/freeradius/radacct"
  31. hostname_lookups = no
  32. max_request_time = 30
  33. cleanup_delay = 5
  34. max_requests = 1024
  35. pidfile = "/var/run/freeradius/freeradius.pid"
  36. checkrad = "/usr/sbin/checkrad"
  37. debug_level = 0
  38. proxy_requests = yes
  39. log {
  40. stripped_names = no
  41. auth = yes
  42. auth_badpass = no
  43. auth_goodpass = no
  44. }
  45. security {
  46. max_attributes = 200
  47. reject_delay = 1
  48. status_server = yes
  49. }
  50. }
  51. radiusd: #### Loading Realms and Home Servers ####
  52. proxy server {
  53. retry_delay = 5
  54. retry_count = 3
  55. default_fallback = no
  56. dead_time = 120
  57. wake_all_if_all_dead = no
  58. }
  59. home_server localhost {
  60. ipaddr = 127.0.0.1
  61. port = 1812
  62. type = "auth"
  63. secret = "testing123"
  64. response_window = 20
  65. max_outstanding = 65536
  66. require_message_authenticator = no
  67. zombie_period = 40
  68. status_check = "status-server"
  69. ping_interval = 30
  70. check_interval = 30
  71. num_answers_to_alive = 3
  72. num_pings_to_alive = 3
  73. revive_interval = 120
  74. status_check_timeout = 4
  75. coa {
  76. irt = 2
  77. mrt = 16
  78. mrc = 5
  79. mrd = 30
  80. }
  81. }
  82. home_server_pool my_auth_failover {
  83. type = fail-over
  84. home_server = localhost
  85. }
  86. realm example.com {
  87. auth_pool = my_auth_failover
  88. }
  89. realm LOCAL {
  90. }
  91. realm worc.ac.uk {
  92. authhost = LOCAL
  93. accthost = LOCAL
  94. }
  95. realm worcester.ac.uk {
  96. authhost = LOCAL
  97. accthost = LOCAL
  98. }
  99. realm uni.worc.ac.uk {
  100. authhost = LOCAL
  101. accthost = LOCAL
  102. }
  103. realm NULL {
  104. authhost = LOCAL
  105. accthost = LOCAL
  106. }
  107. radiusd: #### Loading Clients ####
  108. client localhost {
  109. ipaddr = 127.0.0.1
  110. require_message_authenticator = no
  111. secret = "testing123"
  112. nastype = "other"
  113. }
  114. client 131.1.129.0/24 {
  115. require_message_authenticator = no
  116. secret = "3dur04m"
  117. }
  118. client 193.62.48.37 {
  119. require_message_authenticator = no
  120. secret = "H1sN604s9Z99o"
  121. }
  122. client 193.62.48.38 {
  123. require_message_authenticator = no
  124. secret = "H1sN604s9Z99o"
  125. }
  126. radiusd: #### Instantiating modules ####
  127. instantiate {
  128. Module: Linked to module rlm_exec
  129. Module: Instantiating module "exec" from file /etc/freeradius/radiusd.conf
  130. exec {
  131. wait = yes
  132. input_pairs = "request"
  133. shell_escape = yes
  134. }
  135. Module: Linked to module rlm_expr
  136. Module: Instantiating module "expr" from file /etc/freeradius/radiusd.conf
  137. Module: Linked to module rlm_expiration
  138. Module: Instantiating module "expiration" from file /etc/freeradius/radiusd.conf
  139. expiration {
  140. reply-message = "Password Has Expired "
  141. }
  142. Module: Linked to module rlm_logintime
  143. Module: Instantiating module "logintime" from file /etc/freeradius/radiusd.conf
  144. logintime {
  145. reply-message = "You are calling outside your allowed timespan "
  146. minimum-timeout = 60
  147. }
  148. }
  149. radiusd: #### Loading Virtual Servers ####
  150. server { # from file /etc/freeradius/radiusd.conf
  151. modules {
  152. Module: Creating Post-Auth-Type = REJECT
  153. Module: Checking authenticate {...} for more modules to load
  154. Module: Linked to module rlm_pap
  155. Module: Instantiating module "pap" from file /etc/freeradius/radiusd.conf
  156. pap {
  157. encryption_scheme = "auto"
  158. auto_header = no
  159. }
  160. Module: Linked to module rlm_mschap
  161. Module: Instantiating module "mschap_ad" from file /etc/freeradius/radiusd.conf
  162. mschap mschap_ad {
  163. use_mppe = yes
  164. require_encryption = yes
  165. require_strong = yes
  166. with_ntdomain_hack = yes
  167. ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key --username=%{Stripped-User-Name:-%{User-Name:-None}} --domain=%{%{mschap_ad:NT-Domain}:-%{Domain-Name}} --challenge=%{mschap_ad:Challenge:-00} --nt-response=%{mschap_ad:NT-Response:-00}"
  168. allow_retry = yes
  169. }
  170. Module: Linked to module rlm_eap
  171. Module: Instantiating module "eap" from file /etc/freeradius/eap.conf
  172. eap {
  173. default_eap_type = "peap"
  174. timer_expire = 60
  175. ignore_unknown_eap_types = no
  176. cisco_accounting_username_bug = no
  177. max_sessions = 2048
  178. }
  179. Module: Linked to sub-module rlm_eap_md5
  180. Module: Instantiating eap-md5
  181. Module: Linked to sub-module rlm_eap_leap
  182. Module: Instantiating eap-leap
  183. Module: Linked to sub-module rlm_eap_gtc
  184. Module: Instantiating eap-gtc
  185. gtc {
  186. challenge = "Password: "
  187. auth_type = "PAP"
  188. }
  189. Module: Linked to sub-module rlm_eap_tls
  190. Module: Instantiating eap-tls
  191. tls {
  192. rsa_key_exchange = no
  193. dh_key_exchange = yes
  194. rsa_key_length = 512
  195. dh_key_length = 512
  196. verify_depth = 0
  197. CA_path = "/etc/freeradius/certs"
  198. pem_file_type = yes
  199. private_key_file = "/etc/freeradius/certs/eduroam61.key"
  200. certificate_file = "/etc/freeradius/certs/eduroam61.pem"
  201. private_key_password = "******"
  202. dh_file = "/etc/freeradius/certs/dh"
  203. random_file = "/etc/freeradius/certs/random"
  204. fragment_size = 1024
  205. include_length = yes
  206. check_crl = no
  207. cipher_list = "DEFAULT"
  208. ecdh_curve = "prime256v1"
  209. cache {
  210. enable = no
  211. lifetime = 24
  212. max_entries = 0
  213. }
  214. }
  215. Module: Linked to sub-module rlm_eap_ttls
  216. Module: Instantiating eap-ttls
  217. ttls {
  218. default_eap_type = "md5"
  219. copy_request_to_tunnel = yes
  220. use_tunneled_reply = yes
  221. virtual_server = "inner-tunnel"
  222. include_length = yes
  223. }
  224. Module: Linked to sub-module rlm_eap_peap
  225. Module: Instantiating eap-peap
  226. peap {
  227. default_eap_type = "mschapv2"
  228. copy_request_to_tunnel = yes
  229. use_tunneled_reply = yes
  230. proxy_tunneled_request_as_eap = yes
  231. virtual_server = "inner-tunnel"
  232. soh = no
  233. }
  234. Module: Linked to sub-module rlm_eap_mschapv2
  235. Module: Instantiating eap-mschapv2
  236. mschapv2 {
  237. with_ntdomain_hack = no
  238. send_error = no
  239. }
  240. Module: Checking authorize {...} for more modules to load
  241. Module: Linked to module rlm_preprocess
  242. Module: Instantiating module "preprocess" from file /etc/freeradius/radiusd.conf
  243. preprocess {
  244. huntgroups = "/etc/freeradius/huntgroups"
  245. hints = "/etc/freeradius/hints"
  246. with_ascend_hack = no
  247. ascend_channels_per_line = 23
  248. with_ntdomain_hack = no
  249. with_specialix_jetstream_hack = no
  250. with_cisco_vsa_hack = no
  251. with_alvarion_vsa_hack = no
  252. }
  253. reading pairlist file /etc/freeradius/huntgroups
  254. reading pairlist file /etc/freeradius/hints
  255. Module: Linked to module rlm_realm
  256. Module: Instantiating module "ntdomain" from file /etc/freeradius/radiusd.conf
  257. realm ntdomain {
  258. format = "prefix"
  259. delimiter = "\"
  260. ignore_default = no
  261. ignore_null = yes
  262. }
  263. Module: Instantiating module "suffix" from file /etc/freeradius/radiusd.conf
  264. realm suffix {
  265. format = "suffix"
  266. delimiter = "@"
  267. ignore_default = no
  268. ignore_null = no
  269. }
  270. Module: Linked to module rlm_files
  271. Module: Instantiating module "files" from file /etc/freeradius/radiusd.conf
  272. files {
  273. usersfile = "/etc/freeradius/users"
  274. acctusersfile = "/etc/freeradius/acct_users"
  275. preproxy_usersfile = "/etc/freeradius/preproxy_users"
  276. compat = "no"
  277. }
  278. reading pairlist file /etc/freeradius/users
  279. reading pairlist file /etc/freeradius/acct_users
  280. reading pairlist file /etc/freeradius/preproxy_users
  281. Module: Checking preacct {...} for more modules to load
  282. Module: Linked to module rlm_acct_unique
  283. Module: Instantiating module "acct_unique" from file /etc/freeradius/radiusd.conf
  284. acct_unique {
  285. key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"
  286. }
  287. Module: Checking accounting {...} for more modules to load
  288. Module: Linked to module rlm_unix
  289. Module: Instantiating module "unix" from file /etc/freeradius/radiusd.conf
  290. unix {
  291. radwtmp = "/var/log/freeradius/radwtmp"
  292. }
  293. Module: Linked to module rlm_radutmp
  294. Module: Instantiating module "radutmp" from file /etc/freeradius/radiusd.conf
  295. radutmp {
  296. filename = "/var/log/freeradius/radutmp"
  297. username = "%{User-Name}"
  298. case_sensitive = yes
  299. check_with_nas = yes
  300. perm = 384
  301. callerid = yes
  302. }
  303. Module: Linked to module rlm_attr_filter
  304. Module: Instantiating module "attr_filter.accounting_response" from file /etc/freeradius/radiusd.conf
  305. attr_filter attr_filter.accounting_response {
  306. attrsfile = "/etc/freeradius/attrs.accounting_response"
  307. key = "%{User-Name}"
  308. relaxed = no
  309. }
  310. reading pairlist file /etc/freeradius/attrs.accounting_response
  311. Module: Checking session {...} for more modules to load
  312. Module: Checking post-proxy {...} for more modules to load
  313. Module: Checking post-auth {...} for more modules to load
  314. Module: Instantiating module "attr_filter.access_reject" from file /etc/freeradius/radiusd.conf
  315. attr_filter attr_filter.access_reject {
  316. attrsfile = "/etc/freeradius/attrs.access_reject"
  317. key = "%{User-Name}"
  318. relaxed = no
  319. }
  320. reading pairlist file /etc/freeradius/attrs.access_reject
  321. } # modules
  322. } # server
  323. server inner-tunnel { # from file /etc/freeradius/sites-enabled/inner-tunnel
  324. modules {
  325. Module: Creating Auth-Type = home
  326. Module: Checking authenticate {...} for more modules to load
  327. Module: Linked to module rlm_ldap
  328. Module: Instantiating module "home" from file /etc/freeradius/radiusd.conf
  329. ldap home {
  330. server = "131.1.2.14"
  331. port = 3268
  332. password = ***********"
  333. identity = "**********"
  334. net_timeout = 5
  335. timeout = 30
  336. timelimit = 30
  337. max_uses = 0
  338. tls_mode = no
  339. start_tls = no
  340. tls_require_cert = "allow"
  341. tls {
  342. start_tls = no
  343. cacertfile = "/etc/freeradius/certs/eduroam60.pem"
  344. cacertdir = "/etc/freeradius/certs"
  345. keyfile = "/etc/freeradius/certs/eduroam60.key"
  346. randfile = "/etc/freeradius/certs/random"
  347. require_cert = "demand"
  348. }
  349. basedn = "DC=worc,DC=ac,DC=uk"
  350. filter = "(sAMAccountName=%{Stripped-User-Name:-%{User-Name}})"
  351. base_filter = "(objectclass=radiusprofile)"
  352. password_attribute = "eapUserPassword"
  353. auto_header = no
  354. access_attr = "sAMAccountName"
  355. access_attr_used_for_allow = yes
  356. chase_referrals = yes
  357. rebind = yes
  358. groupname_attribute = "cn"
  359. groupmembership_filter = "(|(&(objectClass=GroupOfNames)(member=%{Ldap-UserDn}))(&(objectClass=GroupOfUniqueNames)(uniquemember=%{Ldap-UserDn})))"
  360. dictionary_mapping = "/etc/freeradius/ldap.attrmap"
  361. ldap_debug = 0
  362. ldap_connections_number = 30
  363. compare_check_items = no
  364. do_xlat = yes
  365. set_auth_type = yes
  366. }
  367. rlm_ldap: Registering ldap_groupcmp for Ldap-Group
  368. rlm_ldap: Creating new attribute home-Ldap-Group
  369. rlm_ldap: Registering ldap_groupcmp for home-Ldap-Group
  370. rlm_ldap: Registering ldap_xlat with xlat_name home
  371. rlm_ldap: reading ldap<->radius mappings from file /etc/freeradius/ldap.attrmap
  372. rlm_ldap: LDAP radiusCheckItem mapped to RADIUS $GENERIC$
  373. rlm_ldap: LDAP radiusReplyItem mapped to RADIUS $GENERIC$
  374. rlm_ldap: LDAP radiusAuthType mapped to RADIUS Auth-Type
  375. rlm_ldap: LDAP radiusSimultaneousUse mapped to RADIUS Simultaneous-Use
  376. rlm_ldap: LDAP radiusCalledStationId mapped to RADIUS Called-Station-Id
  377. rlm_ldap: LDAP radiusCallingStationId mapped to RADIUS Calling-Station-Id
  378. rlm_ldap: LDAP sambaLmPassword mapped to RADIUS LM-Password
  379. rlm_ldap: LDAP sambaNtPassword mapped to RADIUS NT-Password
  380. rlm_ldap: LDAP acctFlags mapped to RADIUS SMB-Account-CTRL-TEXT
  381. rlm_ldap: LDAP radiusExpiration mapped to RADIUS Expiration
  382. rlm_ldap: LDAP radiusNASIpAddress mapped to RADIUS NAS-IP-Address
  383. rlm_ldap: LDAP radiusServiceType mapped to RADIUS Service-Type
  384. rlm_ldap: LDAP radiusFramedProtocol mapped to RADIUS Framed-Protocol
  385. rlm_ldap: LDAP radiusFramedIPAddress mapped to RADIUS Framed-IP-Address
  386. rlm_ldap: LDAP radiusFramedIPNetmask mapped to RADIUS Framed-IP-Netmask
  387. rlm_ldap: LDAP radiusFramedRoute mapped to RADIUS Framed-Route
  388. rlm_ldap: LDAP radiusFramedRouting mapped to RADIUS Framed-Routing
  389. rlm_ldap: LDAP radiusFilterId mapped to RADIUS Filter-Id
  390. rlm_ldap: LDAP radiusFramedMTU mapped to RADIUS Framed-MTU
  391. rlm_ldap: LDAP radiusFramedCompression mapped to RADIUS Framed-Compression
  392. rlm_ldap: LDAP radiusLoginIPHost mapped to RADIUS Login-IP-Host
  393. rlm_ldap: LDAP radiusLoginService mapped to RADIUS Login-Service
  394. rlm_ldap: LDAP radiusLoginTCPPort mapped to RADIUS Login-TCP-Port
  395. rlm_ldap: LDAP radiusCallbackNumber mapped to RADIUS Callback-Number
  396. rlm_ldap: LDAP radiusCallbackId mapped to RADIUS Callback-Id
  397. rlm_ldap: LDAP radiusFramedIPXNetwork mapped to RADIUS Framed-IPX-Network
  398. rlm_ldap: LDAP radiusClass mapped to RADIUS Class
  399. rlm_ldap: LDAP radiusSessionTimeout mapped to RADIUS Session-Timeout
  400. rlm_ldap: LDAP radiusIdleTimeout mapped to RADIUS Idle-Timeout
  401. rlm_ldap: LDAP radiusTerminationAction mapped to RADIUS Termination-Action
  402. rlm_ldap: LDAP radiusLoginLATService mapped to RADIUS Login-LAT-Service
  403. rlm_ldap: LDAP radiusLoginLATNode mapped to RADIUS Login-LAT-Node
  404. rlm_ldap: LDAP radiusLoginLATGroup mapped to RADIUS Login-LAT-Group
  405. rlm_ldap: LDAP radiusFramedAppleTalkLink mapped to RADIUS Framed-AppleTalk-Link
  406. rlm_ldap: LDAP radiusFramedAppleTalkNetwork mapped to RADIUS Framed-AppleTalk-Network
  407. rlm_ldap: LDAP radiusFramedAppleTalkZone mapped to RADIUS Framed-AppleTalk-Zone
  408. rlm_ldap: LDAP radiusPortLimit mapped to RADIUS Port-Limit
  409. rlm_ldap: LDAP radiusLoginLATPort mapped to RADIUS Login-LAT-Port
  410. rlm_ldap: LDAP radiusReplyMessage mapped to RADIUS Reply-Message
  411. rlm_ldap: LDAP radiusTunnelType mapped to RADIUS Tunnel-Type
  412. rlm_ldap: LDAP radiusTunnelMediumType mapped to RADIUS Tunnel-Medium-Type
  413. rlm_ldap: LDAP radiusTunnelPrivateGroupId mapped to RADIUS Tunnel-Private-Group-Id
  414. rlm_ldap: LDAP userPassword mapped to RADIUS User-Password
  415. conns: 0x8a616d0
  416. Module: Linked to module rlm_chap
  417. Module: Instantiating module "chap" from file /etc/freeradius/radiusd.conf
  418. Module: Checking authorize {...} for more modules to load
  419. Module: Checking session {...} for more modules to load
  420. Module: Checking post-proxy {...} for more modules to load
  421. Module: Checking post-auth {...} for more modules to load
  422. } # modules
  423. } # server
  424. radiusd: #### Opening IP addresses and Ports ####
  425. listen {
  426. type = "auth"
  427. ipaddr = *
  428. port = 0
  429. }
  430. listen {
  431. type = "acct"
  432. ipaddr = *
  433. port = 0
  434. }
  435. ... adding new socket proxy address * port 60622
  436. Listening on authentication address * port 1812
  437. Listening on accounting address * port 1813
  438. Listening on proxy address * port 1814
  439. Ready to process requests.
  440. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=74, length=141
  441. User-Name = "anonymous"
  442. NAS-IP-Address = 127.0.0.1
  443. Calling-Station-Id = "02-00-00-00-00-01"
  444. Framed-MTU = 1400
  445. NAS-Port-Type = Wireless-802.11
  446. Connect-Info = "CONNECT 11Mbps 802.11b"
  447. EAP-Message = 0x0200000e01616e6f6e796d6f7573
  448. Message-Authenticator = 0x1457993743e1e3c51b17908e14b95467
  449. Domain-Name = "WORC.AC.UK"
  450. Proxy-State = 0x30
  451. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  452. +- entering group authorize {...}
  453. ++[preprocess] returns ok
  454. ++[mschap_ad] returns noop
  455. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  456. ++[ntdomain] returns noop
  457. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  458. [suffix] Found realm "NULL"
  459. [suffix] Adding Stripped-User-Name = "anonymous"
  460. [suffix] Adding Realm = "NULL"
  461. [suffix] Authentication realm is LOCAL.
  462. ++[suffix] returns ok
  463. [eap] EAP packet type response id 0 length 14
  464. [eap] No EAP Start, assuming it's an on-going EAP conversation
  465. ++[eap] returns updated
  466. ++[files] returns noop
  467. ++[expiration] returns noop
  468. ++[logintime] returns noop
  469. [pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.
  470. ++[pap] returns noop
  471. Found Auth-Type = EAP
  472. # Executing group from file /etc/freeradius/sites-enabled/default
  473. +- entering group EAP {...}
  474. [eap] EAP Identity
  475. [eap] processing type tls
  476. [tls] Initiate
  477. [tls] Start returned 1
  478. ++[eap] returns handled
  479. Sending Access-Challenge of id 74 to 193.62.48.38 port 1814
  480. EAP-Message = 0x010100061920
  481. Message-Authenticator = 0x00000000000000000000000000000000
  482. State = 0x75a766a375a67f726488f389cf8e8ffd
  483. Proxy-State = 0x30
  484. Finished request 0.
  485. Going to the next request
  486. Waking up in 4.9 seconds.
  487. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=227, length=244
  488. User-Name = "anonymous"
  489. NAS-IP-Address = 127.0.0.1
  490. Calling-Station-Id = "02-00-00-00-00-01"
  491. Framed-MTU = 1400
  492. NAS-Port-Type = Wireless-802.11
  493. Connect-Info = "CONNECT 11Mbps 802.11b"
  494. EAP-Message = 0x02010063198000000059160301005401000050030154ec503693c979b06156e9bcdedfa463288e63daf23a0aec470d098e41942db200002800390038003500160013000a00330032002f000500040015001200090014001100080006000300ff020100
  495. State = 0x75a766a375a67f726488f389cf8e8ffd
  496. Message-Authenticator = 0x7871317fa48bb75af18737575eda76f0
  497. Domain-Name = "WORC.AC.UK"
  498. Proxy-State = 0x31
  499. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  500. +- entering group authorize {...}
  501. ++[preprocess] returns ok
  502. ++[mschap_ad] returns noop
  503. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  504. ++[ntdomain] returns noop
  505. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  506. [suffix] Found realm "NULL"
  507. [suffix] Adding Stripped-User-Name = "anonymous"
  508. [suffix] Adding Realm = "NULL"
  509. [suffix] Authentication realm is LOCAL.
  510. ++[suffix] returns ok
  511. [eap] EAP packet type response id 1 length 99
  512. [eap] Continuing tunnel setup.
  513. ++[eap] returns ok
  514. Found Auth-Type = EAP
  515. # Executing group from file /etc/freeradius/sites-enabled/default
  516. +- entering group EAP {...}
  517. [eap] Request found, released from the list
  518. [eap] EAP/peap
  519. [eap] processing type peap
  520. [peap] processing EAP-TLS
  521. TLS Length 89
  522. [peap] Length Included
  523. [peap] eaptls_verify returned 11
  524. [peap] (other): before/accept initialization
  525. [peap] TLS_accept: before/accept initialization
  526. [peap] <<< TLS 1.0 Handshake [length 0054], ClientHello
  527. [peap] TLS_accept: SSLv3 read client hello A
  528. [peap] >>> TLS 1.0 Handshake [length 0031], ServerHello
  529. [peap] TLS_accept: SSLv3 write server hello A
  530. [peap] >>> TLS 1.0 Handshake [length 143f], Certificate
  531. [peap] TLS_accept: SSLv3 write certificate A
  532. [peap] >>> TLS 1.0 Handshake [length 020d], ServerKeyExchange
  533. [peap] TLS_accept: SSLv3 write key exchange A
  534. [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone
  535. [peap] TLS_accept: SSLv3 write server done A
  536. [peap] TLS_accept: SSLv3 flush data
  537. [peap] TLS_accept: Need to read more data: SSLv3 read client certificate A
  538. In SSL Handshake Phase
  539. In SSL Accept mode
  540. [peap] eaptls_process returned 13
  541. [peap] EAPTLS_HANDLED
  542. ++[eap] returns handled
  543. Sending Access-Challenge of id 227 to 193.62.48.38 port 1814
  544. EAP-Message = 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
  545. EAP-Message = 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
  546. EAP-Message = 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
  547. EAP-Message = 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
  548. EAP-Message = 0x6b9b655fb03a47612cfc9c70
  549. Message-Authenticator = 0x00000000000000000000000000000000
  550. State = 0x75a766a374a57f726488f389cf8e8ffd
  551. Proxy-State = 0x31
  552. Finished request 1.
  553. Going to the next request
  554. Waking up in 4.9 seconds.
  555. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=122, length=151
  556. User-Name = "anonymous"
  557. NAS-IP-Address = 127.0.0.1
  558. Calling-Station-Id = "02-00-00-00-00-01"
  559. Framed-MTU = 1400
  560. NAS-Port-Type = Wireless-802.11
  561. Connect-Info = "CONNECT 11Mbps 802.11b"
  562. EAP-Message = 0x020200061900
  563. State = 0x75a766a374a57f726488f389cf8e8ffd
  564. Message-Authenticator = 0x92a50b0623629da267a9435155d9a00f
  565. Domain-Name = "WORC.AC.UK"
  566. Proxy-State = 0x32
  567. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  568. +- entering group authorize {...}
  569. ++[preprocess] returns ok
  570. ++[mschap_ad] returns noop
  571. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  572. ++[ntdomain] returns noop
  573. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  574. [suffix] Found realm "NULL"
  575. [suffix] Adding Stripped-User-Name = "anonymous"
  576. [suffix] Adding Realm = "NULL"
  577. [suffix] Authentication realm is LOCAL.
  578. ++[suffix] returns ok
  579. [eap] EAP packet type response id 2 length 6
  580. [eap] Continuing tunnel setup.
  581. ++[eap] returns ok
  582. Found Auth-Type = EAP
  583. # Executing group from file /etc/freeradius/sites-enabled/default
  584. +- entering group EAP {...}
  585. [eap] Request found, released from the list
  586. [eap] EAP/peap
  587. [eap] processing type peap
  588. [peap] processing EAP-TLS
  589. [peap] Received TLS ACK
  590. [peap] ACK handshake fragment handler
  591. [peap] eaptls_verify returned 1
  592. [peap] eaptls_process returned 13
  593. [peap] EAPTLS_HANDLED
  594. ++[eap] returns handled
  595. Sending Access-Challenge of id 122 to 193.62.48.38 port 1814
  596. EAP-Message = 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
  597. EAP-Message = 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
  598. EAP-Message = 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
  599. EAP-Message = 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
  600. EAP-Message = 0x03551d1f04493047
  601. Message-Authenticator = 0x00000000000000000000000000000000
  602. State = 0x75a766a377a47f726488f389cf8e8ffd
  603. Proxy-State = 0x32
  604. Finished request 2.
  605. Going to the next request
  606. Waking up in 4.9 seconds.
  607. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=106, length=151
  608. User-Name = "anonymous"
  609. NAS-IP-Address = 127.0.0.1
  610. Calling-Station-Id = "02-00-00-00-00-01"
  611. Framed-MTU = 1400
  612. NAS-Port-Type = Wireless-802.11
  613. Connect-Info = "CONNECT 11Mbps 802.11b"
  614. EAP-Message = 0x020300061900
  615. State = 0x75a766a377a47f726488f389cf8e8ffd
  616. Message-Authenticator = 0x530d5d9acc67a5213873a396a52c7192
  617. Domain-Name = "WORC.AC.UK"
  618. Proxy-State = 0x33
  619. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  620. +- entering group authorize {...}
  621. ++[preprocess] returns ok
  622. ++[mschap_ad] returns noop
  623. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  624. ++[ntdomain] returns noop
  625. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  626. [suffix] Found realm "NULL"
  627. [suffix] Adding Stripped-User-Name = "anonymous"
  628. [suffix] Adding Realm = "NULL"
  629. [suffix] Authentication realm is LOCAL.
  630. ++[suffix] returns ok
  631. [eap] EAP packet type response id 3 length 6
  632. [eap] Continuing tunnel setup.
  633. ++[eap] returns ok
  634. Found Auth-Type = EAP
  635. # Executing group from file /etc/freeradius/sites-enabled/default
  636. +- entering group EAP {...}
  637. [eap] Request found, released from the list
  638. [eap] EAP/peap
  639. [eap] processing type peap
  640. [peap] processing EAP-TLS
  641. [peap] Received TLS ACK
  642. [peap] ACK handshake fragment handler
  643. [peap] eaptls_verify returned 1
  644. [peap] eaptls_process returned 13
  645. [peap] EAPTLS_HANDLED
  646. ++[eap] returns handled
  647. Sending Access-Challenge of id 106 to 193.62.48.38 port 1814
  648. EAP-Message = 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
  649. EAP-Message = 0x7e1d8bdae4332198e02193dbc08e258e5506cc2a65e303e8597227ae379a987cc2f4135a12712d6dabdf326981a706a28b201da890d228aa61d4f6ffa5bf86808e67912a227e1d942d1a61bb20219089e8d50a110af608ba5e1bcb6c28853ec5160f65fdb7d1b161c1a625d886bf0efa9bfad1f522a767b8152ef908adb7750239f42961f9bfc0aa17eb42de268f9d65643207de6c3d32d303ec47d57469203a7eb870efa9a22a9c5542b6e33e8bd8ff265afb7c266c888586d7933e50f84487d450d11d433032bad2ba8d2108caf7eec66ece9259081c5373748f9cf8d7ad1abe4d46eeacc4b981eba750cc1d66fc0e0d7e061db80ed37ebb9a87ae0b
  650. EAP-Message = 0xb69b8404cec1a07b16df02b21843adabb92609abaa041d5037ee2abd22418a00b5dc9fc305d4e6824c67da2b02f565ac5929bb7a0c4e54b7d23b7d033b2064c6c5e8502a92b05fa0479772585fc10a6f9ff53d09d5e708687592e2d5b89e8fbe8d1b3b438cf34ed554ab76edcc507f2e99edb4b549fae3757d8b11680dd53afa5d50b02b8103782cb4db8fbf4c405b92a3a21a0a415dac57fa6e574ef40755eb6308329300244a5d9dc2c1522893c1c8241aa693fbcd7d3fa673bccf689d79632ee7252b423836b10b56c28a5ff7ae4a31d9df6a06cd2fa39809bc058013c700057b308205773082045fa003020102021013ea28705bf4eced0c366309
  651. EAP-Message = 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
  652. EAP-Message = 0x726b312e302c0603
  653. Message-Authenticator = 0x00000000000000000000000000000000
  654. State = 0x75a766a376a37f726488f389cf8e8ffd
  655. Proxy-State = 0x33
  656. Finished request 3.
  657. Going to the next request
  658. Waking up in 4.9 seconds.
  659. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=67, length=151
  660. User-Name = "anonymous"
  661. NAS-IP-Address = 127.0.0.1
  662. Calling-Station-Id = "02-00-00-00-00-01"
  663. Framed-MTU = 1400
  664. NAS-Port-Type = Wireless-802.11
  665. Connect-Info = "CONNECT 11Mbps 802.11b"
  666. EAP-Message = 0x020400061900
  667. State = 0x75a766a376a37f726488f389cf8e8ffd
  668. Message-Authenticator = 0x3aa9fab152344804dff01b404f0b8520
  669. Domain-Name = "WORC.AC.UK"
  670. Proxy-State = 0x34
  671. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  672. +- entering group authorize {...}
  673. ++[preprocess] returns ok
  674. ++[mschap_ad] returns noop
  675. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  676. ++[ntdomain] returns noop
  677. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  678. [suffix] Found realm "NULL"
  679. [suffix] Adding Stripped-User-Name = "anonymous"
  680. [suffix] Adding Realm = "NULL"
  681. [suffix] Authentication realm is LOCAL.
  682. ++[suffix] returns ok
  683. [eap] EAP packet type response id 4 length 6
  684. [eap] Continuing tunnel setup.
  685. ++[eap] returns ok
  686. Found Auth-Type = EAP
  687. # Executing group from file /etc/freeradius/sites-enabled/default
  688. +- entering group EAP {...}
  689. [eap] Request found, released from the list
  690. [eap] EAP/peap
  691. [eap] processing type peap
  692. [peap] processing EAP-TLS
  693. [peap] Received TLS ACK
  694. [peap] ACK handshake fragment handler
  695. [peap] eaptls_verify returned 1
  696. [peap] eaptls_process returned 13
  697. [peap] EAPTLS_HANDLED
  698. ++[eap] returns handled
  699. Sending Access-Challenge of id 67 to 193.62.48.38 port 1814
  700. EAP-Message = 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
  701. EAP-Message = 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
  702. EAP-Message = 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
  703. EAP-Message = 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
  704. EAP-Message = 0xa4bc2def46725735
  705. Message-Authenticator = 0x00000000000000000000000000000000
  706. State = 0x75a766a371a27f726488f389cf8e8ffd
  707. Proxy-State = 0x34
  708. Finished request 4.
  709. Going to the next request
  710. Waking up in 4.9 seconds.
  711. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=164, length=151
  712. User-Name = "anonymous"
  713. NAS-IP-Address = 127.0.0.1
  714. Calling-Station-Id = "02-00-00-00-00-01"
  715. Framed-MTU = 1400
  716. NAS-Port-Type = Wireless-802.11
  717. Connect-Info = "CONNECT 11Mbps 802.11b"
  718. EAP-Message = 0x020500061900
  719. State = 0x75a766a371a27f726488f389cf8e8ffd
  720. Message-Authenticator = 0xd176018495d3cbd611d715b2e6ee2152
  721. Domain-Name = "WORC.AC.UK"
  722. Proxy-State = 0x35
  723. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  724. +- entering group authorize {...}
  725. ++[preprocess] returns ok
  726. ++[mschap_ad] returns noop
  727. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  728. ++[ntdomain] returns noop
  729. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  730. [suffix] Found realm "NULL"
  731. [suffix] Adding Stripped-User-Name = "anonymous"
  732. [suffix] Adding Realm = "NULL"
  733. [suffix] Authentication realm is LOCAL.
  734. ++[suffix] returns ok
  735. [eap] EAP packet type response id 5 length 6
  736. [eap] Continuing tunnel setup.
  737. ++[eap] returns ok
  738. Found Auth-Type = EAP
  739. # Executing group from file /etc/freeradius/sites-enabled/default
  740. +- entering group EAP {...}
  741. [eap] Request found, released from the list
  742. [eap] EAP/peap
  743. [eap] processing type peap
  744. [peap] processing EAP-TLS
  745. [peap] Received TLS ACK
  746. [peap] ACK handshake fragment handler
  747. [peap] eaptls_verify returned 1
  748. [peap] eaptls_process returned 13
  749. [peap] EAPTLS_HANDLED
  750. ++[eap] returns handled
  751. Sending Access-Challenge of id 164 to 193.62.48.38 port 1814
  752. EAP-Message = 0x010603fc194005bfbb46bb6e6d3799b6ff239291c66e40f88f2956ea5fd55f1453acf04f61eaf722cca7560be2b8341f26d97b1905683fba3cd43806a2d3e68f0ee3b4716d4042c584b440952bf465a04879f61d8163969d4f75e0f87ce48ea9d1f2ad8ab38cc721cdc2ef00043a308204363082031ea003020102020101300d06092a864886f70d0101050500306f310b300906035504061302534531143012060355040a130b416464547275737420414231263024060355040b131d41646454727573742045787465726e616c20545450204e6574776f726b312230200603550403131941646454727573742045787465726e616c20434120526f6f
  753. EAP-Message = 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
  754. EAP-Message = 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
  755. EAP-Message = 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
  756. EAP-Message = 0x96b7dc7e4eee70fd
  757. Message-Authenticator = 0x00000000000000000000000000000000
  758. State = 0x75a766a370a17f726488f389cf8e8ffd
  759. Proxy-State = 0x35
  760. Finished request 5.
  761. Going to the next request
  762. Waking up in 4.9 seconds.
  763. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=204, length=151
  764. User-Name = "anonymous"
  765. NAS-IP-Address = 127.0.0.1
  766. Calling-Station-Id = "02-00-00-00-00-01"
  767. Framed-MTU = 1400
  768. NAS-Port-Type = Wireless-802.11
  769. Connect-Info = "CONNECT 11Mbps 802.11b"
  770. EAP-Message = 0x020600061900
  771. State = 0x75a766a370a17f726488f389cf8e8ffd
  772. Message-Authenticator = 0xb450e182ea399f1bca489c26e70cfb7d
  773. Domain-Name = "WORC.AC.UK"
  774. Proxy-State = 0x36
  775. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  776. +- entering group authorize {...}
  777. ++[preprocess] returns ok
  778. ++[mschap_ad] returns noop
  779. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  780. ++[ntdomain] returns noop
  781. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  782. [suffix] Found realm "NULL"
  783. [suffix] Adding Stripped-User-Name = "anonymous"
  784. [suffix] Adding Realm = "NULL"
  785. [suffix] Authentication realm is LOCAL.
  786. ++[suffix] returns ok
  787. [eap] EAP packet type response id 6 length 6
  788. [eap] Continuing tunnel setup.
  789. ++[eap] returns ok
  790. Found Auth-Type = EAP
  791. # Executing group from file /etc/freeradius/sites-enabled/default
  792. +- entering group EAP {...}
  793. [eap] Request found, released from the list
  794. [eap] EAP/peap
  795. [eap] processing type peap
  796. [peap] processing EAP-TLS
  797. [peap] Received TLS ACK
  798. [peap] ACK handshake fragment handler
  799. [peap] eaptls_verify returned 1
  800. [peap] eaptls_process returned 13
  801. [peap] EAPTLS_HANDLED
  802. ++[eap] returns handled
  803. Sending Access-Challenge of id 204 to 193.62.48.38 port 1814
  804. EAP-Message = 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
  805. EAP-Message = 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
  806. EAP-Message = 0xf37ad768c1993d78ffb150fb6b4476de15d8e5e4657e02a6030392d63499bfcb333975b9890bdd68efe4d475b37ef74c45776c6ffa7bca279b8d902d1716482de294e0a4a5bf8a820a3e002577f14b12764cb2fad73bfb52c3a51bb1d9b4f195d1d6d60353faece479908135e232333f59873fad9a7cca91f738ef04c3c79a01ae61da70f8059da9f0f8f0a547d7a993bb5fe1627c5acd3de47dfa5e351a9211b184047854e70d7f3420ea38e562d7201c9804f696a80eddf692ffd7a8cdd508b2a33fbf9d48fd6b8f7516030100040e000000
  807. Message-Authenticator = 0x00000000000000000000000000000000
  808. State = 0x75a766a373a07f726488f389cf8e8ffd
  809. Proxy-State = 0x36
  810. Finished request 6.
  811. Going to the next request
  812. Waking up in 4.9 seconds.
  813. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=235, length=353
  814. User-Name = "anonymous"
  815. NAS-IP-Address = 127.0.0.1
  816. Calling-Station-Id = "02-00-00-00-00-01"
  817. Framed-MTU = 1400
  818. NAS-Port-Type = Wireless-802.11
  819. Connect-Info = "CONNECT 11Mbps 802.11b"
  820. EAP-Message = 0x020700d01980000000c61603010086100000820080b8ece6756d390089cff72bc852a848599db46a31f0b370c5c4ef12b725165db20015f16e4c810015b1ec64b219b0459453665025bb14301bafee19d735d51d9408347e76706acbfd5d062c905617d090f5c51ba6aabd450f17c1fcf98bccd73969011f926f7e8faf4948ce4c8826d669de4175513ee81626f0b1c6244f37c6ce14030100010116030100306d8781b931f8bea315280f71bc0ae8f2bdd84127e9ef8be0740d97b480651492914eca08e47813e33a547bb799353ba6
  821. State = 0x75a766a373a07f726488f389cf8e8ffd
  822. Message-Authenticator = 0xdaa0ac8b625cf50700eff3c9ae17cf12
  823. Domain-Name = "WORC.AC.UK"
  824. Proxy-State = 0x37
  825. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  826. +- entering group authorize {...}
  827. ++[preprocess] returns ok
  828. ++[mschap_ad] returns noop
  829. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  830. ++[ntdomain] returns noop
  831. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  832. [suffix] Found realm "NULL"
  833. [suffix] Adding Stripped-User-Name = "anonymous"
  834. [suffix] Adding Realm = "NULL"
  835. [suffix] Authentication realm is LOCAL.
  836. ++[suffix] returns ok
  837. [eap] EAP packet type response id 7 length 208
  838. [eap] Continuing tunnel setup.
  839. ++[eap] returns ok
  840. Found Auth-Type = EAP
  841. # Executing group from file /etc/freeradius/sites-enabled/default
  842. +- entering group EAP {...}
  843. [eap] Request found, released from the list
  844. [eap] EAP/peap
  845. [eap] processing type peap
  846. [peap] processing EAP-TLS
  847. TLS Length 198
  848. [peap] Length Included
  849. [peap] eaptls_verify returned 11
  850. [peap] <<< TLS 1.0 Handshake [length 0086], ClientKeyExchange
  851. [peap] TLS_accept: SSLv3 read client key exchange A
  852. [peap] <<< TLS 1.0 ChangeCipherSpec [length 0001]
  853. [peap] <<< TLS 1.0 Handshake [length 0010], Finished
  854. [peap] TLS_accept: SSLv3 read finished A
  855. [peap] >>> TLS 1.0 ChangeCipherSpec [length 0001]
  856. [peap] TLS_accept: SSLv3 write change cipher spec A
  857. [peap] >>> TLS 1.0 Handshake [length 0010], Finished
  858. [peap] TLS_accept: SSLv3 write finished A
  859. [peap] TLS_accept: SSLv3 flush data
  860. [peap] (other): SSL negotiation finished successfully
  861. SSL Connection Established
  862. [peap] eaptls_process returned 13
  863. [peap] EAPTLS_HANDLED
  864. ++[eap] returns handled
  865. Sending Access-Challenge of id 235 to 193.62.48.38 port 1814
  866. EAP-Message = 0x0108004119001403010001011603010030d2dcc3ba640af84fb59d76273a2001657f5a8a5c0736190b9a61170fda7b0f58ef63f2010817b5e97e239516ae3f17a2
  867. Message-Authenticator = 0x00000000000000000000000000000000
  868. State = 0x75a766a372af7f726488f389cf8e8ffd
  869. Proxy-State = 0x37
  870. Finished request 7.
  871. Going to the next request
  872. Waking up in 4.9 seconds.
  873. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=57, length=151
  874. User-Name = "anonymous"
  875. NAS-IP-Address = 127.0.0.1
  876. Calling-Station-Id = "02-00-00-00-00-01"
  877. Framed-MTU = 1400
  878. NAS-Port-Type = Wireless-802.11
  879. Connect-Info = "CONNECT 11Mbps 802.11b"
  880. EAP-Message = 0x020800061900
  881. State = 0x75a766a372af7f726488f389cf8e8ffd
  882. Message-Authenticator = 0xb0dc2a3a1148df72ae432e077939ded2
  883. Domain-Name = "WORC.AC.UK"
  884. Proxy-State = 0x38
  885. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  886. +- entering group authorize {...}
  887. ++[preprocess] returns ok
  888. ++[mschap_ad] returns noop
  889. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  890. ++[ntdomain] returns noop
  891. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  892. [suffix] Found realm "NULL"
  893. [suffix] Adding Stripped-User-Name = "anonymous"
  894. [suffix] Adding Realm = "NULL"
  895. [suffix] Authentication realm is LOCAL.
  896. ++[suffix] returns ok
  897. [eap] EAP packet type response id 8 length 6
  898. [eap] Continuing tunnel setup.
  899. ++[eap] returns ok
  900. Found Auth-Type = EAP
  901. # Executing group from file /etc/freeradius/sites-enabled/default
  902. +- entering group EAP {...}
  903. [eap] Request found, released from the list
  904. [eap] EAP/peap
  905. [eap] processing type peap
  906. [peap] processing EAP-TLS
  907. [peap] Received TLS ACK
  908. [peap] ACK handshake is finished
  909. [peap] eaptls_verify returned 3
  910. [peap] eaptls_process returned 3
  911. [peap] EAPTLS_SUCCESS
  912. [peap] Session established. Decoding tunneled attributes.
  913. [peap] Peap state TUNNEL ESTABLISHED
  914. ++[eap] returns handled
  915. Sending Access-Challenge of id 57 to 193.62.48.38 port 1814
  916. EAP-Message = 0x0109002b1900170301002005b674b49951ffca62a27efb22404a7564e6582119d87d5a8294c071172d2108
  917. Message-Authenticator = 0x00000000000000000000000000000000
  918. State = 0x75a766a37dae7f726488f389cf8e8ffd
  919. Proxy-State = 0x38
  920. Finished request 8.
  921. Going to the next request
  922. Waking up in 4.9 seconds.
  923. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=36, length=241
  924. User-Name = "anonymous"
  925. NAS-IP-Address = 127.0.0.1
  926. Calling-Station-Id = "02-00-00-00-00-01"
  927. Framed-MTU = 1400
  928. NAS-Port-Type = Wireless-802.11
  929. Connect-Info = "CONNECT 11Mbps 802.11b"
  930. EAP-Message = 0x02090060190017030100201e148079a45910d97482c4b56dfb20bbe4730b3cea88c0489590bee7c081dde51703010030444bb65de131bae64062300c3af4c9c0f6d86f29ef67daf40f3d724484c00d2331f378b301e668075ccd9cf0a51a4160
  931. State = 0x75a766a37dae7f726488f389cf8e8ffd
  932. Message-Authenticator = 0xf347162e917b8659b93a96704aa5c942
  933. Domain-Name = "WORC.AC.UK"
  934. Proxy-State = 0x39
  935. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  936. +- entering group authorize {...}
  937. ++[preprocess] returns ok
  938. ++[mschap_ad] returns noop
  939. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  940. ++[ntdomain] returns noop
  941. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  942. [suffix] Found realm "NULL"
  943. [suffix] Adding Stripped-User-Name = "anonymous"
  944. [suffix] Adding Realm = "NULL"
  945. [suffix] Authentication realm is LOCAL.
  946. ++[suffix] returns ok
  947. [eap] EAP packet type response id 9 length 96
  948. [eap] Continuing tunnel setup.
  949. ++[eap] returns ok
  950. Found Auth-Type = EAP
  951. # Executing group from file /etc/freeradius/sites-enabled/default
  952. +- entering group EAP {...}
  953. [eap] Request found, released from the list
  954. [eap] EAP/peap
  955. [eap] processing type peap
  956. [peap] processing EAP-TLS
  957. [peap] eaptls_verify returned 7
  958. [peap] Done initial handshake
  959. [peap] eaptls_process returned 7
  960. [peap] EAPTLS_OK
  961. [peap] Session established. Decoding tunneled attributes.
  962. [peap] Peap state WAITING FOR INNER IDENTITY
  963. [peap] Identity - uwjrstest
  964. [peap] Got inner identity 'uwjrstest'
  965. [peap] Setting default EAP type for tunneled EAP session.
  966. [peap] Got tunneled request
  967. EAP-Message = 0x0209000e0175776a727374657374
  968. server {
  969. [peap] Setting User-Name to uwjrstest
  970. Sending tunneled request
  971. EAP-Message = 0x0209000e0175776a727374657374
  972. FreeRADIUS-Proxied-To = 127.0.0.1
  973. User-Name = "uwjrstest"
  974. NAS-IP-Address = 127.0.0.1
  975. Calling-Station-Id = "02-00-00-00-00-01"
  976. Framed-MTU = 1400
  977. NAS-Port-Type = Wireless-802.11
  978. Connect-Info = "CONNECT 11Mbps 802.11b"
  979. Domain-Name = "WORC.AC.UK"
  980. server inner-tunnel {
  981. # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
  982. +- entering group authorize {...}
  983. ++[preprocess] returns ok
  984. ++[chap] returns noop
  985. ++[mschap_ad] returns noop
  986. ++[unix] returns notfound
  987. [ntdomain] No '\' in User-Name = "uwjrstest", skipping NULL due to config.
  988. ++[ntdomain] returns noop
  989. [suffix] No '@' in User-Name = "uwjrstest", looking up realm NULL
  990. [suffix] Found realm "NULL"
  991. [suffix] Adding Stripped-User-Name = "uwjrstest"
  992. [suffix] Adding Realm = "NULL"
  993. [suffix] Authentication realm is LOCAL.
  994. ++[suffix] returns ok
  995. ++[control] returns ok
  996. [eap] EAP packet type response id 9 length 14
  997. [eap] No EAP Start, assuming it's an on-going EAP conversation
  998. ++[eap] returns updated
  999. ++[files] returns noop
  1000. ++[expiration] returns noop
  1001. ++[logintime] returns noop
  1002. ++[pap] returns noop
  1003. Found Auth-Type = EAP
  1004. # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
  1005. +- entering group authenticate {...}
  1006. [eap] EAP Identity
  1007. [eap] processing type mschapv2
  1008. rlm_eap_mschapv2: Issuing Challenge
  1009. ++[eap] returns handled
  1010. } # server inner-tunnel
  1011. [peap] Got tunneled reply code 11
  1012. EAP-Message = 0x010a00231a010a001e10b5dcfa91af18a0101eb7544396e3cb3575776a727374657374
  1013. Message-Authenticator = 0x00000000000000000000000000000000
  1014. State = 0x78b723cc78bd39444d0f0150ae83c59c
  1015. [peap] Got tunneled reply RADIUS code 11
  1016. EAP-Message = 0x010a00231a010a001e10b5dcfa91af18a0101eb7544396e3cb3575776a727374657374
  1017. Message-Authenticator = 0x00000000000000000000000000000000
  1018. State = 0x78b723cc78bd39444d0f0150ae83c59c
  1019. [peap] Got tunneled Access-Challenge
  1020. ++[eap] returns handled
  1021. Sending Access-Challenge of id 36 to 193.62.48.38 port 1814
  1022. EAP-Message = 0x010a004b19001703010040df13447ce91463d86f57a14b650931a753d23a558b036098a136828563a27b7d4e1f9e4996ef2a1df799d3304b2f1e49e71f5f50159998af10f9bbc51f86b4ea
  1023. Message-Authenticator = 0x00000000000000000000000000000000
  1024. State = 0x75a766a37cad7f726488f389cf8e8ffd
  1025. Proxy-State = 0x39
  1026. Finished request 9.
  1027. Going to the next request
  1028. Waking up in 4.9 seconds.
  1029. rad_recv: Access-Request packet from host 193.62.48.38 port 1814, id=119, length=274
  1030. User-Name = "anonymous"
  1031. NAS-IP-Address = 127.0.0.1
  1032. Calling-Station-Id = "02-00-00-00-00-01"
  1033. Framed-MTU = 1400
  1034. NAS-Port-Type = Wireless-802.11
  1035. Connect-Info = "CONNECT 11Mbps 802.11b"
  1036. EAP-Message = 0x020a008019001703010020979bcaf0d5ec05bad288f27657294f6f20cfa1ef9dec9a578a1f3275d4414013170301005043b3c98497ca72a36f102d95b6e90a3b1d15effd5246855adef6352accc247c7154851859671c86400f4532379294084806307d4e3f3eced3a1448f46aa9578501e49ff6c9becda2c6f5a16778f5a127
  1037. State = 0x75a766a37cad7f726488f389cf8e8ffd
  1038. Message-Authenticator = 0x1382e261b524fdc05df222bba9b35125
  1039. Domain-Name = "WORC.AC.UK"
  1040. Proxy-State = 0x3130
  1041. # Executing section authorize from file /etc/freeradius/sites-enabled/default
  1042. +- entering group authorize {...}
  1043. ++[preprocess] returns ok
  1044. ++[mschap_ad] returns noop
  1045. [ntdomain] No '\' in User-Name = "anonymous", skipping NULL due to config.
  1046. ++[ntdomain] returns noop
  1047. [suffix] No '@' in User-Name = "anonymous", looking up realm NULL
  1048. [suffix] Found realm "NULL"
  1049. [suffix] Adding Stripped-User-Name = "anonymous"
  1050. [suffix] Adding Realm = "NULL"
  1051. [suffix] Authentication realm is LOCAL.
  1052. ++[suffix] returns ok
  1053. [eap] EAP packet type response id 10 length 128
  1054. [eap] Continuing tunnel setup.
  1055. ++[eap] returns ok
  1056. Found Auth-Type = EAP
  1057. # Executing group from file /etc/freeradius/sites-enabled/default
  1058. +- entering group EAP {...}
  1059. [eap] Request found, released from the list
  1060. [eap] EAP/peap
  1061. [eap] processing type peap
  1062. [peap] processing EAP-TLS
  1063. [peap] eaptls_verify returned 7
  1064. [peap] Done initial handshake
  1065. [peap] eaptls_process returned 7
  1066. [peap] EAPTLS_OK
  1067. [peap] Session established. Decoding tunneled attributes.
  1068. [peap] Peap state phase2
  1069. [peap] EAP type mschapv2
  1070. [peap] Got tunneled request
  1071. EAP-Message = 0x020a00441a020a003f313c6612eb8a1d955dcc5fc92e66c766eb00000000000000004619af06b81d1426e5c7921fe751e5f46b7ee3456b3b0c7f0075776a727374657374
  1072. server {
  1073. [peap] Setting User-Name to uwjrstest
  1074. Sending tunneled request
  1075. EAP-Message = 0x020a00441a020a003f313c6612eb8a1d955dcc5fc92e66c766eb00000000000000004619af06b81d1426e5c7921fe751e5f46b7ee3456b3b0c7f0075776a727374657374
  1076. FreeRADIUS-Proxied-To = 127.0.0.1
  1077. User-Name = "uwjrstest"
  1078. State = 0x78b723cc78bd39444d0f0150ae83c59c
  1079. NAS-IP-Address = 127.0.0.1
  1080. Calling-Station-Id = "02-00-00-00-00-01"
  1081. Framed-MTU = 1400
  1082. NAS-Port-Type = Wireless-802.11
  1083. Connect-Info = "CONNECT 11Mbps 802.11b"
  1084. Domain-Name = "WORC.AC.UK"
  1085. server inner-tunnel {
  1086. # Executing section authorize from file /etc/freeradius/sites-enabled/inner-tunnel
  1087. +- entering group authorize {...}
  1088. ++[preprocess] returns ok
  1089. ++[chap] returns noop
  1090. ++[mschap_ad] returns noop
  1091. ++[unix] returns notfound
  1092. [ntdomain] No '\' in User-Name = "uwjrstest", skipping NULL due to config.
  1093. ++[ntdomain] returns noop
  1094. [suffix] No '@' in User-Name = "uwjrstest", looking up realm NULL
  1095. [suffix] Found realm "NULL"
  1096. [suffix] Adding Stripped-User-Name = "uwjrstest"
  1097. [suffix] Adding Realm = "NULL"
  1098. [suffix] Authentication realm is LOCAL.
  1099. ++[suffix] returns ok
  1100. ++[control] returns ok
  1101. [eap] EAP packet type response id 10 length 68
  1102. [eap] No EAP Start, assuming it's an on-going EAP conversation
  1103. ++[eap] returns updated
  1104. ++[files] returns noop
  1105. ++[expiration] returns noop
  1106. ++[logintime] returns noop
  1107. ++[pap] returns noop
  1108. Found Auth-Type = EAP
  1109. # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
  1110. +- entering group authenticate {...}
  1111. [eap] Request found, released from the list
  1112. [eap] EAP/mschapv2
  1113. [eap] processing type mschapv2
  1114. [mschapv2] # Executing group from file /etc/freeradius/sites-enabled/inner-tunnel
  1115. [mschapv2] +- entering group MS-CHAP {...}
  1116. [mschap_ad] Creating challenge hash with username: uwjrstest
  1117. [mschap_ad] Client is using MS-CHAPv2 for uwjrstest, we need NT-Password
  1118. [mschap_ad] expand: --username=%{Stripped-User-Name:-%{User-Name:-None}} -> --username=uwjrstest
  1119. [mschap_ad] No NT-Domain was found in the User-Name.
  1120. [mschap_ad] expand: %{mschap_ad:NT-Domain} ->
  1121. [mschap_ad] ... expanding second conditional
  1122. [mschap_ad] expand: %{Domain-Name} -> WORC.AC.UK
  1123. [mschap_ad] expand: --domain=%{%{mschap_ad:NT-Domain}:-%{Domain-Name}} -> --domain=WORC.AC.UK
  1124. [mschap_ad] Creating challenge hash with username: uwjrstest
  1125. [mschap_ad] expand: --challenge=%{mschap_ad:Challenge:-00} -> --challenge=eb2123a7a496e886
  1126. [mschap_ad] expand: --nt-response=%{mschap_ad:NT-Response:-00} -> --nt-response=4619af06b81d1426e5c7921fe751e5f46b7ee3456b3b0c7f
  1127. Exec-Program output: NT_KEY: 51C1A08577E4ECDBBD59863E8B0BF5BD
  1128. Exec-Program-Wait: plaintext: NT_KEY: 51C1A08577E4ECDBBD59863E8B0BF5BD
  1129. Exec-Program: returned: 0
  1130. [mschap_ad] adding MS-CHAPv2 MPPE keys
  1131. ++[mschap_ad] returns ok
  1132. MSCHAP Success
  1133. ++[eap] returns handled
  1134. } # server inner-tunnel
  1135. [peap] Got tunneled reply code 11
  1136. EAP-Message = 0x010b00331a030a002e533d34373434464543433834314435314339333134384335383933354130384131324539333345463837
  1137. Message-Authenticator = 0x00000000000000000000000000000000
  1138. State = 0x78b723cc79bc39444d0f0150ae83c59c
  1139. [peap] Got tunneled reply RADIUS code 11
  1140. EAP-Message = 0x010b00331a030a002e533d34373434464543433834314435314339333134384335383933354130384131324539333345463837
  1141. Message-Authenticator = 0x00000000000000000000000000000000
  1142. State = 0x78b723cc79bc39444d0f0150ae83c59c
  1143. [peap] Got tunneled Access-Challenge
  1144. ++[eap] returns handled
  1145. Sending Access-Challenge of id 119 to 193.62.48.38 port 1814
  1146. EAP-Message = 0x010b005b190017030100502a5e9a459c709c372df731510a2b08dbe0c532e2a882b7c7672b0a8efcd699ac0737d4e06d39842d469d8fc14ca08de04dbcbf9f84d3c8d36ec379ea39e69b242942805e9ab40af0c4be640da5feb54d
  1147. Message-Authenticator = 0x00000000000000000000000000000000
  1148. State = 0x75a766a37fac7f726488f389cf8e8ffd
  1149. Proxy-State = 0x3130
  1150. Finished request 10.
  1151. Going to the next request
  1152. Waking up in 4.9 seconds.
  1153. Cleaning up request 0 ID 74 with timestamp +36
  1154. Cleaning up request 1 ID 227 with timestamp +36
  1155. Cleaning up request 2 ID 122 with timestamp +36
  1156. Cleaning up request 3 ID 106 with timestamp +36
  1157. Cleaning up request 4 ID 67 with timestamp +36
  1158. Cleaning up request 5 ID 164 with timestamp +36
  1159. Cleaning up request 6 ID 204 with timestamp +36
  1160. Cleaning up request 7 ID 235 with timestamp +36
  1161. Cleaning up request 8 ID 57 with timestamp +36
  1162. Cleaning up request 9 ID 36 with timestamp +36
  1163. Cleaning up request 10 ID 119 with timestamp +36
  1164. WARNING: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  1165. WARNING: !! EAP session for state 0x75a766a37fac7f72 did not finish!
  1166. WARNING: !! Please read http://wiki.freeradius.org/Certificate_Compatibility
  1167. WARNING: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  1168. Ready to process requests.
  1169. Ready to process requests.
  1170. Signalled to terminate
  1171. Exiting normally.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!