API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 2nd, 2017
89
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 29.64 KB | None | 0 0
raw download clone embed print report
  1. Listening on authentication address * port 1812
  2. Listening on accounting address * port 1813
  3. Listening on command file /var/run/radiusd/radiusd.sock
  4. Listening on proxy address * port 1814
  5. Ready to process requests.
  6. +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  7. rad_recv: Access-Request packet from host 192.168.0.181 port 2050, id=57, length=149
  8. User-Name = "fulano"
  9. NAS-IP-Address = 192.168.0.181
  10. NAS-Port = 0
  11. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  12. Calling-Station-Id = "AC-81-12-26-99-97"
  13. Framed-MTU = 1400
  14. NAS-Port-Type = Wireless-802.11
  15. Connect-Info = "CONNECT 0Mbps 802.11"
  16. EAP-Message = 0x0236000b0166756c616e6f
  17. Message-Authenticator = 0xd0eddad09c9a1df4a8b4ddbe2b3c830f
  18. +- entering group authorize {...}
  19. ++[preprocess] returns ok
  20. ++[chap] returns noop
  21. ++[mschap] returns noop
  22. [suffix] No '@' in User-Name = "fulano", looking up realm NULL
  23. [suffix] No such realm "NULL"
  24. ++[suffix] returns noop
  25. [eap] EAP packet type response id 54 length 11
  26. [eap] No EAP Start, assuming it's an on-going EAP conversation
  27. ++[eap] returns updated
  28. ++[unix] returns notfound
  29. ++[files] returns noop
  30. [sql] expand: %{User-Name} -> fulano
  31. [sql] sql_set_user escaped user --> 'fulano'
  32. rlm_sql (sql): Reserving sql socket id: 3
  33. [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'fulano' ORDER BY id
  34. WARNING: Found User-Password == "...".
  35. WARNING: Are you sure you don't mean Cleartext-Password?
  36. WARNING: See "man rlm_pap" for more information.
  37. [sql] User found in radcheck table
  38. [sql] expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'fulano' ORDER BY id
  39. [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'fulano' ORDER BY priority
  40. rlm_sql (sql): Released sql socket id: 3
  41. ++[sql] returns ok
  42. ++[expiration] returns noop
  43. ++[logintime] returns noop
  44. [pap] Found existing Auth-Type, not changing it.
  45. ++[pap] returns noop
  46. Found Auth-Type = EAP
  47. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  48. !!! Replacing User-Password in config items with Cleartext-Password. !!!
  49. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  50. !!! Please update your configuration so that the "known good" !!!
  51. !!! clear text password is in Cleartext-Password, and not in User-Password. !!!
  52. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  53. +- entering group authenticate {...}
  54. [eap] EAP Identity
  55. [eap] processing type md5
  56. rlm_eap_md5: Issuing Challenge
  57. ++[eap] returns handled
  58. Sending Access-Challenge of id 57 to 192.168.0.181 port 2050
  59. EAP-Message = 0x0137001604105dfd7cc934544e50f38e61a8243639d4
  60. Message-Authenticator = 0x00000000000000000000000000000000
  61. State = 0x29eb2b2329dc2f211325e614cda49a4e
  62. Finished request 0.
  63. Going to the next request
  64. Waking up in 4.9 seconds.
  65. rad_recv: Access-Request packet from host 192.168.0.181 port 2050, id=58, length=162
  66. User-Name = "fulano"
  67. NAS-IP-Address = 192.168.0.181
  68. NAS-Port = 0
  69. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  70. Calling-Station-Id = "AC-81-12-26-99-97"
  71. Framed-MTU = 1400
  72. NAS-Port-Type = Wireless-802.11
  73. Connect-Info = "CONNECT 0Mbps 802.11"
  74. EAP-Message = 0x023700060319
  75. State = 0x29eb2b2329dc2f211325e614cda49a4e
  76. Message-Authenticator = 0xa609db150f9f02931d4f191e5b0762c4
  77. +- entering group authorize {...}
  78. ++[preprocess] returns ok
  79. ++[chap] returns noop
  80. ++[mschap] returns noop
  81. [suffix] No '@' in User-Name = "fulano", looking up realm NULL
  82. [suffix] No such realm "NULL"
  83. ++[suffix] returns noop
  84. [eap] EAP packet type response id 55 length 6
  85. [eap] No EAP Start, assuming it's an on-going EAP conversation
  86. ++[eap] returns updated
  87. ++[unix] returns notfound
  88. ++[files] returns noop
  89. [sql] expand: %{User-Name} -> fulano
  90. [sql] sql_set_user escaped user --> 'fulano'
  91. rlm_sql (sql): Reserving sql socket id: 2
  92. [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'fulano' ORDER BY id
  93. WARNING: Found User-Password == "...".
  94. WARNING: Are you sure you don't mean Cleartext-Password?
  95. WARNING: See "man rlm_pap" for more information.
  96. [sql] User found in radcheck table
  97. [sql] expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'fulano' ORDER BY id
  98. [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'fulano' ORDER BY priority
  99. rlm_sql (sql): Released sql socket id: 2
  100. ++[sql] returns ok
  101. ++[expiration] returns noop
  102. ++[logintime] returns noop
  103. [pap] Found existing Auth-Type, not changing it.
  104. ++[pap] returns noop
  105. Found Auth-Type = EAP
  106. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  107. !!! Replacing User-Password in config items with Cleartext-Password. !!!
  108. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  109. !!! Please update your configuration so that the "known good" !!!
  110. !!! clear text password is in Cleartext-Password, and not in User-Password. !!!
  111. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  112. +- entering group authenticate {...}
  113. [eap] Request found, released from the list
  114. [eap] EAP NAK
  115. [eap] EAP-NAK asked for EAP-Type/peap
  116. [eap] processing type tls
  117. [tls] Initiate
  118. [tls] Start returned 1
  119. ++[eap] returns handled
  120. Sending Access-Challenge of id 58 to 192.168.0.181 port 2050
  121. EAP-Message = 0x013800061920
  122. Message-Authenticator = 0x00000000000000000000000000000000
  123. State = 0x29eb2b2328d332211325e614cda49a4e
  124. Finished request 1.
  125. Going to the next request
  126. Waking up in 4.9 seconds.
  127. rad_recv: Access-Request packet from host 192.168.0.181 port 2050, id=59, length=276
  128. User-Name = "fulano"
  129. NAS-IP-Address = 192.168.0.181
  130. NAS-Port = 0
  131. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  132. Calling-Station-Id = "AC-81-12-26-99-97"
  133. Framed-MTU = 1400
  134. NAS-Port-Type = Wireless-802.11
  135. Connect-Info = "CONNECT 0Mbps 802.11"
  136. EAP-Message = 0x0238007819800000006e16030100690100006503014d798fcf204dc33b429fa713f08a6769daab02823a5ddb8815d7ef343ef2836b000018002f00350005000ac013c014c009c00a003200380013000401000024ff010001000000000b000900000666756c616e6f000a0006000400170018000b00020100
  137. State = 0x29eb2b2328d332211325e614cda49a4e
  138. Message-Authenticator = 0xe326d3c4fedf3f2619923c1a3e2eaca5
  139. +- entering group authorize {...}
  140. ++[preprocess] returns ok
  141. ++[chap] returns noop
  142. ++[mschap] returns noop
  143. [suffix] No '@' in User-Name = "fulano", looking up realm NULL
  144. [suffix] No such realm "NULL"
  145. ++[suffix] returns noop
  146. [eap] EAP packet type response id 56 length 120
  147. [eap] Continuing tunnel setup.
  148. ++[eap] returns ok
  149. Found Auth-Type = EAP
  150. +- entering group authenticate {...}
  151. [eap] Request found, released from the list
  152. [eap] EAP/peap
  153. [eap] processing type peap
  154. [peap] processing EAP-TLS
  155. TLS Length 110
  156. [peap] Length Included
  157. [peap] eaptls_verify returned 11
  158. [peap] (other): before/accept initialization
  159. [peap] TLS_accept: before/accept initialization
  160. [peap] <<< TLS 1.0 Handshake [length 0069], ClientHello
  161. [peap] TLS_accept: SSLv3 read client hello A
  162. [peap] >>> TLS 1.0 Handshake [length 0031], ServerHello
  163. [peap] TLS_accept: SSLv3 write server hello A
  164. [peap] >>> TLS 1.0 Handshake [length 085e], Certificate
  165. [peap] TLS_accept: SSLv3 write certificate A
  166. [peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone
  167. [peap] TLS_accept: SSLv3 write server done A
  168. [peap] TLS_accept: SSLv3 flush data
  169. [peap] TLS_accept: Need to read more data: SSLv3 read client certificate A
  170. In SSL Handshake Phase
  171. In SSL Accept mode
  172. [peap] eaptls_process returned 13
  173. [peap] EAPTLS_HANDLED
  174. ++[eap] returns handled
  175. Sending Access-Challenge of id 59 to 192.168.0.181 port 2050
  176. EAP-Message = 0x0139040019c0000008a216030100310200002d03014d7990e6421e72d57c4b008c617eb7a9b861106b1fae88311d48e3af913bb71100002f000005ff01000100160301085e0b00085a0008570003a6308203a23082028aa003020102020101300d06092a864886f70d0101040500308193310b3009060355040613024652310f300d060355040813065261646975733112301006035504071309536f6d65776865726531153013060355040a130c4578616d706c6520496e632e3120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d312630240603550403131d4578616d706c65204365727469666963617465204175
  177. EAP-Message = 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
  178. EAP-Message = 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
  179. EAP-Message = 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
  180. EAP-Message = 0xe70004ab308204a73082038f
  181. Message-Authenticator = 0x00000000000000000000000000000000
  182. State = 0x29eb2b232bd232211325e614cda49a4e
  183. Finished request 2.
  184. Going to the next request
  185. Waking up in 4.9 seconds.
  186. rad_recv: Access-Request packet from host 192.168.0.181 port 2050, id=60, length=162
  187. User-Name = "fulano"
  188. NAS-IP-Address = 192.168.0.181
  189. NAS-Port = 0
  190. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  191. Calling-Station-Id = "AC-81-12-26-99-97"
  192. Framed-MTU = 1400
  193. NAS-Port-Type = Wireless-802.11
  194. Connect-Info = "CONNECT 0Mbps 802.11"
  195. EAP-Message = 0x023900061900
  196. State = 0x29eb2b232bd232211325e614cda49a4e
  197. Message-Authenticator = 0x0ee31b747aed2c32b27b24c741d51dd4
  198. +- entering group authorize {...}
  199. ++[preprocess] returns ok
  200. ++[chap] returns noop
  201. ++[mschap] returns noop
  202. [suffix] No '@' in User-Name = "fulano", looking up realm NULL
  203. [suffix] No such realm "NULL"
  204. ++[suffix] returns noop
  205. [eap] EAP packet type response id 57 length 6
  206. [eap] Continuing tunnel setup.
  207. ++[eap] returns ok
  208. Found Auth-Type = EAP
  209. +- entering group authenticate {...}
  210. [eap] Request found, released from the list
  211. [eap] EAP/peap
  212. [eap] processing type peap
  213. [peap] processing EAP-TLS
  214. [peap] Received TLS ACK
  215. [peap] ACK handshake fragment handler
  216. [peap] eaptls_verify returned 1
  217. [peap] eaptls_process returned 13
  218. [peap] EAPTLS_HANDLED
  219. ++[eap] returns handled
  220. Sending Access-Challenge of id 60 to 192.168.0.181 port 2050
  221. EAP-Message = 0x013a03fc1940a00302010202090080ab62ae457a29a9300d06092a864886f70d0101050500308193310b3009060355040613024652310f300d060355040813065261646975733112301006035504071309536f6d65776865726531153013060355040a130c4578616d706c6520496e632e3120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d312630240603550403131d4578616d706c6520436572746966696361746520417574686f72697479301e170d3131303331303032303035315a170d3132303330393032303035315a308193310b3009060355040613024652310f300d0603550408130652616469757331
  222. EAP-Message = 0x12301006035504071309536f6d65776865726531153013060355040a130c4578616d706c6520496e632e3120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d312630240603550403131d4578616d706c6520436572746966696361746520417574686f7269747930820122300d06092a864886f70d01010105000382010f003082010a0282010100a9aaa715079c5f6c1d6f18bcd9d9aef896ca78ea77801e997a3d15e9328d45d7961fd05fa43b13ed9123372e08ee15b8d1ba391f83c128a9d7676ce94b67ac7441013120c1e14a5a1408f5289f3e4e7e90fcd971f551514891cbc6194092fc032311afd2fd9645d3
  223. EAP-Message = 0x0be0393375cdc1af280fdd54ed7796b255f7ff7ca19ab42accd3767277a10e93a149d0f5122b1ec7e11db46c8f2c576a738124a03e352712809babf4179d98df45b8cc4b429865256c7d7686cea1676404e7cac170fc50420a866961d43321c7691a8dc3107277201e5e818ad62978f2e53d03d4e789027a81f173e45a889cd6fba3d67c110991ee27be7788510839450ab6f69eef5f092f0203010001a381fb3081f8301d0603551d0e0416041479a192d09260f447fbc565e3e174457bb67e595c3081c80603551d230481c03081bd801479a192d09260f447fbc565e3e174457bb67e595ca18199a48196308193310b300906035504061302465231
  224. EAP-Message = 0x0f300d060355040813065261646975733112301006035504071309536f6d65776865726531153013060355040a130c4578616d706c6520496e632e3120301e06092a864886f70d010901161161646d696e406578616d706c652e636f6d312630240603550403131d4578616d706c6520436572746966696361746520417574686f7269747982090080ab62ae457a29a9300c0603551d13040530030101ff300d06092a864886f70d01010505000382010100718837a4b8454c3923044041168de397ef79844ebb6b452c9f5d67aac41efc9dbd01196f3e09dcb9e3732755983f7c42573ab2de27c78d9c4b6498d77edbe8ba74bc89f54b89ca7e618cc6
  225. EAP-Message = 0x6b96ed87ba741337
  226. Message-Authenticator = 0x00000000000000000000000000000000
  227. State = 0x29eb2b232ad132211325e614cda49a4e
  228. Finished request 3.
  229. Going to the next request
  230. Waking up in 4.9 seconds.
  231. rad_recv: Access-Request packet from host 192.168.0.181 port 2050, id=61, length=162
  232. User-Name = "fulano"
  233. NAS-IP-Address = 192.168.0.181
  234. NAS-Port = 0
  235. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  236. Calling-Station-Id = "AC-81-12-26-99-97"
  237. Framed-MTU = 1400
  238. NAS-Port-Type = Wireless-802.11
  239. Connect-Info = "CONNECT 0Mbps 802.11"
  240. EAP-Message = 0x023a00061900
  241. State = 0x29eb2b232ad132211325e614cda49a4e
  242. Message-Authenticator = 0xba641e54d1f9984ea5fa096191e94d57
  243. +- entering group authorize {...}
  244. ++[preprocess] returns ok
  245. ++[chap] returns noop
  246. ++[mschap] returns noop
  247. [suffix] No '@' in User-Name = "fulano", looking up realm NULL
  248. [suffix] No such realm "NULL"
  249. ++[suffix] returns noop
  250. [eap] EAP packet type response id 58 length 6
  251. [eap] Continuing tunnel setup.
  252. ++[eap] returns ok
  253. Found Auth-Type = EAP
  254. +- entering group authenticate {...}
  255. [eap] Request found, released from the list
  256. [eap] EAP/peap
  257. [eap] processing type peap
  258. [peap] processing EAP-TLS
  259. [peap] Received TLS ACK
  260. [peap] ACK handshake fragment handler
  261. [peap] eaptls_verify returned 1
  262. [peap] eaptls_process returned 13
  263. [peap] EAPTLS_HANDLED
  264. ++[eap] returns handled
  265. Sending Access-Challenge of id 61 to 192.168.0.181 port 2050
  266. EAP-Message = 0x013b00bc190019ae2695f394b3523ce915ad987ba2b964690b489bd50616e1e2b1fff42b9ca36c836b9827e2a16b3ed5e5424770c25f984fc5fad47f8f83c8ee214ad863192bb43c235416be45ba489ffcc4810241c446e567bd3bd107441e44219fe8a1f3cbeef18c683c66d3b8c9df7bed2acc5b75f3e794579afb25f269097e7537c321f069eecbe2aab18b4b76d1a3ece523526f939dd714c4f63b45fa11eb3072d68f16be9ae5233f7087fbae67972f6f16030100040e000000
  267. Message-Authenticator = 0x00000000000000000000000000000000
  268. State = 0x29eb2b232dd032211325e614cda49a4e
  269. Finished request 4.
  270. Going to the next request
  271. Waking up in 4.9 seconds.
  272. rad_recv: Access-Request packet from host 192.168.0.181 port 2050, id=62, length=173
  273. User-Name = "fulano"
  274. NAS-IP-Address = 192.168.0.181
  275. NAS-Port = 0
  276. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  277. Calling-Station-Id = "AC-81-12-26-99-97"
  278. Framed-MTU = 1400
  279. NAS-Port-Type = Wireless-802.11
  280. Connect-Info = "CONNECT 0Mbps 802.11"
  281. EAP-Message = 0x023b001119800000000715030100020230
  282. State = 0x29eb2b232dd032211325e614cda49a4e
  283. Message-Authenticator = 0xb5be6bc547c2da586816b4a5996e5f28
  284. +- entering group authorize {...}
  285. ++[preprocess] returns ok
  286. ++[chap] returns noop
  287. ++[mschap] returns noop
  288. [suffix] No '@' in User-Name = "fulano", looking up realm NULL
  289. [suffix] No such realm "NULL"
  290. ++[suffix] returns noop
  291. [eap] EAP packet type response id 59 length 17
  292. [eap] Continuing tunnel setup.
  293. ++[eap] returns ok
  294. Found Auth-Type = EAP
  295. +- entering group authenticate {...}
  296. [eap] Request found, released from the list
  297. [eap] EAP/peap
  298. [eap] processing type peap
  299. [peap] processing EAP-TLS
  300. TLS Length 7
  301. [peap] Length Included
  302. [peap] eaptls_verify returned 11
  303. [peap] <<< TLS 1.0 Alert [length 0002], fatal unknown_ca
  304. TLS Alert read:fatal:unknown CA
  305. TLS_accept:failed in SSLv3 read client certificate A
  306. rlm_eap: SSL error error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca
  307. SSL: SSL_read failed inside of TLS (-1), TLS session fails.
  308. TLS receive handshake failed during operation
  309. [peap] eaptls_process returned 4
  310. [peap] EAPTLS_OTHERS
  311. [eap] Handler failed in EAP/peap
  312. [eap] Failed in EAP select
  313. ++[eap] returns invalid
  314. Failed to authenticate the user.
  315. Using Post-Auth-Type Reject
  316. +- entering group REJECT {...}
  317. [attr_filter.access_reject] expand: %{User-Name} -> fulano
  318. attr_filter: Matched entry DEFAULT at line 11
  319. ++[attr_filter.access_reject] returns updated
  320. Delaying reject of request 5 for 1 seconds
  321. Going to the next request
  322. Waking up in 0.9 seconds.
  323. Sending delayed reject for request 5
  324. Sending Access-Reject of id 62 to 192.168.0.181 port 2050
  325. EAP-Message = 0x043b0004
  326. Message-Authenticator = 0x00000000000000000000000000000000
  327. Waking up in 3.8 seconds.
  328. rad_recv: Access-Request packet from host 192.168.0.181 port 2051, id=19, length=167
  329. User-Name = "ADMINISTRATIVOS"
  330. NAS-IP-Address = 192.168.0.181
  331. NAS-Port = 0
  332. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  333. Calling-Station-Id = "AC-81-12-26-99-97"
  334. Framed-MTU = 1400
  335. NAS-Port-Type = Wireless-802.11
  336. Connect-Info = "CONNECT 0Mbps 802.11"
  337. EAP-Message = 0x023a00140141444d494e49535452415449564f53
  338. Message-Authenticator = 0x22c1734f9a3aeaff6ef8eb6ce26c7b5d
  339. +- entering group authorize {...}
  340. ++[preprocess] returns ok
  341. ++[chap] returns noop
  342. ++[mschap] returns noop
  343. [suffix] No '@' in User-Name = "ADMINISTRATIVOS", looking up realm NULL
  344. [suffix] No such realm "NULL"
  345. ++[suffix] returns noop
  346. [eap] EAP packet type response id 58 length 20
  347. [eap] No EAP Start, assuming it's an on-going EAP conversation
  348. ++[eap] returns updated
  349. ++[unix] returns notfound
  350. ++[files] returns noop
  351. [sql] expand: %{User-Name} -> ADMINISTRATIVOS
  352. [sql] sql_set_user escaped user --> 'ADMINISTRATIVOS'
  353. rlm_sql (sql): Reserving sql socket id: 1
  354. [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'ADMINISTRATIVOS' ORDER BY id
  355. [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'ADMINISTRATIVOS' ORDER BY priority
  356. rlm_sql (sql): Released sql socket id: 1
  357. [sql] User ADMINISTRATIVOS not found
  358. ++[sql] returns notfound
  359. ++[expiration] returns noop
  360. ++[logintime] returns noop
  361. [pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.
  362. ++[pap] returns noop
  363. Found Auth-Type = EAP
  364. +- entering group authenticate {...}
  365. [eap] EAP Identity
  366. [eap] processing type md5
  367. rlm_eap_md5: Issuing Challenge
  368. ++[eap] returns handled
  369. Sending Access-Challenge of id 19 to 192.168.0.181 port 2051
  370. EAP-Message = 0x013b00160410c06c6742aeae9291bd5d5c23e516d3a4
  371. Message-Authenticator = 0x00000000000000000000000000000000
  372. State = 0x5d8e42a15db5462cead871de140542ec
  373. Finished request 6.
  374. Going to the next request
  375. Waking up in 2.5 seconds.
  376. rad_recv: Access-Request packet from host 192.168.0.181 port 2051, id=20, length=171
  377. User-Name = "ADMINISTRATIVOS"
  378. NAS-IP-Address = 192.168.0.181
  379. NAS-Port = 0
  380. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  381. Calling-Station-Id = "AC-81-12-26-99-97"
  382. Framed-MTU = 1400
  383. NAS-Port-Type = Wireless-802.11
  384. Connect-Info = "CONNECT 0Mbps 802.11"
  385. EAP-Message = 0x023b00060311
  386. State = 0x5d8e42a15db5462cead871de140542ec
  387. Message-Authenticator = 0x5ffcb10c010ffdae52c67ffae2e226e8
  388. +- entering group authorize {...}
  389. ++[preprocess] returns ok
  390. ++[chap] returns noop
  391. ++[mschap] returns noop
  392. [suffix] No '@' in User-Name = "ADMINISTRATIVOS", looking up realm NULL
  393. [suffix] No such realm "NULL"
  394. ++[suffix] returns noop
  395. [eap] EAP packet type response id 59 length 6
  396. [eap] No EAP Start, assuming it's an on-going EAP conversation
  397. ++[eap] returns updated
  398. ++[unix] returns notfound
  399. ++[files] returns noop
  400. [sql] expand: %{User-Name} -> ADMINISTRATIVOS
  401. [sql] sql_set_user escaped user --> 'ADMINISTRATIVOS'
  402. rlm_sql (sql): Reserving sql socket id: 0
  403. [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'ADMINISTRATIVOS' ORDER BY id
  404. [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'ADMINISTRATIVOS' ORDER BY priority
  405. rlm_sql (sql): Released sql socket id: 0
  406. [sql] User ADMINISTRATIVOS not found
  407. ++[sql] returns notfound
  408. ++[expiration] returns noop
  409. ++[logintime] returns noop
  410. [pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.
  411. ++[pap] returns noop
  412. Found Auth-Type = EAP
  413. +- entering group authenticate {...}
  414. [eap] Request found, released from the list
  415. [eap] EAP NAK
  416. [eap] EAP-NAK asked for EAP-Type/leap
  417. [eap] processing type leap
  418. rlm_eap_leap: Stage 2
  419. rlm_eap_leap: Issuing AP Challenge
  420. rlm_eap_leap: Successfully initiated
  421. ++[eap] returns handled
  422. Sending Access-Challenge of id 20 to 192.168.0.181 port 2051
  423. EAP-Message = 0x013c001f11010008c90b41f8f7d1504041444d494e49535452415449564f53
  424. Message-Authenticator = 0x00000000000000000000000000000000
  425. State = 0x5d8e42a15cb2532cead871de140542ec
  426. Finished request 7.
  427. Going to the next request
  428. Waking up in 2.5 seconds.
  429. rad_recv: Access-Request packet from host 192.168.0.181 port 2050, id=63, length=167
  430. User-Name = "ADMINISTRATIVOS"
  431. NAS-IP-Address = 192.168.0.181
  432. NAS-Port = 0
  433. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  434. Calling-Station-Id = "AC-81-12-26-99-97"
  435. Framed-MTU = 1400
  436. NAS-Port-Type = Wireless-802.11
  437. Connect-Info = "CONNECT 0Mbps 802.11"
  438. EAP-Message = 0x021500140141444d494e49535452415449564f53
  439. Message-Authenticator = 0x8bf738e1010c5fa5c9475560e61970f9
  440. +- entering group authorize {...}
  441. ++[preprocess] returns ok
  442. ++[chap] returns noop
  443. ++[mschap] returns noop
  444. [suffix] No '@' in User-Name = "ADMINISTRATIVOS", looking up realm NULL
  445. [suffix] No such realm "NULL"
  446. ++[suffix] returns noop
  447. [eap] EAP packet type response id 21 length 20
  448. [eap] No EAP Start, assuming it's an on-going EAP conversation
  449. ++[eap] returns updated
  450. ++[unix] returns notfound
  451. ++[files] returns noop
  452. [sql] expand: %{User-Name} -> ADMINISTRATIVOS
  453. [sql] sql_set_user escaped user --> 'ADMINISTRATIVOS'
  454. rlm_sql (sql): Reserving sql socket id: 4
  455. [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'ADMINISTRATIVOS' ORDER BY id
  456. [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'ADMINISTRATIVOS' ORDER BY priority
  457. rlm_sql (sql): Released sql socket id: 4
  458. [sql] User ADMINISTRATIVOS not found
  459. ++[sql] returns notfound
  460. ++[expiration] returns noop
  461. ++[logintime] returns noop
  462. [pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.
  463. ++[pap] returns noop
  464. Found Auth-Type = EAP
  465. +- entering group authenticate {...}
  466. [eap] EAP Identity
  467. [eap] processing type md5
  468. rlm_eap_md5: Issuing Challenge
  469. ++[eap] returns handled
  470. Sending Access-Challenge of id 63 to 192.168.0.181 port 2050
  471. EAP-Message = 0x011600160410571b993ce5c29cd8bb844f135f94acca
  472. Message-Authenticator = 0x00000000000000000000000000000000
  473. State = 0xaa8dbd57aa9bb9fc313d5e4baa8ce2e9
  474. Finished request 8.
  475. Going to the next request
  476. Waking up in 2.5 seconds.
  477. rad_recv: Access-Request packet from host 192.168.0.181 port 2051, id=21, length=212
  478. User-Name = "ADMINISTRATIVOS"
  479. NAS-IP-Address = 192.168.0.181
  480. NAS-Port = 0
  481. Called-Station-Id = "00-15-6D-7E-FA-8F:eneut"
  482. Calling-Station-Id = "AC-81-12-26-99-97"
  483. Framed-MTU = 1400
  484. NAS-Port-Type = Wireless-802.11
  485. Connect-Info = "CONNECT 0Mbps 802.11"
  486. EAP-Message = 0x023c002f1101001885db6a94ec54332fbb56fbe9084d528f9863993287dde24f41444d494e49535452415449564f53
  487. State = 0x5d8e42a15cb2532cead871de140542ec
  488. Message-Authenticator = 0x1e2f653edc7d8638b490e83347f0cefc
  489. +- entering group authorize {...}
  490. ++[preprocess] returns ok
  491. ++[chap] returns noop
  492. ++[mschap] returns noop
  493. [suffix] No '@' in User-Name = "ADMINISTRATIVOS", looking up realm NULL
  494. [suffix] No such realm "NULL"
  495. ++[suffix] returns noop
  496. [eap] EAP packet type response id 60 length 47
  497. [eap] No EAP Start, assuming it's an on-going EAP conversation
  498. ++[eap] returns updated
  499. ++[unix] returns notfound
  500. ++[files] returns noop
  501. [sql] expand: %{User-Name} -> ADMINISTRATIVOS
  502. [sql] sql_set_user escaped user --> 'ADMINISTRATIVOS'
  503. rlm_sql (sql): Reserving sql socket id: 3
  504. [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'ADMINISTRATIVOS' ORDER BY id
  505. [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'ADMINISTRATIVOS' ORDER BY priority
  506. rlm_sql (sql): Released sql socket id: 3
  507. [sql] User ADMINISTRATIVOS not found
  508. ++[sql] returns notfound
  509. ++[expiration] returns noop
  510. ++[logintime] returns noop
  511. [pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.
  512. ++[pap] returns noop
  513. Found Auth-Type = EAP
  514. +- entering group authenticate {...}
  515. [eap] Request found, released from the list
  516. [eap] EAP/leap
  517. [eap] processing type leap
  518. rlm_eap_leap: No Cleartext-Password or NT-Password configured for this user
  519. [eap] Handler failed in EAP/leap
  520. [eap] Failed in EAP select
  521. ++[eap] returns invalid
  522. Failed to authenticate the user.
  523. Using Post-Auth-Type Reject
  524. +- entering group REJECT {...}
  525. [attr_filter.access_reject] expand: %{User-Name} -> ADMINISTRATIVOS
  526. attr_filter: Matched entry DEFAULT at line 11
  527. ++[attr_filter.access_reject] returns updated
  528. Delaying reject of request 9 for 1 seconds
  529. Going to the next request
  530. Waking up in 0.9 seconds.
  531. Sending delayed reject for request 9
  532. Sending Access-Reject of id 21 to 192.168.0.181 port 2051
  533. EAP-Message = 0x043c0004
  534. Message-Authenticator = 0x00000000000000000000000000000000
  535. Waking up in 1.5 seconds.
  536. Cleaning up request 0 ID 57 with timestamp +41
  537. Cleaning up request 1 ID 58 with timestamp +41
  538. Cleaning up request 2 ID 59 with timestamp +41
  539. Cleaning up request 3 ID 60 with timestamp +41
  540. Cleaning up request 4 ID 61 with timestamp +41
  541. Waking up in 1.0 seconds.
  542. Cleaning up request 5 ID 62 with timestamp +41
  543. Waking up in 1.3 seconds.
  544. Cleaning up request 6 ID 19 with timestamp +43
  545. Cleaning up request 7 ID 20 with timestamp +43
  546. Cleaning up request 8 ID 63 with timestamp +43
  547. Waking up in 1.0 seconds.
  548. Cleaning up request 9 ID 21 with timestamp +43
  549. Ready to process requests.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!