Repeating authentication all the time

2003-12-16 Thread Sevcik Berndt 
The authentication now works and I see an Access Accept Packet at the
end. But the interesting is that the authentication goes a few seconds
later on and the same process is repeated.

The Windows XP PC never gets really authenticated. The Access Point show
that the authentication was successfull (RoamAbout R2)

Has someone the same experience?

Thanks
Berndt


Initializing the thread pool...
Listening on IP address *, ports 1812/udp and 1813/udp, with proxy on
1814/udp.
Ready to process requests.
rad_recv: Access-Request packet from host 10.3.4.2:1043, id=136,
length=116
Message-Authenticator = 0x649854dbce2d7bf0fcee43598bb647e6
User-Name = berndt.sevcik
NAS-IP-Address = 10.3.4.2
Sending Access-Challenge of id 145 to 10.3.4.2:1043
EAP-Message =
0x01cc004a1900170301003ffbb7b7b2a9fc6b9e6cba07729cdb312818ca43307b7ec2a2ab3669b1d5b66f3a3df95d0b0adc9ef933a6b97961eb47099d149ffcc38d3f4ca2b16510ad77be
Message-Authenticator = 0x
State = 0x4cb24f3bbf150ffaf70f1305ee419e12
rad_recv: Access-Request packet from host 10.3.4.2:1043, id=146,
length=145
Message-Authenticator = 0x2c0ff11621c9b0033f34fb6ea44546e7
User-Name = berndt.sevcik
State = 0x4cb24f3bbf150ffaf70f1305ee419e12
NAS-IP-Address = 10.3.4.2
NAS-Port = 2
NAS-Port-Type = Wireless-802.11
Calling-Station-Id = 00-04-23-77-4b-a3
Framed-MTU = 1000
EAP-Message =
0x02cc001d1900170301001259680ad935701f4d4333b259e3773f36bf28
rlm_ldap: - authorize
rlm_ldap: performing user authorization for berndt.sevcik
ldap_get_conn: Got Id: 0
rlm_ldap: looking for check items in directory...
rlm_ldap: Adding ntPassword as NT-Password, value
0x97BA4F3659E30573DB838CA8692897BC  op=21
rlm_ldap: Adding lmPassword as LM-Password, value
B1EE20160x1D73468FA91E548719C3AC6E  op=21
rlm_ldap: Adding radiusAuthType as Auth-Type, value EAP  op=21
rlm_ldap: looking for reply items in directory...
rlm_ldap: user berndt.sevcik authorized to use remote access
ldap_release_conn: Release Id: 0
 
  PEAP: Got tunneled EAP-Message
EAP-Message = 0x02cc00061a03
  PEAP: Sending tunneled request
EAP-Message = 0x02cc00061a03
Freeradius-Proxied-To = 127.0.0.1
User-Name = berndt.sevcik
State = 0x1ea57825164814a89aa097aba563
rlm_ldap: - authorize
rlm_ldap: performing user authorization for berndt.sevcik
ldap_get_conn: Got Id: 0
rlm_ldap: looking for check items in directory...
rlm_ldap: Adding ntPassword as NT-Password, value
0x97BA4F3659E30573DB838CA8692897BC  op=21
rlm_ldap: Adding lmPassword as LM-Password, value
B1EE20160x1D73468FA91E548719C3AC6E  op=21
rlm_ldap: Adding radiusAuthType as Auth-Type, value EAP  op=21
rlm_ldap: looking for reply items in directory...
rlm_ldap: user berndt.sevcik authorized to use remote access
ldap_release_conn: Release Id: 0
  PEAP: Got tunneled reply RADIUS code 2
EAP-Message = 0x03cc0004
Message-Authenticator = 0x
User-Name = berndt.sevcik
Sending Access-Accept of id 146 to 10.3.4.2:1043
MS-MPPE-Recv-Key =
0x82040f0dd02ebaa84b2558e7067ce3f505fee4528a582a61c71762d4493c83e3
MS-MPPE-Send-Key =
0xaa9976081be52cdc089a854b705837c58c0e218b0f58a52f82585c06711400dd
EAP-Message = 0x03cc0004
Message-Authenticator = 0x
User-Name = berndt.sevcik
Sending Access-Challenge of id 145 to 10.3.4.2:1043
EAP-Message =
0x01cc004a1900170301003ffbb7b7b2a9fc6b9e6cba07729cdb312818ca43307b7ec2a2ab3669b1d5b66f3a3df95d0b0adc9ef933a6b97961eb47099d149ffcc38d3f4ca2b16510ad77be
Message-Authenticator = 0x
State = 0x4cb24f3bbf150ffaf70f1305ee419e12
rad_recv: Access-Request packet from host 10.3.4.2:1043, id=146,
length=145
Message-Authenticator = 0x2c0ff11621c9b0033f34fb6ea44546e7
User-Name = berndt.sevcik
State = 0x4cb24f3bbf150ffaf70f1305ee419e12
NAS-IP-Address = 10.3.4.2
NAS-Port = 2
NAS-Port-Type = Wireless-802.11
Calling-Station-Id = 00-04-23-77-4b-a3
Framed-MTU = 1000
EAP-Message =
0x02cc001d1900170301001259680ad935701f4d4333b259e3773f36bf28
rlm_ldap: - authorize
rlm_ldap: performing user authorization for berndt.sevcik
ldap_get_conn: Got Id: 0
rlm_ldap: looking for check items in directory...
rlm_ldap: Adding ntPassword as NT-Password, value
0x97BA4F3659E30573DB838CA8692897BC  op=21
rlm_ldap: Adding lmPassword as LM-Password, value
B1EE20160x1D73468FA91E548719C3AC6E  op=21
rlm_ldap: Adding radiusAuthType as Auth-Type, value EAP  op=21
rlm_ldap: looking for reply items in directory...
rlm_ldap: user berndt.sevcik authorized to use remote access
ldap_release_conn: Release Id: 0
 
  PEAP: Got tunneled EAP-Message
EAP-Message = 0x02cc00061a03
  PEAP: Sending tunneled request
EAP-Message = 0x02cc00061a03
Freeradius-Proxied-To = 127.0.0.1

Re: Repeating authentication all the time

2003-12-16 Thread Guy Fraser 
Just a guess:

Is there any firwall software/hardware that may not be allowing the 
acknowledgement
to be returned to the NAS?

Sevcik Berndt wrote:

The authentication now works and I see an Access Accept Packet at the
end. But the interesting is that the authentication goes a few seconds
later on and the same process is repeated.
The Windows XP PC never gets really authenticated. The Access Point show
that the authentication was successfull (RoamAbout R2)
Has someone the same experience?

Thanks
Berndt
 



- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Repeating authentication all the time

2003-12-16 Thread Sevcik Berndt 
They are conectet via the same network (also the same switch). The funny
thing is that the Access Point says that the Client is authenticated.

Berndt

On Tue, 2003-12-16 at 17:34, Guy Fraser wrote:
 Just a guess:
 
 Is there any firwall software/hardware that may not be allowing the 
 acknowledgement
 to be returned to the NAS?
 
 Sevcik Berndt wrote:
 
 The authentication now works and I see an Access Accept Packet at the
 end. But the interesting is that the authentication goes a few seconds
 later on and the same process is repeated.
 
 The Windows XP PC never gets really authenticated. The Access Point show
 that the authentication was successfull (RoamAbout R2)
 
 Has someone the same experience?
 
 Thanks
 Berndt
 
   
 
 
 
 - 
 List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- 
Diese Message wurde erstellt mit freundlicher Unterstuetzung
eines freilaufenden Pinguins aus artgerechter Freilandhaltung.
Sie ist garantiert frei von Microsoftschen Viren.
 
-
TGM - Die Schule der Technik
IT-Service
A-1200 Wien, Wexstr. 19-23
Tel. +43(1)33126/316 Fax: +43(1)33126/154
E-Mail: [EMAIL PROTECTED]
-



- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html