RE: Cisco 1100 AP and XP Client using tls (PEAP)

Fri, 23 Apr 2004 15:44:18 -0700 

Hmmm....got something new now: could not start TLS Connect error



rad_recv: Access-Request packet from host 16.19.20.5:59487, id=150,
length=129
        User-Name = "cdukes"
        Framed-MTU = 1400
        Called-Station-Id = "000f.8f76.2e20"
        Calling-Station-Id = "0006.25a9.8594"
        Message-Authenticator = 0xaf664d4c58c87634656ad999486a3a3d
        EAP-Message = 0x0201000b016364756b6573
        NAS-Port-Type = Wireless-802.11
        NAS-Port = 394
        Service-Type = Framed-User
        NAS-IP-Address = 10.100.10.10
        NAS-Identifier = "ap-noc"
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 8
  modcall[authorize]: module "preprocess" returns ok for request 8
  modcall[authorize]: module "chap" returns noop for request 8
  modcall[authorize]: module "mschap" returns noop for request 8
    rlm_realm: No '@' in User-Name = "cdukes", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 8
  rlm_eap: EAP packet type response id 1 length 11
  rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
  modcall[authorize]: module "eap" returns updated for request 8
    users: Matched DEFAULT at 152
    users: Matched DEFAULT at 171
    users: Matched cdukes at 215
  modcall[authorize]: module "files" returns ok for request 8
rlm_ldap: - authorize
rlm_ldap: performing user authorization for cdukes
radius_xlat:  '(uid=cdukes)'
radius_xlat:  'ou=users,dc=esnet,dc=com'
ldap_get_conn: Got Id: 0
rlm_ldap: attempting LDAP reconnection
rlm_ldap: (re)connect to enoc.esnet.com:389, authentication 0
rlm_ldap: starting TLS
rlm_ldap: ldap_start_tls_s()
rlm_ldap: could not start TLS Connect error
rlm_ldap: (re)connection attempt failed
rlm_ldap: search failed
ldap_release_conn: Release Id: 0
  modcall[authorize]: module "ldap" returns fail for request 8
modcall: group authorize returns fail for request 8
Finished request 8
Going to the next request 

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok
Sent: Friday, April 23, 2004 5:21 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco 1100 AP and XP Client using tls (PEAP) 

"Clayton Dukes" <[EMAIL PROTECTED]> wrote:
> Well, I have it working, at least it appears to be, but I am still not 
> getting an ip on the laptop -- do I need to pass the dhcp server
somewhere?

  No.  The client should send a broadcast DHCP request, and the dhcp server
should pick that up.

  Alan DeKok.


-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html


!DSPAM:408985c9273879057181623!




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to