hi
Hi all in new version of pf 10.2.0 eap gtc sub module failed . While
in previous version it was working fine plz help
here is the result of raddebug -f /usr/local/pf/var/run/radiusd.sock
-t 3000'
i changed my personal details with
my_username
my_user_device_mac
my_switch_ip
my_server_ip
my_switch_mac
my_cluster_managment_ip
also highlight the error in logs .
(26979) Mon Nov 2 15:39:12 2020: Debug: # Executing group from file
/usr/local/pf/raddb/sites-enabled/packetfence
(26979) Mon Nov 2 15:39:12 2020: Debug: authenticate {
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Expiring EAP session
with state 0xddba5edfdca958cb
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Finished EAP session
with state 0xec639e88eb7087f4
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Previous EAP request
found for state 0xec639e88eb7087f4, released from the list
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Peer sent packet with
method EAP PEAP (25)
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Calling submodule
eap_peap to process data
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Continuing EAP-TLS
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: [eaptls verify] = ok
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Done initial handshake
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: [eaptls process] = ok
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Session
established. Decoding tunneled attributes
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: PEAP state phase2
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: EAP method GTC (6)
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Got tunneled request
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: EAP-Message =
0x0213000f0642726561746853473240
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Setting User-Name
to my_username
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Sending tunneled
request to packetfence-tunnel
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: EAP-Message =
0x0213000f0642726561746853473240
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap:
FreeRADIUS-Proxied-To = 127.0.0.1
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: User-Name =
"myusername"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: State =
0xddba5edfdca958cb96d4c517e9bc660c
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Service-Type =
Framed-User
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Cisco-AVPair =
"service-type=Framed"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Cisco-AVPair =
"audit-session-id=0A0115170000000D005BC4FA"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Cisco-AVPair =
"method=dot1x"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Framed-MTU = 1500
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Calling-Station-Id
:= "my_user_device_mac"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: NAS-IP-Address =
my_switch_ip
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: NAS-Port-Id =
"GigabitEthernet1/0/1"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: NAS-Port-Type =
Ethernet
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: NAS-Port = 50101
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap:
PacketFence-KeyBalanced := "99a990b22af7d7ca016a27643cd35a1e"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap:
PacketFence-Radius-Ip := "my_server_ip"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Called-Station-Id
:= "my_switch_mac"
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Event-Timestamp =
"Nov 2 2020 15:39:12 IST"
(26979) Mon Nov 2 15:39:12 2020: Debug: Virtual server
packetfence-tunnel received request
(26979) Mon Nov 2 15:39:12 2020: Debug: EAP-Message =
0x0213000f0642726561746853473240
(26979) Mon Nov 2 15:39:12 2020: Debug: FreeRADIUS-Proxied-To = 127.0.0.1
(26979) Mon Nov 2 15:39:12 2020: Debug: User-Name = "myusername"
(26979) Mon Nov 2 15:39:12 2020: Debug: State =
0xddba5edfdca958cb96d4c517e9bc660c
(26979) Mon Nov 2 15:39:12 2020: Debug: Service-Type = Framed-User
(26979) Mon Nov 2 15:39:12 2020: Debug: Cisco-AVPair =
"service-type=Framed"
(26979) Mon Nov 2 15:39:12 2020: Debug: Cisco-AVPair =
"audit-session-id=0A0115170000000D005BC4FA"
(26979) Mon Nov 2 15:39:12 2020: Debug: Cisco-AVPair = "method=dot1x"
(26979) Mon Nov 2 15:39:12 2020: Debug: Framed-MTU = 1500
(26979) Mon Nov 2 15:39:12 2020: Debug: Calling-Station-Id :=
"my_user_device_mac"
(26979) Mon Nov 2 15:39:12 2020: Debug: NAS-IP-Address = my_switch_ip
(26979) Mon Nov 2 15:39:12 2020: Debug: NAS-Port-Id =
"GigabitEthernet1/0/1"
(26979) Mon Nov 2 15:39:12 2020: Debug: NAS-Port-Type = Ethernet
(26979) Mon Nov 2 15:39:12 2020: Debug: NAS-Port = 50101
(26979) Mon Nov 2 15:39:12 2020: Debug: PacketFence-KeyBalanced :=
"99a990b22af7d7ca016a27643cd35a1e"
(26979) Mon Nov 2 15:39:12 2020: Debug: PacketFence-Radius-Ip :=
"my_server_ip"
(26979) Mon Nov 2 15:39:12 2020: Debug: Called-Station-Id :=
"my_switch_mac"
(26979) Mon Nov 2 15:39:12 2020: Debug: Event-Timestamp = "Nov 2
2020 15:39:12 IST"
(26979) Mon Nov 2 15:39:12 2020: Debug: server packetfence-tunnel {
(26979) Mon Nov 2 15:39:12 2020: Debug: session-state: No cached
attributes
(26979) Mon Nov 2 15:39:12 2020: Debug: # Executing section
authorize from file /usr/local/pf/raddb/sites-enabled/packetfence-tunnel
(26979) Mon Nov 2 15:39:12 2020: Debug: authorize {
(26979) Mon Nov 2 15:39:12 2020: Debug: if ( outer.EAP-Type ==
TTLS) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if ( outer.EAP-Type ==
TTLS) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: policy
packetfence-set-realm-if-machine {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (User-Name =~
/host\/([a-z0-9_-]*)[\.](.*)/i) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (User-Name =~
/host\/([a-z0-9_-]*)[\.](.*)/i) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: } # policy
packetfence-set-realm-if-machine = notfound
(26979) Mon Nov 2 15:39:12 2020: Debug: policy
packetfence-set-tenant-id {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (!NAS-IP-Address
|| NAS-IP-Address == "0.0.0.0"){
(26979) Mon Nov 2 15:39:12 2020: Debug: if (!NAS-IP-Address
|| NAS-IP-Address == "0.0.0.0") -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
"%{%{control:PacketFence-Tenant-Id}:-0}" == "0") {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND
%{%{control:PacketFence-Tenant-Id}:-0}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> 0
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
"%{%{control:PacketFence-Tenant-Id}:-0}" == "0") -> TRUE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
"%{%{control:PacketFence-Tenant-Id}:-0}" == "0") {
(26979) Mon Nov 2 15:39:12 2020: Debug: update control {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND %{User-Name}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> my_username
(26979) Mon Nov 2 15:39:12 2020: Debug: SQL-User-Name set to 'myusername'
(26979) Mon Nov 2 15:39:12 2020: Debug: Executing select query:
SELECT IFNULL((SELECT tenant_id FROM radius_nas WHERE nasname =
'my_switch_ip'), 0)
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND %{sql: SELECT
IFNULL((SELECT tenant_id FROM radius_nas WHERE nasname =
'%{NAS-IP-Address}'), 0)}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> 1
(26979) Mon Nov 2 15:39:12 2020: Debug: } # update control
= noop
(26979) Mon Nov 2 15:39:12 2020: Debug: } # if (
"%{%{control:PacketFence-Tenant-Id}:-0}" == "0") = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
&control:PacketFence-Tenant-Id == 0 ) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
&control:PacketFence-Tenant-Id == 0 ) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: } # policy
packetfence-set-tenant-id = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: policy filter_username {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name) -> TRUE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~ /
/) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~ /
/) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/@[^@]*@/ ) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/@[^@]*@/ ) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/\.\./ ) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/\.\./ ) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if ((&User-Name =~
/@/) && (&User-Name !~ /@(.+)\.(.+)$/)) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if ((&User-Name =~
/@/) && (&User-Name !~ /@(.+)\.(.+)$/)) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/\.$/) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/\.$/) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/@\./) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name =~
/@\./) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: } # if (&User-Name)
= noop
(26979) Mon Nov 2 15:39:12 2020: Debug: } # policy
filter_username = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: update {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND
%{outer.request:User-Name}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> anonymous
(26979) Mon Nov 2 15:39:12 2020: Debug: } # update = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: [mschap] = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: suffix: Checking for suffix
after "@"
(26979) Mon Nov 2 15:39:12 2020: Debug: suffix: No '@' in User-Name =
"myusername", skipping NULL due to config.
(26979) Mon Nov 2 15:39:12 2020: Debug: [suffix] = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: ntdomain: Checking for prefix
before "\"
(26979) Mon Nov 2 15:39:12 2020: Debug: ntdomain: No '\' in User-Name
= "myusername", looking up realm NULL
(26979) Mon Nov 2 15:39:12 2020: Debug: ntdomain: Found realm "null"
(26979) Mon Nov 2 15:39:12 2020: Debug: ntdomain: Adding
Stripped-User-Name = "myusername"
(26979) Mon Nov 2 15:39:12 2020: Debug: ntdomain: Adding Realm = "null"
(26979) Mon Nov 2 15:39:12 2020: Debug: ntdomain: Authentication
realm is LOCAL
(26979) Mon Nov 2 15:39:12 2020: Debug: [ntdomain] = ok
(26979) Mon Nov 2 15:39:12 2020: Debug: update control {
(26979) Mon Nov 2 15:39:12 2020: Debug: } # update control = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Peer sent EAP Response
(code 2) ID 19 length 15
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: No EAP Start, assuming
it's an on-going EAP conversation
(26979) Mon Nov 2 15:39:12 2020: Debug: [eap] = updated
(26979) Mon Nov 2 15:39:12 2020: Debug: policy
rewrite_called_station_id {
(26979) Mon Nov 2 15:39:12 2020: Debug: if
((&Called-Station-Id) && (&Called-Station-Id =~
/^([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})(:(.+))?$/i))
{
(26979) Mon Nov 2 15:39:12 2020: Debug: if
((&Called-Station-Id) && (&Called-Station-Id =~
/^([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})(:(.+))?$/i))
-> TRUE
(26979) Mon Nov 2 15:39:12 2020: Debug: if
((&Called-Station-Id) && (&Called-Station-Id =~
/^([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})(:(.+))?$/i))
{
(26979) Mon Nov 2 15:39:12 2020: Debug: update request {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND
%{tolower:%{1}:%{2}:%{3}:%{4}:%{5}:%{6}}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> my_switch_mac
(26979) Mon Nov 2 15:39:12 2020: Debug: } # update request
= noop
(26979) Mon Nov 2 15:39:12 2020: Debug: if ("%{8}") {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND %{8}
(26979) Mon Nov 2 15:39:12 2020: Debug: -->
(26979) Mon Nov 2 15:39:12 2020: Debug: if ("%{8}") -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: elsif (
(Colubris-AVPair) && "%{Colubris-AVPair}" =~ /^ssid=(.*)$/i) {
(26979) Mon Nov 2 15:39:12 2020: Debug: elsif (
(Colubris-AVPair) && "%{Colubris-AVPair}" =~ /^ssid=(.*)$/i) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: elsif
(Aruba-Essid-Name) {
(26979) Mon Nov 2 15:39:12 2020: Debug: elsif
(Aruba-Essid-Name) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: elsif (
(Cisco-AVPair) && "%{Cisco-AVPair}" =~ /^ssid=(.*)$/i) {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND %{Cisco-AVPair}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> service-type=Framed
(26979) Mon Nov 2 15:39:12 2020: Debug: elsif (
(Cisco-AVPair) && "%{Cisco-AVPair}" =~ /^ssid=(.*)$/i) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: [updated] = updated
(26979) Mon Nov 2 15:39:12 2020: Debug: } # if
((&Called-Station-Id) && (&Called-Station-Id =~
/^([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})[^0-9a-f]?([0-9a-f]{2})(:(.+))?$/i))
= updated
(26979) Mon Nov 2 15:39:12 2020: Debug: ... skipping else:
Preceding "if" was taken
(26979) Mon Nov 2 15:39:12 2020: Debug: } # policy
rewrite_called_station_id = updated
(26979) Mon Nov 2 15:39:12 2020: Debug: [pap] = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: } # authorize = updated
(26979) Mon Nov 2 15:39:12 2020: WARNING: You set Proxy-To-Realm =
local, but it is a LOCAL realm! Cancelling proxy request.
(26979) Mon Nov 2 15:39:12 2020: Debug: Found Auth-Type = eap
(26979) Mon Nov 2 15:39:12 2020: Debug: # Executing group from file
/usr/local/pf/raddb/sites-enabled/packetfence-tunnel
(26979) Mon Nov 2 15:39:12 2020: Debug: authenticate {
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Expiring EAP session
with state 0xddba5edfdca958cb
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Finished EAP session
with state 0xddba5edfdca958cb
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Previous EAP request
found for state 0xddba5edfdca958cb, released from the list
_*(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Peer sent packet with
method EAP GTC (6)
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Calling submodule
eap_gtc to process data
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_gtc: # Executing group
from file /usr/local/pf/raddb/sites-enabled/packetfence-tunnel
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_gtc: Auth-Type PAP {
(26979) Mon Nov 2 15:39:12 2020: Debug: pap: Login attempt with password
(26979) Mon Nov 2 15:39:12 2020: Debug: pap: No password configured
for the user. Cannot do authentication
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_gtc: [pap] = fail
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_gtc: } # Auth-Type PAP = fail
(26979) Mon Nov 2 15:39:12 2020: ERROR: eap: Failed continuing EAP
GTC (6) session. EAP sub-module failed
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Sending EAP Failure
(code 4) ID 19 length 4*_
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Failed in EAP select
(26979) Mon Nov 2 15:39:12 2020: Debug: [eap] = invalid
(26979) Mon Nov 2 15:39:12 2020: Debug: } # authenticate = invalid
(26979) Mon Nov 2 15:39:12 2020: Debug: Failed to authenticate the user
(26979) Mon Nov 2 15:39:12 2020: Debug: Using Post-Auth-Type Reject
(26979) Mon Nov 2 15:39:12 2020: Debug: # Executing group from file
/usr/local/pf/raddb/sites-enabled/packetfence-tunnel
(26979) Mon Nov 2 15:39:12 2020: Debug: Post-Auth-Type REJECT {
(26979) Mon Nov 2 15:39:12 2020: Debug: policy
packetfence-set-tenant-id {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (!NAS-IP-Address
|| NAS-IP-Address == "0.0.0.0"){
(26979) Mon Nov 2 15:39:12 2020: Debug: if (!NAS-IP-Address
|| NAS-IP-Address == "0.0.0.0") -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
"%{%{control:PacketFence-Tenant-Id}:-0}" == "0") {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND
%{%{control:PacketFence-Tenant-Id}:-0}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> 1
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
"%{%{control:PacketFence-Tenant-Id}:-0}" == "0") -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
&control:PacketFence-Tenant-Id == 0 ) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (
&control:PacketFence-Tenant-Id == 0 ) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: } # policy
packetfence-set-tenant-id = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: update {
(26979) Mon Nov 2 15:39:12 2020: Debug: } # update = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: policy
packetfence-audit-log-reject {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name &&
(&User-Name == "dummy")) {
(26979) Mon Nov 2 15:39:12 2020: Debug: if (&User-Name &&
(&User-Name == "dummy")) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: else {
(26979) Mon Nov 2 15:39:12 2020: Debug: policy request-timing {
(26979) Mon Nov 2 15:39:12 2020: Debug: if
("%{%{control:PacketFence-Request-Time}:-0}" != 0) {
(26979) Mon Nov 2 15:39:12 2020: Debug: EXPAND
%{%{control:PacketFence-Request-Time}:-0}
(26979) Mon Nov 2 15:39:12 2020: Debug: --> 0
(26979) Mon Nov 2 15:39:12 2020: Debug: if
("%{%{control:PacketFence-Request-Time}:-0}" != 0) -> FALSE
(26979) Mon Nov 2 15:39:12 2020: Debug: } # policy
request-timing = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: EXPAND
type.reject.query
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: -->
type.reject.query
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: Using query
template 'query'
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: EXPAND %{User-Name}
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: --> my_username
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: SQL-User-Name set
to 'myusername'
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: EXPAND INSERT
INTO radius_audit_log ( mac, ip, computer_name,
user_name, stripped_user_name, realm, event_type, switch_id,
switch_mac, switch_ip_address, radius_source_ip_address,
called_station_id, calling_station_id, nas_port_type,
ssid, nas_port_id, ifindex, nas_port, connection_type,
nas_ip_address, nas_identifier, auth_status,
reason, auth_type, eap_type, role, node_status,
profile, source, auto_reg, is_phone,
pf_domain, uuid, radius_request, radius_reply, request_time,
tenant_id, radius_ip) VALUES (
'%{request:Calling-Station-Id}', '%{request:Framed-IP-Address}',
'%{%{control:PacketFence-Computer-Name}:-N/A}',
'%{request:User-Name}', '%{request:Stripped-User-Name}',
'%{request:Realm}', 'Radius-Access-Request',
'%{%{control:PacketFence-Switch-Id}:-N/A}',
'%{%{control:PacketFence-Switch-Mac}:-N/A}',
'%{%{control:PacketFence-Switch-Ip-Address}:-N/A}',
'%{Packet-Src-IP-Address}', '%{request:Called-Station-Id}',
'%{request:Calling-Station-Id}', '%{request:NAS-Port-Type}',
'%{request:Called-Station-SSID}', '%{request:NAS-Port-Id}',
'%{%{control:PacketFence-IfIndex}:-N/A}', '%{request:NAS-Port}',
'%{%{control:PacketFence-Connection-Type}:-N/A}',
'%{request:NAS-IP-Address}', '%{request:NAS-Identifier}', 'Reject',
'%{request:Module-Failure-Message}', '%{control:Auth-Type}',
'%{request:EAP-Type}', '%{%{control:PacketFence-Role}:-N/A}',
'%{%{control:PacketFence-Status}:-N/A}',
'%{%{control:PacketFence-Profile}:-N/A}',
'%{%{control:PacketFence-Source}:-N/A}',
'%{%{control:PacketFence-AutoReg}:-0}',
'%{%{control:PacketFence-IsPhone}:-0}',
'%{request:PacketFence-Domain}', '',
'%{pairs:&request:[*]}','%{pairs:&reply:[*]}',
'%{%{control:PacketFence-Request-Time}:-N/A}',
'%{control:PacketFence-Tenant-Id}', '%{request:PacketFence-Radius-Ip}')
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: --> INSERT INTO
radius_audit_log ( mac, ip, computer_name, user_name,
stripped_user_name, realm, event_type, switch_id, switch_mac,
switch_ip_address, radius_source_ip_address, called_station_id,
calling_station_id, nas_port_type, ssid, nas_port_id,
ifindex, nas_port, connection_type,
nas_ip_address, nas_identifier, auth_status, reason,
auth_type, eap_type, role, node_status, profile,
source, auto_reg, is_phone, pf_domain, uuid,
radius_request, radius_reply, request_time, tenant_id, radius_ip)
VALUES ( 'my_user_device_mac', '', 'N/A', 'myusername',
'myusername', 'null', 'Radius-Access-Request',
'N/A', 'N/A', 'N/A', 'my_cluster_managment_ip',
'my_switch_mac', 'my_user_device_mac', 'Ethernet', '',
'GigabitEthernet1/0/1', 'N/A', '50101', 'N/A',
'my_switch_ip', '', 'Reject', 'eap: Failed
continuing EAP GTC (6) session. EAP sub-module failed', 'eap', 'GTC',
'N/A', 'N/A', 'N/A', 'N/A', '0', '0',
'', '', 'EAP-Message =3D 0x0213000f0642726561746853473240,
FreeRADIUS-Proxied-To =3D 127.0.0.1, User-Name =3D =22myusername=22,
State =3D 0xddba5edfdca958cb96d4c517e9bc660c, Service-Type =3D
Framed-User, Cisco-AVPair =3D =22service-type=3DFramed=22,
Cisco-AVPair =3D =22audit-session-id=3D0A0115170000000D005BC4FA=22,
Cisco-AVPair =3D =22method=3Ddot1x=22, Framed-MTU =3D 1500,
Calling-Station-Id =3D =22my_user_device_mac=22, NAS-IP-Address =3D
my_switch_ip, NAS-Port-Id =3D =22GigabitEthernet1/0/1=22,
NAS-Port-Type =3D Ethernet, NAS-Port =3D 50101,
PacketFence-KeyBalanced =3D =2299a990b22af7d7ca016a27643cd35a1e=22,
PacketFence-Radius-Ip =3D =22my_server_ip=22, Event-Timestamp =3D
=22Nov 2 2020 15:39:12 IST=22, PacketFence-Outer-User =3D
=22anonymous=22, Stripped-User-Name =3D =22myusername=22, Realm =3D
=22null=22, EAP-Type =3D GTC, Called-Station-Id =3D
=22my_switch_mac=22, User-Password =3D =22=2A=2A=2A=2A=2A=2A=22,
Module-Failure-Message =3D =22eap: Failed continuing EAP GTC (6)
session. EAP sub-module failed=22, SQL-User-Name =3D
=22myusername=22','EAP-Message =3D 0x04130004, Message-Authenticator
=3D 0x00000000000000000000000000000000', 'N/A', '1', 'my_server_ip')
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: Executing query:
INSERT INTO radius_audit_log ( mac, ip, computer_name, user_name,
stripped_user_name, realm, event_type, switch_id, switch_mac,
switch_ip_address, radius_source_ip_address, called_station_id,
calling_station_id, nas_port_type, ssid, nas_port_id,
ifindex, nas_port, connection_type,
nas_ip_address, nas_identifier, auth_status, reason,
auth_type, eap_type, role, node_status, profile,
source, auto_reg, is_phone, pf_domain, uuid,
radius_request, radius_reply, request_time, tenant_id, radius_ip)
VALUES ( 'my_user_device_mac', '', 'N/A', 'myusername',
'myusername', 'null', 'Radius-Access-Request',
'N/A', 'N/A', 'N/A', 'my_cluster_managment_ip',
'my_switch_mac', 'my_user_device_mac', 'Ethernet', '',
'GigabitEthernet1/0/1', 'N/A', '50101', 'N/A',
'my_switch_ip', '', 'Reject', 'eap: Failed
continuing EAP GTC (6) session. EAP sub-module failed', 'eap', 'GTC',
'N/A', 'N/A', 'N/A', 'N/A', '0', '0',
'', '', 'EAP-Message =3D 0x0213000f0642726561746853473240,
FreeRADIUS-Proxied-To =3D 127.0.0.1, User-Name =3D =22myusername=22,
State =3D 0xddba5edfdca958cb96d4c517e9bc660c, Service-Type =3D
Framed-User, Cisco-AVPair =3D =22service-type=3DFramed=22,
Cisco-AVPair =3D =22audit-session-id=3D0A0115170000000D005BC4FA=22,
Cisco-AVPair =3D =22method=3Ddot1x=22, Framed-MTU =3D 1500,
Calling-Station-Id =3D =22my_user_device_mac=22, NAS-IP-Address =3D
my_switch_ip, NAS-Port-Id =3D =22GigabitEthernet1/0/1=22,
NAS-Port-Type =3D Ethernet, NAS-Port =3D 50101,
PacketFence-KeyBalanced =3D =2299a990b22af7d7ca016a27643cd35a1e=22,
PacketFence-Radius-Ip =3D =22my_server_ip=22, Event-Timestamp =3D
=22Nov 2 2020 15:39:12 IST=22, PacketFence-Outer-User =3D
=22anonymous=22, Stripped-User-Name =3D =22myusername=22, Realm =3D
=22null=22, EAP-Type =3D GTC, Called-Station-Id =3D
=22my_switch_mac=22, User-Password =3D =22=2A=2A=2A=2A=2A=2A=22,
Module-Failure-Message =3D =22eap: Failed continuing EAP GTC (6)
session. EAP sub-module failed=22, SQL-User-Name =3D
=22myusername=22','EAP-Message =3D 0x04130004, Message-Authenticator
=3D 0x00000000000000000000000000000000', 'N/A', '1', 'my_server_ip')
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: SQL query
returned: success
(26979) Mon Nov 2 15:39:12 2020: Debug: sql_reject: 1 record(s) updated
(26979) Mon Nov 2 15:39:12 2020: Debug: [sql_reject] = ok
(26979) Mon Nov 2 15:39:12 2020: Debug: } # else = ok
(26979) Mon Nov 2 15:39:12 2020: Debug: } # policy
packetfence-audit-log-reject = ok
(26979) Mon Nov 2 15:39:12 2020: Debug: attr_filter.access_reject:
EXPAND %{User-Name}
(26979) Mon Nov 2 15:39:12 2020: Debug: attr_filter.access_reject:
--> my_username
(26979) Mon Nov 2 15:39:12 2020: Debug: attr_filter.access_reject:
Matched entry DEFAULT at line 11
(26979) Mon Nov 2 15:39:12 2020: Debug: [attr_filter.access_reject] =
updated
(26979) Mon Nov 2 15:39:12 2020: Debug: update
outer.session-state {
(26979) Mon Nov 2 15:39:12 2020: Debug: } # update
outer.session-state = noop
(26979) Mon Nov 2 15:39:12 2020: Debug: } # Post-Auth-Type REJECT
= updated
(26979) Mon Nov 2 15:39:12 2020: Debug: } # server packetfence-tunnel
(26979) Mon Nov 2 15:39:12 2020: Debug: Virtual server sending reply
(26979) Mon Nov 2 15:39:12 2020: Debug: EAP-Message = 0x04130004
(26979) Mon Nov 2 15:39:12 2020: Debug: Message-Authenticator =
0x00000000000000000000000000000000
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Got tunneled reply
code 3
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: EAP-Message =
0x04130004
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap:
Message-Authenticator = 0x00000000000000000000000000000000
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: Tunneled
authentication was rejected
(26979) Mon Nov 2 15:39:12 2020: Debug: eap_peap: FAILURE
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: Sending EAP Request
(code 1) ID 20 length 46
(26979) Mon Nov 2 15:39:12 2020: Debug: eap: EAP session adding
&reply:State = 0xec639e88e47787f4
(26979) Mon Nov 2 15:39:12 2020: Debug: [eap] = handled
(26979) Mon Nov 2 15:39:12 2020: Debug: } # authenticate = handled
(26979) Mon Nov 2 15:39:12 2020: Debug: Using Post-Auth-Type Challenge
(26979) Mon Nov 2 15:39:12 2020: Debug: Post-Auth-Type sub-section
not found. Ignoring.
(26979) Mon Nov 2 15:39:12 2020: Debug: # Executing group from file
/usr/local/pf/raddb/sites-enabled/packetfence
(26979) Mon Nov 2 15:39:12 2020: Debug: session-state: Saving cached
attributes
(26979) Mon Nov 2 15:39:12 2020: Debug: TLS-Session-Cipher-Suite =
"ECDHE-RSA-AES256-GCM-SHA384"
(26979) Mon Nov 2 15:39:12 2020: Debug: TLS-Session-Version = "TLS 1.2"
(26979) Mon Nov 2 15:39:12 2020: Debug: Module-Failure-Message :=
"eap: Failed continuing EAP GTC (6) session. EAP sub-module failed"
(26979) Mon Nov 2 15:39:12 2020: Debug: Sent Access-Challenge Id 231
from my_server_ip:1812 to my_cluster_managment_ip:36588 length 0
(26979) Mon Nov 2 15:39:12 2020: Debug: EAP-Message =
0x0114002e190017030300233ccff76c8dee7ac196cf7561e1ebe6650116f48c3d155209928c145c148ad4ba578e7d
(26979) Mon Nov 2 15:39:12 2020: Debug: Message-Authenticator =
0x00000000000000000000000000000000
(26979) Mon Nov 2 15:39:12 2020: Debug: State =
0xec639e88e47787f4b03ecf40bb262f03
(26979) Mon Nov 2 15:39:12 2020: Debug: Proxy-State = 0x313037
(26979) Mon Nov 2 15:39:12 2020: Debug: Finished request
On Fri, Oct 30, 2020 at 5:36 PM Fabrice Durand <fdur...@inverse.ca
<mailto:fdur...@inverse.ca>> wrote:
At least when you try to connect ...
Le 20-10-30 à 06 h 37, Sonali Gulia a écrit :
hi Durand fabrice
here is the result of raddebug -f
/usr/local/pf/var/run/radiusd.sock -t 3000
(10522) Fri Oct 30 21:32:00 2020: Debug: Received Status-Server
Id 97 from 127.0.0.1:51783 <http://127.0.0.1:51783> to
127.0.0.1:18121 <http://127.0.0.1:18121> length 50
(10522) Fri Oct 30 21:32:00 2020: Debug: Message-Authenticator =
0x595be7422b20bffc2fd6282691eb1b4e
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Statistics-Type = 15
(10522) Fri Oct 30 21:32:00 2020: Debug: # Executing group from
file /usr/local/pf/raddb/sites-enabled/status
(10522) Fri Oct 30 21:32:00 2020: Debug: Autz-Type Status-Server {
(10522) Fri Oct 30 21:32:00 2020: Debug: [ok] = ok
(10522) Fri Oct 30 21:32:00 2020: Debug: } # Autz-Type
Status-Server = ok
(10522) Fri Oct 30 21:32:00 2020: Debug: Sent Access-Accept Id 97
from 127.0.0.1:18121 <http://127.0.0.1:18121> to 127.0.0.1:51783
<http://127.0.0.1:51783> length 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Access-Requests = 10523
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Access-Accepts = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Access-Rejects = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Access-Challenges = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Auth-Responses = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Auth-Duplicate-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Auth-Malformed-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Auth-Invalid-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Auth-Dropped-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Auth-Unknown-Types = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Accounting-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Accounting-Responses = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Acct-Duplicate-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Acct-Malformed-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Acct-Invalid-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Acct-Dropped-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Acct-Unknown-Types = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Accepts = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Rejects = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Challenges = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Responses = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Duplicate-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Malformed-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Invalid-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Dropped-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Unknown-Types = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Accounting-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Accounting-Responses = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Duplicate-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Malformed-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Invalid-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Dropped-Requests = 0
(10522) Fri Oct 30 21:32:00 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Unknown-Types = 0
(10522) Fri Oct 30 21:32:00 2020: Debug: Finished request
(10522) Fri Oct 30 21:32:05 2020: Debug: Cleaning up request
packet ID 97 with timestamp +157883
(10523) Fri Oct 30 21:32:15 2020: Debug: Received Status-Server
Id 71 from 127.0.0.1:43289 <http://127.0.0.1:43289> to
127.0.0.1:18121 <http://127.0.0.1:18121> length 50
(10523) Fri Oct 30 21:32:15 2020: Debug: Message-Authenticator =
0x2e1611a2cb839f02f01df0ab302f9062
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Statistics-Type = 15
(10523) Fri Oct 30 21:32:15 2020: Debug: # Executing group from
file /usr/local/pf/raddb/sites-enabled/status
(10523) Fri Oct 30 21:32:15 2020: Debug: Autz-Type Status-Server {
(10523) Fri Oct 30 21:32:15 2020: Debug: [ok] = ok
(10523) Fri Oct 30 21:32:15 2020: Debug: } # Autz-Type
Status-Server = ok
(10523) Fri Oct 30 21:32:15 2020: Debug: Sent Access-Accept Id 71
from 127.0.0.1:18121 <http://127.0.0.1:18121> to 127.0.0.1:43289
<http://127.0.0.1:43289> length 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Access-Requests = 10524
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Access-Accepts = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Access-Rejects = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Access-Challenges = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Auth-Responses = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Auth-Duplicate-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Auth-Malformed-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Auth-Invalid-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Auth-Dropped-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Auth-Unknown-Types = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Accounting-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Accounting-Responses = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Acct-Duplicate-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Acct-Malformed-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Acct-Invalid-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Acct-Dropped-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Acct-Unknown-Types = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Accepts = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Rejects = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Challenges = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Responses = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Duplicate-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Malformed-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Invalid-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Dropped-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Unknown-Types = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Accounting-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Accounting-Responses = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Duplicate-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Malformed-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Invalid-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Dropped-Requests = 0
(10523) Fri Oct 30 21:32:15 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Unknown-Types = 0
(10523) Fri Oct 30 21:32:15 2020: Debug: Finished request
(10523) Fri Oct 30 21:32:20 2020: Debug: Cleaning up request
packet ID 71 with timestamp +157898
(10524) Fri Oct 30 21:32:30 2020: Debug: Received Status-Server
Id 111 from 127.0.0.1:38982 <http://127.0.0.1:38982> to
127.0.0.1:18121 <http://127.0.0.1:18121> length 50
(10524) Fri Oct 30 21:32:30 2020: Debug: Message-Authenticator =
0xbd1505f5fab60879f23b35b68b69b8a1
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Statistics-Type = 15
(10524) Fri Oct 30 21:32:30 2020: Debug: # Executing group from
file /usr/local/pf/raddb/sites-enabled/status
(10524) Fri Oct 30 21:32:30 2020: Debug: Autz-Type Status-Server {
(10524) Fri Oct 30 21:32:30 2020: Debug: [ok] = ok
(10524) Fri Oct 30 21:32:30 2020: Debug: } # Autz-Type
Status-Server = ok
(10524) Fri Oct 30 21:32:30 2020: Debug: Sent Access-Accept Id
111 from 127.0.0.1:18121 <http://127.0.0.1:18121> to
127.0.0.1:38982 <http://127.0.0.1:38982> length 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Access-Requests = 10525
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Access-Accepts = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Access-Rejects = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Access-Challenges = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Auth-Responses = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Auth-Duplicate-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Auth-Malformed-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Auth-Invalid-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Auth-Dropped-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Auth-Unknown-Types = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Accounting-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Accounting-Responses = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Acct-Duplicate-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Acct-Malformed-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Acct-Invalid-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Acct-Dropped-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Acct-Unknown-Types = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Accepts = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Rejects = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Access-Challenges = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Responses = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Duplicate-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Malformed-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Invalid-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Dropped-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Auth-Unknown-Types = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Accounting-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Accounting-Responses = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Duplicate-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Malformed-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Invalid-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Dropped-Requests = 0
(10524) Fri Oct 30 21:32:30 2020: Debug:
FreeRADIUS-Total-Proxy-Acct-Unknown-Types = 0
(10524) Fri Oct 30 21:32:30 2020: Debug: Finished request
(10524) Fri Oct 30 21:32:35 2020: Debug: Cleaning up request
packet ID 111 with timestamp +157913
On Fri, Oct 30, 2020 at 6:33 AM Durand fabrice via
PacketFence-users <packetfence-users@lists.sourceforge.net
<mailto:packetfence-users@lists.sourceforge.net>> wrote:
Hello Sonila,
can you provide a raddebug ?
raddebug -f /usr/local/pf/var/run/radiusd.sock -t 3000
Regards
Fabrice
Le 20-10-28 à 09 h 22, Sonali Gulia via PacketFence-users a
écrit :
Hi all in new version of pf 10.2.0 eap gtc sub module failed
. While in previous version it was working fine do any one
lnow any solution
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
<mailto:PacketFence-users@lists.sourceforge.net>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
_______________________________________________
PacketFence-users mailing list
PacketFence-users@lists.sourceforge.net
<mailto:PacketFence-users@lists.sourceforge.net>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
--
Fabrice Durand
fdur...@inverse.ca <mailto:fdur...@inverse.ca> :: +1.514.447.4918 (x135)
::www.inverse.ca <http://www.inverse.ca>
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence
(http://packetfence.org)
