Hi Heikki Hi List, > In this case you need to have ntlm_auth working first. Please see > goodies/smb.conf.winbindd and Radiator list archives first. For example: > http://www.open.com.au/pipermail/radiator/2010-February/016091.html > > In other words, you should be able to run ntlm_auth succesfully from > command line before continuing with Radiator configuration.
At first I tried to authenticate manual with ntlm: "vwa\elabbadi.ossama"
and it works
---- -----
root@radius:~# ntlm_auth --username="vwa\elabbadi.ossama"
password:
NT_STATUS_OK: Success (0x0)
---- -----
But the log file from radiator cannot work or find with
"vwa\elabbadi.ossama".
----log----
Code: Access-Request
Identifier: 6
Authentic: z<241><248>g<149><190><229><26>{<242><128><1><17><236><29>,
Attributes:
User-Name = "vwa\elabbadi.ossama"
Framed-MTU = 1400
Called-Station-Id = "b4a4.e31f.abb0"
Calling-Station-Id = "0024.d6ae.5c66"
Service-Type = Login-User
Message-Authenticator =
<8>}<194><3><191><134><185><205>k<14><211><198>c<2><0><24><1>vwa\elabbadi.os
sama
NAS-Port-Type = Wireless-IEEE-802-11
NAS-Port = 7470
NAS-Port-Id = "7470"
NAS-IP-Address = 10.1.2.86
NAS-Identifier = "mh-ap17"
Thu Apr 28 07:19:12 2011: WARNING: Could not find a handler for
vwa\elabbadi.ossama: request is ignored
Thu Apr 28 07:19:17 2011: DEBUG: Packet dump:
*** Received from 10.1.2.86 port 1645 ....
----log----
so tried with "@vwa.hs-rw.local" context but I cannot authenticate via ntlm
root@radius:~# ntlm_auth --username="[email protected]"
password:
NT_STATUS_NO_SUCH_USER: No such user (0xc0000064)
root@radius:~#
but radiator find the Realm/Handler
================
Code: Access-Request
Identifier: 9
Authentic: <190>R<15><140><201><231><223>4<150><130>E<225><197><253><143>g
Attributes:
User-Name = "[email protected]"
Framed-MTU = 1400
Called-Station-Id = "b4a4.e31f.abb0"
Calling-Station-Id = "0024.d6ae.5c66"
Service-Type = Login-User
Message-Authenticator = <200>kVY<158><0>_<30><17>eOjY<194>k<
EAP-Message = <2><2><0>$<1>[email protected]
NAS-Port-Type = Wireless-IEEE-802-11
NAS-Port = 7479
NAS-Port-Id = "7479"
NAS-IP-Address = 10.1.2.86
NAS-Identifier = "mh-ap17"
Thu Apr 28 07:27:29 2011: DEBUG: Handling request with Handler 'Realm =
/hs-rw\.local$/i', Identifier ''
Thu Apr 28 07:27:29 2011: DEBUG: Deleting session for
[email protected], 10.1.2.86, 7479
Thu Apr 28 07:27:29 2011: DEBUG: Handling with Radius::AuthNTLM:
Thu Apr 28 07:27:29 2011: DEBUG: Handling with EAP: code 2, 2, 36, 1
Thu Apr 28 07:27:29 2011: DEBUG: Response type 1
Thu Apr 28 07:27:29 2011: ERR: Could not load EAP module Radius::EAP_25:
Attempt to reload Radius/EAP_25.pm aborted.
Compilation failed in require at (eval 152) line 3, line 8.
Thu Apr 28 07:27:29 2011: DEBUG: EAP result: 1, Unsupported default EAP
Response/Identity PEAP
Thu Apr 28 07:27:29 2011: DEBUG: AuthBy NTLM result: REJECT, Unsupported
default EAP Response/Identity PEAP
Thu Apr 28 07:27:29 2011: INFO: Access rejected for
[email protected]: Unsupported default EAP Response/Identity
PEAP
Thu Apr 28 07:27:29 2011: DEBUG: Packet dump:
*** Sending to 10.1.2.86 port 1645 ....
Packet length = 36
03 09 00 24 cd 20 a7 a2 31 24 9d e4 ab ef cb 3a
68 35 c5 18 12 10 52 65 71 75 65 73 74 20 44 65
6e 69 65 64
Code: Access-Reject
Identifier: 9
Authentic: <205> <167><162>1$<157><228><171><239><203>:h5<197><24>
Attributes:
Reply-Message = "Request Denied"
Thu Apr 28 07:27:33 2011: DEBUG: ServerHTTP Connection GET /log
Thu Apr 28 07:27:35 2011: DEBUG: ServerHTTP Connection GET /log
Thu Apr 28 07:27:38 2011: DEBUG: ServerHTTP Connection GET /log
how can I configure radiator to find a handler if I use
"vwa\elabbadi.ossama" ? or how can I configure ntlm to use
"[email protected]" ?
Thanks
Kind regards
ossama
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ radiator mailing list [email protected] http://www.open.com.au/mailman/listinfo/radiator
