Top-Themen

AppleEntwicklungHardwareInternetLinuxMicrosoftMultimediaNetzwerkeOff TopicSicherheitSonstige SystemeVirtualisierungWeiterbildungZusammenarbeit

Aktuelle Themen

Administrator.de FeedbackApache ServerAppleAssemblerAudioAusbildungAuslandBackupBasicBatch & ShellBenchmarksBibliotheken & ToolkitsBlogsCloud-DiensteClusterCMSCPU, RAM, MainboardsCSSC und C++DatenbankenDatenschutzDebianDigitiales FernsehenDNSDrucker und ScannerDSL, VDSLE-BooksE-BusinessE-MailEntwicklungErkennung und -AbwehrExchange ServerFestplatten, SSD, RaidFirewallFlatratesGoogle AndroidGrafikGrafikkarten & MonitoreGroupwareHardwareHosting & HousingHTMLHumor (lol)Hyper-VIconsIDE & EditorenInformationsdiensteInstallationInstant MessagingInternetInternet DomäneniOSISDN & AnaloganschlüsseiTunesJavaJavaScriptKiXtartKVMLAN, WAN, WirelessLinuxLinux DesktopLinux NetzwerkLinux ToolsLinux UserverwaltungLizenzierungMac OS XMicrosoftMicrosoft OfficeMikroTik RouterOSMonitoringMultimediaMultimedia & ZubehörNetzwerkeNetzwerkgrundlagenNetzwerkmanagementNetzwerkprotokolleNotebook & ZubehörNovell NetwareOff TopicOpenOffice, LibreOfficeOutlook & MailPapierkorbPascal und DelphiPeripheriegerätePerlPHPPythonRechtliche FragenRedHat, CentOS, FedoraRouter & RoutingSambaSAN, NAS, DASSchriftartenSchulung & TrainingSEOServerServer-HardwareSicherheitSicherheits-ToolsSicherheitsgrundlagenSolarisSonstige SystemeSoziale NetzwerkeSpeicherkartenStudentenjobs & PraktikumSuche ProjektpartnerSuseSwitche und HubsTipps & TricksTK-Netze & GeräteUbuntuUMTS, EDGE & GPRSUtilitiesVB for ApplicationsVerschlüsselung & ZertifikateVideo & StreamingViren und TrojanerVirtualisierungVisual StudioVmwareVoice over IPWebbrowserWebentwicklungWeiterbildungWindows 7Windows 8Windows 10Windows InstallationWindows MobileWindows NetzwerkWindows ServerWindows SystemdateienWindows ToolsWindows UpdateWindows UserverwaltungWindows VistaWindows XPXenserverXMLZusammenarbeit

Authentifizierung von Client und Radius Server schlägt Fehl!

Frage Linux

Mitglied: pzenz16

pzenz16 (Level 1) - Jetzt verbinden

21.10.2009 um 21:41 Uhr, 3317 Aufrufe, 3 Kommentare

Hallo Liebe Admins und co.

Wie manche schon wissen habe ich ein paar Probleme mit meinem Freeradius + OpenLdap Projekt gehapt.
Soweit so gut habe ich alle Probleme beseitigt und habe es heute getestet.

Leider funktioniert es nicht so ganz wie es eigentlich sollte.
Laut Server sollte die authentifizierung abgeschlossen sein soweit ich das auslesen kann aber bei dem XP Client bleibt er bei "Warten auf Authentifizierung" Hängen.

Das ganze läuft auf Ubuntu 8.10 mit Freeradius 2.1.0 und OpenLDAP. EAP-PEAP ist für die Authentifizierung zuständig.



Hier einmal die Ausgabe von dem Radius Server.

01.
[tls] Initiate 
02.
[tls] Start returned 1 
03.
++[eap] returns handled 
04.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
05.
	EAP-Message = 0x010100061920 
06.
	Message-Authenticator = 0x00000000000000000000000000000000 
07.
	State = 0x894a28b0894b31cfb70f7c603f7b1aa8 
08.
Finished request 50. 
09.
Going to the next request 
10.
Waking up in 4.9 seconds. 
11.
rad_recv: Access-Request packet from host 172.20.140.174 port 1030, id=0, length=211 
12.
Cleaning up request 50 ID 0 with timestamp +3424 
13.
	User-Name = "pzenz" 
14.
	NAS-IP-Address = 172.20.140.174 
15.
	Called-Station-Id = "00226b6e8e06" 
16.
	Calling-Station-Id = "0019d202a559" 
17.
	NAS-Identifier = "00226b6e8e06" 
18.
	NAS-Port = 62 
19.
	Framed-MTU = 1400 
20.
	State = 0x894a28b0894b31cfb70f7c603f7b1aa8 
21.
	NAS-Port-Type = Wireless-802.11 
22.
	EAP-Message = 0x0201005019800000004616030100410100003d03014adf2ee3fd0252131967c996b2ee209c1949ea198d7d21f8e148830a406f19eb00001600040005000a000900640062000300060013001200630100 
23.
	Message-Authenticator = 0x0fedef8f3382095fc98e350d0284b9ac 
24.
+- entering group authorize {...} 
25.
++[mschap] returns noop 
26.
++[preprocess] returns ok 
27.
[suffix] No '@' in User-Name = "pzenz", looking up realm NULL 
28.
[suffix] No such realm "NULL" 
29.
++[suffix] returns noop 
30.
[eap] EAP packet type response id 1 length 80 
31.
[eap] Continuing tunnel setup. 
32.
++[eap] returns ok 
33.
++[files] returns noop 
34.
++[chap] returns noop 
35.
[ldap] performing user authorization for pzenz 
36.
	expand: (uid=%u) -> (uid=pzenz) 
37.
	expand: dc=grp7,dc=local -> dc=grp7,dc=local 
38.
rlm_ldap: ldap_get_conn: Checking Id: 0 
39.
rlm_ldap: ldap_get_conn: Got Id: 0 
40.
rlm_ldap: performing search in dc=grp7,dc=local, with filter (uid=pzenz) 
41.
[ldap] No default NMAS login sequence 
42.
[ldap] looking for check items in directory... 
43.
[ldap] looking for reply items in directory... 
44.
WARNING: No "known good" password was found in LDAP.  Are you sure that the user is configured correctly? 
45.
[ldap] user pzenz authorized to use remote access 
46.
rlm_ldap: ldap_release_conn: Release Id: 0 
47.
++[ldap] returns ok 
48.
Found Auth-Type = EAP 
49.
+- entering group authenticate {...} 
50.
[eap] Request found, released from the list 
51.
[eap] EAP/peap 
52.
[eap] processing type peap 
53.
[peap] processing EAP-TLS 
54.
  TLS Length 70 
55.
[peap] Length Included 
56.
[peap] eaptls_verify returned 11  
57.
[peap]     (other): before/accept initialization  
58.
[peap]     TLS_accept: before/accept initialization  
59.
[peap] <<< TLS 1.0 Handshake [length 0041], ClientHello   
60.
[peap]     TLS_accept: SSLv3 read client hello A  
61.
[peap] >>> TLS 1.0 Handshake [length 002a], ServerHello   
62.
[peap]     TLS_accept: SSLv3 write server hello A  
63.
[peap] >>> TLS 1.0 Handshake [length 0488], Certificate   
64.
[peap]     TLS_accept: SSLv3 write certificate A  
65.
[peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone   
66.
[peap]     TLS_accept: SSLv3 write server done A  
67.
[peap]     TLS_accept: SSLv3 flush data  
68.
[peap]     TLS_accept: Need to read more data: SSLv3 read client certificate A 
69.
In SSL Handshake Phase  
70.
In SSL Accept mode   
71.
[peap] eaptls_process returned 13  
72.
[peap] EAPTLS_HANDLED 
73.
++[eap] returns handled 
74.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
75.
	EAP-Message = 0x0102040019c0000004c5160301002a0200002603014adf2edd5e7e5562834e6ade87e96cbbf68c62e3d099e65d35d9c1d4a4939bc80000040016030104880b00048400048100047e3082047a30820362a0030201020209009252663eab60caa8300d06092a864886f70d0101050500308184310b30090603550406130241553112301006035504081309456962697377616c643112301006035504071309456962697377616c64310d300b060355040a130467727037310d300b060355040b130467727037310d300b06035504031304677270373120301e06092a864886f70d0109011611707a656e7a313640676d61696c2e636f6d301e170d303931 
76.
	EAP-Message = 0x3031363131323831395a170d3139313031343131323831395a308184310b30090603550406130241553112301006035504081309456962697377616c643112301006035504071309456962697377616c64310d300b060355040a130467727037310d300b060355040b130467727037310d300b06035504031304677270373120301e06092a864886f70d0109011611707a656e7a313640676d61696c2e636f6d30820122300d06092a864886f70d01010105000382010f003082010a02820101009e89ec671fbf03174125d0739cd302c45ca2f3761699c79ff574684c16d170792c83a72f38e12c317d3de89f6f733cb291290c2b44728893c39a5d3a 
77.
	EAP-Message = 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 
78.
	EAP-Message = 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 
79.
	EAP-Message = 0xbdd8c65e24e03f6889d3bb8e 
80.
	Message-Authenticator = 0x00000000000000000000000000000000 
81.
	State = 0x894a28b0884831cfb70f7c603f7b1aa8 
82.
Finished request 51. 
83.
Going to the next request 
84.
Waking up in 4.9 seconds. 
85.
rad_recv: Access-Request packet from host 172.20.140.174 port 1030, id=0, length=137 
86.
Cleaning up request 51 ID 0 with timestamp +3424 
87.
	User-Name = "pzenz" 
88.
	NAS-IP-Address = 172.20.140.174 
89.
	Called-Station-Id = "00226b6e8e06" 
90.
	Calling-Station-Id = "0019d202a559" 
91.
	NAS-Identifier = "00226b6e8e06" 
92.
	NAS-Port = 62 
93.
	Framed-MTU = 1400 
94.
	State = 0x894a28b0884831cfb70f7c603f7b1aa8 
95.
	NAS-Port-Type = Wireless-802.11 
96.
	EAP-Message = 0x020200061900 
97.
	Message-Authenticator = 0xff3389e0200d9cdf6ffac47083b40abc 
98.
+- entering group authorize {...} 
99.
++[mschap] returns noop 
100.
++[preprocess] returns ok 
101.
[suffix] No '@' in User-Name = "pzenz", looking up realm NULL 
102.
[suffix] No such realm "NULL" 
103.
++[suffix] returns noop 
104.
[eap] EAP packet type response id 2 length 6 
105.
[eap] Continuing tunnel setup. 
106.
++[eap] returns ok 
107.
++[files] returns noop 
108.
++[chap] returns noop 
109.
[ldap] performing user authorization for pzenz 
110.
	expand: (uid=%u) -> (uid=pzenz) 
111.
	expand: dc=grp7,dc=local -> dc=grp7,dc=local 
112.
rlm_ldap: ldap_get_conn: Checking Id: 0 
113.
rlm_ldap: ldap_get_conn: Got Id: 0 
114.
rlm_ldap: performing search in dc=grp7,dc=local, with filter (uid=pzenz) 
115.
[ldap] No default NMAS login sequence 
116.
[ldap] looking for check items in directory... 
117.
[ldap] looking for reply items in directory... 
118.
WARNING: No "known good" password was found in LDAP.  Are you sure that the user is configured correctly? 
119.
[ldap] user pzenz authorized to use remote access 
120.
rlm_ldap: ldap_release_conn: Release Id: 0 
121.
++[ldap] returns ok 
122.
Found Auth-Type = EAP 
123.
+- entering group authenticate {...} 
124.
[eap] Request found, released from the list 
125.
[eap] EAP/peap 
126.
[eap] processing type peap 
127.
[peap] processing EAP-TLS 
128.
[peap] Received TLS ACK 
129.
[peap] ACK handshake fragment handler 
130.
[peap] eaptls_verify returned 1  
131.
[peap] eaptls_process returned 13  
132.
[peap] EAPTLS_HANDLED 
133.
++[eap] returns handled 
134.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
135.
	EAP-Message = 0x010300d51900c9400ce7ff967f714a193cbf3ec6ad33f0dfae0b8d307e04ccf9cfb6c90ba8327983e05278b1b13bb9833a3e1ad640b1d741e52cc6f31b75d08d10c5a91d4e5e7731d6b2a9a9dc14994a2950da7bb1487fce28227c4e854a2528206719472828e63113caf8553faadeb882701ab886fbf16d3ff8e5e7401e3835c71d229c453414d71c94c59dafb4912211671c4460fbd6fd96fca5f1886a04c823c9c35c5cb16a8524d5491c99f6dcfea152d4175558b4ec85d3c5b91cdccdad17a10637de747274b8a114cf16030100040e000000 
136.
	Message-Authenticator = 0x00000000000000000000000000000000 
137.
	State = 0x894a28b08b4931cfb70f7c603f7b1aa8 
138.
Finished request 52. 
139.
Going to the next request 
140.
Waking up in 4.9 seconds. 
141.
rad_recv: Access-Request packet from host 172.20.140.174 port 1030, id=0, length=137 
142.
Cleaning up request 52 ID 0 with timestamp +3424 
143.
	User-Name = "pzenz" 
144.
	NAS-IP-Address = 172.20.140.174 
145.
	Called-Station-Id = "00226b6e8e06" 
146.
	Calling-Station-Id = "0019d202a559" 
147.
	NAS-Identifier = "00226b6e8e06" 
148.
	NAS-Port = 62 
149.
	Framed-MTU = 1400 
150.
	State = 0x894a28b08b4931cfb70f7c603f7b1aa8 
151.
	NAS-Port-Type = Wireless-802.11 
152.
	EAP-Message = 0x020300061900 
153.
	Message-Authenticator = 0x12b69b8439f2a9fb19b65a7b9bb48310 
154.
+- entering group authorize {...} 
155.
++[mschap] returns noop 
156.
++[preprocess] returns ok 
157.
[suffix] No '@' in User-Name = "pzenz", looking up realm NULL 
158.
[suffix] No such realm "NULL" 
159.
++[suffix] returns noop 
160.
[eap] EAP packet type response id 3 length 6 
161.
[eap] Continuing tunnel setup. 
162.
++[eap] returns ok 
163.
++[files] returns noop 
164.
++[chap] returns noop 
165.
[ldap] performing user authorization for pzenz 
166.
	expand: (uid=%u) -> (uid=pzenz) 
167.
	expand: dc=grp7,dc=local -> dc=grp7,dc=local 
168.
rlm_ldap: ldap_get_conn: Checking Id: 0 
169.
rlm_ldap: ldap_get_conn: Got Id: 0 
170.
rlm_ldap: performing search in dc=grp7,dc=local, with filter (uid=pzenz) 
171.
[ldap] No default NMAS login sequence 
172.
[ldap] looking for check items in directory... 
173.
[ldap] looking for reply items in directory... 
174.
WARNING: No "known good" password was found in LDAP.  Are you sure that the user is configured correctly? 
175.
[ldap] user pzenz authorized to use remote access 
176.
rlm_ldap: ldap_release_conn: Release Id: 0 
177.
++[ldap] returns ok 
178.
Found Auth-Type = EAP 
179.
+- entering group authenticate {...} 
180.
[eap] Request found, released from the list 
181.
[eap] EAP/peap 
182.
[eap] processing type peap 
183.
[peap] processing EAP-TLS 
184.
[peap] Received TLS ACK 
185.
[peap] ACK handshake fragment handler 
186.
[peap] eaptls_verify returned 1  
187.
[peap] eaptls_process returned 13  
188.
[peap] EAPTLS_HANDLED 
189.
++[eap] returns handled 
190.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
191.
	EAP-Message = 0x010400061900 
192.
	Message-Authenticator = 0x00000000000000000000000000000000 
193.
	State = 0x894a28b08a4e31cfb70f7c603f7b1aa8 
194.
Finished request 53. 
195.
Going to the next request 
196.
Waking up in 4.9 seconds. 
197.
Cleaning up request 53 ID 0 with timestamp +3424 
198.
Ready to process requests. 
199.
rad_recv: Access-Request packet from host 172.20.140.174 port 1030, id=0, length=123 
200.
	User-Name = "pzenz" 
201.
	NAS-IP-Address = 172.20.140.174 
202.
	Called-Station-Id = "00226b6e8e06" 
203.
	Calling-Station-Id = "0019d202a559" 
204.
	NAS-Identifier = "00226b6e8e06" 
205.
	NAS-Port = 62 
206.
	Framed-MTU = 1400 
207.
	NAS-Port-Type = Wireless-802.11 
208.
	EAP-Message = 0x0201000a01707a656e7a 
209.
	Message-Authenticator = 0x1e6ee2415e8f2ec8ece0247f3f43b176 
210.
+- entering group authorize {...} 
211.
++[mschap] returns noop 
212.
++[preprocess] returns ok 
213.
[suffix] No '@' in User-Name = "pzenz", looking up realm NULL 
214.
[suffix] No such realm "NULL" 
215.
++[suffix] returns noop 
216.
[eap] EAP packet type response id 1 length 10 
217.
[eap] No EAP Start, assuming it's an on-going EAP conversation 
218.
++[eap] returns updated 
219.
++[files] returns noop 
220.
++[chap] returns noop 
221.
[ldap] performing user authorization for pzenz 
222.
	expand: (uid=%u) -> (uid=pzenz) 
223.
	expand: dc=grp7,dc=local -> dc=grp7,dc=local 
224.
rlm_ldap: ldap_get_conn: Checking Id: 0 
225.
rlm_ldap: ldap_get_conn: Got Id: 0 
226.
rlm_ldap: performing search in dc=grp7,dc=local, with filter (uid=pzenz) 
227.
[ldap] No default NMAS login sequence 
228.
[ldap] looking for check items in directory... 
229.
[ldap] looking for reply items in directory... 
230.
WARNING: No "known good" password was found in LDAP.  Are you sure that the user is configured correctly? 
231.
[ldap] user pzenz authorized to use remote access 
232.
rlm_ldap: ldap_release_conn: Release Id: 0 
233.
++[ldap] returns ok 
234.
Found Auth-Type = EAP 
235.
+- entering group authenticate {...} 
236.
[eap] EAP Identity 
237.
[eap] processing type tls 
238.
[tls] Initiate 
239.
[tls] Start returned 1 
240.
++[eap] returns handled 
241.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
242.
	EAP-Message = 0x010200061920 
243.
	Message-Authenticator = 0x00000000000000000000000000000000 
244.
	State = 0x57d553ec57d74ac228b656f21d398631 
245.
Finished request 54. 
246.
Going to the next request 
247.
Waking up in 4.9 seconds. 
248.
rad_recv: Access-Request packet from host 172.20.140.174 port 1030, id=0, length=211 
249.
Cleaning up request 54 ID 0 with timestamp +3454 
250.
	User-Name = "pzenz" 
251.
	NAS-IP-Address = 172.20.140.174 
252.
	Called-Station-Id = "00226b6e8e06" 
253.
	Calling-Station-Id = "0019d202a559" 
254.
	NAS-Identifier = "00226b6e8e06" 
255.
	NAS-Port = 62 
256.
	Framed-MTU = 1400 
257.
	State = 0x57d553ec57d74ac228b656f21d398631 
258.
	NAS-Port-Type = Wireless-802.11 
259.
	EAP-Message = 0x0202005019800000004616030100410100003d03014adf2f01d7bcb8f1a06dfd2abb492adadf3528512edb795c278b4551f23f550000001600040005000a000900640062000300060013001200630100 
260.
	Message-Authenticator = 0x1d51d87157d12ee790063784ea08dfaf 
261.
+- entering group authorize {...} 
262.
++[mschap] returns noop 
263.
++[preprocess] returns ok 
264.
[suffix] No '@' in User-Name = "pzenz", looking up realm NULL 
265.
[suffix] No such realm "NULL" 
266.
++[suffix] returns noop 
267.
[eap] EAP packet type response id 2 length 80 
268.
[eap] Continuing tunnel setup. 
269.
++[eap] returns ok 
270.
++[files] returns noop 
271.
++[chap] returns noop 
272.
[ldap] performing user authorization for pzenz 
273.
	expand: (uid=%u) -> (uid=pzenz) 
274.
	expand: dc=grp7,dc=local -> dc=grp7,dc=local 
275.
rlm_ldap: ldap_get_conn: Checking Id: 0 
276.
rlm_ldap: ldap_get_conn: Got Id: 0 
277.
rlm_ldap: performing search in dc=grp7,dc=local, with filter (uid=pzenz) 
278.
[ldap] No default NMAS login sequence 
279.
[ldap] looking for check items in directory... 
280.
[ldap] looking for reply items in directory... 
281.
WARNING: No "known good" password was found in LDAP.  Are you sure that the user is configured correctly? 
282.
[ldap] user pzenz authorized to use remote access 
283.
rlm_ldap: ldap_release_conn: Release Id: 0 
284.
++[ldap] returns ok 
285.
Found Auth-Type = EAP 
286.
+- entering group authenticate {...} 
287.
[eap] Request found, released from the list 
288.
[eap] EAP/peap 
289.
[eap] processing type peap 
290.
[peap] processing EAP-TLS 
291.
  TLS Length 70 
292.
[peap] Length Included 
293.
[peap] eaptls_verify returned 11  
294.
[peap]     (other): before/accept initialization  
295.
[peap]     TLS_accept: before/accept initialization  
296.
[peap] <<< TLS 1.0 Handshake [length 0041], ClientHello   
297.
[peap]     TLS_accept: SSLv3 read client hello A  
298.
[peap] >>> TLS 1.0 Handshake [length 002a], ServerHello   
299.
[peap]     TLS_accept: SSLv3 write server hello A  
300.
[peap] >>> TLS 1.0 Handshake [length 0488], Certificate   
301.
[peap]     TLS_accept: SSLv3 write certificate A  
302.
[peap] >>> TLS 1.0 Handshake [length 0004], ServerHelloDone   
303.
[peap]     TLS_accept: SSLv3 write server done A  
304.
[peap]     TLS_accept: SSLv3 flush data  
305.
[peap]     TLS_accept: Need to read more data: SSLv3 read client certificate A 
306.
In SSL Handshake Phase  
307.
In SSL Accept mode   
308.
[peap] eaptls_process returned 13  
309.
[peap] EAPTLS_HANDLED 
310.
++[eap] returns handled 
311.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
312.
	EAP-Message = 0x0103040019c0000004c5160301002a0200002603014adf2efbd7f7fe59852ed2789d73a1a9870492eedeb8be07b7ff8b116e91d6750000040016030104880b00048400048100047e3082047a30820362a0030201020209009252663eab60caa8300d06092a864886f70d0101050500308184310b30090603550406130241553112301006035504081309456962697377616c643112301006035504071309456962697377616c64310d300b060355040a130467727037310d300b060355040b130467727037310d300b06035504031304677270373120301e06092a864886f70d0109011611707a656e7a313640676d61696c2e636f6d301e170d303931 
313.
	EAP-Message = 0x3031363131323831395a170d3139313031343131323831395a308184310b30090603550406130241553112301006035504081309456962697377616c643112301006035504071309456962697377616c64310d300b060355040a130467727037310d300b060355040b130467727037310d300b06035504031304677270373120301e06092a864886f70d0109011611707a656e7a313640676d61696c2e636f6d30820122300d06092a864886f70d01010105000382010f003082010a02820101009e89ec671fbf03174125d0739cd302c45ca2f3761699c79ff574684c16d170792c83a72f38e12c317d3de89f6f733cb291290c2b44728893c39a5d3a 
314.
	EAP-Message = 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 
315.
	EAP-Message = 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 
316.
	EAP-Message = 0xbdd8c65e24e03f6889d3bb8e 
317.
	Message-Authenticator = 0x00000000000000000000000000000000 
318.
	State = 0x57d553ec56d64ac228b656f21d398631 
319.
Finished request 55. 
320.
Going to the next request 
321.
Waking up in 4.9 seconds. 
322.
rad_recv: Access-Request packet from host 172.20.140.174 port 1030, id=0, length=137 
323.
Cleaning up request 55 ID 0 with timestamp +3454 
324.
	User-Name = "pzenz" 
325.
	NAS-IP-Address = 172.20.140.174 
326.
	Called-Station-Id = "00226b6e8e06" 
327.
	Calling-Station-Id = "0019d202a559" 
328.
	NAS-Identifier = "00226b6e8e06" 
329.
	NAS-Port = 62 
330.
	Framed-MTU = 1400 
331.
	State = 0x57d553ec56d64ac228b656f21d398631 
332.
	NAS-Port-Type = Wireless-802.11 
333.
	EAP-Message = 0x020300061900 
334.
	Message-Authenticator = 0x3fd73d2d2ec087681f2fdcf467ca0cb9 
335.
+- entering group authorize {...} 
336.
++[mschap] returns noop 
337.
++[preprocess] returns ok 
338.
[suffix] No '@' in User-Name = "pzenz", looking up realm NULL 
339.
[suffix] No such realm "NULL" 
340.
++[suffix] returns noop 
341.
[eap] EAP packet type response id 3 length 6 
342.
[eap] Continuing tunnel setup. 
343.
++[eap] returns ok 
344.
++[files] returns noop 
345.
++[chap] returns noop 
346.
[ldap] performing user authorization for pzenz 
347.
	expand: (uid=%u) -> (uid=pzenz) 
348.
	expand: dc=grp7,dc=local -> dc=grp7,dc=local 
349.
rlm_ldap: ldap_get_conn: Checking Id: 0 
350.
rlm_ldap: ldap_get_conn: Got Id: 0 
351.
rlm_ldap: performing search in dc=grp7,dc=local, with filter (uid=pzenz) 
352.
[ldap] No default NMAS login sequence 
353.
[ldap] looking for check items in directory... 
354.
[ldap] looking for reply items in directory... 
355.
WARNING: No "known good" password was found in LDAP.  Are you sure that the user is configured correctly? 
356.
[ldap] user pzenz authorized to use remote access 
357.
rlm_ldap: ldap_release_conn: Release Id: 0 
358.
++[ldap] returns ok 
359.
Found Auth-Type = EAP 
360.
+- entering group authenticate {...} 
361.
[eap] Request found, released from the list 
362.
[eap] EAP/peap 
363.
[eap] processing type peap 
364.
[peap] processing EAP-TLS 
365.
[peap] Received TLS ACK 
366.
[peap] ACK handshake fragment handler 
367.
[peap] eaptls_verify returned 1  
368.
[peap] eaptls_process returned 13  
369.
[peap] EAPTLS_HANDLED 
370.
++[eap] returns handled 
371.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
372.
	EAP-Message = 0x010400d51900c9400ce7ff967f714a193cbf3ec6ad33f0dfae0b8d307e04ccf9cfb6c90ba8327983e05278b1b13bb9833a3e1ad640b1d741e52cc6f31b75d08d10c5a91d4e5e7731d6b2a9a9dc14994a2950da7bb1487fce28227c4e854a2528206719472828e63113caf8553faadeb882701ab886fbf16d3ff8e5e7401e3835c71d229c453414d71c94c59dafb4912211671c4460fbd6fd96fca5f1886a04c823c9c35c5cb16a8524d5491c99f6dcfea152d4175558b4ec85d3c5b91cdccdad17a10637de747274b8a114cf16030100040e000000 
373.
	Message-Authenticator = 0x00000000000000000000000000000000 
374.
	State = 0x57d553ec55d14ac228b656f21d398631 
375.
Finished request 56. 
376.
Going to the next request 
377.
Waking up in 4.9 seconds. 
378.
rad_recv: Access-Request packet from host 172.20.140.174 port 1030, id=0, length=137 
379.
Cleaning up request 56 ID 0 with timestamp +3454 
380.
	User-Name = "pzenz" 
381.
	NAS-IP-Address = 172.20.140.174 
382.
	Called-Station-Id = "00226b6e8e06" 
383.
	Calling-Station-Id = "0019d202a559" 
384.
	NAS-Identifier = "00226b6e8e06" 
385.
	NAS-Port = 62 
386.
	Framed-MTU = 1400 
387.
	State = 0x57d553ec55d14ac228b656f21d398631 
388.
	NAS-Port-Type = Wireless-802.11 
389.
	EAP-Message = 0x020400061900 
390.
	Message-Authenticator = 0x171352194d6366d1b48208827fd064cc 
391.
+- entering group authorize {...} 
392.
++[mschap] returns noop 
393.
++[preprocess] returns ok 
394.
[suffix] No '@' in User-Name = "pzenz", looking up realm NULL 
395.
[suffix] No such realm "NULL" 
396.
++[suffix] returns noop 
397.
[eap] EAP packet type response id 4 length 6 
398.
[eap] Continuing tunnel setup. 
399.
++[eap] returns ok 
400.
++[files] returns noop 
401.
++[chap] returns noop 
402.
[ldap] performing user authorization for pzenz 
403.
	expand: (uid=%u) -> (uid=pzenz) 
404.
	expand: dc=grp7,dc=local -> dc=grp7,dc=local 
405.
rlm_ldap: ldap_get_conn: Checking Id: 0 
406.
rlm_ldap: ldap_get_conn: Got Id: 0 
407.
rlm_ldap: performing search in dc=grp7,dc=local, with filter (uid=pzenz) 
408.
[ldap] No default NMAS login sequence 
409.
[ldap] looking for check items in directory... 
410.
[ldap] looking for reply items in directory... 
411.
WARNING: No "known good" password was found in LDAP.  Are you sure that the user is configured correctly? 
412.
[ldap] user pzenz authorized to use remote access 
413.
rlm_ldap: ldap_release_conn: Release Id: 0 
414.
++[ldap] returns ok 
415.
Found Auth-Type = EAP 
416.
+- entering group authenticate {...} 
417.
[eap] Request found, released from the list 
418.
[eap] EAP/peap 
419.
[eap] processing type peap 
420.
[peap] processing EAP-TLS 
421.
[peap] Received TLS ACK 
422.
[peap] ACK handshake fragment handler 
423.
[peap] eaptls_verify returned 1  
424.
[peap] eaptls_process returned 13  
425.
[peap] EAPTLS_HANDLED 
426.
++[eap] returns handled 
427.
Sending Access-Challenge of id 0 to 172.20.140.174 port 1030 
428.
	EAP-Message = 0x010500061900 
429.
	Message-Authenticator = 0x00000000000000000000000000000000 
430.
	State = 0x57d553ec54d04ac228b656f21d398631 
431.
Finished request 57. 
432.
Going to the next request 
433.
Waking up in 4.9 seconds. 
434.
Cleaning up request 57 ID 0 with timestamp +3454 
435.
Ready to process requests.
Wenn ihr noch die config Files dazu braucht sagt es bitte, aber vlt könnt ihr ja auch damit was anfangen.
Wie gesagt ich kann nichts erkennen das da etwas schief laufen sollte.

Wenn wer eine Idee hat möge er es bitte Posten ;)

Lg
Philipp
Mitglied: pzenz16
21.10.2009 um 23:28 Uhr
Habe ich beides schon gelesen.
Schon bei der Konfiguration des Systems.

Doch ich weiß nicht wo hierbei das Problem liegt...
Bitte warten ..
Mitglied: Elwars
24.07.2012 um 13:57 Uhr
411. WARNING: No "known good" password was found in LDAP. Are you sure that the user is configured correctly?

Benutzername und Password richtig?
Bitte warten ..
Neuester Wissensbeitrag
Windows 10

Powershell 5 BSOD

(8)

Tipp von agowa338 zum Thema Windows 10 ...

Ähnliche Inhalte
LAN, WAN, Wireless
gelöst 802.1x Authentifizierung - NPS - RADIUS MAC (4)

Frage von LKaderavek zum Thema LAN, WAN, Wireless ...

Windows Server
WSUS Neuinstallation auf SBS2011 schlägt fehl (3)

Frage von Blongmon zum Thema Windows Server ...

Xenserver
gelöst Citrix XA 76 - Auto-Created Printers schlägt fehl mit Status 0x7A und EventID 1116

Frage von diematrix125 zum Thema Xenserver ...

Windows Installation
Windows Upgrade schlägt fehl (11)

Frage von ratzekahlx zum Thema Windows Installation ...

Heiß diskutierte Inhalte
LAN, WAN, Wireless
gelöst Server erkennt Client nicht wenn er ausserhalb des DHCP Pools liegt (28)

Frage von Mar-west zum Thema LAN, WAN, Wireless ...

Outlook & Mail
gelöst Outlook 2010 findet ost datei nicht (19)

Frage von Floh21 zum Thema Outlook & Mail ...

Netzwerkmanagement
gelöst Anregungen, kleiner Betrieb, IT-Umgebung (18)

Frage von Unwichtig zum Thema Netzwerkmanagement ...

Windows Server
Server 2008R2 startet nicht mehr (Bad Patch 0xa) (18)

Frage von Haures zum Thema Windows Server ...