Добрый день.
Зашел в тупик с настройкой, подскажите куда смотреть?
ntlm сам нормально отдает Success
пользователь прописанный в users нормально пускает («test» Cleartext-Password := «xxx», MS-CHAP-Use-NTLM-Auth := 0)
Пользователя с Active Directory - нет
Спасибо
rlm_eap: Request found, released from the list
rlm_eap: EAP/peap
rlm_eap: processing type peap
rlm_eap_peap: Authenticate
rlm_eap_tls: processing TLS
eaptls_verify returned 7
rlm_eap_tls: Done initial handshake
eaptls_process returned 7
rlm_eap_peap: EAPTLS_OK
rlm_eap_peap: Session established. Decoding tunneled attributes.
rlm_eap_peap: EAP type mschapv2
rlm_eap_peap: Tunneled data is valid.
PEAP: Setting User-Name to TestUserAD
PEAP: Adding old state with a0 ba
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 17
modcall[authorize]: module «preprocess» returns ok for request 17
modcall[authorize]: module «mschap» returns noop for request 17
rlm_eap: EAP packet type response id 7 length 71
rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
modcall[authorize]: module «eap» returns updated for request 17
modcall[authorize]: module «files» returns notfound for request 17
modcall: leaving group authorize (returns updated) for request 17
rad_check_password: Found Auth-Type EAP
auth: type «EAP»
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 17
rlm_eap: Request found, released from the list
rlm_eap: EAP/mschapv2
rlm_eap: processing type mschapv2
Processing the authenticate section of radiusd.conf
modcall: entering group MS-CHAP for request 17
rlm_mschap: No User-Password configured. Cannot create LM-Password.
rlm_mschap: No User-Password configured. Cannot create NT-Password.
rlm_mschap: Told to do MS-CHAPv2 for TestUserAD with NT-Password
radius_xlat: '--username=TestUserAD'
radius_xlat: Running registered xlat function of module mschap for string 'Challenge'
mschap2: 37
radius_xlat: '--challenge=d0c2c03c9b6c33f1'
radius_xlat: Running registered xlat function of module mschap for string 'NT-Response'
radius_xlat: '--nt-response=4c176d18e32c4eb132750ecef11bc1dc7fcfd6332b01a632'
Exec-Program output: NT_KEY: 4FFA8552EBDF71E7E04DA29CEA6E33E1
Exec-Program-Wait: plaintext: NT_KEY: 4FFA8552EBDF71E7E04DA29CEA6E33E1
Exec-Program: returned: 0
rlm_mschap: adding MS-CHAPv2 MPPE keys
modcall[authenticate]: module «mschap» returns ok for request 17
modcall: leaving group MS-CHAP (returns ok) for request 17
MSCHAP Success
modcall[authenticate]: module «eap» returns handled for request 17
modcall: leaving group authenticate (returns handled) for request 17
PEAP: Got tunneled Access-Challenge
modcall[authenticate]: module «eap» returns handled for request 17
modcall: leaving group authenticate (returns handled) for request 17
Sending Access-Challenge of id 177 to 10.110.0.14 port 32769
EAP-Message = 0x0108005b19001703010050454be4f9c1b70eb54ada83c35f825180659e3ec39720cb25a5e2f86c253bb8d414f0f07e7292ca81d3803ffc3d61c316d2b
ca814763b221bd78fad28fc241327f02c013c51b01762916
Message-Authenticator = 0x00000000000000000000000000000000
State = 0x6a55656145b0360c19fecc5cc986a568
Finished request 17
Going to the next request
Waking up in 5 seconds...
--- Walking the entire request list ---
Cleaning up request 11 ID 171 with timestamp 4d52b943
Waking up in 1 seconds...
--- Walking the entire request list ---
Cleaning up request 12 ID 172 with timestamp 4d52b944
Cleaning up request 13 ID 173 with timestamp 4d52b944
Cleaning up request 14 ID 174 with timestamp 4d52b944
Cleaning up request 15 ID 175 with timestamp 4d52b944
Cleaning up request 16 ID 176 with timestamp 4d52b944
Cleaning up request 17 ID 177 with timestamp 4d52b944
Nothing to do. Sleeping until we see a request.