AdmSasha Опубликовано 26 мая, 2009 · Жалоба Имеется freeradius, cisco2950, WinXP_SP3, желание сделать авторизации по 802.1x по "md5 задача" Подскажите пример EAP авторизации через rlm_perl. Какие данные отдавать, чтобы порт включить. $RAD_REPLY{'Session-Timeout'} = "1412650"; $RAD_REPLY{'Tunnel-Type'} = "VLAN"; $RAD_REPLY{'Tunnel-Medium-Type'} = "IEEE-802"; $RAD_REPLY{'Tunnel-Private-Group-Id'} = "77"; $RAD_CHECK{'Auth-Type'} = 'Accept'; $RAD_REPLY{'Auth-Type'} = 'Accept'; Ничего не дают. authenticate { Auth-Type EAP { perl } } Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair NAS-Port-Type = EthernetMon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Service-Type = Framed-User Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Calling-Station-Id = 00-0A-E4-EC-40-25 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Called-Station-Id = 00-15-62-68-32-C1 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Cisco-NAS-Port = FastEthernet0/1 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Message-Authenticator = 0xe3d0528f21ac5aca673685da2a1d0aab Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair User-Name = test Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair EAP-Message = 0x02000009016d617274 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair EAP-Type = Identity Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair NAS-IP-Address = 192.168.1.94 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair NAS-Port = 50001 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Framed-MTU = 1500 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Session-Timeout = 1412650 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair EAP-Message = 0x03030004 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Auth-Type = Accept Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Tunnel-Medium-Type = IEEE-802 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Tunnel-Type = VLAN Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Message-Authenticator = 0x00000000000000000000000000000000 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Tunnel-Private-Group-Id = 77 Mon May 25 15:19:10 2009 : Debug: rlm_perl: Added pair Auth-Type = EAP Mon May 25 15:19:10 2009 : Info: ++[perl] returns ok Mon May 25 15:19:10 2009 : Auth: Login OK: [test/<via Auth-Type = EAP>] (from client cisco2950 port 50001 cli 00-0A-E4-EC-40-25) Mon May 25 15:19:10 2009 : Info: +- entering group post-auth {...} Sending Access-Accept of id 7 to 192.168.1.94 port 1812 Session-Timeout = 1412650 EAP-Message = 0x03030004 Tunnel-Medium-Type:0 = IEEE-802 Tunnel-Type:0 = VLAN Message-Authenticator = 0x00000000000000000000000000000000 Tunnel-Private-Group-Id:0 = "77" Mon May 25 15:19:10 2009 : Info: Finished request 0. Mon May 25 15:19:10 2009 : Debug: Going to the next request Mon May 25 15:19:10 2009 : Debug: Waking up in 4.9 seconds. Mon May 25 15:19:15 2009 : Info: Cleaning up request 0 ID 7 with timestamp +31 Mon May 25 15:19:15 2009 : Debug: Ready to process requests Вставить ник Цитата Ответить с цитированием Поделиться сообщением Ссылка на сообщение Поделиться на других сайтах More sharing options...