Tom Yard
2018-10-24 15:38:25 UTC
Dear people, I have a Freeradius server that authenticate users against an
AD in order to access the WiFi network:
Once a user authenticates OK and access the WiFi network, in the debug log
of Freeradius I notice that this user has several access requests at the
same time he is using the WiFi correctly. The access request frames are as
the shown below:
rad_recv: Access-Request packet from host 192.168.10.1 port 32768, id=103,
length=432
User-Name = "jsmith"
Chargeable-User-Identity = ""
Location-Capable = Civix-Location
Calling-Station-Id = "80:ab:17:46:69:10"
Called-Station-Id = "6c:99:89:8b:62:50:Employees"
NAS-Port = 13
Cisco-AVPair = "audit-session-id=ac1f0c620001129d5bd059a8"
Acct-Session-Id = "5bd059a8/80:ad:16:46:69:10/117467"
Cisco-AVPair = "mDNS=true"
NAS-IP-Address = 192.168.10.1
NAS-Identifier = "CC-803"
Airespace-Wlan-Id = 8
Service-Type = Framed-User
Framed-MTU = 1300
NAS-Port-Type = Wireless-802.11
Tunnel-Type:0 = VLAN
Tunnel-Medium-Type:0 = IEEE-802
Tunnel-Private-Group-Id:0 = "803"
EAP-Message =
0x0207006b1900170301006097b83712638612527a05475ecd25d67e6076490aee95d35c489925635aee89c40643f7792122452628ac3c6deb27afd73a619069eab529f5afcc4646fa17195991294d33614f549480f045e3a0aba117ff7c4182bdfdbd935055c2577f056d01
State = 0x413cfeec443be7e0d7f6ff4a2526d7aa
Message-Authenticator = 0xc54014a6929ff04d4e13b6a8be7b79ad
Why is this behaviour? Because I thougth the access requests are used only
when the user is going to authenticate and never.
Thanks a lot, regards !!!
-
List info/subscribe/unsubscribe? See ht
AD in order to access the WiFi network:
Once a user authenticates OK and access the WiFi network, in the debug log
of Freeradius I notice that this user has several access requests at the
same time he is using the WiFi correctly. The access request frames are as
the shown below:
rad_recv: Access-Request packet from host 192.168.10.1 port 32768, id=103,
length=432
User-Name = "jsmith"
Chargeable-User-Identity = ""
Location-Capable = Civix-Location
Calling-Station-Id = "80:ab:17:46:69:10"
Called-Station-Id = "6c:99:89:8b:62:50:Employees"
NAS-Port = 13
Cisco-AVPair = "audit-session-id=ac1f0c620001129d5bd059a8"
Acct-Session-Id = "5bd059a8/80:ad:16:46:69:10/117467"
Cisco-AVPair = "mDNS=true"
NAS-IP-Address = 192.168.10.1
NAS-Identifier = "CC-803"
Airespace-Wlan-Id = 8
Service-Type = Framed-User
Framed-MTU = 1300
NAS-Port-Type = Wireless-802.11
Tunnel-Type:0 = VLAN
Tunnel-Medium-Type:0 = IEEE-802
Tunnel-Private-Group-Id:0 = "803"
EAP-Message =
0x0207006b1900170301006097b83712638612527a05475ecd25d67e6076490aee95d35c489925635aee89c40643f7792122452628ac3c6deb27afd73a619069eab529f5afcc4646fa17195991294d33614f549480f045e3a0aba117ff7c4182bdfdbd935055c2577f056d01
State = 0x413cfeec443be7e0d7f6ff4a2526d7aa
Message-Authenticator = 0xc54014a6929ff04d4e13b6a8be7b79ad
Why is this behaviour? Because I thougth the access requests are used only
when the user is going to authenticate and never.
Thanks a lot, regards !!!
-
List info/subscribe/unsubscribe? See ht