cat-users AT lists.geant.org
Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)
List archive
- From: Tomasz Wolniewicz <twoln AT umk.pl>
- To: Francesco Malvezzi <francesco.malvezzi AT unimore.it>, cat-users AT geant.net
- Subject: Re: [cat-users] dynamic tests failed
- Date: Thu, 05 Mar 2015 15:40:26 +0100
- List-archive: <http://mail.geant.net/pipermail/cat-users/>
- List-id: "The mailing list for users of the eduroam Configuration Assistant Tool \(CAT\)" <cat-users.geant.net>
Hi Francesco,
I have been trying to repeat the test and I get
Checking NAPTR existence: This realm has NAPTR records, but none are
associated with eduroam.
It should follow that dynamic tests are not run. Could it be that you
have changed something in DNS since you have done your tests?
Also it seems that you are trying to set up RADIUS-TLS connections to a
FreeRADIUS server, I am not sure if FreeRADIUS can actually do that.
Tomasz
W dniu 2015-03-05 o 14:49, Francesco Malvezzi pisze:
> Hi all,
>
> I'm setting up cat for unimore.it. dynamic sanity tests fail with:
> Resultcode: 3
> what does 3 mean?
>
> On the freeradius log I read about a login attempt from the given
> username and a Packet-Type = Access-Reject response. No hit on ldap
> about that user.
>
> On the other hand, the ldap is reached during the STATIC connectivity tests:
>
> Mar 5 14:36:16 ldap slapd[343]: conn=774836 op=31 SRCH
> base="ou=people,dc=unimore,dc=it" scope=2 deref=0
> filter="(eduPersonPrincipalName=cat-connectivity-test AT unimore.it)"
> Mar 5 14:36:16 ldap slapd[343]: conn=774836 op=31 SRCH
> attr=unimoreRadiusExpiration userPassword sambaNtPassword
> radiusCheckItem radiusReplyItem sasdefaultloginsequence
>
> So there is something very wrong in the way I configured cat that
> explodes in the Live login test, but hides a bit in the STATIC
> connectivity tests.
>
> How can I pinpoint the error?
>
> Live test doesn't work either with user inserted in freeradius users file.
>
> Connection to eduroam from cat-less clients works.
>
> According eapol_test the working methods are: peap-mschapv2 and
> ttls-eap-mschapv2
>
> thank you,
>
> Francesco
>
--
Tomasz Wolniewicz
twoln AT umk.pl
http://www.home.umk.pl/~twoln
Uczelniane Centrum Informatyczne Information&Communication Technology Centre
Uniwersytet Mikolaja Kopernika Nicolaus Copernicus University,
pl. Rapackiego 1, Torun pl. Rapackiego 1, Torun, Poland
tel: +48-56-611-2750 fax: +48-56-622-1850 tel kom.: +48-693-032-576
- [cat-users] dynamic tests failed, Francesco Malvezzi, 03/05/2015
- Re: [cat-users] dynamic tests failed, Tomasz Wolniewicz, 03/05/2015
- Re: [cat-users] dynamic tests failed, Francesco Malvezzi, 03/09/2015
- Re: [cat-users] dynamic tests failed, A . L . M . Buxey, 03/09/2015
- Re: [cat-users] dynamic tests failed, Francesco Malvezzi, 03/09/2015
- Re: [cat-users] dynamic tests failed, A . L . M . Buxey, 03/09/2015
- Re: [cat-users] dynamic tests failed, Francesco Malvezzi, 03/10/2015
- Re: [cat-users] dynamic tests failed, A . L . M . Buxey, 03/09/2015
- Re: [cat-users] dynamic tests failed, Francesco Malvezzi, 03/09/2015
- Re: [cat-users] dynamic tests failed, Tomasz Wolniewicz, 03/05/2015
Archive powered by MHonArc 2.6.19.