Hi,
I'm currently configuring the Ubuntu Network Manager to connect to our StrongSwan VPN service. Finally got to the stage where an auth attempt actually gets as far as clearpass.
The auth request gets rejected and I'm not sure why. From the session logs I've got the following. question, the line that says "rlm_eap_md5: User-Password is required for EAP-MD5 authentication" is that telling me that I haven't supplid a user-password ? or just that you need one?
2017-09-07 15:56:30,187 | [RequestHandler-1-0x7faeecbe5700 r=psauto-1496838281-5410247 h=223 r=R001d157d-28-59b15e1e] INFO Core.ServiceReqHandler - Service classification result = UoY StrongSwan VPN |
2017-09-07 15:56:30,188 | [Th 35 Req 4970836 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - Service Categorization time = 7 ms |
2017-09-07 15:56:30,188 | [Th 35 Req 4970836 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - rlm_service: The request has been categorized into service "UoY StrongSwan VPN" |
2017-09-07 15:56:30,188 | [Th 35 Req 4970836 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - rlm_ldap: searching for user as1558 in AD:itsdc0.its.york.ac.uk |
2017-09-07 15:56:30,188 | [Th 35 Req 4970836 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - rlm_ldap: found user as1558 in AD:itsdc0.its.york.ac.uk |
2017-09-07 15:56:30,189 | [Th 35 Req 4970836 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - LDAP/AD User lookup time = 1 ms |
2017-09-07 15:56:30,189 | [Th 35 Req 4970836 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - rlm_eap_md5: Issuing Challenge |
2017-09-07 15:56:30,189 | [Th 35 Req 4970836 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - reqst_update_state: Access-Challenge 161:104:144.32.230.15245578]:ABwApgD1AGBU2UsAdRdnEOKAaSQQEdwOGDNF8w== |
2017-09-07 15:56:30,226 | [Th 33 Req 4970837 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - rlm_service: The request was categorized into service "UoY StrongSwan VPN" - 224:221:144.32.230.15245578] |
2017-09-07 15:56:30,226 | [Th 33 Req 4970837 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - rlm_eap_md5: User-Password is required for EAP-MD5 authentication |
2017-09-07 15:56:30,226 | [Th 33 Req 4970837 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - rlm_policy: Starting Policy Evaluation. |
2017-09-07 15:56:30,226 | [Th 33 Req 4970837 SessId R001d157d-28-59b15e1e] INFO RadiusServer.Radius - The attribute 144.32.230.15245578] does not contain valid MAC Address |