[strongSwan] Radius-AD-IAS

Huang, Zhenxing huang.zhenxing at eco-schulte.cn
Mon Dec 23 15:26:49 CET 2013 

Hello . I am want to use windows 2003 ad-user +ias  to authentication the vpn dial-in

We are get the LOG : what is the problem ?
Dec 23 22:15:52 gateway charon: 09[CFG] looking for peer configs matching server-ip [%any]... client-ip[172.30.1.251]
Dec 23 22:15:52 gateway charon: 09[CFG] selected peer config 'eap-mschapv2-radius'
Dec 23 22:15:52 gateway charon: 09[IKE] initiating EAP_IDENTITY method (id 0x00)
Dec 23 22:15:52 gateway charon: 09[IKE] peer supports MOBIKE
Dec 23 22:15:52 gateway charon: 09[IKE] authentication of 'ca' (myself) with RSA signature successful
Dec 23 22:15:52 gateway charon: 09[IKE] sending end entity cert "************"
Dec 23 22:15:52 gateway charon: 09[ENC] generating IKE_AUTH response 1 [ IDr CERT AUTH EAP/REQ/ID ]
Dec 23 22:15:52 gateway charon: 09[NET] sending packet: from server-ip [4500] to client-ip [4500] (1220 bytes)
Dec 23 22:15:52 gateway charon: 08[NET] received packet: from client-ip [4500] to server-ip [4500] (84 bytes)
Dec 23 22:15:52 gateway charon: 08[ENC] parsed IKE_AUTH request 2 [ EAP/RES/ID ]
Dec 23 22:15:52 gateway charon: 08[IKE] received EAP identity 'huang.zhenxing'
Dec 23 22:15:52 gateway charon: 08[CFG] sending RADIUS Access-Request to server '192.168.1.1'
Dec 23 22:15:53 gateway charon: 10[MGR] ignoring request with ID 2, already processing
Dec 23 22:15:54 gateway charon: 12[MGR] ignoring request with ID 2, already processing
Dec 23 22:15:54 gateway charon: 08[CFG] retransmitting RADIUS message
Dec 23 22:15:57 gateway charon: 08[CFG] retransmitting RADIUS message
Dec 23 22:15:57 gateway charon: 13[MGR] ignoring request with ID 2, already processing
Dec 23 22:16:01 gateway charon: 08[CFG] retransmitting RADIUS message
Dec 23 22:16:04 gateway charon: 11[MGR] ignoring request with ID 2, already processing
Dec 23 22:16:06 gateway charon: 08[CFG] retransmitting RADIUS message
Dec 23 22:16:06 gateway charon: 08[CFG] RADIUS server is not responding
Dec 23 22:16:06 gateway charon: 08[IKE] initiating EAP_RADIUS method failed
Dec 23 22:16:06 gateway charon: 08[ENC] generating IKE_AUTH response 2 [ EAP/FAIL ]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20131223/0700f33c/attachment.html>

More information about the Users mailing list