problems with real @

aquino at cotes.net.bo aquino at cotes.net.bo
Thu Dec 8 00:59:06 CET 2005 


hi
these are my configuration files
users
radius  Auth-Type:= Local, User-Password == "radius"
        Service-Type = Framed-User,
        Framed-Protocol = PPP,
        Framed-IP-Address = 172.16.3.33,
        Framed-IP-Netmask = 255.255.255.0,
        Framed-Routing = Broadcast-Listen,
        Framed-Filter-Id = "std.ppp",
        Framed-MTU = 1500,
        Framed-Compression = Van-Jacobsen-TCP-IP
proxy.conf
realm local {
        type            = radius
        authhost        = LOCAL
        accthost        = LOCAL
        secret          = secret
}
clients.conf
client x.x.x.x {
        secret = secret
        shortname = prueba
}

Ok. when i use tools NtRadPing with user radius at local and password radius,
everything is OK.

Login OK: [radius at local] (from client prueba port 0)

But when i try with the same user and pass from a mode DSL that use a RedBack to
authentication appear this mistake.

rad_recv: Access-Request packet from host 200.58.72.31:1812, id=177, length=101
        User-Name = "radius at local"
        User-Password = "radius"
        NAS-Identifier = "Redback"
        NAS-Real-Port = 268438312
        Service-Type = Framed-User
        Framed-Protocol = PPP
        NAS-Port = 3892320806
        Connect-Info = "ubr-adsl"
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 5
  modcall[authorize]: module "preprocess" returns ok for request 5
  modcall[authorize]: module "chap" returns noop for request 5
  modcall[authorize]: module "mschap" returns noop for request 5
    rlm_realm: Looking up realm "local" for User-Name = "radius at local"
    rlm_realm: Found realm "local"
    rlm_realm: Adding Stripped-User-Name = "radius"
    rlm_realm: Proxying request from user radius to realm local
    rlm_realm: Adding Realm = "local"
    rlm_realm: Authentication realm is LOCAL.
  modcall[authorize]: module "suffix" returns noop for request 5
  rlm_eap: No EAP-Message, not doing EAP
  modcall[authorize]: module "eap" returns noop for request 5
    users: Matched DEFAULT at 99
    users: Matched DEFAULT at 118
    users: Matched DEFAULT at 130
  modcall[authorize]: module "files" returns ok for request 5
modcall: group authorize returns ok for request 5
  rad_check_password:  Found Auth-Type System
auth: type "System"          ## i think here is the mistake, but i don´t
understand why, in my user file put Auth-Type == Local and in the log appear
System.
  Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 5
rlm_unix: [radius]: invalid password
  modcall[authenticate]: module "unix" returns reject for request 5
modcall: group authenticate returns reject for request 5
auth: Failed to validate the user.
Login incorrect: [radius at local/radius] (from client iRedBack port 3892320806)
Delaying request 5 for 1 seconds
Finished request 5
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 177 to 200.58.72.31:1812

i think that mistake is when try to authentication, but i don´t understand, why
in my user file put Auth-Type == Local and in the log appear System. how can i
change it.

Tnanks

Alvaro

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

More information about the Freeradius-Users mailing list