Can't get the value of 'Digest-User-name', 'Digest-Realm', 'Digest-Method', 'Digest-Uri', 'Digest-Nonce', 'Digest-Response'

johnson elangbam elangbamjohnson at gmail.com
Fri May 2 13:03:30 CEST 2008


>Send a request with Digest-Attributes.

hi Kalik,
            I've tried to called using Digest-Attributes in my perl code
like this

             $dUserName= $RAD_REQUEST{'Digest-User-Name'};
             $dRealm= $RAD_REQUEST{'Digest-Realm'};
             $dMethod = $RAD_REQUEST{'Digest-Method'};
             $dUri= $RAD_REQUEST{'Digest-URI'};
             $dNonce=$RAD_REQUEST{'Digest-Nonce'};
             $dResponse=$RAD_REQUEST{'Digest-Response'};

but still it doesn't get the values..except 'Digest-Response'
May it be the problem from the radius client, or is it the problem in my
perl code.
I can't rectify the problem, I am confusing where should I emphasized

Here is the new output when it is run in  radiusd -X after rejecting da
user.

rad_recv: Access-Request packet from host 192.168.1.227 port 32847, id=182,
length=252
        User-Name = "john at 192.168.1.227"
        X-Ascend-Netware-timeout = 1785686126
        X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
        X-Ascend-Receive-Secret =
0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
        X-Ascend-IP-Pool-Definition = "sip:192.168.1.227"
        X-Ascend-IPX-Peer-Mode = 0x5245474953544552
        Digest-Response = "1e926599fa0777bef89010421e3e1c41"
        Service-Type = IAPP-Register
        X-Ascend-PW-Lifetime = 1785686126
        Cisco-AVPair = "call-id=
25b5a186aad84c2fa769946f1b1c7110 at 192.168.1.193"
        NAS-IP-Address = 127.0.0.1
        NAS-Port = 5060
+- entering group authorize
++[preprocess] returns ok
perl_pool: item 0x9ede730 asigned new request. Handled so far: 1
found interpetator at address 0x9ede730
rlm_perl: ###############################################################
rlm_perl: RAD_REQUEST: Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: RAD_REQUEST: X-Ascend-Receive-Secret =
0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: RAD_REQUEST: X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: RAD_REQUEST: Service-Type = IAPP-Register
rlm_perl: RAD_REQUEST: X-Ascend-Netware-timeout = 1785686126
rlm_perl: RAD_REQUEST: Cisco-AVPair = call-id=
25b5a186aad84c2fa769946f1b1c7110 at 192.168.1.193
rlm_perl: RAD_REQUEST: X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: RAD_REQUEST: User-Name = john at 192.168.1.227
rlm_perl: RAD_REQUEST: X-Ascend-PW-Lifetime = 1785686126
rlm_perl: RAD_REQUEST: NAS-Port = 5060
rlm_perl: RAD_REQUEST: NAS-IP-Address = 127.0.0.1
rlm_perl: RAD_REQUEST: X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: ###############################################################
rlm_perl: Added pair Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: Added pair X-Ascend-Receive-Secret =
0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: Added pair X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: Added pair Service-Type = IAPP-Register
rlm_perl: Added pair X-Ascend-Netware-timeout = 1785686126
rlm_perl: Added pair Cisco-AVPair = call-id=
25b5a186aad84c2fa769946f1b1c7110 at 192.168.1.193
rlm_perl: Added pair X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: Added pair User-Name = john at 192.168.1.227
rlm_perl: Added pair X-Ascend-PW-Lifetime = 1785686126
rlm_perl: Added pair NAS-Port = 5060
rlm_perl: Added pair NAS-IP-Address = 127.0.0.1
rlm_perl: Added pair X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: Added pair Reply-Message = Incorrect Password
perl_pool total/active/spare [32/0/32]
Unreserve perl at address 0x9ede730
++[perl] returns reject
Invalid user: [john at 192.168.1.227/<no User-Password attribute>] (from client
192.168.1.227 port 5060)
  Found Post-Auth-Type Reject
+- entering group REJECT
        expand: %{User-Name} -> john at 192.168.1.227
 attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
rad_recv: Access-Request packet from host 192.168.1.227 port 32848, id=183,
length=252
        User-Name = "john at 192.168.1.227"
        X-Ascend-Netware-timeout = 1785686126
        X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
        X-Ascend-Receive-Secret =
0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
        X-Ascend-IP-Pool-Definition = "sip:192.168.1.227"
        X-Ascend-IPX-Peer-Mode = 0x5245474953544552
        Digest-Response = "1e926599fa0777bef89010421e3e1c41"
        Service-Type = IAPP-Register
        X-Ascend-PW-Lifetime = 1785686126
        Cisco-AVPair = "call-id=
25b5a186aad84c2fa769946f1b1c7110 at 192.168.1.193"
        NAS-IP-Address = 127.0.0.1
        NAS-Port = 5060
+- entering group authorize
++[preprocess] returns ok
perl_pool: item 0xa119d28 asigned new request. Handled so far: 1
found interpetator at address 0xa119d28
rlm_perl: ###############################################################
rlm_perl: RAD_REQUEST: Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: RAD_REQUEST: X-Ascend-Receive-Secret =
0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: RAD_REQUEST: X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: RAD_REQUEST: Service-Type = IAPP-Register
rlm_perl: RAD_REQUEST: X-Ascend-Netware-timeout = 1785686126
rlm_perl: RAD_REQUEST: Cisco-AVPair = call-id=
25b5a186aad84c2fa769946f1b1c7110 at 192.168.1.193
rlm_perl: RAD_REQUEST: X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: RAD_REQUEST: User-Name = john at 192.168.1.227
rlm_perl: RAD_REQUEST: X-Ascend-PW-Lifetime = 1785686126
rlm_perl: RAD_REQUEST: NAS-Port = 5060
rlm_perl: RAD_REQUEST: NAS-IP-Address = 127.0.0.1
rlm_perl: RAD_REQUEST: X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: ###############################################################
rlm_perl: Added pair Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: Added pair X-Ascend-Receive-Secret =
0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: Added pair X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: Added pair Service-Type = IAPP-Register
rlm_perl: Added pair X-Ascend-Netware-timeout = 1785686126
rlm_perl: Added pair Cisco-AVPair = call-id=
25b5a186aad84c2fa769946f1b1c7110 at 192.168.1.193
rlm_perl: Added pair X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: Added pair User-Name = john at 192.168.1.227
rlm_perl: Added pair X-Ascend-PW-Lifetime = 1785686126
rlm_perl: Added pair NAS-Port = 5060
rlm_perl: Added pair NAS-IP-Address = 127.0.0.1
rlm_perl: Added pair X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: Added pair Reply-Message = Incorrect Password
perl_pool total/active/spare [32/0/32]
Unreserve perl at address 0xa119d28
++[perl] returns reject
Invalid user: [john at 192.168.1.227/<no User-Password attribute>] (from client
192.168.1.227 port 5060)
  Found Post-Auth-Type Reject
+- entering group REJECT
        expand: %{User-Name} -> john at 192.168.1.227
 attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 1 for 1 seconds
Going to the next request
Waking up in 0.4 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 182 to 192.168.1.227 port 32847
        Reply-Message = "Incorrect Password"
Waking up in 0.5 seconds.
Sending delayed reject for request 1
Sending Access-Reject of id 183 to 192.168.1.227 port 32848
        Reply-Message = "Incorrect Password"
Waking up in 4.4 seconds.
Cleaning up request 0 ID 182 with timestamp +10
Waking up in 0.5 seconds.
Cleaning up request 1 ID 183 with timestamp +10
Ready to process requests.

thanking you Kalik.

With Regards,
Elangbam Johnson
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080502/6df1e7a0/attachment.html>


More information about the Freeradius-Users mailing list