Re: Can't get the value of 'Digest-User-name', 'Digest-Realm', 'Digest-Method', 'Digest-Uri', 'Digest-Nonce', 'Digest-Response'
>Send a request with Digest-Attributes.
hi Kalik,
I've tried to called using Digest-Attributes in my perl code like this
$dUserName= $RAD_REQUEST{'Digest-User-Name'};
$dRealm= $RAD_REQUEST{'Digest-Realm'};
$dMethod = $RAD_REQUEST{'Digest-Method'};
$dUri= $RAD_REQUEST{'Digest-URI'};
$dNonce=$RAD_REQUEST{'Digest-Nonce'};
$dResponse=$RAD_REQUEST{'Digest-Response'};
but still it doesn't get the values..except 'Digest-Response'
May it be the problem from the radius client, or is it the problem in my perl code.
I can't rectify the problem, I am confusing where should I emphasized
Here is the new output when it is run in radiusd -X after rejecting da user.
rad_recv: Access-Request packet from host 192.168.1.227 port 32847, id=182, length=252
User-Name = "john@192.168.1.227"
X-Ascend-Netware-timeout = 1785686126
X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
X-Ascend-Receive-Secret = 0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
X-Ascend-IP-Pool-Definition = "sip:192.168.1.227"
X-Ascend-IPX-Peer-Mode = 0x5245474953544552
Digest-Response = "1e926599fa0777bef89010421e3e1c41"
Service-Type = IAPP-Register
X-Ascend-PW-Lifetime = 1785686126
Cisco-AVPair = "call-id=25b5a186aad84c2fa769946f1b1c7110@192.168.1.193"
NAS-IP-Address = 127.0.0.1
NAS-Port = 5060
+- entering group authorize
++[preprocess] returns ok
perl_pool: item 0x9ede730 asigned new request. Handled so far: 1
found interpetator at address 0x9ede730
rlm_perl: ###############################################################
rlm_perl: RAD_REQUEST: Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: RAD_REQUEST: X-Ascend-Receive-Secret = 0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: RAD_REQUEST: X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: RAD_REQUEST: Service-Type = IAPP-Register
rlm_perl: RAD_REQUEST: X-Ascend-Netware-timeout = 1785686126
rlm_perl: RAD_REQUEST: Cisco-AVPair = call-id=25b5a186aad84c2fa769946f1b1c7110@192.168.1.193
rlm_perl: RAD_REQUEST: X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: RAD_REQUEST: User-Name = john@192.168.1.227
rlm_perl: RAD_REQUEST: X-Ascend-PW-Lifetime = 1785686126
rlm_perl: RAD_REQUEST: NAS-Port = 5060
rlm_perl: RAD_REQUEST: NAS-IP-Address = 127.0.0.1
rlm_perl: RAD_REQUEST: X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: ###############################################################
rlm_perl: Added pair Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: Added pair X-Ascend-Receive-Secret = 0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: Added pair X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: Added pair Service-Type = IAPP-Register
rlm_perl: Added pair X-Ascend-Netware-timeout = 1785686126
rlm_perl: Added pair Cisco-AVPair = call-id=25b5a186aad84c2fa769946f1b1c7110@192.168.1.193
rlm_perl: Added pair X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: Added pair User-Name = john@192.168.1.227
rlm_perl: Added pair X-Ascend-PW-Lifetime = 1785686126
rlm_perl: Added pair NAS-Port = 5060
rlm_perl: Added pair NAS-IP-Address = 127.0.0.1
rlm_perl: Added pair X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: Added pair Reply-Message = Incorrect Password
perl_pool total/active/spare [32/0/32]
Unreserve perl at address 0x9ede730
++[perl] returns reject
Invalid user: [john@192.168.1.227/<no User-Password attribute>] (from client 192.168.1.227 port 5060)
Found Post-Auth-Type Reject
+- entering group REJECT
expand: %{User-Name} -> john@192.168.1.227
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
rad_recv: Access-Request packet from host 192.168.1.227 port 32848, id=183, length=252
User-Name = "john@192.168.1.227"
X-Ascend-Netware-timeout = 1785686126
X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
X-Ascend-Receive-Secret = 0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
X-Ascend-IP-Pool-Definition = "sip:192.168.1.227"
X-Ascend-IPX-Peer-Mode = 0x5245474953544552
Digest-Response = "1e926599fa0777bef89010421e3e1c41"
Service-Type = IAPP-Register
X-Ascend-PW-Lifetime = 1785686126
Cisco-AVPair = "call-id=25b5a186aad84c2fa769946f1b1c7110@192.168.1.193"
NAS-IP-Address = 127.0.0.1
NAS-Port = 5060
+- entering group authorize
++[preprocess] returns ok
perl_pool: item 0xa119d28 asigned new request. Handled so far: 1
found interpetator at address 0xa119d28
rlm_perl: ###############################################################
rlm_perl: RAD_REQUEST: Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: RAD_REQUEST: X-Ascend-Receive-Secret = 0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: RAD_REQUEST: X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: RAD_REQUEST: Service-Type = IAPP-Register
rlm_perl: RAD_REQUEST: X-Ascend-Netware-timeout = 1785686126
rlm_perl: RAD_REQUEST: Cisco-AVPair = call-id=25b5a186aad84c2fa769946f1b1c7110@192.168.1.193
rlm_perl: RAD_REQUEST: X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: RAD_REQUEST: User-Name = john@192.168.1.227
rlm_perl: RAD_REQUEST: X-Ascend-PW-Lifetime = 1785686126
rlm_perl: RAD_REQUEST: NAS-Port = 5060
rlm_perl: RAD_REQUEST: NAS-IP-Address = 127.0.0.1
rlm_perl: RAD_REQUEST: X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: ###############################################################
rlm_perl: Added pair Digest-Response = 1e926599fa0777bef89010421e3e1c41
rlm_perl: Added pair X-Ascend-Receive-Secret = 0x34383161663338653534346236663063383862343865393864346639313036626264363230306536
rlm_perl: Added pair X-Ascend-IPX-Peer-Mode = 0x5245474953544552
rlm_perl: Added pair Service-Type = IAPP-Register
rlm_perl: Added pair X-Ascend-Netware-timeout = 1785686126
rlm_perl: Added pair Cisco-AVPair = call-id=25b5a186aad84c2fa769946f1b1c7110@192.168.1.193
rlm_perl: Added pair X-Ascend-IP-Pool-Definition = sip:192.168.1.227
rlm_perl: Added pair User-Name = john@192.168.1.227
rlm_perl: Added pair X-Ascend-PW-Lifetime = 1785686126
rlm_perl: Added pair NAS-Port = 5060
rlm_perl: Added pair NAS-IP-Address = 127.0.0.1
rlm_perl: Added pair X-Ascend-Send-Secret = 0x3139322e3136382e312e323237
rlm_perl: Added pair Reply-Message = Incorrect Password
perl_pool total/active/spare [32/0/32]
Unreserve perl at address 0xa119d28
++[perl] returns reject
Invalid user: [john@192.168.1.227/<no User-Password attribute>] (from client 192.168.1.227 port 5060)
Found Post-Auth-Type Reject
+- entering group REJECT
expand: %{User-Name} -> john@192.168.1.227
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 1 for 1 seconds
Going to the next request
Waking up in 0.4 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 182 to 192.168.1.227 port 32847
Reply-Message = "Incorrect Password"
Waking up in 0.5 seconds.
Sending delayed reject for request 1
Sending Access-Reject of id 183 to 192.168.1.227 port 32848
Reply-Message = "Incorrect Password"
Waking up in 4.4 seconds.
Cleaning up request 0 ID 182 with timestamp +10
Waking up in 0.5 seconds.
Cleaning up request 1 ID 183 with timestamp +10
Ready to process requests.
thanking you Kalik.
With Regards,
Elangbam Johnson
- Previous by Date: Re: EAP/TLS on windows XP clients?
- Next by Date: Re : Re : Re : EAP-TLS/PEAP problem
- Previous by Thread: Re: Can't get the value of 'Digest-User-name', 'Digest-Realm', 'Digest-Method', 'Digest-Uri', 'Digest-Nonce', 'Digest-Response'
- Next by Thread: Re: Can't get the value of 'Digest-User-name', 'Digest-Realm', 'Digest-Method', 'Digest-Uri', 'Digest-Nonce', 'Digest-Response'
-
Freeradius-Users May 2008 archives indexes sorted by: [ thread ]
[ subject ]
[ author ]
[ date ]
-
Freeradius-Users list archive Table of Contents
-
More information about the Freeradius-Users mailing list
This archive was generated by a fusion of
Pipermail (Mailman edition) and
MHonArc.