Regarding Failures in 2.1.3 radius server

Abhijit Hari Raut abhijit.raut at aricent.com
Sat Feb 7 14:22:20 CET 2009


Hi,

I am getting the following errors during authentiacation for my username new at future.com<mailto:new at future.com>
Note that my client is 13.0.0.5 and radius clients password is FutureRadius.

Packet is reaching radius server and discarded with reject message. Please check what i am missing.

I am pasting the console output of /usr/local/sbin/radiusd -X

main {
        prefix = "/usr/local"
        localstatedir = "/usr/local/var"
        logdir = "/usr/local/var/log/radius"
        libdir = "/usr/local/lib"
        radacctdir = "/usr/local/var/log/radius/radacct"
        hostname_lookups = no
        max_request_time = 30
        cleanup_delay = 5
        max_requests = 1024
        allow_core_dumps = no
        pidfile = "/usr/local/var/run/radiusd/radiusd.pid"
        checkrad = "/usr/local/sbin/checkrad"
        debug_level = 0
        proxy_requests = no
 log {
        stripped_names = no
        auth = no
        auth_badpass = no
        auth_goodpass = no
 }
 security {
        max_attributes = 200
        reject_delay = 1
        status_server = yes
 }
}
 client 13.0.0.5 {
        require_message_authenticator = no
        secret = "FutureRadius"
        shortname = "fs"
        nastype = "other"
 }
 client 127.0.0.1 {
        require_message_authenticator = no
        secret = "testing123"
        shortname = "localhost"
        nastype = "other"
 }
radiusd: #### Loading Realms and Home Servers ####
radiusd: #### Instantiating modules ####
 instantiate {
 Module: Linked to module rlm_exec
 Module: Instantiating exec
  exec {
        wait = no
        input_pairs = "request"
        shell_escape = yes
  }
 Module: Linked to module rlm_expr
 Module: Instantiating expr
 Module: Linked to module rlm_expiration
 Module: Instantiating expiration
  expiration {
        reply-message = "Password Has Expired  "
  }
 Module: Linked to module rlm_logintime
 Module: Instantiating logintime
  logintime {
        reply-message = "You are calling outside your allowed timespan  "
        minimum-timeout = 60
  }
 }
radiusd: #### Loading Virtual Servers ####
 modules {
 }
radiusd: #### Opening IP addresses and Ports ####
listen {
        type = "auth"
        ipaddr = *
        port = 0
}
listen {
        type = "acct"
        ipaddr = *
        port = 0
}
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Ready to process requests.
rad_recv: Access-Request packet from host 13.0.0.5 port 49152, id=21, length=95
        User-Name = "new at future.com<mailto:new at future.com>"
        EAP-Message = 0x02010013016e6577406675747572652e636f6d
        Message-Authenticator = 0xc0813a0980c7aeafbba8283f892d0d7f
        NAS-Identifier = "fsNas1"
        NAS-Port = 4
        NAS-Port-Type = Ethernet
No authenticate method (Auth-Type) configuration found for the request: Rejecting the user
Failed to authenticate the user.
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 21 to 13.0.0.5 port 49152
Waking up in 4.9 seconds.
Cleaning up request 0 ID 21 with timestamp +55
Ready to process requests.
Please find my clients.conf and users attached

Thanks
Abhijit

________________________________
"DISCLAIMER: This message is proprietary to Aricent and is intended solely for the use of the individual to whom it is addressed. It may contain privileged or confidential information and should not be circulated or used for any purpose other than for what it is intended. If you have received this message in error,please notify the originator immediately. If you are not the intended recipient, you are notified that you are strictly prohibited from using, copying, altering, or disclosing the contents of this message. Aricent accepts no responsibility for loss or damage arising from the use of the information transmitted by this email including damage from virus."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090207/0f6e417d/attachment.html>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: users
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090207/0f6e417d/attachment.ksh>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: clients.conf
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090207/0f6e417d/attachment-0001.ksh>


More information about the Freeradius-Users mailing list