JRadius with FreeRADIUS - Please help me in solving this issue

Karuna G. Kumar karuna.kumar at indscape.com
Wed Jun 2 13:12:53 CEST 2010 

Hi,

Now I got some improvement than before I guess.

Now, I am getting the error like... 

[pap] login attempt with password "testing"
[pap] Using CRYPT encryption.
[pap] Passwords don't match

I am passing the Clear text password to FreeRADIUS. but, why is this failing ?

Please help me.

Logs:
=====

Ready to process requests.
rad_recv: Access-Request packet from host 192.168.1.109 port 44867, id=15, length=95
	User-Name = "karun"
	Acct-Session-Id = "001"
	NAS-Identifier = "NASIDTest"
	NAS-IP-Address = 192.168.1.120
	Called-Station-Id = "called"
	Calling-Station-Id = "caller"
	NAS-Port = 1234
	NAS-Port-Type = Ethernet
	User-Password = "testing"
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
++[digest] returns noop
[suffix] No '@' in User-Name = "karun", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
++[unix] returns updated
rlm_jradius: Reserving JRadius socket id: 7
rlm_jradius: packing attribute User-Name (type: 1; len: 5)
rlm_jradius: packing attribute Acct-Session-Id (type: 44; len: 3)
rlm_jradius: packing attribute NAS-Identifier (type: 32; len: 9)
rlm_jradius: packing attribute NAS-IP-Address (type: 4; len: 4)
rlm_jradius: packing attribute Called-Station-Id (type: 30; len: 6)
rlm_jradius: packing attribute Calling-Station-Id (type: 31; len: 6)
rlm_jradius: packing attribute NAS-Port (type: 5; len: 4)
rlm_jradius: packing attribute NAS-Port-Type (type: 61; len: 4)
rlm_jradius: packing attribute User-Password (type: 2; len: 7)
rlm_jradius: packing packet with code: 1 (attr length: 156)
rlm_jradius: packing packet with code: 0 (attr length: 0)
rlm_jradius: packing attribute Crypt-Password (type: 1006; len: 98)
rlm_jradius: sending 307 bytes to socket 7
rlm_jradius: return code 8; receiving 2 packets
rlm_jradius: reading packet: code=1 len=156
rlm_jradius: reading attribute: type=1; len=5
rlm_jradius: reading attribute: type=44; len=3
rlm_jradius: reading attribute: type=32; len=9
rlm_jradius: reading attribute: type=4; len=4
rlm_jradius: reading attribute: type=30; len=6
rlm_jradius: reading attribute: type=31; len=6
rlm_jradius: reading attribute: type=5; len=4
rlm_jradius: reading attribute: type=61; len=4
rlm_jradius: reading attribute: type=2; len=7
rlm_jradius: reading packet: code=0 len=0
rlm_jradius: reading request: config_item: len=187
rlm_jradius: reading attribute: type=1006; len=98
rlm_jradius: reading attribute: type=1100; len=7
rlm_jradius: reading attribute: type=1259012098; len=32
rlm_jradius: reading attribute: type=1259012097; len=2
rlm_jradius: Released JRadius socket id: 7
++[jradius] returns updated
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
Found Auth-Type = PAP
+- entering group PAP {...}
[pap] login attempt with password "testing"
[pap] Using CRYPT encryption.
[pap] Passwords don't match
++[pap] returns reject
Failed to authenticate the user.
Using Post-Auth-Type Reject
+- entering group REJECT {...}
[attr_filter.access_reject] 	expand: %{User-Name} -> karun
 attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.6 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 15 to 192.168.1.109 port 44867
Waking up in 4.9 seconds.
Cleaning up request 0 ID 15 with timestamp +6
Ready to process requests.




-----Original Message-----
From:	freeradius-users-bounces+karuna.kumar=indscape.com at lists.freeradius.org on behalf of Karuna G. Kumar
Sent:	Wed 6/2/2010 3:20 PM
To:	FreeRadius users mailing list
Cc:	
Subject:	RE: JRadius with FreeRADIUS - Please help me in solving this issue

I am trying to authorize / authenticate the user from a JRadius handler. I want to validate the user name and password both from our application's data repository using EJB calls. Hence, I don't want to look in to users file at all. Do I need to still enable PAP for it?

Please let me know if I am going in a wrong direction. Please suggest me how to get success in this scenario.


-----Original Message-----
From:	freeradius-users-bounces+karuna.kumar=indscape.com at lists.freeradius.org on behalf of Alan DeKok
Sent:	Wed 6/2/2010 2:14 PM
To:	FreeRadius users mailing list
Cc:	
Subject:	Re: JRadius with FreeRADIUS - Please help me in solving this issue

Karuna G. Kumar wrote:
> Hi,
> 
> I am using FreeRADIUS 2.1.8 and JRadius 1.0.0 in my machine. When I send the Access-Request, it gives me the error "No authenticate method (Auth-Type) configuration found for the request: Rejecting the user". Please help me. Did I missed any configuration?

  You need to tell the server what the users "known good" password is.

  You also need to list "pap" last in the "authorize" section.  You have
deleted it.  Why?

  Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html




-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 5383 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20100602/d2cb170c/attachment.bin>

More information about the Freeradius-Users mailing list