Re[3]: authentetication with mysql and NAS type= other
Толик Шавловский
tolik_shavlovsky at mail.ru
Thu Dec 8 09:27:10 CET 2011
Hi,
regarding Semulteneous-Use issue:
I use cisco NAS, usernames 'user'
============
ad_recv: Accounting-Request packet from host 10.169.33.11 port 1646, id=85, length=323
Acct-Session-Id = "00003306"
Called-Station-Id = "0013.1a08.9340"
Calling-Station-Id = "0013.e8f4.3f0d"
Cisco-AVPair = "ssid=HAYATT"
Cisco-AVPair = "vlan-id=55"
Cisco-AVPair = "nas-location=unspecified"
Cisco-AVPair = "auth-algo-type=eap-peap"
User-Name = "user"
Acct-Authentic = RADIUS
Cisco-AVPair = "connect-progress=Call Up"
Acct-Session-Time = 1
Acct-Input-Octets = 284
Acct-Output-Octets = 485
Acct-Input-Packets = 5
Acct-Output-Packets = 6
Acct-Terminate-Cause = Lost-Carrier
Cisco-AVPair = "disc-cause-ext=No Reason"
Acct-Status-Type = Stop
NAS-Port-Type = Wireless-802.11
Cisco-NAS-Port = "13257"
NAS-Port = 13257
Service-Type = Framed-User
NAS-IP-Address = 10.169.33.11
Acct-Delay-Time = 15
# Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 13257,Client-IP-Address = 10.169.33.11,NAS-IP-Address = 10.169.33.11,Acct-Session-Id = "00003306",User-Name = "user"'
[acct_unique] Acct-Unique-Session-ID = "f879723bff47e643".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "user", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
+- entering group accounting {...}
[detail] expand: /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radacct/10.169.33.11/detail-20111207
[detail] /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radacct/10.169.33.11/detail-20111207
[detail] expand: %t -> Wed Dec 7 10:17:11 2011
++[detail] returns ok
++[unix] returns fail
Finished request 83.
Cleaning up request 83 ID 85 with timestamp +189
Going to the next request
Waking up in 4.8 seconds.
rad_recv: Accounting-Request packet from host 10.169.33.11 port 1646, id=86, length=224
Acct-Session-Id = "00003308"
Called-Station-Id = "0013.1a08.9340"
Calling-Station-Id = "0013.e8f4.3f0d"
Cisco-AVPair = "ssid=HAYATT"
Cisco-AVPair = "vlan-id=55"
Cisco-AVPair = "nas-location=unspecified"
User-Name = "user"
Cisco-AVPair = "connect-progress=Call Up"
Acct-Authentic = RADIUS
Acct-Status-Type = Start
NAS-Port-Type = Wireless-802.11
Cisco-NAS-Port = "13258"
NAS-Port = 13258
Service-Type = Framed-User
NAS-IP-Address = 10.169.33.11
Acct-Delay-Time = 15
# Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 13258,Client-IP-Address = 10.169.33.11,NAS-IP-Address = 10.169.33.11,Acct-Session-Id = "00003308",User-Name = "user"'
[acct_unique] Acct-Unique-Session-ID = "45341f9e68e705da".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "user", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
+- entering group accounting {...}
[detail] expand: /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radacct/10.169.33.11/detail-20111207
[detail] /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radacct/10.169.33.11/detail-20111207
[detail] expand: %t -> Wed Dec 7 10:17:11 2011
++[detail] returns ok
++[unix] returns fail
Finished request 84.
Cleaning up request 84 ID 86 with timestamp +189
Going to the next request
Waking up in 4.3 seconds.
Cleaning up request 82 ID 226 with timestamp +188
Ready to process requests.
rad_recv: Accounting-Request packet from host 10.169.33.11 port 1646, id=87, length=323
Acct-Session-Id = "00003308"
Called-Station-Id = "0013.1a08.9340"
Calling-Station-Id = "0013.e8f4.3f0d"
Cisco-AVPair = "ssid=HAYATT"
Cisco-AVPair = "vlan-id=55"
Cisco-AVPair = "nas-location=unspecified"
Cisco-AVPair = "auth-algo-type=eap-peap"
User-Name = "user"
Acct-Authentic = RADIUS
Cisco-AVPair = "connect-progress=Call Up"
Acct-Session-Time = 41
Acct-Input-Octets = 310
Acct-Output-Octets = 509
Acct-Input-Packets = 6
Acct-Output-Packets = 7
Acct-Terminate-Cause = Lost-Carrier
Cisco-AVPair = "disc-cause-ext=No Reason"
Acct-Status-Type = Stop
NAS-Port-Type = Wireless-802.11
Cisco-NAS-Port = "13258"
NAS-Port = 13258
Service-Type = Framed-User
NAS-IP-Address = 10.169.33.11
Acct-Delay-Time = 0
# Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 13258,Client-IP-Address = 10.169.33.11,NAS-IP-Address = 10.169.33.11,Acct-Session-Id = "00003308",User-Name = "user"'
[acct_unique] Acct-Unique-Session-ID = "45341f9e68e705da".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "user", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
+- entering group accounting {...}
[detail] expand: /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radacct/10.169.33.11/detail-20111207
[detail] /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radacct/10.169.33.11/detail-20111207
[detail] expand: %t -> Wed Dec 7 10:17:36 2011
++[detail] returns ok
++[unix] returns fail
Finished request 85.
Cleaning up request 85 ID 87 with timestamp +214
Going to the next request
Ready to process requests.
rad_recv: Accounting-Request packet from host 10.169.33.11 port 1646, id=88, length=323
Acct-Session-Id = "00003308"
Called-Station-Id = "0013.1a08.9340"
Calling-Station-Id = "0013.e8f4.3f0d"
Cisco-AVPair = "ssid=HAYATT"
Cisco-AVPair = "vlan-id=55"
Cisco-AVPair = "nas-location=unspecified"
Cisco-AVPair = "auth-algo-type=eap-peap"
User-Name = "user"
Acct-Authentic = RADIUS
Cisco-AVPair = "connect-progress=Call Up"
Acct-Session-Time = 41
Acct-Input-Octets = 310
Acct-Output-Octets = 509
Acct-Input-Packets = 6
Acct-Output-Packets = 7
Acct-Terminate-Cause = Lost-Carrier
Cisco-AVPair = "disc-cause-ext=No Reason"
Acct-Status-Type = Stop
NAS-Port-Type = Wireless-802.11
Cisco-NAS-Port = "13258"
NAS-Port = 13258
Service-Type = Framed-User
NAS-IP-Address = 10.169.33.11
Acct-Delay-Time = 5
# Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 13258,Client-IP-Address = 10.169.33.11,NAS-IP-Address = 10.169.33.11,Acct-Session-Id = "00003308",User-Name = "user"'
[acct_unique] Acct-Unique-Session-ID = "45341f9e68e705da".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "user", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
+- entering group accounting {...}
[detail] expand: /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radacct/10.169.33.11/detail-20111207
[detail] /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radacct/10.169.33.11/detail-20111207
[detail] expand: %t -> Wed Dec 7 10:17:41 2011
++[detail] returns ok
++[unix] returns fail
Finished request 86.
Cleaning up request 86 ID 88 with timestamp +219
Going to the next request
Ready to process requests.
rad_recv: Accounting-Request packet from host 10.169.33.11 port 1646, id=89, length=323
Acct-Session-Id = "00003308"
Called-Station-Id = "0013.1a08.9340"
Calling-Station-Id = "0013.e8f4.3f0d"
Cisco-AVPair = "ssid=HAYATT"
Cisco-AVPair = "vlan-id=55"
Cisco-AVPair = "nas-location=unspecified"
Cisco-AVPair = "auth-algo-type=eap-peap"
User-Name = "user"
Acct-Authentic = RADIUS
Cisco-AVPair = "connect-progress=Call Up"
Acct-Session-Time = 41
Acct-Input-Octets = 310
Acct-Output-Octets = 509
Acct-Input-Packets = 6
Acct-Output-Packets = 7
Acct-Terminate-Cause = Lost-Carrier
Cisco-AVPair = "disc-cause-ext=No Reason"
Acct-Status-Type = Stop
NAS-Port-Type = Wireless-802.11
Cisco-NAS-Port = "13258"
NAS-Port = 13258
Service-Type = Framed-User
NAS-IP-Address = 10.169.33.11
Acct-Delay-Time = 10
# Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 13258,Client-IP-Address = 10.169.33.11,NAS-IP-Address = 10.169.33.11,Acct-Session-Id = "00003308",User-Name = "user"'
[acct_unique] Acct-Unique-Session-ID = "45341f9e68e705da".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "user", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
+- entering group accounting {...}
[detail] expand: /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radacct/10.169.33.11/detail-20111207
[detail] /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radacct/10.169.33.11/detail-20111207
[detail] expand: %t -> Wed Dec 7 10:17:46 2011
++[detail] returns ok
++[unix] returns fail
Finished request 87.
Cleaning up request 87 ID 89 with timestamp +224
Going to the next request
Ready to process requests.
rad_recv: Accounting-Request packet from host 10.169.33.11 port 1646, id=90, length=323
Acct-Session-Id = "00003308"
Called-Station-Id = "0013.1a08.9340"
Calling-Station-Id = "0013.e8f4.3f0d"
Cisco-AVPair = "ssid=HAYATT"
Cisco-AVPair = "vlan-id=55"
Cisco-AVPair = "nas-location=unspecified"
Cisco-AVPair = "auth-algo-type=eap-peap"
User-Name = "user"
Acct-Authentic = RADIUS
Cisco-AVPair = "connect-progress=Call Up"
Acct-Session-Time = 41
Acct-Input-Octets = 310
Acct-Output-Octets = 509
Acct-Input-Packets = 6
Acct-Output-Packets = 7
Acct-Terminate-Cause = Lost-Carrier
Cisco-AVPair = "disc-cause-ext=No Reason"
Acct-Status-Type = Stop
NAS-Port-Type = Wireless-802.11
Cisco-NAS-Port = "13258"
NAS-Port = 13258
Service-Type = Framed-User
NAS-IP-Address = 10.169.33.11
Acct-Delay-Time = 15
# Executing section preacct from file /usr/local/etc/raddb/sites-enabled/default
+- entering group preacct {...}
++[preprocess] returns ok
[acct_unique] Hashing 'NAS-Port = 13258,Client-IP-Address = 10.169.33.11,NAS-IP-Address = 10.169.33.11,Acct-Session-Id = "00003308",User-Name = "user"'
[acct_unique] Acct-Unique-Session-ID = "45341f9e68e705da".
++[acct_unique] returns ok
[suffix] No '@' in User-Name = "user", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
++[files] returns noop
# Executing section accounting from file /usr/local/etc/raddb/sites-enabled/default
+- entering group accounting {...}
[detail] expand: /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d -> /var/log/radacct/10.169.33.11/detail-20111207
[detail] /var/log/radacct/%{Client-IP-Address}/detail-%Y%m%d expands to /var/log/radacct/10.169.33.11/detail-20111207
[detail] expand: %t -> Wed Dec 7 10:17:51 2011
++[detail] returns ok
++[unix] returns fail
Finished request 88.
Cleaning up request 88 ID 90 with timestamp +229
Going to the next request
Ready to process requests.
===========================
simulteneous-use not working(( mysql> select * from radcheck;
+----+-----------------+--------------------+----+------------------+
| id | username | attribute | op | value |
+----+-----------------+--------------------+----+------------------+
| 11 | user | Cleartext-Password | := | user |
| 3 | [hidden email] | Cleartext-Password | := | test |
| 5 | [hidden email] | Cleartext-Password | := | test |
| 10 | user | Simultaneous-Use | := | 1 |
| 8 | [hidden email] | Framed-Filter-Id | := | SP=data:MSF=data |
| 9 | [hidden email] | Framed-Filter-Id | := | SP=data:MSF=data |
+----+-----------------+--------------------+----+------------------+
08 декабря 2011, 11:59 от "tolik_shavlovsky at mail.ru" <tolik_shavlovsky at mail.ru>:
oh, sorry....
but that username could be authenticated)
mysql> select * from radcheck;
+----+-----------------+--------------------+----+------------------+
| id | username | attribute | op | value |
+----+-----------------+--------------------+----+------------------+
| 11 | user | Cleartext-Password | := | user |
| 3 | [hidden email] | Cleartext-Password | := | test |
| 5 | [hidden email] | Cleartext-Password | := | test |
| 10 | user | Simultaneous-Use | := | 1 |
| 8 | [hidden email] | Framed-Filter-Id | := | SP=data:MSF=data |
| 9 | [hidden email] | Framed-Filter-Id | := | SP=data:MSF=data |
+----+-----------------+--------------------+----+------------------+
08 декабря 2011, 11:51 от "Alan DeKok-2 [via FreeRadius]" <[hidden email]>:
Толик Шавловский wrote:
> Hi,
>
> mysql> use freeradius;
> Database changed
> mysql> select * from radcheck;
> +----+-----------------+--------------------+----+------------------+
> | id | username | attribute | op | value |
> +----+-----------------+--------------------+----+------------------+
> | 1 | user | Password | == | user |
Change that to "Cleartext-Password" and ":=", like the other entries.
> all usernames are authenticated for WiFi.
>
> Wimax cannot.
Post the debug output for WiMAX. Honestly, I don't see why *anyone*
needs to be told this.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
----------------------------------------------------------------------
If you reply to this email, your message will be added to the discussion below: http://freeradius.1045715.n5.nabble.com/authentetication-with-mysql-and-NAS-type-other-tp5055689p5057987.html
To unsubscribe from authentetication with mysql and NAS type= other, click here.
NAML
----------------------------------------------------------------------
View this message in context: Re[2]: authentetication with mysql and NAS type= other
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20111208/2476eb68/attachment.html>
More information about the Freeradius-Users
mailing list