You could try using the windows program NTRadPing from <a href="http://www.dialways.com/download/">http://www.dialways.com/download/</a>.<br>It has a "CHAP" checkbox. <br><br>HTH,<br>Patrick<br><br><div><span class="gmail_quote">
On 1/31/06, <b class="gmail_sendername">Phil Mayers</b> <<a href="mailto:p.mayers@imperial.ac.uk">p.mayers@imperial.ac.uk</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
DilipSimha.N.M wrote:<br>> hi,<br>><br>> is there any simple tool(other than jradius) which can be used as radius<br>> client and which can be used to test<br>> mschap authentication??<br>> if so, please give the packet contents for radius client and the users
<br>> file check-items.<br><br> 1. run FreeRadius in debugging mode<br><br> 2. perform a successful MS-CHAP authentication with a "real" client<br><br> 3. copy the following info from the FreeRadius debugging output:
<br>User-Name = "user"<br>MS-CHAP-Challenge = 0xBYTES<br>MS-CHAP2-Response = 0xBYTES<br><br> 4. with that info, create a file containing a radius request:<br>Service-Type = Framed-User<br>Framed-Protocol = PPP<br>
User-Name = "user"<br>MS-CHAP-Challenge = 0xBYTES<br>MS-CHAP2-Response = 0xBYTES<br>Calling-Station-Id = "something"<br>NAS-IP-Address = <a href="http://192.168.1.2">192.168.1.2</a><br>NAS-Port = 1<br>
<br> 5. run the command "radclient -s -f $FILE $HOST auth $SECRET"<br><br>The radius server will authenticate that request every time. Since the<br>challenge from a real NAS is essentially random there is only a low (but
<br>not zero) risk in having the info in a file.<br><br>You may need to edit your users file to disable things such as IP<br>address pool assignment or such, but it will basically work fine. Such<br>editing is dependent on your local configuration.
<br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html">http://www.freeradius.org/list/users.html</a><br></blockquote></div><br>