<div>ok I removed the line from ysers sating that auth-type=system and that helped w/ authentication of the user... still have small problem... under the same conditions I get problem w. accounting stating that my shared secret is incorrect so accounting record is not accepted ... I dont get it completly espesially afther user went through succesfully.</div>
<div> </div>
<div>I double checked my shared secret and it is ok.</div>
<div> </div>
<div>Below is debug:</div>
<div> </div>
<div>rad_recv: Access-Request packet from host xxx.147.xxx.xxx:62810, id=162, length=138<br> NAS-IP-Address = xxx.147.xxx.xxx<br> NAS-Identifier = "<a href="http://lrc51.lrc-wireless.com">lrc51.lrc-wireless.com</a>"<br>
User-Name = "homepc"<br> User-Password = "test"<br> Service-Type = Login-User<br> NAS-Port-Type = Ethernet<br> NAS-Port = 1<br> Framed-IP-Address = 192.168.1.244<br>
Called-Station-Id = "00:0d:b9:xx:xx:xx"<br> Calling-Station-Id = "00:0b:6a:xx:xx:xx"<br> Processing the authorize section of radiusd.conf<br>modcall: entering group authorize for request 0<br>
modcall[authorize]: module "preprocess" returns ok for request 0<br> modcall[authorize]: module "chap" returns noop for request 0<br> modcall[authorize]: module "mschap" returns noop for request 0<br>
rlm_realm: No <a href="mailto:'@'">'@'</a> in User-Name = "homepc", looking up realm NULL<br> rlm_realm: No such realm "NULL"<br> modcall[authorize]: module "suffix" returns noop for request 0<br>
rlm_eap: No EAP-Message, not doing EAP<br> modcall[authorize]: module "eap" returns noop for request 0<br> modcall[authorize]: module "files" returns notfound for request 0<br>radius_xlat: 'homepc'<br>
rlm_sql (sql): sql_set_user escaped user --> 'homepc'<br>radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE Username = 'homepc' ORDER BY id'<br>
rlm_sql (sql): Reserving sql socket id: 3<br>rlm_sql_mysql: query: SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE Username = 'homepc' ORDER BY id<br>rlm_sql_mysql: MYSQL check_error: 2013, returning SQL_DOWN<br>
rlm_sql (sql): Attempting to connect rlm_sql_mysql #3<br>rlm_sql_mysql: Starting connect to MySQL server for #3<br>rlm_sql (sql): Connected new DB handle, #3<br>rlm_sql_mysql: query: SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE Username = 'homepc' ORDER BY id<br>
radius_xlat: 'SELECT <a href="http://radgroupcheck.id">radgroupcheck.id</a>,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE usergroup.Username = 'homepc' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY <a href="http://radgroupcheck.id">radgroupcheck.id</a>'<br>
rlm_sql_mysql: query: SELECT <a href="http://radgroupcheck.id">radgroupcheck.id</a>,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE usergroup.Username = 'homepc' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY <a href="http://radgroupcheck.id">radgroupcheck.id</a><br>
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radreply WHERE Username = 'homepc' ORDER BY id'<br>rlm_sql_mysql: query: SELECT id, UserName, Attribute, Value, op FROM radreply WHERE Username = 'homepc' ORDER BY id<br>
radius_xlat: 'SELECT <a href="http://radgroupreply.id">radgroupreply.id</a>,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE usergroup.Username = 'homepc' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY <a href="http://radgroupreply.id">radgroupreply.id</a>'<br>
rlm_sql_mysql: query: SELECT <a href="http://radgroupreply.id">radgroupreply.id</a>,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE usergroup.Username = 'homepc' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY <a href="http://radgroupreply.id">radgroupreply.id</a><br>
rlm_sql (sql): Released sql socket id: 3<br> modcall[authorize]: module "sql" returns ok for request 0<br>modcall: leaving group authorize (returns ok) for request 0<br>auth: type Local<br>auth: user supplied User-Password matches local User-Password<br>
Sending Access-Accept of id 162 to xxx.147.xxx.xxx port 62810<br>Finished request 0<br>Going to the next request<br>--- Walking the entire request list ---<br>Waking up in 6 seconds...<br>rad_recv: Accounting-Request packet from host xxx.147.xxx.xxx:62812, id=145, length=150<br>
Received Accounting-Request packet from xxx.147.xxx.xxx with invalid signature! (Shared secret is incorrect.)<br>Server rejecting request 1.<br>Finished request 1<br>Going to the next request<br>--- Walking the entire request list ---<br>
Waking up in 4 seconds...<br>--- Walking the entire request list ---<br>Cleaning up request 0 ID 162 with timestamp 497e2a34<br>Waking up in 2 seconds...<br>rad_recv: Accounting-Request packet from host xxx.147.xxx.xxx:62812, id=145, length=150<br>
Discarding duplicate request from client home_segment:62812 - ID: 145<br>--- Walking the entire request list ---<br>Waking up in 1 seconds...<br>--- Walking the entire request list ---<br>Cleaning up request 1 ID 145 with timestamp 497e2a36<br>
Nothing to do. Sleeping until we see a request.<br>rad_recv: Accounting-Request packet from host xxx.147.xxx.xxx:62812, id=145, length=150<br>Received Accounting-Request packet from xxx.147.xxx.xxx with invalid signature! (Shared secret is incorrect.)<br>
Server rejecting request 2.<br>Finished request 2<br>Going to the next request<br>--- Walking the entire request list ---<br>Waking up in 6 seconds...<br>--- Walking the entire request list ---<br>Cleaning up request 2 ID 145 with timestamp 497e2a40<br>
Nothing to do. Sleeping until we see a request.<br> </div>
<div><br><br> </div>
<div class="gmail_quote">On Mon, Jan 26, 2009 at 3:59 PM, Alex M <span dir="ltr"><<a href="mailto:freeradius@lrcommunications.net">freeradius@lrcommunications.net</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div>I'm using 1.5</div>
<div>(for some reason cold not install 2.x)</div>
<div>Ok let me se if i can enable PAP</div>
<div>
<div></div>
<div class="Wj3C7c">
<div><br><br> </div>
<div class="gmail_quote">On Mon, Jan 26, 2009 at 3:20 PM, <span dir="ltr"><<a href="mailto:tnt@kalik.net" target="_blank">tnt@kalik.net</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div>>ok here is the debug info. Note: there is an SQL error which is not a<br>>problem... thats bug in mysql so it will onlyopen connection from second<br>>request. also when i sue the same combination under radius ping with CHAP<br>
>all works good but w/o chap nothing works<br>><br><br></div>What freeradius version is this? It looks old.<br><br>..<br>
<div>> modcall[authorize]: module "preprocess" returns ok for request 0<br>> modcall[authorize]: module "chap" returns noop for request 0<br>> modcall[authorize]: module "mschap" returns noop for request 0<br>
</div>..<br>
<div>> modcall[authorize]: module "suffix" returns noop for request 0<br></div>..<br>
<div>> modcall[authorize]: module "eap" returns noop for request 0<br>> users: Matched entry DEFAULT at line 153<br>> modcall[authorize]: module "files" returns ok for request 0<br><br></div>
You have been told to rem ove Auth-Type System. It's still there.<br><br>..<br>
<div>> modcall[authorize]: module "sql" returns ok for request 0<br>>modcall: leaving group authorize (returns ok) for request 0<br><br></div>pap is not listed in authorize (this *is* a pap request). List it last.<br>
<div>
<div></div>
<div><br>Ivan Kalik<br>Kalik Informatika iSP<br><br>-<br>List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br></div></div>
</blockquote></div><br></div></div></blockquote></div><br>