Hi, <br />
<br />
I am not able to get authenticate from the free radius server. PLease fins the logs for the same on my LNS<br />
<br />
#################################################################<br />
<br />
072633: Dec 3 22:13:48.335 IST: ppp491 PPP: Authorization required<br />
072634: Dec 3 22:13:48.335 IST: ppp491 PPP: Sent CHAP LOGIN Request<br />
072635: Dec 3 22:13:48.335 IST: RADIUS/ENCODE(00001A39):Orig. component type = VPDN<br />
072636: Dec 3 22:13:48.335 IST: RADIUS: AAA Unsupported Attr: interface [157] 15 <br />
072637: Dec 3 22:13:48.335 IST: RADIUS: 55 6E 69 71 2D 53 65 73 73 2D 49 44 34 [Uniq-Sess-ID4]<br />
072638: Dec 3 22:13:48.335 IST: RADIUS(00001A39): Config NAS IP: 192.168.243.250<br />
072639: Dec 3 22:13:48.335 IST: RADIUS/ENCODE(00001A39): acct_session_id: 10199<br />
072640: Dec 3 22:13:48.335 IST: RADIUS(00001A39): sending<br />
072641: Dec 3 22:13:48.335 IST: RADIUS(00001A39): Send Access-Request to 172.31.6.158:1645 id 1645/128, len 133<br />
072642: Dec 3 22:13:48.335 IST: RADIUS: authenticator 44 7F FA 34 1E FE 1E 8C - DB F7 84 BE 44 0A 5E 40<br />
072643: Dec 3 22:13:48.335 IST: RADIUS: Framed-Protocol [7] 6 PPP [1]<br />
072644: Dec 3 22:13:48.335 IST: RADIUS: User-Name [1] 17 "tcl1@cisco1.com"<br />
072645: Dec 3 22:13:48.335 IST: RADIUS: CHAP-Password [3] 19 *<br />
072646: Dec 3 22:13:48.335 IST: RADIUS: NAS-Port-Type [61] 6 Virtual [5]<br />
072647: Dec 3 22:13:48.335 IST: RADIUS: NAS-Port [5] 6 491 <br />
072648: Dec 3 22:13:48.335 IST: RADIUS: NAS-Port-Id [87] 17 "Uniq-Sess-ID491"<br />
072649: Dec 3 22:13:48.335 IST: RADIUS: Calling-Station-Id [31] 17 "404001623674242"<br />
072650: Dec 3 22:13:48.335 IST: RADIUS: Connect-Info [77] 13 "64000/57600"<br />
072651: Dec 3 22:13:48.335 IST: RADIUS: Service-Type [6] 6 Framed [2]<br />
072652: Dec 3 22:13:48.335 IST: RADIUS: NAS-IP-Address [4] 6 192.168.243.250 <br />
072653: Dec 3 22:13:48.567 IST: ppp492 PPP: Authorization required<br />
072654: Dec 3 22:13:48.567 IST: ppp492 PPP: Sent CHAP LOGIN Request<br />
072655: Dec 3 22:13:48.567 IST: RADIUS/ENCODE(00001A3A):Orig. component type = VPDN<br />
072656: Dec 3 22:13:48.567 IST: RADIUS: AAA Unsupported Attr: interface [157] 15 <br />
072657: Dec 3 22:13:48.567 IST: RADIUS: 55 6E 69 71 2D 53 65 73 73 2D 49 44 34 [Uniq-Sess-ID4]<br />
072658: Dec 3 22:13:48.567 IST: RADIUS(00001A3A): Config NAS IP: 192.168.243.250<br />
072659: Dec 3 22:13:48.567 IST: RADIUS/ENCODE(00001A3A): acct_session_id: 10200<br />
072660: Dec 3 22:13:48.567 IST: RADIUS(00001A3A): sending<br />
072661: Dec 3 22:13:48.567 IST: RADIUS(00001A3A): Send Access-Request to 172.31.6.158:1645 id 1645/129, len 133<br />
072662: Dec 3 22:13:48.567 IST: RADIUS: authenticator 24 41 31 64 0C 88 D8 9F - F6 12 B3 78 5E B7 27 09<br />
072663: Dec 3 22:13:48.567 IST: RADIUS: Framed-Protocol [7] 6 PPP [1]<br />
072664: Dec 3 22:13:48.571 IST: RADIUS: User-Name [1] 17 "tcl2@cisco1.com"<br />
072665: Dec 3 22:13:48.571 IST: RADIUS: CHAP-Password [3] 19 *<br />
072666: Dec 3 22:13:48.571 IST: RADIUS: NAS-Port-Type [61] 6 Virtual [5]<br />
072667: Dec 3 22:13:48.571 IST: RADIUS: NAS-Port [5] 6 492 <br />
072668: Dec 3 22:13:48.571 IST: RADIUS: NAS-Port-Id [87] 17 "Uniq-Sess-ID492"<br />
072669: Dec 3 22:13:48.571 IST: RADIUS: Calling-Station-Id [31] 17 "404000341609662"<br />
072670: Dec 3 22:13:48.571 IST: RADIUS: Connect-Info [77] 13 "64000/57600"<br />
072671: Dec 3 22:13:48.571 IST: RADIUS: Service-Type [6] 6 Framed [2]<br />
072672: Dec 3 22:13:48.571 IST: RADIUS: NAS-IP-Address [4] 6 192.168.243.250 <br />
072673: Dec 3 22:13:49.351 IST: RADIUS: Received from id 1645/128 172.31.6.158:1645, Access-Reject, len 20<br />
072674: Dec 3 22:13:49.351 IST: RADIUS: authenticator FC 4F 4F CC 30 09 61 22 - AC E0 57 93 17 B0 C5 A9<br />
072675: Dec 3 22:13:49.351 IST: RADIUS(00001A39): Received from id 1645/128<br />
072676: Dec 3 22:13:49.351 IST: ppp491 PPP: Received LOGIN Response FAIL<br />
072677: Dec 3 22:13:49.351 IST: ppp491 CHAP: O FAILURE id 1 len 25 msg is "Authentication failed"<br />
072678: Dec 3 22:13:49.583 IST: RADIUS: Received from id 1645/129 172.31.6.158:1645, Access-Reject, len 20<br />
072679: Dec 3 22:13:49.583 IST: RADIUS: authenticator 94 73 B6 A0 77 2C FB 52 - 91 5A 52 20 A1 8A 00 A5<br />
072680: Dec 3 22:13:49.583 IST: RADIUS(00001A3A): Received from id 1645/129<br />
072681: Dec 3 22:13:49.583 IST: ppp492 PPP: Received LOGIN Response FAIL<br />
072682: Dec 3 22:13:49.583 IST: ppp492 CHAP: O FAILURE id 1 len 25 msg is "Authentication failed"<br />
<br />
###################################################################<br />
<br />
Debug Logs on the FreeRadius server<br />
<br />
<br />
########################################################<br />
<br />
rad_recv: Access-Request packet from host 192.168.243.250 port 1645, id=139, length=164<br />
Framed-Protocol = PPP<br />
User-Name = "tcl1@cisco1.com"<br />
CHAP-Challenge = 0xe9c73ba6d4a4d55f4ecb135615450c55dcb53dc4a438afe357bb024f5e<br />
CHAP-Password = 0x012699c4cf08980486a7c5a2f124022fb7<br />
NAS-Port-Type = Virtual<br />
NAS-Port = 502<br />
NAS-Port-Id = "Uniq-Sess-ID502"<br />
Calling-Station-Id = "404000834680158"<br />
Connect-Info = "64000/57600"<br />
Service-Type = Framed-User<br />
NAS-IP-Address = 192.168.243.250<br />
+- entering group authorize {...}<br />
++[preprocess] returns ok<br />
[chap] Setting 'Auth-Type := CHAP'<br />
++[chap] returns ok<br />
++[mschap] returns noop<br />
[suffix] Looking up realm "cisco1.com" for User-Name = "tcl1@cisco1.com"<br />
[suffix] Found realm "cisco1.com"<br />
[suffix] Adding Realm = "cisco1.com"<br />
[suffix] Authentication realm is LOCAL.<br />
++[suffix] returns ok<br />
[eap] No EAP-Message, not doing EAP<br />
++[eap] returns noop<br />
++[unix] returns notfound<br />
[files] users: Matched entry DEFAULT at line 172<br />
++[files] returns ok<br />
++[expiration] returns noop<br />
++[logintime] returns noop<br />
[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.<br />
++[pap] returns noop<br />
Found Auth-Type = CHAP<br />
+- entering group CHAP {...}<br />
[chap] login attempt by "tcl1@cisco1.com" with CHAP password<br />
[chap] Cleartext-Password is required for authentication<br />
++[chap] returns invalid<br />
Failed to authenticate the user.<br />
Using Post-Auth-Type Reject<br />
+- entering group REJECT {...}<br />
[attr_filter.access_reject] expand: %{User-Name} -> tcl1@cisco1.com<br />
attr_filter: Matched entry DEFAULT at line 11<br />
++[attr_filter.access_reject] returns updated<br />
Delaying reject of request 37 for 1 seconds<br />
Going to the next request<br />
Waking up in 0.9 seconds.<br />
Sending delayed reject for request 37<br />
Sending Access-Reject of id 139 to 192.168.243.250 port 1645<br />
<br />
###############################################################<br />
<br />
Please let me know where I have done a mis-config.<br />
<br />
Thanks and Regards,<br />
Dave.<br />
<br />
<br><Table border=0 Width=644 Height=57 cellspacing=0 cellpadding=0 style="font-family:Verdana;font-size:11px;line-height:15px;"><TR><td><A HREF="http://sigads.rediff.com/RealMedia/ads/click_nx.ads/www.rediffmail.com/signatureline.htm@Middle?" target="_blank"><IMG SRC="http://sigads.rediff.com/RealMedia/ads/adstream_nx.ads/www.rediffmail.com/signatureline.htm@Middle"></A></td></TR></Table>