<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Tahoma
}
--></style>
</head>
<body class='hmmessage'>
Hello,<div><br></div><div>I do not know how I missed that, thanks :)</div><div><br></div><div><br></div><div>But now I am getting different problem. In sql table I entered Cryped password.</div><div><br></div><div><div>(acctsessionid, acctuniqueid, username, realm, nasipaddress, naspor tid, nasporttype, acctstarttime, acctstoptime, acctses siontime, acctauthentic, connectinfo_start, connectinfo_stop, accti nputoctets, acctoutputoctets, calledstationid, callingstationid, ac ctterminatecause, servicetype, framedprotocol, framedipaddress, acctstartdelay, acctstopdelay) VALUES ('%{Acct-S ession-Id}', '%{Acct-Unique-Session-Id}', '%{SQL-User-Name}', '%{Realm}', '%{NAS-IP-Address}', '%{NAS-Port}', '%{NAS-Port -Type}', DATE_SUB('%S', INTERVAL (%{%{Acct-Session -Time}:-0} + %{%{Acct-Delay-Time}:-0}) SECOND), '% S', '%{Acct-Session-Time}', '%{Acct-Authentic}', '', '%{Connect-Inf o}', '%{%{Acct-Input-Gigawords}:-0}' << 32 | '%{%{Acct -Input-Octets}:-0}', '%{%{Acct-Output-Gigawords}:-0}' << 32 | '%{%{Acct-Output-Octets}:-0}', '%{Called-Station-Id}', '%{C alling-Station-Id}', '%{Acct-Terminate-Cause}', '%{Ser vice-Type}', '%{Framed-Protocol}', '%{Framed-IP-Address}', '0', '%{ %{Acct-Delay-Time}:-0}')"</div><div> group_membership_query = "SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority"</div><div> connect_failure_retry_delay = 60</div><div> simul_count_query = ""</div><div> simul_verify_query = "SELECT radacctid, acctsessionid, username, nasipaddress, nasportid, framedipaddress, callingstationid, framedprotocol FROM radacct WHERE username = '%{SQL-User-Name}' AND acctstoptime IS NULL"</div><div> postauth_query = "INSERT INTO radpostauth (use rname, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap -Password}}', '%{reply:Packet-Type}', '%S')"</div><div> safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ 0123456789.-_: /"</div><div> }</div><div>rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked</div><div>rlm_sql (sql): Attempting to connect to root@localhost:/radius</div><div>rlm_sql (sql): starting 0</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #0</div><div>rlm_sql_mysql: Starting connect to MySQL server for #0</div><div>rlm_sql (sql): Connected new DB handle, #0</div><div>rlm_sql (sql): starting 1</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #1</div><div>rlm_sql_mysql: Starting connect to MySQL server for #1</div><div>rlm_sql (sql): Connected new DB handle, #1</div><div>rlm_sql (sql): starting 2</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #2</div><div>rlm_sql_mysql: Starting connect to MySQL server for #2</div><div>rlm_sql (sql): Connected new DB handle, #2</div><div>rlm_sql (sql): starting 3</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #3</div><div>rlm_sql_mysql: Starting connect to MySQL server for #3</div><div>rlm_sql (sql): Connected new DB handle, #3</div><div>rlm_sql (sql): starting 4</div><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #4</div><div>rlm_sql_mysql: Starting connect to MySQL server for #4</div><div>rlm_sql (sql): Connected new DB handle, #4</div><div> Module: Checking preacct {...} for more modules to load</div><div> Module: Linked to module rlm_acct_unique</div><div> Module: Instantiating module "acct_unique" from file /etc/raddb/modules/acct_un ique</div><div> acct_unique {</div><div> key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NA S-Port"</div><div> }</div><div> Module: Checking accounting {...} for more modules to load</div><div> Module: Linked to module rlm_detail</div><div> Module: Instantiating module "detail" from file /etc/raddb/modules/detail</div><div> detail {</div><div> detailfile = "/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d "</div><div> header = "%t"</div><div> detailperm = 384</div><div> dirperm = 493</div><div> locking = no</div><div> log_packet_header = no</div><div> }</div><div> Module: Instantiating module "attr_filter.accounting_response" from file /etc/r addb/modules/attr_filter</div><div> attr_filter attr_filter.accounting_response {</div><div> attrsfile = "/etc/raddb/attrs.accounting_response"</div><div> key = "%{User-Name}"</div><div> }</div><div> Module: Checking session {...} for more modules to load</div><div> Module: Checking post-proxy {...} for more modules to load</div><div> Module: Checking post-auth {...} for more modules to load</div><div> } # modules</div><div>} # server</div><div>radiusd: #### Opening IP addresses and Ports ####</div><div>listen {</div><div> type = "auth"</div><div> ipaddr = *</div><div> port = 0</div><div>}</div><div>listen {</div><div> type = "acct"</div><div> ipaddr = *</div><div> port = 0</div><div>}</div><div>listen {</div><div> type = "control"</div><div> listen {</div><div> socket = "/var/run/radiusd/radiusd.sock"</div><div> }</div><div>}</div><div>listen {</div><div> type = "auth"</div><div> ipaddr = 127.0.0.1</div><div> port = 18120</div><div>}</div><div>Listening on authentication address * port 1812</div><div>Listening on accounting address * port 1813</div><div>Listening on command file /var/run/radiusd/radiusd.sock</div><div>Listening on authentication address 127.0.0.1 port 18120 as server inner-tunnel</div><div>Listening on proxy address * port 1814</div><div>Ready to process requests.</div><div>rad_recv: Access-Request packet from host xxx.xxx.xxx.xxx port 38635, id=26, lengt h=206</div><div> Acct-Multi-Session-Id = "1291360938971"</div><div> Cisco-Attr-130 = 0x683332332d63616c6c696e672d656e74657270726973652d69643 d656e74504258</div><div> Calling-Station-Id = "81609000"</div><div> NAS-Identifier = "intraswitch"</div><div> NAS-IP-Address = xxx.xxx.xxx.xxx</div><div> 3GPP2-Prepaid-acct-Capability = 0x010600000002</div><div> 3GPP2-Session-Termination-Capability = 1</div><div> h323-conf-id = "h323-conf-id=1291360938971"</div><div> Vendor-Specific = 0x00000009</div><div> Event-Timestamp = "Dec 3 2010 08:22:18 CET"</div><div> User-Name = "081609000"</div><div> User-Password = "1234"</div><div># Executing section authorize from file /etc/raddb/sites-enabled/default</div><div>+- entering group authorize {...}</div><div>++[preprocess] returns ok</div><div>++[chap] returns noop</div><div>++[mschap] returns noop</div><div>++[digest] returns noop</div><div>[sql] expand: %{User-Name} -> 081609000</div><div>[sql] sql_set_user escaped user --> '081609000'</div><div>rlm_sql (sql): Reserving sql socket id: 4</div><div>[sql] expand: SELECT id, username, attribute, value, op FROM radchec k WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE usern ame = '081609000' ORDER BY id</div><div>[sql] User found in radcheck table</div><div>[sql] expand: SELECT id, username, attribute, value, op FROM radrepl y WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE usern ame = '081609000' ORDER BY id</div><div>[sql] expand: SELECT groupname FROM radusergroup WHERE use rname = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = '081609000' ORDER BY priority</div><div>[sql] expand: SELECT id, groupname, attribute, Value, op F ROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgro upcheck WHERE groupname = 'static' ORDER BY id</div><div>[sql] User found in group static</div><div>[sql] expand: SELECT id, groupname, attribute, value, op F ROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgro upreply WHERE groupname = 'static' ORDER BY id</div><div>rlm_sql (sql): Released sql socket id: 4</div><div>++[sql] returns ok</div><div>[suffix] No '@' in User-Name = "081609000", looking up realm NULL</div><div>[suffix] No such realm "NULL"</div><div>++[suffix] returns noop</div><div>[eap] No EAP-Message, not doing EAP</div><div>++[eap] returns noop</div><div>++[unix] returns notfound</div><div>[sql] expand: %{User-Name} -> 081609000</div><div>[sql] sql_set_user escaped user --> '081609000'</div><div>rlm_sql (sql): Reserving sql socket id: 3</div><div>[sql] expand: SELECT id, username, attribute, value, op FROM radchec k WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE usern ame = '081609000' ORDER BY id</div><div>[sql] User found in radcheck table</div><div>[sql] expand: SELECT id, username, attribute, value, op FROM radrepl y WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE usern ame = '081609000' ORDER BY id</div><div>[sql] expand: SELECT groupname FROM radusergroup WHERE use rname = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = '081609000' ORDER BY priority</div><div>[sql] expand: SELECT id, groupname, attribute, Value, op F ROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgro upcheck WHERE groupname = 'static' ORDER BY id</div><div>[sql] User found in group static</div><div>[sql] expand: SELECT id, groupname, attribute, value, op F ROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgro upreply WHERE groupname = 'static' ORDER BY id</div><div>rlm_sql (sql): Released sql socket id: 3</div><div>++[sql] returns ok</div><div>++[expiration] returns noop</div><div>++[logintime] returns noop</div><div>++[pap] returns updated</div><div>Found Auth-Type = PAP</div><div># Executing group from file /etc/raddb/sites-enabled/default</div><div>+- entering group PAP {...}</div><div>[pap] login attempt with password "1234"</div><div>[pap] Using CRYPT password "1234"</div><div>[pap] Passwords don't match</div><div>++[pap] returns reject</div><div>Failed to authenticate the user.</div><div>Using Post-Auth-Type Reject</div><div># Executing group from file /etc/raddb/sites-enabled/default</div><div>+- entering group REJECT {...}</div><div>[attr_filter.access_reject] expand: %{User-Name} -> 081609000</div><div> attr_filter: Matched entry DEFAULT at line 11</div><div>++[attr_filter.access_reject] returns updated</div><div>Delaying reject of request 0 for 1 seconds</div><div>Going to the next request</div><div>Waking up in 0.9 seconds.</div><div>Sending delayed reject for request 0</div><div>Sending Access-Reject of id 26 to xxx.xxx.xxx.xxx port 38635</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host xxx.xxx.xxx.xxx port 38635, id=26, lengt h=206</div><div>Sending duplicate reply to client intraswitch port 38635 - ID: 26</div><div>Sending Access-Reject of id 26 to xxx.xxx.xxx.xxx port 38635</div><div>Waking up in 4.9 seconds.</div><div>Cleaning up request 0 ID 26 with timestamp +8</div><div>Ready to process requests.</div><div><br></div><div>Why passwords do not match if they are the same. (1234)?</div><div><br></div><div><br></div><div>Thanks for your help!!</div><div><br></div><div>miha</div><div><br></div><br>> Date: Thu, 2 Dec 2010 16:31:33 +0000<br>> From: A.L.M.Buxey@lboro.ac.uk<br>> To: freeradius-users@lists.freeradius.org<br>> Subject: Re: Clear text password (radius)<br>> <br>> Hi,<br>> <br>> > WARNING: Unprintable characters in the password. Double-check the<br>> > shared secret on the server and the NAS!<br>> <br>> thats your answer. the server doesnt lie<br>> <br>> <br>> alan<br>> -<br>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html<br></div> </body>
</html>