<div dir="ltr">Hi, previously i've attached my log as attachment :)<div><br></div><div style>Please let see my radiusd -X output when i try login on squid prompt </div><div style><br></div><div style>...</div><div style>
<br></div><div style><div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #2</div><div>rlm_sql_mysql: Starting connect to MySQL server for #2</div><div>rlm_sql (sql): Connected new DB handle, #2</div><div>rlm_sql (sql): starting 3</div>
<div>rlm_sql (sql): Attempting to connect rlm_sql_mysql #3</div><div>rlm_sql_mysql: Starting connect to MySQL server for #3</div><div>rlm_sql (sql): Connected new DB handle, #3</div><div>rlm_sql (sql): starting 4</div><div>
rlm_sql (sql): Attempting to connect rlm_sql_mysql #4</div><div>rlm_sql_mysql: Starting connect to MySQL server for #4</div><div>rlm_sql (sql): Connected new DB handle, #4</div><div> Module: Checking preacct {...} for more modules to load</div>
<div> Module: Linked to module rlm_acct_unique</div><div> Module: Instantiating module "acct_unique" from file /usr/local/etc/raddb/modules/acct_unique</div><div> acct_unique {</div><div><span class="" style="white-space:pre"> </span>key = "User-Name, Acct-Session-Id, NAS-IP-Address, NAS-Identifier, NAS-Port"</div>
<div> }</div><div> Module: Checking accounting {...} for more modules to load</div><div> Module: Linked to module rlm_detail</div><div> Module: Instantiating module "detail" from file /usr/local/etc/raddb/modules/detail</div>
<div> detail {</div><div><span class="" style="white-space:pre"> </span>detailfile = "/usr/local/var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"</div><div><span class="" style="white-space:pre"> </span>header = "%t"</div>
<div><span class="" style="white-space:pre"> </span>detailperm = 384</div><div><span class="" style="white-space:pre"> </span>dirperm = 493</div><div><span class="" style="white-space:pre"> </span>locking = no</div><div><span class="" style="white-space:pre"> </span>log_packet_header = no</div>
<div> }</div><div> Module: Linked to module rlm_attr_filter</div><div> Module: Instantiating module "attr_filter.accounting_response" from file /usr/local/etc/raddb/modules/attr_filter</div><div> attr_filter attr_filter.accounting_response {</div>
<div><span class="" style="white-space:pre"> </span>attrsfile = "/usr/local/etc/raddb/attrs.accounting_response"</div><div><span class="" style="white-space:pre"> </span>key = "%{User-Name}"</div><div>
<span class="" style="white-space:pre"> </span>relaxed = no</div><div> }</div><div>reading pairlist file /usr/local/etc/raddb/attrs.accounting_response</div><div> Module: Checking session {...} for more modules to load</div>
<div> Module: Linked to module rlm_radutmp</div><div> Module: Instantiating module "radutmp" from file /usr/local/etc/raddb/modules/radutmp</div><div> radutmp {</div><div><span class="" style="white-space:pre"> </span>filename = "/usr/local/var/log/radius/radutmp"</div>
<div><span class="" style="white-space:pre"> </span>username = "%{User-Name}"</div><div><span class="" style="white-space:pre"> </span>case_sensitive = yes</div><div><span class="" style="white-space:pre"> </span>check_with_nas = yes</div>
<div><span class="" style="white-space:pre"> </span>perm = 384</div><div><span class="" style="white-space:pre"> </span>callerid = yes</div><div> }</div><div> Module: Checking post-proxy {...} for more modules to load</div>
<div> Module: Checking post-auth {...} for more modules to load</div><div> Module: Instantiating module "attr_filter.access_reject" from file /usr/local/etc/raddb/modules/attr_filter</div><div> attr_filter attr_filter.access_reject {</div>
<div><span class="" style="white-space:pre"> </span>attrsfile = "/usr/local/etc/raddb/attrs.access_reject"</div><div><span class="" style="white-space:pre"> </span>key = "%{User-Name}"</div><div><span class="" style="white-space:pre"> </span>relaxed = no</div>
<div> }</div><div>reading pairlist file /usr/local/etc/raddb/attrs.access_reject</div><div> } # modules</div><div>} # server</div><div>server inner-tunnel { # from file /usr/local/etc/raddb/sites-enabled/inner-tunnel</div>
<div> modules {</div><div> Module: Checking authenticate {...} for more modules to load</div><div> Module: Checking authorize {...} for more modules to load</div><div> Module: Checking session {...} for more modules to load</div>
<div> Module: Checking post-proxy {...} for more modules to load</div><div> Module: Checking post-auth {...} for more modules to load</div><div> } # modules</div><div>} # server</div><div>server coa { # from file /usr/local/etc/raddb/sites-enabled/coa</div>
<div> modules {</div><div> Module: Checking recv-coa {...} for more modules to load</div><div> Module: Linked to module rlm_always</div><div> Module: Instantiating module "ok" from file /usr/local/etc/raddb/modules/always</div>
<div> always ok {</div><div><span class="" style="white-space:pre"> </span>rcode = "ok"</div><div><span class="" style="white-space:pre"> </span>simulcount = 0</div><div><span class="" style="white-space:pre"> </span>mpp = no</div>
<div> }</div><div> Module: Checking send-coa {...} for more modules to load</div><div> } # modules</div><div>} # server</div><div>radiusd: #### Opening IP addresses and Ports ####</div><div>listen {</div><div><span class="" style="white-space:pre"> </span>type = "auth"</div>
<div><span class="" style="white-space:pre"> </span>ipaddr = *</div><div><span class="" style="white-space:pre"> </span>port = 0</div><div>}</div><div>listen {</div><div><span class="" style="white-space:pre"> </span>type = "acct"</div>
<div><span class="" style="white-space:pre"> </span>ipaddr = *</div><div><span class="" style="white-space:pre"> </span>port = 0</div><div>}</div><div>listen {</div><div><span class="" style="white-space:pre"> </span>type = "coa"</div>
<div><span class="" style="white-space:pre"> </span>server = "coa"</div><div><span class="" style="white-space:pre"> </span>ipaddr = *</div><div><span class="" style="white-space:pre"> </span>port = 3799</div><div>
}</div><div>listen {</div><div><span class="" style="white-space:pre"> </span>type = "control"</div><div> listen {</div><div><span class="" style="white-space:pre"> </span>socket = "/usr/local/var/run/radiusd/radiusd.sock"</div>
<div> }</div><div>}</div><div>listen {</div><div><span class="" style="white-space:pre"> </span>type = "auth"</div><div><span class="" style="white-space:pre"> </span>ipaddr = 127.0.0.1</div><div><span class="" style="white-space:pre"> </span>port = 18120</div>
<div>}</div><div> ... adding new socket proxy address * port 54492</div><div>Listening on authentication address * port 1812</div><div>Listening on accounting address * port 1813</div><div>Listening on coa address * port 3799 as server coa</div>
<div>Listening on command file /usr/local/var/run/radiusd/radiusd.sock</div><div>Listening on authentication address 127.0.0.1 port 18120 as server inner-tunnel</div><div>Listening on proxy address * port 1814</div><div>Ready to process requests.</div>
<div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div><span class="" style="white-space:pre"> </span>User-Name = "alice"</div><div><span class="" style="white-space:pre"> </span>User-Password = "\335\307-\245#ˎ!7\036f\023\217\3630\257"</div>
<div><span class="" style="white-space:pre"> </span>NAS-Port = 111</div><div><span class="" style="white-space:pre"> </span>NAS-Port-Type = Async</div><div><span class="" style="white-space:pre"> </span>NAS-IP-Address = 192.168.2.3</div>
<div># Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group authorize {...}</div><div>++[preprocess] returns ok</div><div>++[chap] returns noop</div><div>++[mschap] returns noop</div>
<div>++[digest] returns noop</div><div>[suffix] No '@' in User-Name = "alice", looking up realm NULL</div><div>[suffix] No such realm "NULL"</div><div>++[suffix] returns noop</div><div>[eap] No EAP-Message, not doing EAP</div>
<div>++[eap] returns noop</div><div>++[files] returns noop</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div><div>[sql] sql_set_user escaped user --> 'alice'</div>
<div>rlm_sql (sql): Reserving sql socket id: 4</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'alice' ORDER BY id</div>
<div>[sql] User found in radcheck table</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'alice' ORDER BY id</div>
<div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'alice' ORDER BY priority</div>
<div>rlm_sql (sql): Released sql socket id: 4</div><div>++[sql] returns ok</div><div>++[expiration] returns noop</div><div>++[logintime] returns noop</div><div>++[pap] returns updated</div><div>Found Auth-Type = PAP</div>
<div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group PAP {...}</div><div>[pap] login attempt with password "\DD\C7-\A5#\CB?!7?f??\F30\AF"</div><div>[pap] Using clear text password "password"</div>
<div>[pap] Passwords don't match</div><div>++[pap] returns reject</div><div>Failed to authenticate the user.</div><div> WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!</div>
<div>Using Post-Auth-Type REJECT</div><div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group REJECT {...}</div><div>[attr_filter.access_reject] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>attr_filter: Matched entry DEFAULT at line 11</div><div>++[attr_filter.access_reject] returns updated</div><div>Delaying reject of request 0 for 1 seconds</div><div>Going to the next request</div><div>Waking up in 0.9 seconds.</div>
<div>Sending delayed reject for request 0</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 3.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 2.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 1.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 0.9 seconds.</div><div>Cleaning up request 0 ID 4 with timestamp +98</div>
<div>Ready to process requests.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div><span class="" style="white-space:pre"> </span>User-Name = "alice"</div><div>
<span class="" style="white-space:pre"> </span>User-Password = "\335\307-\245#ˎ!7\036f\023\217\3630\257"</div><div><span class="" style="white-space:pre"> </span>NAS-Port = 111</div><div><span class="" style="white-space:pre"> </span>NAS-Port-Type = Async</div>
<div><span class="" style="white-space:pre"> </span>NAS-IP-Address = 192.168.2.3</div><div># Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group authorize {...}</div>
<div>++[preprocess] returns ok</div><div>++[chap] returns noop</div><div>++[mschap] returns noop</div><div>++[digest] returns noop</div><div>[suffix] No '@' in User-Name = "alice", looking up realm NULL</div>
<div>[suffix] No such realm "NULL"</div><div>++[suffix] returns noop</div><div>[eap] No EAP-Message, not doing EAP</div><div>++[eap] returns noop</div><div>++[files] returns noop</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>[sql] sql_set_user escaped user --> 'alice'</div><div>rlm_sql (sql): Reserving sql socket id: 3</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'alice' ORDER BY id</div>
<div>[sql] User found in radcheck table</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'alice' ORDER BY id</div>
<div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'alice' ORDER BY priority</div>
<div>rlm_sql (sql): Released sql socket id: 3</div><div>++[sql] returns ok</div><div>++[expiration] returns noop</div><div>++[logintime] returns noop</div><div>++[pap] returns updated</div><div>Found Auth-Type = PAP</div>
<div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group PAP {...}</div><div>[pap] login attempt with password "\DD\C7-\A5#\CB?!7?f??\F30\AF"</div><div>[pap] Using clear text password "password"</div>
<div>[pap] Passwords don't match</div><div>++[pap] returns reject</div><div>Failed to authenticate the user.</div><div> WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!</div>
<div>Using Post-Auth-Type REJECT</div><div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group REJECT {...}</div><div>[attr_filter.access_reject] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>attr_filter: Matched entry DEFAULT at line 11</div><div>++[attr_filter.access_reject] returns updated</div><div>Delaying reject of request 1 for 1 seconds</div><div>Going to the next request</div><div>Waking up in 0.9 seconds.</div>
<div>Sending delayed reject for request 1</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 3.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 2.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 1.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 0.9 seconds.</div><div>Cleaning up request 1 ID 4 with timestamp +104</div>
<div>Ready to process requests.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div><span class="" style="white-space:pre"> </span>User-Name = "alice"</div><div>
<span class="" style="white-space:pre"> </span>User-Password = "\335\307-\245#ˎ!7\036f\023\217\3630\257"</div><div><span class="" style="white-space:pre"> </span>NAS-Port = 111</div><div><span class="" style="white-space:pre"> </span>NAS-Port-Type = Async</div>
<div><span class="" style="white-space:pre"> </span>NAS-IP-Address = 192.168.2.3</div><div># Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group authorize {...}</div>
<div>++[preprocess] returns ok</div><div>++[chap] returns noop</div><div>++[mschap] returns noop</div><div>++[digest] returns noop</div><div>[suffix] No '@' in User-Name = "alice", looking up realm NULL</div>
<div>[suffix] No such realm "NULL"</div><div>++[suffix] returns noop</div><div>[eap] No EAP-Message, not doing EAP</div><div>++[eap] returns noop</div><div>++[files] returns noop</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>[sql] sql_set_user escaped user --> 'alice'</div><div>rlm_sql (sql): Reserving sql socket id: 2</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'alice' ORDER BY id</div>
<div>[sql] User found in radcheck table</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'alice' ORDER BY id</div>
<div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'alice' ORDER BY priority</div>
<div>rlm_sql (sql): Released sql socket id: 2</div><div>++[sql] returns ok</div><div>++[expiration] returns noop</div><div>++[logintime] returns noop</div><div>++[pap] returns updated</div><div>Found Auth-Type = PAP</div>
<div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group PAP {...}</div><div>[pap] login attempt with password "\DD\C7-\A5#\CB?!7?f??\F30\AF"</div><div>[pap] Using clear text password "password"</div>
<div>[pap] Passwords don't match</div><div>++[pap] returns reject</div><div>Failed to authenticate the user.</div><div> WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!</div>
<div>Using Post-Auth-Type REJECT</div><div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group REJECT {...}</div><div>[attr_filter.access_reject] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>attr_filter: Matched entry DEFAULT at line 11</div><div>++[attr_filter.access_reject] returns updated</div><div>Delaying reject of request 2 for 1 seconds</div><div>Going to the next request</div><div>Waking up in 0.9 seconds.</div>
<div>Sending delayed reject for request 2</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 3.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 2.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 1.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 0.9 seconds.</div><div>Cleaning up request 2 ID 4 with timestamp +110</div><div>Ready to process requests.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div><span class="" style="white-space:pre"> </span>User-Name = "alice"</div><div><span class="" style="white-space:pre"> </span>User-Password = "\335\307-\245#ˎ!7\036f\023\217\3630\257"</div><div><span class="" style="white-space:pre"> </span>NAS-Port = 111</div>
<div><span class="" style="white-space:pre"> </span>NAS-Port-Type = Async</div><div><span class="" style="white-space:pre"> </span>NAS-IP-Address = 192.168.2.3</div><div># Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default</div>
<div>+- entering group authorize {...}</div><div>++[preprocess] returns ok</div><div>++[chap] returns noop</div><div>++[mschap] returns noop</div><div>++[digest] returns noop</div><div>[suffix] No '@' in User-Name = "alice", looking up realm NULL</div>
<div>[suffix] No such realm "NULL"</div><div>++[suffix] returns noop</div><div>[eap] No EAP-Message, not doing EAP</div><div>++[eap] returns noop</div><div>++[files] returns noop</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>[sql] sql_set_user escaped user --> 'alice'</div><div>rlm_sql (sql): Reserving sql socket id: 1</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'alice' ORDER BY id</div>
<div>[sql] User found in radcheck table</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'alice' ORDER BY id</div>
<div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'alice' ORDER BY priority</div>
<div>rlm_sql (sql): Released sql socket id: 1</div><div>++[sql] returns ok</div><div>++[expiration] returns noop</div><div>++[logintime] returns noop</div><div>++[pap] returns updated</div><div>Found Auth-Type = PAP</div>
<div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group PAP {...}</div><div>[pap] login attempt with password "\DD\C7-\A5#\CB?!7?f??\F30\AF"</div><div>[pap] Using clear text password "password"</div>
<div>[pap] Passwords don't match</div><div>++[pap] returns reject</div><div>Failed to authenticate the user.</div><div> WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!</div>
<div>Using Post-Auth-Type REJECT</div><div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group REJECT {...}</div><div>[attr_filter.access_reject] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>attr_filter: Matched entry DEFAULT at line 11</div><div>++[attr_filter.access_reject] returns updated</div><div>Delaying reject of request 3 for 1 seconds</div><div>Going to the next request</div><div>Waking up in 0.9 seconds.</div>
<div>Sending delayed reject for request 3</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 3.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 2.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 1.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div><div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div>
<div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 0.9 seconds.</div><div>Cleaning up request 3 ID 4 with timestamp +116</div><div>Ready to process requests.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div><span class="" style="white-space:pre"> </span>User-Name = "alice"</div><div><span class="" style="white-space:pre"> </span>User-Password = "\335\307-\245#ˎ!7\036f\023\217\3630\257"</div><div><span class="" style="white-space:pre"> </span>NAS-Port = 111</div>
<div><span class="" style="white-space:pre"> </span>NAS-Port-Type = Async</div><div><span class="" style="white-space:pre"> </span>NAS-IP-Address = 192.168.2.3</div><div># Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default</div>
<div>+- entering group authorize {...}</div><div>++[preprocess] returns ok</div><div>++[chap] returns noop</div><div>++[mschap] returns noop</div><div>++[digest] returns noop</div><div>[suffix] No '@' in User-Name = "alice", looking up realm NULL</div>
<div>[suffix] No such realm "NULL"</div><div>++[suffix] returns noop</div><div>[eap] No EAP-Message, not doing EAP</div><div>++[eap] returns noop</div><div>++[files] returns noop</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>[sql] sql_set_user escaped user --> 'alice'</div><div>rlm_sql (sql): Reserving sql socket id: 0</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'alice' ORDER BY id</div>
<div>[sql] User found in radcheck table</div><div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'alice' ORDER BY id</div>
<div>[sql] <span class="" style="white-space:pre"> </span>expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'alice' ORDER BY priority</div>
<div>rlm_sql (sql): Released sql socket id: 0</div><div>++[sql] returns ok</div><div>++[expiration] returns noop</div><div>++[logintime] returns noop</div><div>++[pap] returns updated</div><div>Found Auth-Type = PAP</div>
<div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group PAP {...}</div><div>[pap] login attempt with password "\DD\C7-\A5#\CB?!7?f??\F30\AF"</div><div>[pap] Using clear text password "password"</div>
<div>[pap] Passwords don't match</div><div>++[pap] returns reject</div><div>Failed to authenticate the user.</div><div> WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!</div>
<div>Using Post-Auth-Type REJECT</div><div># Executing group from file /usr/local/etc/raddb/sites-enabled/default</div><div>+- entering group REJECT {...}</div><div>[attr_filter.access_reject] <span class="" style="white-space:pre"> </span>expand: %{User-Name} -> alice</div>
<div>attr_filter: Matched entry DEFAULT at line 11</div><div>++[attr_filter.access_reject] returns updated</div><div>Delaying reject of request 4 for 1 seconds</div><div>Going to the next request</div><div>Waking up in 0.9 seconds.</div>
<div>Sending delayed reject for request 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 4.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 3.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 2.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 1.9 seconds.</div><div>rad_recv: Access-Request packet from host 192.168.2.3 port 55467, id=4, length=63</div>
<div>Sending duplicate reply to client localprivate port 55467 - ID: 4</div><div>Sending Access-Reject of id 4 to 192.168.2.3 port 55467</div><div>Waking up in 0.9 seconds.</div><div>Cleaning up request 4 ID 4 with timestamp +122</div>
<div>Ready to process requests.</div><div><br></div><div><br></div></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, Apr 11, 2013 at 11:02 PM, <span dir="ltr"><<a href="mailto:A.L.M.Buxey@lboro.ac.uk" target="_blank">A.L.M.Buxey@lboro.ac.uk</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi,<br>
<div class="im"><br>
> Actually my shared password is default using testing123.This is my<br>
> configuration on my squid_rad_auth.conf<br>
<br>
</div>as previously discussed, you are not sending full output of radiusd -X<br>
and so we are having to guess. we cannot guess your problems away<br>
at least send us your clients.conf from FreeRADIUS<br>
<div class="HOEnZb"><div class="h5"><br>
alan<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</div></div></blockquote></div><br><br clear="all"><div><br></div>-- <br><b>M.Iftakhul Anwar</b><br>Meruvian Integrator<div><span style="color:rgb(34,34,34);font-family:arial,sans-serif;font-size:13px;background-color:rgb(255,255,255)">High Performance Computing / Cloud Computing (HPC/CC)</span><br>
<div><br><div style="text-align:left"><br></div></div></div><div style="text-align:left"><div>Office Phone : 021-93586577</div><div>Mobile Phone : 085215331477</div><div>Blog : <a href="http://blog.mervpolis.com/roller/anwar" target="_blank">http://blog.mervpolis.com/roller/anwar</a></div>
<div>FB : <a href="http://www.facebook.com/troya.adromeda" target="_blank">http://www.facebook.com/troya.adromeda</a></div><div>Website : <a href="http://www.meruvian.org" target="_blank">www.meruvian.org</a></div>
<div><br></div></div>
</div>