On Fri, Jul 11, 2008 at 08:14:13PM +0200, Maciej Drobniuch wrote:
Hi!
radtest fred somepass localhost 1813 somesecret Sending Access-Request of id 102 to 127.0.0.1 port 1812 User-Name = "fred" User-Password = "somepass" NAS-IP-Address = 127.0.0.1 NAS-Port = 1813 rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=102, length=20 rad_verify: Received Access-Reject packet from client 127.0.0.1 port 1812 with invalid signature (err=2)! (Shared secret is incorrect.)
radiusd -X rad_recv: Access-Request packet from host 127.0.0.1 port 32770, id=102, length=56 User-Name = "fred" User-Password = "h\347`\005\270\202\336<\336i~e\031\r\021["
Clue number one. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
NAS-IP-Address = 127.0.0.1 NAS-Port = 1813 +- entering group authorize ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop rlm_realm: No '@' in User-Name = "fred", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop rlm_eap: No EAP-Message, not doing EAP ++[eap] returns noop ++[unix] returns notfound ++[files] returns noop ++[expiration] returns noop ++[logintime] returns noop rlm_pap: WARNING! No "known good" password found for the user. Authentication may fail because of this. ++[pap] returns noop auth: No authenticate method (Auth-Type) configuration found for the request: Rejecting the user auth: Failed to validate the user. WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS!
Useful hint. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
What's wrong with this line >User-Password = "h\347`\005\270\202\336<\336i~e\031\r\021[" ???
Please read the debug output. -- Scott Lambert KC5MLE Unix SysAdmin lambert@lambertfam.org