Hi, guys. Please, could someone read this output from freeradius' debugging mode to help me? Thanks in advance. (I just omitted some informations such as IP, User-Password etc) My scenario is: - Server: Debian GNU/Linux lenny x86_64 kernel 2.6.26-2-amd64 - Freeradius 2.0.4 - MySQL 5.0.51a - Calling Station: Windows XP Professional 32 bits SP3 - Software client: SSH Secure Shell 3.2.9 - NAS client: Cisco6500 Catalyst - IOS versão 12.2(17r)S4 Going to the next request Waking up in 4.9 seconds. Cleaning up request 2 ID 121 with timestamp +17 Ready to process requests. rad_recv: Access-Request packet from host NAS-IP-Address port 21645, id=121, length=82 NAS-IP-Address = NAS-IP-Address NAS-Port = 1 NAS-Port-Type = Virtual User-Name = "User-Name" Calling-Station-Id = "Calling-Station-Id" User-Password = "User-Password" +- entering group authorize ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop rlm_realm: No '@' in User-Name = "User-Name", looking up realm NULL rlm_realm: Found realm "NULL" rlm_realm: Adding Stripped-User-Name = "User-Name" rlm_realm: Adding Realm = "NULL" rlm_realm: Authentication realm is LOCAL. ++[suffix] returns noop rlm_eap: No EAP-Message, not doing EAP ++[eap] returns noop ++[files] returns noop expand: %{User-Name} -> User-Name rlm_sql (sql): sql_set_user escaped user --> 'User-Name' rlm_sql (sql): Reserving sql socket id: 3 expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'User-Name' ORDER BY id rlm_sql (sql): User found in radcheck table expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'User-Name' ORDER BY id expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'User-Name' ORDER BY priority expand: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'pop-sp' ORDER BY id rlm_sql (sql): User found in group pop-sp expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'pop-sp' ORDER BY id rlm_sql (sql): Released sql socket id: 3 ++[sql] returns ok ++[expiration] returns noop ++[logintime] returns noop ++[pap] returns updated rad_check_password: Found Auth-Type auth: type "PAP" +- entering group PAP rlm_pap: login attempt with password "User-Password" rlm_pap: Using CRYPT encryption. rlm_pap: User authenticated successfully ++[pap] returns ok Login OK: [User-Name/User-Password] (from client cisco6500 port 1 cli Calling-Station-Id) +- entering group post-auth rlm_sql (sql): Processing sql_postauth expand: %{User-Name} -> User-Name rlm_sql (sql): sql_set_user escaped user --> 'User-Name' expand: %{User-Password} -> User-Password expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'User-Name', 'User-Password', 'Access-Accept', '2009-11-11 11:33:27') rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'User-Name', 'User-Password', 'Access-Accept', '2009-11-11 11:33:27') rlm_sql (sql): Reserving sql socket id: 2 rlm_sql (sql): Released sql socket id: 2 ++[sql] returns ok ++[exec] returns noop Sending Access-Accept of id 121 to NAS-IP-Address port 21645 Framed-Compression := Van-Jacobson-TCP-IP Framed-Protocol := PPP Service-Type := Login-User Framed-MTU := 1500 Finished request 3. Going to the next request Waking up in 4.9 seconds. Cleaning up request 3 ID 121 with timestamp +23 Ready to process requests. -- Wagner Pereira PoP-SP/RNP - Ponto de Presença da RNP em São Paulo CCE/USP - Centro de Computação Eletrônica da Universidade de São Paulo http://www.pop-sp.rnp.br (11) 3091-8902