mysql> select * from radcheck; +----+----------+--------------------+----+-------+ | id | UserName | Attribute | op | Value | +----+----------+--------------------+----+-------+ | 1 | s | Cleartext-Password | := | s | | 2 | steve | Cleartext-Password | := | s | +----+----------+--------------------+----+-------+ 2 rows in set (0.00 sec) radiusd -X Ready to process requests. User-Name = "s" User-Password = "\340\334\351\234" NAS-IP-Address = 127.0.0.1 Service-Type = Login-User Framed-IP-Address = 192.168.182.9 Calling-Station-Id = "00-1C-A4-6F-21-10" Called-Station-Id = "00-18-F8-0A-70-69" NAS-Identifier = "nas01" Acct-Session-Id = "47fa0f3e00000000" NAS-Port-Type = Wireless-802.11 NAS-Port = 0 Message-Authenticator = 0x93c5a4f9db43704aee2b6e5cec36707f WISPr-Logoff-URL = "http://192.168.182.1:3990/logoff" +- entering group authorize ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop rlm_realm: No '@' in User-Name = "s", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop rlm_eap: No EAP-Message, not doing EAP ++[eap] returns noop ++[unix] returns notfound expand: %{User-Name} -> s rlm_sql (sql): sql_set_user escaped user --> 's' rlm_sql (sql): Reserving sql socket id: 4 expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 's' ORDER BY id rlm_sql (sql): User found in radcheck table expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 's' ORDER BY id rlm_sql: Failed to create the pair: Failed to find IP address for rlm_sql (sql): Error getting data from database rlm_sql (sql): SQL query error; rejecting user rlm_sql (sql): Released sql socket id: 4 ++[sql] returns fail Invalid user: [s/\340\334\351\234] (from client localhost port 0 cli 00-1C-A4-6F-21-10) Found Post-Auth-Type Reject +- entering group REJECT expand: %{User-Name} -> s attr_filter: Matched entry DEFAULT at line 11 ++[attr_filter.access_reject] returns updated Delaying reject of request 0 for 1 seconds Going to the next request Waking up in 0.9 seconds. Sending delayed reject for request 0 Waking up in 4.9 seconds. Cleaning up request 0 ID 0 with timestamp +66 Ready to process requests. I think that you should have figured out by now that you need to post relevant data: database entries for that user radiusd -X output from the request Ivan Kalik Kalik Informatika ISP Send instant messages to your online friends http://uk.messenger.yahoo.com