13 Jun
2013
13 Jun
'13
10:27 p.m.
[chap] login attempt by "xxxxxxxxxx" with CHAP password [chap] Using clear text password "password" for user xxxxxxxxxx authentication. [chap] Password check failed
(a) the "clear text" password is wrong
(b) the client isn't doing CHAP correctly.
There are no other choices.
Problem is sorted. Telco changed their AAA-SC
RFC 2865 Section 5.3 says that the CHAP-Challenge doesn't need to exist. If it doesn't exist, the 16-byte authentication vector from the Access-Request is used instead.
Alan DeKok. Thanks Alan, that section of the RFC helped the Telco sort the problem.
Mark.