Freeradius, OpenLDAP and Cisco Switch

Diego Woitasen diegows at gmail.com
Wed Aug 22 00:33:22 CEST 2007


Hi,
  I am configuring a freeradius authenticating against a OpenLDAP. The
tests with radtest and radclient worked fine, but I have problems with
a Cisco Switch. Running radiusd -f -x I get the following output:

rad_recv: Access-Request packet from host 10.0.0.72:1645, id=7, length=76
        NAS-IP-Address = 10.0.0.72
        NAS-Port = 1
        NAS-Port-Type = Virtual
        User-Name = "diegows"
        Calling-Station-Id = "10.0.6.30"
        User-Password = "\023\r)N-\323\344\377q\257\350\316JK\224\364"
rlm_ldap: - authorize
rlm_ldap: performing user authorization for diegows
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: looking for check items in directory...
rlm_ldap: Adding sambaAcctFlags as SMB-Account-CTRL-TEXT, value [U] & op=21
rlm_ldap: Adding sambaNTPassword as NT-Password, value
3B317C5E7B68AB9D8F5715CFDC2B4B57 & op=21
rlm_ldap: Adding sambaLMPassword as LM-Password, value
A6978BF97984FE13AAD3B435B51404EE & op=21
rlm_ldap: looking for reply items in directory...
rlm_ldap: Setting Auth-Type = ldap
rlm_ldap: user diegows authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
rlm_ldap: - authenticate
rlm_ldap: login attempt by "diegows" with password "? )N-���q���JK?�"
rlm_ldap: user DN: uid=diegows,ou=Users,dc=iplan,dc=com,dc=ar
rlm_ldap: (re)connect to localhost:389, authentication 1
rlm_ldap: could not set LDAP_OPT_X_TLS_REQUIRE_CERT option to allow
rlm_ldap: bind as uid=diegows,ou=Users,dc=iplan,dc=com,dc=ar/�tr;i4
?��~��8� to localhost:389
rlm_ldap: waiting for bind result ...
rlm_ldap: Bind failed with invalid credentials
Login incorrect (rlm_ldap: Bind as user failed): [diegows] (from
client prueba-switches port 1 cli 10.0.6.30)
rad_recv: Access-Request packet from host 10.0.0.72:1645, id=8, length=76

Why the password is garbage? What am I missing?

regards,
  diegows


-- 
-------------------
Diego Woitasen
-------------------




More information about the Freeradius-Users mailing list