Freeradius + CHAP
SANDY KALUGDAN
sandykalugdan at yahoo.com
Sun Apr 6 12:09:49 CEST 2008
I modified my rachek table to look like this. as you have mentioned.
mysql> select * from radcheck
-> ;
+----+----------+--------------------+----+-------+
| id | UserName | Attribute | op | Value |
+----+----------+--------------------+----+-------+
| 1 | s | Cleartext-Password | := | s |
| 2 | steve | Cleartext-Password | := | s |
+----+----------+--------------------+----+-------+
2 rows in set (0.00 sec)
now after modifying the radcheck, here is my log when i attempted to login
rad_recv: Access-Request packet from host 127.0.0.1:37811, id=0, length=211
User-Name = "s"
CHAP-Challenge = 0xc506b4cdad4a8f586e4a3f040bbc4708
CHAP-Password = 0x006ce96dd9b3bdf04b8de40bbeb01b0786
NAS-IP-Address = 127.0.0.1
Service-Type = Login-User
Framed-IP-Address = 192.168.182.4
Calling-Station-Id = "00-1C-A4-6F-21-10"
Called-Station-Id = "00-18-F8-0A-70-69"
NAS-Identifier = "nas01"
Acct-Session-Id = "47f89e2100000000"
NAS-Port-Type = Wireless-802.11
NAS-Port = 0
Message-Authenticator = 0x6176a287b46df6978515e0237c5e3029
WISPr-Logoff-URL = "http://192.168.182.1:3990/logoff"
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 1
modcall[authorize]: module "preprocess" returns ok for request 1
rlm_chap: Setting 'Auth-Type := CHAP'
modcall[authorize]: module "chap" returns ok for request 1
modcall[authorize]: module "mschap" returns noop for request 1
rlm_realm: No '@' in User-Name = "s", looking up realm NULL
rlm_realm: Found realm "NULL"
rlm_realm: Adding Stripped-User-Name = "s"
rlm_realm: Proxying request from user s to realm NULL
rlm_realm: Adding Realm = "NULL"
rlm_realm: Authentication realm is LOCAL.
modcall[authorize]: module "suffix" returns noop for request 1
radius_xlat: 's'
rlm_sql (sql): sql_set_user escaped user --> 's'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 's' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 3
rlm_sql_mysql: query: SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 's' ORDER BY id
rlm_sql: Failed to create the pair: Unknown attribute "Cleartext-Password"
rlm_sql (sql): Error getting data from database
rlm_sql (sql): SQL query error; rejecting user
rlm_sql (sql): Released sql socket id: 3
modcall[authorize]: module "sql" returns fail for request 1
modcall: group authorize returns fail for request 1
Finished request 1
----- Original Message ----
From: Alan Buxey <A.L.M.Buxey at lboro.ac.uk>
To: FreeRadius users mailing list <freeradius-users at lists.freeradius.org>
Sent: Sunday, April 6, 2008 14:02:21
Subject: Re: Freeradius + CHAP
SANDY KALUGDAN wrote:
> I'm having problem authenticating my users.
> here is a portion of my radiusd -X
>
> mysql> select * from radcheck;
> +----+----------+-----------+----+-------+
> | id | UserName | Attribute | op | Value |
> +----+----------+-----------+----+-------+
> | 1 | s | Password | == | s |
> | 2 | steve | Password | == | s |
> +----+----------+-----------+----+-------+
> 2 rows in set (0.00 sec)
>
> mysql> select * from usergroup;
> +----+----------+-----------+
> | id | UserName | GroupName |
> +----+----------+-----------+
> | 1 | s | dynamic |
> | 2 | steve | dynamic |
> +----+----------+-----------+
> 2 rows in set (0.00 sec)
>
firstly, your log showed no attempted connects...so freeradius sitn
receiving any. got a firewall running
which is stopping the NAS devices talking to your FR on USP 1812 and 1813?
secondly, change your SQL radcheck table
Attribute Cleartext-Password
op :=
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Send instant messages to your online friends http://uk.messenger.yahoo.com
More information about the Freeradius-Users
mailing list