problems whith accented characters

Gianfranco Ferrini ferrini at
Thu May 29 14:48:32 CEST 2008

I have problems with accented characters (and other like ç)
in user passwords.

My system is Fedora 8 with this localization

[root at bidone ~]# locale

When I try to autenticate with

Username        guest
Password        università

I have this result:

         User-Name = "guest"
         User-Password = "universit\340"
+- entering group authorize
++[preprocess] returns ok
-> /usr/local/var/log/radius/radacct/
expands to /usr/local/var/log/radius/radacct/
         expand: %t -> Thu May 29 16:01:18 2008
++[auth_log] returns ok
++[chap] returns noop
++[mschap] returns noop
     rlm_realm: No '@' in User-Name = "guest", looking up realm NULL
     rlm_realm: Found realm "NULL"
     rlm_realm: Adding Stripped-User-Name = "guest"
     rlm_realm: Adding Realm = "NULL"
     rlm_realm: Authentication realm is LOCAL.
++[suffix] returns noop
   rlm_eap: No EAP-Message, not doing EAP
++[eap] returns noop
++[unix] returns notfound
     users: Matched entry guest at line 206
++[files] returns ok
rlm_ldap: - authorize
rlm_ldap: performing user authorization for guest
WARNING: Deprecated conditional expansion ":-".  See "man unlang" for details
         expand: (uid=%{Stripped-User-Name:-%{User-Name}}) -> (uid=guest)
         expand: dc=unifi, dc=it -> dc=unifi, dc=it
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: attempting LDAP reconnection
rlm_ldap: (re)connect to, authentication 0
rlm_ldap: bind as 
rlm_ldap: waiting for bind result ...
rlm_ldap: Bind was successful
rlm_ldap: performing search in dc=unifi, dc=it, with filter (uid=guest)
rlm_ldap: object not found or got ambiguous search result
rlm_ldap: search failed
rlm_ldap: ldap_release_conn: Release Id: 0
++[ldap] returns notfound
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
   rad_check_password:  Found Auth-Type
auth: type "PAP"
+- entering group PAP
rlm_pap: login attempt with password "università"
rlm_pap: Using clear text password "universitÃ?"
rlm_pap: Passwords don't match
++[pap] returns reject
auth: Failed to validate the user.
Login incorrect (rlm_ldap: User not found): 
[guest/universit\340] (from client private port 0)
   WARNING: Unprintable characters in the 
password.        Double-check the shared secret on the server and the NAS!
   Found Post-Auth-Type Reject
+- entering group REJECT
         expand: %{User-Name} -> guest
  attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 0
Waking up in 4.9 seconds.
Cleaning up request 0 ID 30 with timestamp +6
Ready to process requests.

Usually I use ldap for authorization but to become simpler
I put the account in user file:

guest   Cleartext-Password := "università "

As you can see ( User-Password = "universit\340")
it sems like arrive at freeradius a wrong carachter:

I try this autentication whith the software ntradping test utility
on a windows XP system with a italian keyboard.

Thanks for al the possible help.

Gianfranco Ferrini
CSIAF - Universita' di Firenze
Area Operativa Servizio Reti
Tel. 0554239306 

More information about the Freeradius-Users mailing list