Voip database

Phil Mayers p.mayers at imperial.ac.uk
Fri Dec 17 10:11:14 CET 2010

On 12/17/2010 08:58 AM, miha- wrote:
> Hello,
> in wireshark I can see now that the first request for access goes throught
> but the second one for accounting is rejected.
> Can you help me out why?
> What about encryption ? The secret on the nas server and on the radius is
> 100% same.

Lots of people say this, and they're always wrong:

> rad_recv: Access-Request packet from host port 55121, id=193,
> length=335
>          User-Name = "081609000"
>          User-Password = "\022\312w\014"

Does that look like a valid password to you?

> [pap] Normalizing MD5-Password from hex encoding
> [pap] WARNING: Auth-Type already set.  Not setting to PAP
> ++[pap] returns noop
> Found Auth-Type = PAP
> # Executing group from file /etc/raddb/sites-enabled/default
> +- entering group PAP {...}
> [pap] login attempt with password "?Êw?"
> [pap] Using MD5 encryption.
> [pap] Passwords don't match
> ++[pap] returns reject
> Failed to authenticate the user.
>    WARNING: Unprintable characters in the password.        Double-check the
> shared secret on the server and the NAS!

Check it again. Change the shared-secret to something simple and new.

More information about the Freeradius-Users mailing list