Radius authenticate user but user still getting invalid credential message
Toure Mamadou
mamadou.toure at vipnet.ci
Thu Jul 8 22:08:37 CEST 2010
Hi,
All i've reboot my NAS. And since my user is getting invalid username and
password allthougth I can that they are authenticated in the radius log.
For exemple I get this in the log :
****************************************************************************
***************
Cleaning up request 3589 ID 245 with timestamp +391
rad_recv: Access-Request packet from host 172.29.44.250 port 50000, id=252,
length=323
User-Password = "vipnet2010"
User-Name = "mamadou.toure at vipnet.ci"
Acct-Session-Id = "erx
ip:172.29.44.250:172.31.8.253:1f89:1c77:5dd:821b:252b32:0025640364"
Service-Type = Framed-User
Framed-Protocol = PPP
Calling-Station-Id = "GigabitEthernet 1/1.2303:2303#587203682#\"VLAN
DATA DS2PL204\"##pppoe 00:07:72:19:18:b3#"
NAS-Port-Type = Virtual
NAS-Port = 942170
NAS-Port-Id =
"ip:172.29.44.250:172.31.8.253:1f89:1c77:5dd:821b:252b32"
NAS-IP-Address = 172.29.44.250
NAS-Identifier = "ADSL.EXR310"
+- entering group authorize
++[preprocess] returns ok
++[chap] returns noop
rlm_realm: Looking up realm "vipnet.ci" for User-Name =
"mamadou.toure at vipnet.ci"
rlm_realm: No such realm "vipnet.ci"
++[suffix] returns noop
rlm_eap: No EAP-Message, not doing EAP
++[eap] returns noop
expand: %{User-Name} -> mamadou.toure at vipnet.ci
rlm_sql (sql): sql_set_user escaped user --> 'mamadou.toure at vipnet.ci'
rlm_sql (sql): Reserving sql socket id: 0
expand: SELECT id, username, attribute, value, op FROM
radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id
-> SELECT id, username, attribute, value, op FROM radcheck
WHERE username = 'mamadou.toure at vipnet.ci' ORDER BY id
rlm_sql (sql): User found in radcheck table
expand: SELECT id, username, attribute, value, op FROM
radreply WHERE username = '%{SQL-User-Name}' ORDER BY id
-> SELECT id, username, attribute, value, op FROM radreply
WHERE username = 'mamadou.toure at vipnet.ci' ORDER BY id
expand: SELECT groupname FROM radusergroup WHERE
username = '%{SQL-User-Name}' ORDER BY priority -> SELECT
groupname FROM radusergroup WHERE username =
'mamadou.toure at vipnet.ci' ORDER BY priority
rlm_sql (sql): Released sql socket id: 0
++[sql] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
rad_check_password: Found Auth-Type
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
!!! Replacing User-Password in config items with Cleartext-Password.
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
!!! Please update your configuration so that the "known good"
!!!
!!! clear text password is in Cleartext-Password, and not in User-Password.
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
auth: type "PAP"
+- entering group PAP
rlm_pap: login attempt with password "vipnet2010"
rlm_pap: Using clear text password "vipnet2010"
rlm_pap: User authenticated successfully
++[pap] returns ok
Login OK: [mamadou.toure at vipnet.ci/vipnet2010] (from client nas port 942170
cli GigabitEthernet 1/1.2303:2303#587203682#"VLAN DATA DS2PL204"##pppoe
00:07:72:19:18:b3#)
+- entering group post-auth
++[exec] returns noop
Sending Access-Accept of id 252 to 172.29.44.250 port 50000
Framed-Protocol = PPP
Service-Type = Framed-User
Finished request 3649.
Going to the next request
********************************************************************
But the user still getting invalid username and password.
Can someone help.
Regards.
More information about the Freeradius-Users
mailing list