Radius authenticate user but user still getting invalid credential message

Toure Mamadou mamadou.toure at vipnet.ci
Thu Jul 8 22:08:37 CEST 2010


Hi,
All i've reboot my NAS. And since my user is getting invalid username and
password allthougth I can that they are authenticated in the radius log.
For exemple I get this in the log :
****************************************************************************
***************
Cleaning up request 3589 ID 245 with timestamp +391
rad_recv: Access-Request packet from host 172.29.44.250 port 50000, id=252,
length=323
       User-Password = "vipnet2010"
       User-Name = "mamadou.toure at vipnet.ci"
       Acct-Session-Id = "erx
ip:172.29.44.250:172.31.8.253:1f89:1c77:5dd:821b:252b32:0025640364"
       Service-Type = Framed-User
       Framed-Protocol = PPP
       Calling-Station-Id = "GigabitEthernet 1/1.2303:2303#587203682#\"VLAN
DATA DS2PL204\"##pppoe 00:07:72:19:18:b3#"
       NAS-Port-Type = Virtual
       NAS-Port = 942170
       NAS-Port-Id =
"ip:172.29.44.250:172.31.8.253:1f89:1c77:5dd:821b:252b32"
       NAS-IP-Address = 172.29.44.250
       NAS-Identifier = "ADSL.EXR310"
+- entering group authorize
++[preprocess] returns ok
++[chap] returns noop
    rlm_realm: Looking up realm "vipnet.ci" for User-Name =
"mamadou.toure at vipnet.ci"
    rlm_realm: No such realm "vipnet.ci"
++[suffix] returns noop
  rlm_eap: No EAP-Message, not doing EAP
++[eap] returns noop
       expand: %{User-Name} -> mamadou.toure at vipnet.ci
rlm_sql (sql): sql_set_user escaped user --> 'mamadou.toure at vipnet.ci'
rlm_sql (sql): Reserving sql socket id: 0
       expand: SELECT id, username, attribute, value, op           FROM
radcheck           WHERE username = '%{SQL-User-Name}'           ORDER BY id
-> SELECT id, username, attribute, value, op           FROM radcheck
WHERE username = 'mamadou.toure at vipnet.ci'           ORDER BY id
rlm_sql (sql): User found in radcheck table
       expand: SELECT id, username, attribute, value, op           FROM
radreply           WHERE username = '%{SQL-User-Name}'           ORDER BY id
-> SELECT id, username, attribute, value, op           FROM radreply
WHERE username = 'mamadou.toure at vipnet.ci'           ORDER BY id
       expand: SELECT groupname           FROM radusergroup           WHERE
username = '%{SQL-User-Name}'           ORDER BY priority -> SELECT
groupname           FROM radusergroup           WHERE username =
'mamadou.toure at vipnet.ci'           ORDER BY priority
rlm_sql (sql): Released sql socket id: 0
++[sql] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns updated
  rad_check_password:  Found Auth-Type 
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
!!!    Replacing User-Password in config items with Cleartext-Password.
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
!!! Please update your configuration so that the "known good"
!!!
!!! clear text password is in Cleartext-Password, and not in User-Password.
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
auth: type "PAP"
+- entering group PAP
rlm_pap: login attempt with password "vipnet2010"
rlm_pap: Using clear text password "vipnet2010"
rlm_pap: User authenticated successfully
++[pap] returns ok
Login OK: [mamadou.toure at vipnet.ci/vipnet2010] (from client nas port 942170
cli GigabitEthernet 1/1.2303:2303#587203682#"VLAN DATA DS2PL204"##pppoe
00:07:72:19:18:b3#)
+- entering group post-auth
++[exec] returns noop
Sending Access-Accept of id 252 to 172.29.44.250 port 50000
       Framed-Protocol = PPP
       Service-Type = Framed-User
Finished request 3649.
Going to the next request
********************************************************************

But the user still getting invalid username and password.
Can someone help.
Regards.






More information about the Freeradius-Users mailing list