Problem with PAP autentification on freeradius-3.0.0

BALSIANOK, Peter Peter.Balsianok at orange.sk
Thu May 16 15:40:48 CEST 2013


Hi,

I have problem with PAP autentification on freeradius-3.0.0, but on freeradius-2.2.1 everythink works correct. Could you please help me, thx.

Debug output for freeradius-3.0.0:
radiusd at tdrad1test:/storage/app/radius/raddb/auth-new$ /storage/app/radius/freeradius-3.0.0/sbin/radiusd -X -d /storage/app/radius/raddb/auth-new
radiusd: FreeRADIUS Version 3.0.0, for host x86_64-unknown-linux-gnu, built on May 14 2013 at 16:22:54
Copyright (C) 1999-2013 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License.
For more information about these matters, see the file named COPYRIGHT.
Starting - reading configuration files ...
...
Listening on proxy address * port 0
Listening on auth address * port 1812 as server default
Listening on auth address * port 1645 as server default
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 50633, id=15, length=115
                NAS-Port-Type = Virtual
                Service-Type = Framed-User
                Calling-Station-Id = "421905012405"
                Called-Station-Id = "l2tp.vps"
                Framed-Protocol = PPP
                User-Name = "l2tp at radiustest.sk"
                User-Password = "l2tp"
                Connect-Info = "8640000"
                NAS-IP-Address = 213.151.234.114
(0) # Executing section authorize from file /storage/app/radius/raddb/auth-new/sites-enabled/default
(0)   group authorize {
(0)  - entering group authorize {...}
(0)   [chap] = noop
(0) suffix : Looking up realm "radiustest.sk" for User-Name = "l2tp at radiustest.sk"
(0) suffix : Found realm "DEFAULT"
(0) suffix : Adding Stripped-User-Name = "l2tp"
(0) suffix : Adding Realm = "DEFAULT"
(0) suffix : Authentication realm is LOCAL.
(0)   [suffix] = ok
rlm_perl: Added pair NAS-Port-Type = Virtual
rlm_perl: Added pair Service-Type = Framed-User
rlm_perl: Added pair Called-Station-Id = l2tp.vps
rlm_perl: Added pair Calling-Station-Id = 421905012405
rlm_perl: Added pair Framed-Protocol = PPP
rlm_perl: Added pair User-Name = l2tp at radiustest.sk
rlm_perl: Added pair User-Password = l2tp
rlm_perl: Added pair Connect-Info = 8640000
rlm_perl: Added pair Realm = DEFAULT
rlm_perl: Added pair Stripped-User-Name = l2tp
rlm_perl: Added pair NAS-IP-Address = 213.151.234.114
rlm_perl: Added pair Current-Time = 1368711260
rlm_perl: Added pair Password-With-Header = {SSHA}cAgh2LCe5649EzEAbc+nAfIOvOyOJSmU+sKiPA==
rlm_perl: Added pair VPDN_SERVICE_ID = User-GPRS-L2TP
(0)   [perl] = ok
(0)   [pap] = updated
(0) Found Auth-Type = PAP
(0) # Executing group from file /storage/app/radius/raddb/auth-new/sites-enabled/default
(0)   group PAP {
(0)  - entering group PAP {...}
(0) pap : login attempt with password "l2tp"
(0) pap : Using SSHA encryption.
(0) ERROR: pap : SSHA password check failed
(0) pap : Passwords don't match
(0)   [pap] = reject
(0) Failed to authenticate the user.
(0) Login incorrect (pap: SSHA password check failed): [l2tp at radiustest.sk/l2tp] (from client localhost port 0 cli 421905012405)

Debug output for freeradius-2.2.1:
radiusd at tdrad1test:/storage/app/radius/raddb/auth$ /storage/app/radius/freeradius/sbin/radiusd -X -d /storage/app/radius/raddb/auth
radiusd: FreeRADIUS Version 2.2.1, for host x86_64-unknown-linux-gnu, built on May  2 2013 at 09:22:02
Copyright (C) 1999-2013 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License.
For more information about these matters, see the file named COPYRIGHT.
Starting - reading configuration files ...
...
Listening on authentication address * port 1812
Listening on authentication address * port 1645
Listening on proxy address * port 37677
Listening on command file ../../log/radius/radius_auth.sock
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 57436, id=196, length=115
                NAS-Port-Type = Virtual
                Service-Type = Framed-User
                Calling-Station-Id = "421905012405"
                Called-Station-Id = "l2tp.vps"
                Framed-Protocol = PPP
                User-Name = "l2tp at radiustest.sk"
                User-Password = "l2tp"
                Connect-Info = "8640000"
                NAS-IP-Address = 213.151.234.114
# Executing section authorize from file /storage/app/radius/raddb/auth/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
[suffix] Looking up realm "radiustest.sk" for User-Name = "l2tp at radiustest.sk"
[suffix] Found realm "DEFAULT"
[suffix] Adding Stripped-User-Name = "l2tp"
[suffix] Adding Realm = "DEFAULT"
[suffix] Authentication realm is LOCAL.
++[suffix] returns ok
++[files] returns noop
rlm_perl: Added pair NAS-Port-Type = Virtual
rlm_perl: Added pair Service-Type = Framed-User
rlm_perl: Added pair Called-Station-Id = l2tp.vps
rlm_perl: Added pair Calling-Station-Id = 421905012405
rlm_perl: Added pair Framed-Protocol = PPP
rlm_perl: Added pair User-Name = l2tp at radiustest.sk
rlm_perl: Added pair User-Password = l2tp
rlm_perl: Added pair Connect-Info = 8640000
rlm_perl: Added pair Realm = DEFAULT
rlm_perl: Added pair Stripped-User-Name = l2tp
rlm_perl: Added pair NAS-IP-Address = 213.151.234.114
rlm_perl: Added pair Current-Time = 1368709398
rlm_perl: Added pair Password-With-Header = {SSHA}cAgh2LCe5649EzEAbc+nAfIOvOyOJSmU+sKiPA==
rlm_perl: Added pair VPDN_SERVICE_ID = User-GPRS-L2TP
++[perl] returns ok
[pap] Normalizing SSHA1-Password from base64 encoding
++[pap] returns updated
Found Auth-Type = PAP
# Executing group from file /storage/app/radius/raddb/auth/sites-enabled/default
+- entering group PAP {...}
[pap] login attempt with password "l2tp"
[pap] Using SSHA encryption.
[pap] User authenticated successfully
++[pap] returns ok
Login OK: [l2tp at radiustest.sk/l2tp] (from client localhost port 0 cli 421905012405)
Peter Balšianok
Data Service Operation Coordinator,
Voice & Data Services Operations
Orange Slovensko, a. s.
Metodova 8, 821 08 Bratislava
tel: +421 908 00 2405
mobil: +421 905 012 405
e-mail: peter.balsianok at orange.sk<mailto:peter.balsianok at orange.sk>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130516/2b5e68e6/attachment-0001.html>


More information about the Freeradius-Users mailing list