help-gnu-radius
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Help-gnu-radius] Authentication failure Problem

From: Farooq Ahmed
Subject: [Help-gnu-radius] Authentication failure Problem
Date: Sun, 30 Mar 2003 23:30:04 -0500 
Hi friends ,
 ....... thanks all those who help me previously, in testing phase, in 
successfull authentication using "radauth".

Now i m using real nas server (USING rras on on NT machine having pool of 
modems).But users are being rejected by RADIUS. 


POINTs CREATING PROBLEM
------------------------
if u will see the logs below ..
==1=>
when request is created by 'radauth', log shows
auth_type=3
auth: CRYPT

but when requst is comming from 'nas' log shows
auth_type=0
auth: Local

Why ?

==2=>
when passwd comming from the packets of nas it is encrypted . Is it creating 
problem.????
In nas server  i have set "allow any authentication including clear text"




Thanks i advance
farooq







WHAT SETTING I HAVE ON RADius SERVER
---------------------------------------------------------
I have installed gnu-radius-0.96.4 on Redhat 7.3 with Mysql support.


result of "radiusd -v"
----------------------------------------
radiusd: GNU Radius version 0.96.4 (i686-pc-linux-gnu)
Compilation platform: linux
Debugging flags:
Compilation flags: PWD_SHADOW USE_PAM USE_SQL_MYSQL USE_SQL_ODBC
Ports in use:
 AUTH: 1645
 ACCT: 1646
Paths:
 configuration directory: /usr/local/etc/raddb
 logging directory:       /var/log
 accounting directory:    /var/log/radacct
 pidfile:                 /var/run/radiusd.pid



users file contains
----------------------------------
DEFAULT Auth-Type = SQL,
Simultaneous-Use = 1
Service-Type = Framed-User,
Framed-Protocol = PPP




I have establish MYSQL Database RADIUS and the tables contents is
following:
-----------------------------------------------------------------
mysql> select * from passwd;
+-----------+------------+----------+--------+
| user_name | service    | password | active |
+-----------+------------+----------+--------+
| farooq    | Framed-User| encrpt   | Y      |
+-----------+------------+----------+--------+
1 row in set (0.00 sec)

mysql> select * from groups;
+-----------+------------+
| user_name | user_group |
+-----------+------------+
| farooq    | staff      |
+-----------+------------+
1 row in set (0.00 sec)

mysql> select * from attrib;
+-----------+-------------------+-----------+------+
| user_name | attr              | value     | op   |
+-----------+-------------------+-----------+------+
| farooq    | NAS-IP-ADDRESS    |172.17.1.9| NULL |
| farooq    | NAS-Port-Id       | 20        | <=   |
| farooq    | Framed-Protocol   | PPP       | NULL |
| farooq    | Framed-IP-Address | NULL      | NULL |
+-----------+-------------------+-----------+------+
4 rows in set (0.00 sec)


in sqlserver file all options are at its default settings i have not
chaged any query.
---------------------



-------------------------------------------
LOG SHOWING PROBLEM
------------------------------------------



USING radauth -v farooq ...... AUTHENTICAION IS SUCCESSFUL
---------------------------------------------------------------


Mar 28 12:30:51: mysql.c:158:rad_mysql_reconnect: connected to localhost
Mar 28 12:30:51: mysql.c:182:rad_mysql_reconnect: MYSQL Connected to db RADIUS
Mar 28 12:30:51: mysql.c:276:rad_mysql_exec: query: SELECT attr,value FROM 
attrib WHERE user_name='farooq' AND op IS NULL
Mar 28 12:30:51: mysql.c:82:do_mysql_query: called with SELECT attr,value FROM 
attrib WHERE user_name='farooq' AND op IS NULL
Mar 28 12:30:51: mysql.c:104:do_mysql_query: MYSQL query returned 0
Mar 28 12:30:51: mysql.c:287:rad_mysql_exec: got 1 rows
Mar 28 12:30:51: sql.c:703:close_sql_connection: destructing sql connection: 0 
left in queue
Mar 28 12:30:51: files.c:343:user_find_sym: returning 1
Mar 28 12:30:51: sql.c:1167:rad_sql_pass: qid 0
Mar 28 12:30:51: sql.c:769:attach_sql_connection: creating 0,3
Mar 28 12:30:51: sql.c:638:print_queue: Connection queue: (nil) - (nil), 0;0:
Mar 28 12:30:51: sql.c:675:create_sql_connection: allocating new 0 sql 
connection
Mar 28 12:30:51: sql.c:638:print_queue: Connection queue: (nil) - (nil), 0;0:
Mar 28 12:30:51: mysql.c:158:rad_mysql_reconnect: connected to localhost
Mar 28 12:30:51: mysql.c:182:rad_mysql_reconnect: MYSQL Connected to db RADIUS
Mar 28 12:30:51: mysql.c:236:rad_mysql_getpwd: query: SELECT password FROM 
passwd WHERE user_name='farooq' AND active='Y'
Mar 28 12:30:51: mysql.c:82:do_mysql_query: called with SELECT password FROM 
passwd WHERE user_name='farooq' AND active='Y'
Mar 28 12:30:51: mysql.c:104:do_mysql_query: MYSQL query returned 0
Mar 28 12:30:51: sql.c:703:close_sql_connection: destructing sql connection: 0 
left in queue
Mar 28 12:30:51: auth.c:317:rad_check_password: auth_type=3, userpass=123456, 
name=farooq, password=f/a91M5mU0RaM
Mar 28 12:30:51: auth.c:361:rad_check_password:   auth: Crypt
Mar 28 12:30:51: auth.c:1271:sfn_ack: ACK: farooq
Mar 28 12:30:51: auth.c:1289:sfn_ack: timeout for [farooq] is set to 0 sec



BUT WHEN REQUEST IS COMMING FROM MY NAS SERVER IT IS BEING REJECTED 
-----------------------------------------------------------------------



Mar 28 13:00:40: mysql.c:158:rad_mysql_reconnect: connected to localhost
Mar 28 13:00:40: mysql.c:182:rad_mysql_reconnect: MYSQL Connected to db RADIUS
Mar 28 13:00:40: mysql.c:276:rad_mysql_exec: query: SELECT attr,value FROM 
attrib WHERE user_name='farooq' AND op IS NULL
Mar 28 13:00:40: mysql.c:82:do_mysql_query: called with SELECT attr,value FROM 
attrib WHERE user_name='farooq' AND op IS NULL
Mar 28 13:00:40: mysql.c:104:do_mysql_query: MYSQL query returned 0
Mar 28 13:00:40: mysql.c:287:rad_mysql_exec: got 1 rows
Mar 28 13:00:40: sql.c:703:close_sql_connection: destructing sql connection: 0 
left in queue
Mar 28 13:00:40: files.c:343:user_find_sym: returning 1
Mar 28 13:00:40: sql.c:1167:rad_sql_pass: qid 0
Mar 28 13:00:40: sql.c:769:attach_sql_connection: creating 0,3
Mar 28 13:00:40: sql.c:638:print_queue: Connection queue: (nil) - (nil), 0;0:
Mar 28 13:00:40: sql.c:675:create_sql_connection: allocating new 0 sql 
connection
Mar 28 13:00:40: sql.c:638:print_queue: Connection queue: (nil) - (nil), 0;0:
Mar 28 13:00:40: mysql.c:158:rad_mysql_reconnect: connected to localhost
Mar 28 13:00:40: mysql.c:182:rad_mysql_reconnect: MYSQL Connected to db RADIUS
Mar 28 13:00:40: mysql.c:236:rad_mysql_getpwd: query: SELECT password FROM 
passwd WHERE user_name='farooq' AND active='Y'
Mar 28 13:00:40: mysql.c:82:do_mysql_query: called with SELECT password FROM 
passwd WHERE user_name='farooq' AND active='Y'
Mar 28 13:00:40: mysql.c:104:do_mysql_query: MYSQL query returned 0
Mar 28 13:00:40: sql.c:703:close_sql_connection: destructing sql connection: 0 
left in queue
Mar 28 13:00:40: auth.c:317:rad_check_password: auth_type=0, userpass=«íb8[     
¼<¿,, name=farooq, password=f/a91M5mU0RaM
Mar 28 13:00:40: auth.c:372:rad_check_password:   auth: Local
Mar 28 13:00:40: auth.c:1009:sfn_validate: 1 -> 17
Mar 28 13:00:40: auth.c:1299:sfn_reject: REJECT: farooq
Mar 28 13:00:40: radiusd.c:1331:rad_child_cleanup: child 14733 exited: 0












_____________________________________________________________
Get 25MB, POP3, Spam Filtering with LYCOS MAIL PLUS for $19.95/year.
http://login.mail.lycos.com/brandPage.shtml?pageId=plus&ref=lmtplus
reply via email to
[Prev in Thread] Current Thread [Next in Thread]