In my last mail I should have not explain well my problem, because I splet some things
....
So here goes my problem:
I have created 2 login for testing purpose:
1 - One on the Radius server is testing/radius
2 - One on the Nas: userrad/passrad, enable pass is passrad2
With :
-----------
aaa new-model
aaa accounting exec wait-start radius
aaa accounting network wait-start radius
-----------
on telnet my-nas the "userrad" login works, but the "testing" one doesn't with error
message: "Access denied"(This is normal).
Then I add my lines aaa lines:
telnet my-nas , get logged , get ena , conf t :
#aaa authorization exec radius
#aaa authorization network radius
CTRL-Z.
So my aaa is now:
---------------
aaa new-model
aaa accounting exec wait-start radius
aaa accounting network wait-start radius
aaa authorization exec radius
aaa authorization network radius
---------------
Now, on telnet, neither the "testing" login, nor the "userrad" get logged on my nas:
"userrad" says : "Authorization Failed"
"testing" says : "Acces denied"
random login says : "Access denied"
why my logins comming from the users file are ignored (same reply as random inexistant
login) ?
why my local login cannot get authorized ? (I think because I should have said :aaa
authorization exec radius local , righ? )
(That is not the problem, I need to make the user database works from users file wich
seems to be totally ignored)
My users file contains this (just for the tests ):
testing Auth-Type := Local, Password == "radius"
Login-Service = Telnet,
Login-TCP-Port = 23
Thanks for help
Sam
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
