Hello-
Having problems authenticating here.. I've got a Cisco 5800 running
12.1(5)XM5 that's been authenticating fine against our (ancient) Merit
radius server. Looking to move to freeradius for LDAP functionality.
Did some debugging, and it appears as if the requests are coming in OK and
getting processed (I've took out some sensitive info below). But our 5800
just sits there and spins its wheels; there is layer 2 connectivity between
the boxes, and the configuration on the cisco looks right.
Any ideas? If I specify the type (cisco) in the clients.conf file, do I
still need to make an entry in the "naslist" file?
Thanks-
-Michael
rad_recv: Access-Request packet from host 128.104.216.2:1645, id=193,
length=119
NAS-IP-Address = BLAHBLAH
NAS-Port = 16746
Cisco-NAS-Port = "tty1/8/26*T1 1/0/0:12:10"
NAS-Port-Type = Async
User-Name = "m7h"
Called-Station-Id = BLAHBLAH
Calling-Station-Id = BLAHBLAH
Password = BLAHBLAH
Service-Type = Login-User
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
modcall[authorize]: module "suffix" returns ok
users: Matched DEFAULT at 10
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 193 to BLAHBLAH:1645
Session-Timeout = 14400
Idle-Timeout = 900
Finished request 0
/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\
Michael Hare
UW-Madison Network Engineering / Hostmaster
WiscNet Network Engineering
My phone: 608-262-5236
24-Hour NOC: 608-263-4188
WiscNet: 608-265-6761
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
