Dear Takemura Kiyoaki,
TK> User-Password = "\XXXXXXXXXXXXXXXX"
What do you see in this line? If you see something completely different
from your password it mean you have misconfigured shared secret between
RADIUS and NAS. If you have your password - probably the problem is you
use non-ASCII characters for password. It's not recommended, because
there can be few representations for non-ASCII characters.
--Friday, April 5, 2002, 11:03:15 AM, you wrote to [EMAIL PROTECTED]:
TK> Hi,all.
TK> We are in trouble with seeting up freeradius0.5 on solaris8.
TK> Every connection became rejected as "invalid password"
TK> (radius log below)
TK> Fri Apr 5 14:48:30 2002 : Info: Listening on IP address
TK> 133.97.XXX.XXX ports 1645/udp and 1646/udp.
TK> Fri Apr 5 14:48:30 2002 : Info: Ready to process requests.
TK> Fri Apr 5 14:54:53 2002 : Auth: rlm_unix: [takemura]: invalid password
TK> Fri Apr 5 14:54:58 2002 : Info: Sending duplicate authentication reply
TK> to client ppp1-gw1:1645 - ID: 124
TK> Fri Apr 5 14:54:58 2002 : Auth: rlm_unix: [takemura]: invalid password
TK> Fri Apr 5 14:55:51 2002 : Auth: rlm_unix: [takemura]: invalid password
TK> Fri Apr 5 14:55:56 2002 : Info: Sending duplicate authentication reply
TK> to client ppp1-gw1:1645 - ID: 126
TK> We use NIS password(no shadow file type).
TK> This is an output between site radiusd.conf and the original one.
TK> < bind_address = 133.97.XXX.XXX
TK> ---
>> bind_address = *
TK> 186c185
TK> < port = 1645
TK> ---
>> port = 0
TK> 334,335c333,334
TK> < proxy_requests = no
TK> < # $INCLUDE ${confdir}/proxy.conf
TK> ---
>> proxy_requests = yes
>> $INCLUDE ${confdir}/proxy.conf
TK> 437c436
TK> < cache = no
TK> ---
>> cache = yes
TK> 440c439
TK> < # cache_reload = 600
TK> ---
>> cache_reload = 600
TK> 454,456c453,455
TK> < passwd = /var/nis/passwd
TK> < # shadow = /etc/shadow
TK> < group = /var/nis/group
TK> ---
>> passwd = /etc/passwd
>> # shadow = /etc/shadow
>> group = /etc/group
TK> Debug mode output is
TK> /usr/local/sbin/radiusd -xxyz -l stdout
TK> Starting - reading configuration files ...
TK> reread_config: reading radiusd.conf
TK> Config: including file: /usr/local/etc/raddb/clients.conf
TK> Config: including file: /usr/local/etc/raddb/snmp.conf
TK> Config: including file: /usr/local/etc/raddb/sql.conf
TK> main: prefix = "/usr/local"
TK> main: localstatedir = "/usr/local/var"
TK> main: logdir = "/usr/local/var/log/radius"
TK> main: libdir = "/usr/local/lib"
TK> main: radacctdir = "/usr/local/var/log/radius/radacct"
TK> main: hostname_lookups = no
TK> read_config_files: reading dictionary
TK> read_config_files: reading clients
TK> read_config_files: reading realms
TK> read_config_files: reading naslist
TK> main: max_request_time = 30
TK> main: cleanup_delay = 5
TK> main: max_requests = 1024
TK> main: delete_blocked_requests = 0
TK> main: port = 1645
TK> main: allow_core_dumps = no
TK> main: log_stripped_names = no
TK> main: log_auth = no
TK> main: log_auth_badpass = no
TK> main: log_auth_goodpass = no
TK> main: pidfile = "/usr/local/var/run/radiusd.pid"
TK> main: bind_address = 133.97.XXX.XXX IP address [133.97.XXX.XXX]
TK> main: user = "root"
TK> main: group = "root"
TK> main: usercollide = no
TK> main: lower_user = "no"
TK> main: lower_pass = "no"
TK> main: nospace_user = "no"
TK> main: nospace_pass = "no"
TK> main: proxy_requests = no
TK> security: max_attributes = 200
TK> security: reject_delay = 1
TK> main: debug_level = 0
TK> read_config_files: entering modules setup
TK> Module: Library search path is /usr/local/lib
TK> Module: Loaded System
TK> unix: cache = no
TK> unix: passwd = "/var/nis/passwd"
TK> unix: shadow = "(null)"
TK> unix: group = "/var/nis/group"
TK> unix: radwtmp = "/usr/local/var/log/radius/radwtmp"
TK> unix: usegroup = no
TK> unix: cache_reload = 600
TK> Module: Instantiated unix (unix)
TK> Module: Loaded preprocess
TK> preprocess: huntgroups = "/usr/local/etc/raddb/huntgroups"
TK> preprocess: hints = "/usr/local/etc/raddb/hints"
TK> preprocess: with_ascend_hack = no
TK> preprocess: ascend_channels_per_line = 23
TK> preprocess: with_ntdomain_hack = no
TK> preprocess: with_specialix_jetstream_hack = no
TK> preprocess: with_cisco_vsa_hack = no
TK> Module: Instantiated preprocess (preprocess)
TK> Module: Loaded realm
TK> realm: format = "suffix"
TK> realm: delimiter = "@"
TK> Module: Instantiated realm (suffix)
TK> Module: Loaded files
TK> files: usersfile = "/usr/local/etc/raddb/users"
TK> files: acctusersfile = "/usr/local/etc/raddb/acct_users"
TK> files: compat = "no"
TK> Module: Instantiated files (files)
TK> Module: Loaded detail
TK> detail: detailfile =
TK> "/usr/local/var/log/radius/radacct/%{Client-IP-Address}/de
TK> tail"
TK> detail: detailperm = 384
TK> detail: dirperm = 493
TK> Module: Instantiated detail (detail)
TK> Module: Loaded radutmp
TK> radutmp: filename = "/usr/local/var/log/radius/radutmp"
TK> radutmp: username = "%{User-Name}"
TK> radutmp: perm = 384
TK> radutmp: callerid = yes
TK> Module: Instantiated radutmp (radutmp)
TK> Initializing the thread pool...
TK> thread: start_servers = 5
TK> thread: max_servers = 32
TK> thread: min_spare_servers = 3
TK> thread: max_spare_servers = 10
TK> thread: max_requests_per_server = 0
TK> thread: cleanup_delay = 5
TK> Thread spawned new child 1. Total threads in pool: 1
TK> Thread spawned new child 2. Total threads in pool: 2
TK> Thread 1 waiting to be assigned a request
TK> Thread spawned new child 3. Total threads in pool: 3
TK> Thread spawned new child 4. Total threads in pool: 4
TK> Thread spawned new child 5. Total threads in pool: 5
TK> Listening on IP address 133.97.XXX.XXX, ports 1645/udp and 1646/udp.
TK> Ready to process requests.
TK> Thread 2 waiting to be assigned a request
TK> Thread 3 waiting to be assigned a request
TK> Thread 4 waiting to be assigned a request
TK> Thread 5 waiting to be assigned a request
TK> rad_recv: Access-Request packet from host 133.97.YYY.YYY:1645, id=132,
TK> length=75
TK> Thread 1 assigned request 0
TK> --- Walking the entire request list ---
TK> Threads: total/active/spare threads = 5/1/4
TK> Nothing to do. Sleeping until we see a request.
TK> Thread 1 handling request 0, (1 handled so far)
TK> NAS-IP-Address = 133.97.YYY.YYY
TK> NAS-Port = 48
TK> NAS-Port-Type = Async
TK> User-Name = "xxxxxx"
TK> User-Password = "\XXXXXXXXXXXXXXXX"
TK> Service-Type = Framed-User
TK> Framed-Protocol = PPP
TK> modcall: entering group authorize
TK> modcall[authorize]: module "preprocess" returns ok
TK> modcall[authorize]: module "suffix" returns ok
TK> users: Matched DEFAULT at 152
TK> users: Matched DEFAULT at 171
TK> users: Matched DEFAULT at 183
TK> modcall[authorize]: module "files" returns ok
TK> modcall: group authorize returns ok
TK> rad_check_password: Found Auth-Type System
TK> auth: type "System"
TK> modcall: entering group authenticate
TK> rlm_unix: [xxxxxx]: invalid password
TK> modcall[authenticate]: module "unix" returns reject
TK> modcall: group authenticate returns reject
TK> auth: Failed to validate the user.
TK> WARNING: Unprintable characters in the password. ? Double-check the
TK> shared secret on the server and the NAS!
TK> Delaying request 0 for 1 seconds
TK> Finished request 0
TK> Going to the next request
TK> Of course this password is a correct password!
TK> If you have any idea, please teach us, thanks.
TK> -----
TK> Kiyoaki Takemura
TK> Kochi University
TK> -
TK> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
~/ZARAZA
�������, ������ ����� - ��������! (���)
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
