Hello all,
Smbd please help me!
my radiusd.conf:
**********************************
mschap {
authtype = MS-CHAP
}
authorize {
preprocess
sql
mschap
}
authenticate {
mschap
authtype PAP {
pap
}
}
my database:
> select * from radgroupcheck
+----+-----------+-------------------+-------------+----+
| id | groupname | attribute | value | op |
+----+-----------+-------------------+-------------+----+
| 1 | vpn | Auth-Type | MS-CHAP | := |
| 3 | vpn | Framed-Protocol | PPP | := |
| 2 | vpn | Service-Type | Framed-User | := |
| 4 | vpn | MS-Acct-Auth-Type | MS-CHAP-2 | := |
+----+-----------+-------------------+-------------+----+
> select * from radcheck where username = 'vpn'
+----+----------+-------------+----------------------------------+----+
| id | username | attribute | value | op |
+----+----------+-------------+----------------------------------+----+
| 75 | vpn | NT-Password | 0CB6948805F797BF2A82807973B89537 | := |
+----+----------+-------------+----------------------------------+----+
And here is my log file:
Aug 25 22:30:59 fast pptpd[27528]: CTRL: Starting call (launching pppd,
opening GRE)
Aug 25 22:30:59 fast pppd[27529]: Plugin radius.so loaded.
Aug 25 22:30:59 fast pppd[27529]: RADIUS plugin initialized.
Aug 25 22:30:59 fast pptpd[27528]: GRE: Discarding duplicate packet
Aug 25 22:30:59 fast pppd[27529]: Plugin radius.so loaded.
Aug 25 22:30:59 fast pppd[27529]: RADIUS plugin initialized.
Aug 25 22:30:59 fast pppd[27529]: pppd 2.4.2b1 started by root, uid 0
Aug 25 22:30:59 fast pppd[27529]: Using interface ppp0
Aug 25 22:30:59 fast pppd[27529]: Connect: ppp0 <--> /dev/pts/10
Aug 25 22:30:59 fast pptpd[27528]: GRE: Bad checksum from pppd.
Aug 25 22:31:01 fast pptpd[27528]: CTRL: Ignored a SET LINK INFO packet
with real ACCMs!
��� 25 22:31:01 fast radiusd: rad_recv: Access-Request packet from host
127.0.0.1:1933, id=253, length=131
��� 25 22:31:01 fast radiusd: ^IService-Type = Framed-User
��� 25 22:31:01 fast radiusd: ^IFramed-Protocol = PPP
��� 25 22:31:01 fast radiusd: ^IUser-Name = "vpn"
��� 25 22:31:01 fast radiusd: ^IMS-CHAP-Challenge =
0x65f3ac18bf269f7eb9e48da2c6c76675
��� 25 22:31:01 fast radiusd: ^IMS-CHAP2-Response =
0x010029756f534532090720c3873e68efc97f0000000000000000f295edd30b2bde078e5bcfb602cbc15a931da24f7829d363
��� 25 22:31:01 fast radiusd: ^INAS-IP-Address = 212.1.224.59
��� 25 22:31:01 fast radiusd: ^INAS-Port = 0
��� 25 22:31:01 fast radiusd: modcall: entering group authorize
��� 25 22:31:01 fast radiusd: modcall[authorize]: module "preprocess"
returns ok
��� 25 22:31:01 fast radiusd: radius_xlat: 'vpn'
��� 25 22:31:01 fast radiusd: sql_set_user: escaped user --> 'vpn'
��� 25 22:31:01 fast radiusd: radius_xlat: 'SELECT
id,UserName,Attribute,Value FROM radcheck WHERE Username = 'vpn' ORDER
BY id'
��� 25 22:31:01 fast radiusd: rlm_sql: Reserving sql socket id: 4
��� 25 22:31:01 fast radiusd: query: SELECT id,UserName,Attribute,Value
FROM radcheck WHERE Username = 'vpn' ORDER BY id
��� 25 22:31:01 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
��� 25 22:31:01 fast radiusd: sql_postgresql: affected rows =
��� 25 22:31:01 fast radiusd: radius_xlat: 'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value
FROM radgroupcheck,usergroup WHERE usergroup.Username = 'vpn' AND
usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
��� 25 22:31:02 fast radiusd: query: SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value
FROM radgroupcheck,usergroup WHERE usergroup.Username = 'vpn' AND
usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id
��� 25 22:31:02 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
��� 25 22:31:02 fast radiusd: sql_postgresql: affected rows =
��� 25 22:31:02 fast radiusd: radius_xlat: 'SELECT
id,UserName,Attribute,Value FROM radreply WHERE Username = 'vpn' ORDER
BY id'
��� 25 22:31:02 fast radiusd: query: SELECT id,UserName,Attribute,Value
FROM radreply WHERE Username = 'vpn' ORDER BY id
��� 25 22:31:02 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
��� 25 22:31:02 fast radiusd: sql_postgresql: affected rows =
��� 25 22:31:02 fast radiusd: radius_xlat: 'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value
FROM radgroupreply,usergroup WHERE usergroup.Username = 'vpn' AND
usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
��� 25 22:31:02 fast radiusd: query: SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value
FROM radgroupreply,usergroup WHERE usergroup.Username = 'vpn' AND
usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id
��� 25 22:31:02 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
��� 25 22:31:02 fast radiusd: sql_postgresql: affected rows =
��� 25 22:31:02 fast radiusd: rlm_sql: check items
��� 25 22:31:03 fast radiusd: NT-Password =
0x30434236393438383035463739374246324138323830373937334
��� 25 22:31:03 fast radiusd: Auth-Type = MS-CHAP
��� 25 22:31:03 fast radiusd: Service-Type = Framed-User
��� 25 22:31:03 fast radiusd: Framed-Protocol = PPP
��� 25 22:31:03 fast radiusd: MS-Acct-Auth-Type = MS-CHAP-2
��� 25 22:31:03 fast radiusd: rlm_sql: reply items
Aug 25 22:31:03 fast pppd[27529]: CHAP peer authentication failed for
remote host vpn
��� 25 22:31:03 fast radiusd: Framed-IP-Address = 10.10.1.1
��� 25 22:31:03 fast radiusd: Framed-Protocol = PPP
��� 25 22:31:03 fast radiusd: rlm_sql: Pairs do not match [vpn]
Aug 25 22:31:03 fast pppd[27529]: Connection terminated.
��� 25 22:31:03 fast radiusd: rlm_sql: Released sql socket id: 4
Aug 25 22:31:04 fast pppd[27529]: Exit.
��� 25 22:31:04 fast radiusd: modcall[authorize]: module "sql" returns
notfound
Aug 25 22:31:04 fast pptpd[27528]: GRE:
read(fd=5,buffer=804d9c0,len=8196) from PTY failed: status = -1 error =
Input/output error
��� 25 22:31:04 fast radiusd: modcall[authorize]: module "mschap"
returns notfound
Aug 25 22:31:04 fast pptpd[27528]: CTRL: PTY read or GRE write failed
(pty,gre)=(5,6)
��� 25 22:31:04 fast radiusd: modcall: group authorize returns ok
Aug 25 22:31:04 fast pptpd[27528]: CTRL: Client xxx.xxx.xxx.xxx control
connection finished
��� 25 22:31:04 fast radiusd: auth: No authenticate method (Auth-Type)
configuration found for the request: Rejecting the user
��� 25 22:31:04 fast radiusd: auth: Failed to validate the user.
��� 25 22:31:04 fast radiusd: Login incorrect: [vpn/<no User-Password
attribute>] (from client 127.0.0.1 port 0)
��� 25 22:31:04 fast radiusd: Delaying request 0 for 1 seconds
��� 25 22:31:05 fast radiusd: Finished request 0
��� 25 22:31:05 fast radiusd: Going to the next request
��� 25 22:31:05 fast radiusd: --- Walking the entire request list ---
��� 25 22:31:05 fast radiusd: Waking up in 1 seconds...
��� 25 22:31:05 fast radiusd: --- Walking the entire request list ---
��� 25 22:31:05 fast radiusd: Waking up in 1 seconds...
��� 25 22:31:05 fast radiusd: --- Walking the entire request list ---
��� 25 22:31:05 fast radiusd: Sending Access-Reject of id 253 to
127.0.0.1:1933
��� 25 22:31:05 fast radiusd: ^IMS-CHAP-Error = "\001E=691 R=1"
��� 25 22:31:05 fast radiusd: Waking up in 4 seconds...
��� 25 22:31:07 fast radiusd: --- Walking the entire request list ---
��� 25 22:31:07 fast radiusd: Cleaning up request 0 ID 253 with
timestamp 3d692265
��� 25 22:31:07 fast radiusd: Nothing to do. Sleeping until we see a
request.
If I use pap it work's fine, where is the grabli?
With hope, Alex
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
