Dear Alex D. Krivoshein,
The problem is here:
ADK> ��� 25 22:31:02 fast radiusd: rlm_sql: check items
ADK> ��� 25 22:31:03 fast radiusd: NT-Password =
ADK> 0x30434236393438383035463739374246324138323830373937334
ADK> ��� 25 22:31:03 fast radiusd: Auth-Type = MS-CHAP
ADK> ��� 25 22:31:03 fast radiusd: Service-Type = Framed-User
ADK> ��� 25 22:31:03 fast radiusd: Framed-Protocol = PPP
ADK> ��� 25 22:31:03 fast radiusd: MS-Acct-Auth-Type = MS-CHAP-2
ADK> ��� 25 22:31:03 fast radiusd: rlm_sql: reply items
ADK> Aug 25 22:31:03 fast pppd[27529]: CHAP peer authentication failed for
ADK> remote host vpn
ADK> ��� 25 22:31:03 fast radiusd: Framed-IP-Address = 10.10.1.1
ADK> ��� 25 22:31:03 fast radiusd: Framed-Protocol = PPP
ADK> ��� 25 22:31:03 fast radiusd: rlm_sql: Pairs do not match [vpn]
NT-Password and Auth-Type chould be in configure items, not in check
items. Framed* probably should be in reply items.
--Sunday, August 25, 2002, 10:34:29 PM, you wrote to [EMAIL PROTECTED]:
ADK> Hello all,
ADK> Smbd please help me!
ADK> my radiusd.conf:
ADK> **********************************
ADK> mschap {
ADK> authtype = MS-CHAP
ADK> }
ADK> authorize {
ADK> preprocess
ADK> sql
ADK> mschap
ADK> }
ADK> authenticate {
ADK> mschap
ADK> authtype PAP {
ADK> pap
ADK> }
ADK> }
ADK> my database:
ADK> > select * from radgroupcheck
ADK> +----+-----------+-------------------+-------------+----+
ADK> | id | groupname | attribute | value | op |
ADK> +----+-----------+-------------------+-------------+----+
ADK> | 1 | vpn | Auth-Type | MS-CHAP | := |
ADK> | 3 | vpn | Framed-Protocol | PPP | := |
ADK> | 2 | vpn | Service-Type | Framed-User | := |
ADK> | 4 | vpn | MS-Acct-Auth-Type | MS-CHAP-2 | := |
ADK> +----+-----------+-------------------+-------------+----+
ADK> > select * from radcheck where username = 'vpn'
ADK> +----+----------+-------------+----------------------------------+----+
ADK> | id | username | attribute | value | op |
ADK> +----+----------+-------------+----------------------------------+----+
ADK> | 75 | vpn | NT-Password | 0CB6948805F797BF2A82807973B89537 | := |
ADK> +----+----------+-------------+----------------------------------+----+
ADK> And here is my log file:
ADK> Aug 25 22:30:59 fast pptpd[27528]: CTRL: Starting call (launching pppd,
ADK> opening GRE)
ADK> Aug 25 22:30:59 fast pppd[27529]: Plugin radius.so loaded.
ADK> Aug 25 22:30:59 fast pppd[27529]: RADIUS plugin initialized.
ADK> Aug 25 22:30:59 fast pptpd[27528]: GRE: Discarding duplicate packet
ADK> Aug 25 22:30:59 fast pppd[27529]: Plugin radius.so loaded.
ADK> Aug 25 22:30:59 fast pppd[27529]: RADIUS plugin initialized.
ADK> Aug 25 22:30:59 fast pppd[27529]: pppd 2.4.2b1 started by root, uid 0
ADK> Aug 25 22:30:59 fast pppd[27529]: Using interface ppp0
ADK> Aug 25 22:30:59 fast pppd[27529]: Connect: ppp0 <--> /dev/pts/10
ADK> Aug 25 22:30:59 fast pptpd[27528]: GRE: Bad checksum from pppd.
ADK> Aug 25 22:31:01 fast pptpd[27528]: CTRL: Ignored a SET LINK INFO packet
ADK> with real ACCMs!
ADK> ��� 25 22:31:01 fast radiusd: rad_recv: Access-Request packet from host
ADK> 127.0.0.1:1933, id=253, length=131
ADK> ��� 25 22:31:01 fast radiusd: ^IService-Type = Framed-User
ADK> ��� 25 22:31:01 fast radiusd: ^IFramed-Protocol = PPP
ADK> ��� 25 22:31:01 fast radiusd: ^IUser-Name = "vpn"
ADK> ��� 25 22:31:01 fast radiusd: ^IMS-CHAP-Challenge =
ADK> 0x65f3ac18bf269f7eb9e48da2c6c76675
ADK> ��� 25 22:31:01 fast radiusd: ^IMS-CHAP2-Response =
ADK>
0x010029756f534532090720c3873e68efc97f0000000000000000f295edd30b2bde078e5bcfb602cbc15a931da24f7829d363
ADK> ��� 25 22:31:01 fast radiusd: ^INAS-IP-Address = 212.1.224.59
ADK> ��� 25 22:31:01 fast radiusd: ^INAS-Port = 0
ADK> ��� 25 22:31:01 fast radiusd: modcall: entering group authorize
ADK> ��� 25 22:31:01 fast radiusd: modcall[authorize]: module "preprocess"
ADK> returns ok
ADK> ��� 25 22:31:01 fast radiusd: radius_xlat: 'vpn'
ADK> ��� 25 22:31:01 fast radiusd: sql_set_user: escaped user --> 'vpn'
ADK> ��� 25 22:31:01 fast radiusd: radius_xlat: 'SELECT
ADK> id,UserName,Attribute,Value FROM radcheck WHERE Username = 'vpn' ORDER
ADK> BY id'
ADK> ��� 25 22:31:01 fast radiusd: rlm_sql: Reserving sql socket id: 4
ADK> ��� 25 22:31:01 fast radiusd: query: SELECT id,UserName,Attribute,Value
ADK> FROM radcheck WHERE Username = 'vpn' ORDER BY id
ADK> ��� 25 22:31:01 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
ADK> ��� 25 22:31:01 fast radiusd: sql_postgresql: affected rows =
ADK> ��� 25 22:31:01 fast radiusd: radius_xlat: 'SELECT
ADK>
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value
ADK> FROM radgroupcheck,usergroup WHERE usergroup.Username = 'vpn' AND
ADK> usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
ADK> ��� 25 22:31:02 fast radiusd: query: SELECT
ADK>
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value
ADK> FROM radgroupcheck,usergroup WHERE usergroup.Username = 'vpn' AND
ADK> usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id
ADK> ��� 25 22:31:02 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
ADK> ��� 25 22:31:02 fast radiusd: sql_postgresql: affected rows =
ADK> ��� 25 22:31:02 fast radiusd: radius_xlat: 'SELECT
ADK> id,UserName,Attribute,Value FROM radreply WHERE Username = 'vpn' ORDER
ADK> BY id'
ADK> ��� 25 22:31:02 fast radiusd: query: SELECT id,UserName,Attribute,Value
ADK> FROM radreply WHERE Username = 'vpn' ORDER BY id
ADK> ��� 25 22:31:02 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
ADK> ��� 25 22:31:02 fast radiusd: sql_postgresql: affected rows =
ADK> ��� 25 22:31:02 fast radiusd: radius_xlat: 'SELECT
ADK>
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value
ADK> FROM radgroupreply,usergroup WHERE usergroup.Username = 'vpn' AND
ADK> usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
ADK> ��� 25 22:31:02 fast radiusd: query: SELECT
ADK>
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value
ADK> FROM radgroupreply,usergroup WHERE usergroup.Username = 'vpn' AND
ADK> usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id
ADK> ��� 25 22:31:02 fast radiusd: rlm_postgresql Status: PGRES_TUPLES_OK
ADK> ��� 25 22:31:02 fast radiusd: sql_postgresql: affected rows =
ADK> ��� 25 22:31:02 fast radiusd: rlm_sql: check items
ADK> ��� 25 22:31:03 fast radiusd: NT-Password =
ADK> 0x30434236393438383035463739374246324138323830373937334
ADK> ��� 25 22:31:03 fast radiusd: Auth-Type = MS-CHAP
ADK> ��� 25 22:31:03 fast radiusd: Service-Type = Framed-User
ADK> ��� 25 22:31:03 fast radiusd: Framed-Protocol = PPP
ADK> ��� 25 22:31:03 fast radiusd: MS-Acct-Auth-Type = MS-CHAP-2
ADK> ��� 25 22:31:03 fast radiusd: rlm_sql: reply items
ADK> Aug 25 22:31:03 fast pppd[27529]: CHAP peer authentication failed for
ADK> remote host vpn
ADK> ��� 25 22:31:03 fast radiusd: Framed-IP-Address = 10.10.1.1
ADK> ��� 25 22:31:03 fast radiusd: Framed-Protocol = PPP
ADK> ��� 25 22:31:03 fast radiusd: rlm_sql: Pairs do not match [vpn]
ADK> Aug 25 22:31:03 fast pppd[27529]: Connection terminated.
ADK> ��� 25 22:31:03 fast radiusd: rlm_sql: Released sql socket id: 4
ADK> Aug 25 22:31:04 fast pppd[27529]: Exit.
ADK> ��� 25 22:31:04 fast radiusd: modcall[authorize]: module "sql" returns
ADK> notfound
ADK> Aug 25 22:31:04 fast pptpd[27528]: GRE:
ADK> read(fd=5,buffer=804d9c0,len=8196) from PTY failed: status = -1 error =
ADK> Input/output error
ADK> ��� 25 22:31:04 fast radiusd: modcall[authorize]: module "mschap"
ADK> returns notfound
ADK> Aug 25 22:31:04 fast pptpd[27528]: CTRL: PTY read or GRE write failed
ADK> (pty,gre)=(5,6)
ADK> ��� 25 22:31:04 fast radiusd: modcall: group authorize returns ok
ADK> Aug 25 22:31:04 fast pptpd[27528]: CTRL: Client xxx.xxx.xxx.xxx control
ADK> connection finished
ADK> ��� 25 22:31:04 fast radiusd: auth: No authenticate method (Auth-Type)
ADK> configuration found for the request: Rejecting the user
ADK> ��� 25 22:31:04 fast radiusd: auth: Failed to validate the user.
ADK> ��� 25 22:31:04 fast radiusd: Login incorrect: [vpn/<no User-Password
ADK> attribute>] (from client 127.0.0.1 port 0)
ADK> ��� 25 22:31:04 fast radiusd: Delaying request 0 for 1 seconds
ADK> ��� 25 22:31:05 fast radiusd: Finished request 0
ADK> ��� 25 22:31:05 fast radiusd: Going to the next request
ADK> ��� 25 22:31:05 fast radiusd: --- Walking the entire request list ---
ADK> ��� 25 22:31:05 fast radiusd: Waking up in 1 seconds...
ADK> ��� 25 22:31:05 fast radiusd: --- Walking the entire request list ---
ADK> ��� 25 22:31:05 fast radiusd: Waking up in 1 seconds...
ADK> ��� 25 22:31:05 fast radiusd: --- Walking the entire request list ---
ADK> ��� 25 22:31:05 fast radiusd: Sending Access-Reject of id 253 to
ADK> 127.0.0.1:1933
ADK> ��� 25 22:31:05 fast radiusd: ^IMS-CHAP-Error = "\001E=691 R=1"
ADK> ��� 25 22:31:05 fast radiusd: Waking up in 4 seconds...
ADK> ��� 25 22:31:07 fast radiusd: --- Walking the entire request list ---
ADK> ��� 25 22:31:07 fast radiusd: Cleaning up request 0 ID 253 with
ADK> timestamp 3d692265
ADK> ��� 25 22:31:07 fast radiusd: Nothing to do. Sleeping until we see a
ADK> request.
ADK> If I use pap it work's fine, where is the grabli?
ADK> With hope, Alex
ADK> -
ADK> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
~/ZARAZA
����, � ���� ������. (����)
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
