Dear Frank Keeney,
Plese get new version from CVS, I've changed importance of
SMB-Account-Control attribute a couple of days ago, but didn't checked
default value is valid, so it fails if this attribute doesn't present.
--Friday, February 7, 2003, 9:58:23 PM, you wrote to [EMAIL PROTECTED]:
FK> I can't seem to get MS-CHAP to work. We've spent many hours with various
FK> configuration but always seem to have an error. We've tried smbpasswd and
FK> other options without success.
FK> Is there an example MS-CHAP config that I can use for a model? I've been
FK> through all the docs and the mailing list. The NAS is a SMC EliteConnect.
FK> We keep seeing this message and others:
FK> rlm_mschap: No LM/NT password configured. Check authorization.
FK> modcall[authenticate]: module "mschap" returns invalid
FK> Thank you, Configs and dump below:
FK> ------------------------
FK> Applicable parts of the config:
FK> mschap {
FK> authtype = MS-CHAP
FK> use_mppe = yes
FK> require_encryption = yes
FK> }
FK> authorize {
FK> mschap
FK> }
FK> authenticate {
FK> authtype PAP {
FK> pap
FK> }
FK> authtype CHAP {
FK> chap
FK> }
FK> authtype MS-CHAP {
FK> mschap
FK> }
FK> }
FK> preacct {
FK> preprocess
FK> suffix
FK> files
FK> }
FK> ------------------------
FK> Test user file:
FK> test11 Auth-Type := Local, User-Password := "test"
FK> test12 Auth-Type := MS-CHAP, User-Password := "test"
FK> ------------------------
FK> Radius dump:
FK> Ready to process requests.
FK> rad_recv: Access-Request packet from host 192.168.16.3:1176, id=130, length=110
FK> User-Name = "test12"
FK> MS-CHAP-Challenge = 0x2c1096fe257fe7d558cd07dee6ea1638
FK> MS-CHAP2-Response =
0x00003d1602735c6db434c3145b04dc81a123000000000000000025833ba5078dd3cd1fc0f070e6ae98ee629e73bb4d1742a2
FK> rad_lowerpair: User-Name now 'test12'
FK> rad_rmspace_pair: User-Name now 'test12'
FK> modcall: entering group authorize
FK> modcall[authorize]: module "preprocess" returns ok
FK> users: Matched DEFAULT at 1
FK> modcall[authorize]: module "files" returns ok
FK> modcall[authorize]: module "mschap" returns notfound
FK> modcall: group authorize returns ok
FK> rad_check_password: Found Auth-Type MS-CHAP
FK> auth: type "MS-CHAP"
FK> modcall: entering group authtype
FK> rlm_mschap: No LM/NT password configured. Check authorization.
FK> modcall[authenticate]: module "mschap" returns invalid
FK> modcall: group authtype returns invalid
FK> auth: Failed to validate the user.
FK> Login incorrect: [test12] (from client smc port 0)
FK> Delaying request 0 for 1 seconds
FK> Finished request 0
FK> Going to the next request
FK> --- Walking the entire request list ---
FK> Waking up in 1 seconds...
FK> --- Walking the entire request list ---
FK> Waking up in 1 seconds...
FK> --- Walking the entire request list ---
FK> Sending Access-Reject of id 130 to 192.168.16.3:1176
FK> MS-CHAP-Error = "\000E=691 R=1"
FK> Waking up in 4 seconds...
FK> --- Walking the entire request list ---
FK> Cleaning up request 0 ID 130 with timestamp 3e43ffcc
FK> Nothing to do. Sleeping until we see a request.
FK> Radius dump number 2:
FK> --- Walking the entire request list ---
FK> Threads: total/active/spare threads = 5/1/4
FK> Waking up in 5 seconds...
FK> Thread 1 handling request 0, (1 handled so far)
FK> User-Name = "test12"
FK> MS-CHAP-Challenge = 0x6227301276f8a2625c5e1b17f5cf8c4b
FK> MS-CHAP2-Response =
0x00005e2f83723e193f82d54c210d15bab67400000000000000004a1ee29726edf3a348188e0d4c5c4a59c6542ff9637ec90d
FK> rad_lowerpair: User-Name now 'test12'
FK> rad_rmspace_pair: User-Name now 'test12'
FK> modcall: entering group authorize
FK> modcall[authorize]: module "preprocess" returns ok
FK> rlm_chap: Could not find proper Chap-Password attribute in request
FK> modcall[authorize]: module "chap" returns noop
FK> users: Matched test12 at 1075
FK> modcall[authorize]: module "files" returns ok
FK> modcall[authorize]: module "mschap" returns ok
FK> modcall: group authorize returns ok
FK> rad_check_password: Found Auth-Type MS-CHAP
FK> auth: type "MS-CHAP"
FK> modcall: entering group authtype
FK> rlm_mschap: doing MS-CHAPv2 with NT-Password
FK> rlm_mschap: Authentication failed
FK> rlm_mschap: Nothing in the packet I recognise: Rejecting the user
FK> modcall[authenticate]: module "mschap" returns reject
FK> modcall: group authtype returns reject
FK> auth: Failed to validate the user.
FK> Login incorrect: [test12] (from client smc port 0)
FK> Delaying request 0 for 1 seconds
FK> Finished request 0
FK> Going to the next request
FK> Thread 1 waiting to be assigned a request
FK> --- Walking the entire request list ---
FK> Threads: total/active/spare threads = 5/0/5
FK> Sending Access-Reject of id 56 to 192.168.16.3:1102
FK> MS-CHAP-Error = "\000E=691 R=1"
FK> Waking up in 1 seconds...
FK> Error receiving packet: Connection refused
FK> rl_next: returning NULL
FK> Cleaning up request 0 ID 56 with timestamp 3e3b09ec
FK> Waking up in 1 seconds...
FK> --- Walking the entire request list ---
FK> Nothing to do. Sleeping until we see a request.
FK> rad_recv: Access-Request packet from host 192.168.16.3:1103, id=57, length=108
FK> Thread 2 assigned request 1
FK> --- Walking the entire request list ---
FK> -
FK> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
~/ZARAZA
������� - �� �����! (���)
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
