Well, I've searched through the lists, but haven't found anything that seems to relate to this, so here goes. Please let me know if you've seen this cross the list and I'll try to look a little harder.
The problem seems to be with a 63-character username in combination with a 16-character password. In this case, the username isn't a local user, but an iPass user where it comes in with a long string that goes something like "IPASS/(sessionid)/[EMAIL PROTECTED]" as the username (the whole string being a total of 63 characters) and any 16-character password. Freeradius shows the password as containing an extra character on the end (usually a 0, but sometimes weird upper ascii as well). It then does the proxying to IPASS just fine, but with the extra character in the password, auth fails. This seems to happen with Ascend Max, Cisco, and Portmaster III NASes, but for the life of me I can't seem to tell if it's the NAS's fault or radius' fault. (I'd suspect the NAS because radtest doesn't seem to fail, but why would it be all three different kinds of NAS?) Anyone heard of anything remotely like this? I wouldn't have noticed except we're providing POPs to iPass in a couple of areas, and they contacted me about their tests failing. Pointers to docs and/or code modules appreciated as well. I'm not entirely sure where to start looking! :-) Thanks! Kristina - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
