> From: "Alan DeKok" <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> Subject: Re: Covad Telesurfer Resale
> Date: Tue, 04 May 2004 09:57:30 -0400
> Reply-To: [EMAIL PROTECTED]
>
> "Walter Schulze" <[EMAIL PROTECTED]> wrote:
> ...
>
> Please follow list etiquette and edit your quotes.
okay. sorry.
> > the problem I am having is there is not someone in the Covad NOC who can
> > explain the configuration in the FreeRADIUS file they are trying to test
> > for. They ask me for user/pw & shared secret. With that and my server
> > address, they run authentication tests from their POP sites. Each
attempt
> > has failed because I do not know exactly what they are looking for to
> > successfully complete their tests.
>
> Let me ask another question, first: Are you at all familiar with RADIUS?
My familiarity with RADIUS and FreeRADIUS comes from reading. (web-site,
comments in files, O'Reilly book). I have no professional experience to
draw on. I do have both an undergraduate degree and graduate degree in IT
and about nine years of industry experience to draw on.
>
> > I assume something along the lines of
> > the below, but I am not sure. Does it look right?
> >
> > client 64.105.202.137 {
> > secret = donttellanyone
> > shortname = Covad_POP-1
> > vendor = I do not know what to put here
>
> There is no "vendor" field. I don't know where you got the idea
> that there was one.
The above is from page 102 of the O'Reilly book.
>
> > type = tc
> > login = !root
> > password = changeme
>
> Those three fields are for controlling simultaneous login access.
> You probably don't need them.
>
> > Also, I am not clear on the difference between using a "client"
> entry and
> > using a "nas" entry.
>
> I have no idea where you got the idea that there was a "nas" entry.
...page 103 of the O'Reilly book.
>
> I think at least part of the problem is that you're confusing
> yourself by inventing configurations the server doesn't understand.
>
> If you're at all familiar with RADIUS, the "clients.conf" file
> should be easily understood.
>
> If you're not familiar with RADIUS, I suggest buying & reading the
> O'Reilly book, and also reading the "clients.conf" file. It contains
> a wealth of documentation describing what fields exist, what they
> mean, and what they're used for.
>
> Alan DeKok.
I have read the book and files. Still have not passed the Covad NOC test.
Getting errors on the radiusd -X screen like the below when the test is run.
Thx for any help anyone can provide.
rad_recv: Access-Request packet from host 64.105.179.137:55324, id=82,
length=99
User-Name = "[EMAIL PROTECTED]"
User-Password = "test"
NAS-IP-Address = 192.168.7.6
NAS-Port = 99
Service-Type = Framed-User
Framed-Protocol = PPP
NAS-Identifier = "sfldmidn-rb1"
modcall: entering group authorize for request 14
modcall[authorize]: module "preprocess" returns ok for request 14
modcall[authorize]: module "chap" returns noop for request 14
modcall[authorize]: module "eap" returns noop for request 14
rlm_realm: Looking up realm "national-tel.com" for User-Name =
"[EMAIL PROTECTED]"
rlm_realm: No such realm "national-tel.com"
modcall[authorize]: module "suffix" returns noop for request 14
users: Matched DEFAULT at 152
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok for request 14
modcall[authorize]: module "mschap" returns noop for request 14
modcall: group authorize returns ok for request 14
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate for request 14
modcall[authenticate]: module "unix" returns notfound for request 14
modcall: group authenticate returns notfound for request 14
auth: Failed to validate the user.
Delaying request 14 for 1 seconds
Finished request 14
Going to the next request
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
