> [EMAIL PROTECTED] wrote:
>> Both PAP and CHAP modules are enabled in radiusd.conf. And you're
>> right, there is no authenticate_query in sql.conf.
>>
>> Being in clear text, when authentication by CHAP is requested, it's
>> fine.
>> But when PAP is requested against the same password, I get:
>>
>> rlm_chap: Attribute "CHAP-Password" is required for authentication.
>> Cannot use "User-Password".
>
> I guess you better provide some more debugging output.
Here's the debug info when PAP is requested against same password:
rad_recv: Access-Request packet from host xx.xx.xx.xx:60415, id=5, length=50
User-Name = "phpmyadmin"
User-Password = "phpmyadminpass"
rad_rmspace_pair: User-Name now 'phpmyadmin'
rad_rmspace_pair: User-Password now 'phpmyadminpass'
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 5
modcall[authorize]: module "preprocess" returns ok for request 5
modcall[authorize]: module "chap" returns noop for request 5
modcall[authorize]: module "mschap" returns noop for request 5
rlm_realm: No '@' in User-Name = "phpmyadmin", skipping NULL due to
config.
modcall[authorize]: module "suffix" returns noop for request 5
users: Matched DEFAULT at 21
modcall[authorize]: module "files" returns ok for request 5
radius_xlat: 'phpmyadmin'
rlm_sql (sql): sql_set_user escaped user --> 'phpmyadmin'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE
Username = 'phpmyadmin' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 6
radius_xlat: 'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op
FROM radgroupcheck,usergroup WHERE usergroup.Username = 'phpmyadmin' AND
usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radreply WHERE
Username = 'phpmyadmin' ORDER BY id'
radius_xlat: 'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op
FROM radgroupreply,usergroup WHERE usergroup.Username = 'phpmyadmin' AND
usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 6
modcall[authorize]: module "sql" returns ok for request 5
modcall: group authorize returns ok for request 5
rad_check_password: Found Auth-Type CHAP
auth: type "CHAP"
Processing the authenticate section of radiusd.conf
modcall: entering group Auth-Type for request 5
rlm_chap: Attribute "CHAP-Password" is required for authentication. Cannot
use "User-Password".
modcall[authenticate]: module "chap" returns invalid for request 5
modcall: group Auth-Type returns invalid for request 5
auth: Failed to validate the user.
Login incorrect: [phpmyadmin/phpmyadminpass] (from client Felix-Home port 0)
rad_lowerpair: User-Name now 'phpmyadmin'
rad_lowerpair: User-Password now 'phpmyadminpass'
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 5
modcall[authorize]: module "preprocess" returns ok for request 5
modcall[authorize]: module "chap" returns noop for request 5
modcall[authorize]: module "mschap" returns noop for request 5
rlm_realm: No '@' in User-Name = "phpmyadmin", skipping NULL due to
config.
modcall[authorize]: module "suffix" returns noop for request 5
users: Matched DEFAULT at 21
modcall[authorize]: module "files" returns ok for request 5
radius_xlat: 'phpmyadmin'
rlm_sql (sql): sql_set_user escaped user --> 'phpmyadmin'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE
Username = 'phpmyadmin' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 5
radius_xlat: 'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op
FROM radgroupcheck,usergroup WHERE usergroup.Username = 'phpmyadmin' AND
usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radreply WHERE
Username = 'phpmyadmin' ORDER BY id'
radius_xlat: 'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op
FROM radgroupreply,usergroup WHERE usergroup.Username = 'phpmyadmin' AND
usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 5
modcall[authorize]: module "sql" returns ok for request 5
modcall: group authorize returns ok for request 5
rad_check_password: Found Auth-Type CHAP
auth: type "CHAP"
Processing the authenticate section of radiusd.conf
modcall: entering group Auth-Type for request 5
rlm_chap: Attribute "CHAP-Password" is required for authentication. Cannot
use "User-Password".
modcall[authenticate]: module "chap" returns invalid for request 5
modcall: group Auth-Type returns invalid for request 5
auth: Failed to validate the user.
Login incorrect: [phpmyadmin/phpmyadminpass] (from client Felix-Home port 0)
Delaying request 5 for 1 seconds
Finished request 5
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 5 to 69.91.68.95:60415
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 5 ID 5 with timestamp 41167c46
Nothing to do. Sleeping until we see a request.
**************************************
Computer problems? ...................
..............http://www.multibyte.net
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
