RE: Authentication problems

James Ecker Mon, 21 Feb 2005 17:27:51 -0800

Here is the server output. 

rad_recv: Access-Request packet from host 192.168.1.104:32769, id=187,
length=56
        User-Name = "test"
        User-Password = "test"
        NAS-IP-Address = 255.255.255.255
        NAS-Port = 1812
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 1
  modcall[authorize]: module "preprocess" returns ok for request 1
  modcall[authorize]: module "chap" returns noop for request 1
  modcall[authorize]: module "mschap" returns noop for request 1
    rlm_realm: No '@' in User-Name = "test", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 1
radius_xlat:  'test'
rlm_sql (sql): sql_set_user escaped user --> 'test'
radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE
Username = 'test' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 3
radius_xlat:  'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
ck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
usergroup.Username = 'test' AND usergroup.GroupName =
radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radreply WHERE
Username = 'test' ORDER BY id'
radius_xlat:  'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgrouprep
ly.Value,radgroupreply.op  FROM radgroupreply,usergroup WHERE
usergroup.Username = 'test' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 3
  modcall[authorize]: module "sql" returns ok for request 1
modcall: group authorize returns ok for request 1
auth: type Local
auth: user supplied User-Password does NOT match local User-Password
auth: Failed to validate the user.
Login incorrect: [test/test] (from client localhost port 1812)
Delaying request 1 for 1 seconds
Finished request 1
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 187 to 192.168.1.104:32769
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 1 ID 187 with timestamp 421a8970
Nothing to do.  Sleeping until we see a request.




I am not sure but I believe the problem is in this area: 

modcall: entering group authorize for request 1
  modcall[authorize]: module "preprocess" returns ok for request 1
  modcall[authorize]: module "chap" returns noop for request 1
  modcall[authorize]: module "mschap" returns noop for request 1

If so, how can I fix the problem?

James Ecker
MCSE + Internet, CNE, A+, Network+

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kostas
Kalevras
Sent: Monday, February 21, 2005 5:42 AM
To: [email protected]
Subject: Re: Authentication problems

On Sun, 20 Feb 2005, James Ecker wrote:

> I am using FreeRadius 1.0.2 with mySql on a Fedora Core3 machine. I am
using
> the default encryption method.
>
> I have setup FreeRadius to successfully connect to mySql. I can
successfully
> enter new users in through the dialup_admin web page, but when I "Check
> Password" the response I get, is "NO It is wrong." When I do the radtest
the
> server responds back with:
>
> Sending Access-Request of id 125 to 192.168.1.104:1812
>        User-Name = "test"
>        User-Password = "test"
>        NAS-IP-Address = localhost.localdomain
>        NAS-Port = 1812
> rad_recv: Access-Reject packet from host 192.168.1.104:1812, id=125,
> length=20
>
>
> I realize there must be an encryption setting that is wrong, so any help
> with is greatly appreciated.

Please run the *server* in debug mode to see what happens. Checking only the

client side won't get you far.

>
> James Ecker
> MCSE + Internet, CNE, A+, Network+
>
>
>
>
> -
> List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
>

--
Kostas Kalevras         Network Operations Center
[EMAIL PROTECTED]       National Technical University of Athens, Greece
Work Phone:             +30 210 7721861
'Go back to the shadow' Gandalf

- 
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html



-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: Authentication problems

Reply via email to