Hi Chris,
My best guess is that the shared secret configured into Radiator does not
agree with the one configured into your NAS.
In the radius protocol, in an access-request, the only thing thats encrypted
is the password, so if the secrets dont agree, the only symptom you get is a
report of a bad password, even though the password you enter is correct.
The only other possibility is that the password you are using is not correct
(but I assume you have checked that).
Hope that helps.
Cheers.
----------------------------------------------------------------------------
---------------
Mike McCauley [EMAIL PROTECTED]
Open System Consultants +61 3 9598 0985
Mike is travelling right now, and there may be delays
in our correspondence.
-----Original Message-----
From: C Thompson <[EMAIL PROTECTED]>
To: Mike McCauley <[EMAIL PROTECTED]>
Cc: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Thursday, March 04, 1999 4:10 AM
Subject: Re: (RADIATOR) need help on BSDI 4.0
>OK, after the quoted text, I got the trace info...
>
>> at first glance, it looks like you are doing the right thing. I think you
>> must have transcribed some of this to your email, so I presume the lack
of
>> white space before the reply items in the users file and the "AutyBy" are
>> artifacts.
>
>I have tabs in the 'users' file but simply transcribed as you supposed.
>
>> It would be best if you could send the Radiator log file while it runs at
>> trace level 4, so we can see al the gory details about what Radiator is
>> doing while it tries to authenticate your users.
>
>Again, here's the users file info for reference.
>
>> >DEFAULT Auth-Type = System
>> > Framed-Protocol = PPP,
>> > Framed-IP-Netmask = 255.255.255.255
>> >
>> >username Auth-Type = System
>> >
>
>This most recent time, I commented out the username so it would default
>to the DEFAULT settings...
>
>Here's the trace info:
>
>Wed Mar 3 11:50:19 1999: DEBUG: Reading users file
>/usr/local/Radiator/raddb/users
>Wed Mar 3 11:50:19 1999: DEBUG: Reading password
>file /etc/passwd
>Wed Mar 3 11:50:21 1999: DEBUG: Reading group file
>/etc/group
>Wed Mar 3 11:50:22 1999: INFO: Server started
>Wed Mar 3 11:50:43 1999: DEBUG: Packet dump:
>*** Received from 127.0.0.1 port 51352 ....
>Code: Access-Request
>Identifier: 0
>Authentic: 1234567890123456
>Attributes:
> User-Name = "craig"
> Service-Type = Framed-User
> Client-Id = 203.63.154.1
> NAS-Port = 1234
> NAS-Port-Type = Async
> User-Password = " stuff deleted for the record "
>
>Wed Mar 3 11:50:43 1999: DEBUG: Handling request
>with Handler 'Realm=DEFAULT'
>Wed Mar 3 11:50:43 1999: DEBUG: Handling with
>Radius::AuthFILE
>Wed Mar 3 11:50:43 1999: DEBUG: Radius::AuthFILE
>looks for match with craig
>Wed Mar 3 11:50:43 1999: DEBUG: Radius::AuthFILE
>looks for match with DEFAULT
>Wed Mar 3 11:50:43 1999: DEBUG: Handling with
>Radius::AuthUNIX
>Wed Mar 3 11:50:43 1999: DEBUG: Radius::AuthUNIX
>looks for match with craig
>Wed Mar 3 11:50:43 1999: DEBUG: Bad Encrypted-
>Password
>Wed Mar 3 11:50:43 1999: INFO: Radius::AuthUNIX:
>Authentication failed for craig
>Wed Mar 3 11:50:43 1999: INFO: Radius::AuthFILE:
>Authentication failed for craig
>Wed Mar 3 11:50:43 1999: DEBUG: Packet dump:
>*** Sending to 127.0.0.1 port 51352 ....
>Code: Access-Reject
>Identifier: 0
>Authentic: 1234567890123456
>Attributes:
> Port-Message = "Request Denied"
>
>
>
>Craig Thompson
>----------------------------------------------------------------------
>WingNET Internet Services,
>P.O. Box 3000 // Cleveland, TN 37320-3000
>423-559-LINK (v) 423-559-5444 (f)
>http://www.wingnet.net
>----------------------------------------------------------------------
>
>Freedom is doing what you like, happiness is liking what you do.
>
>
>
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
