Hello Thao -
On Fri, 24 Nov 2000, Le Van Thao wrote:
> Hi Mike,
> I'm waiting for downloading sybase and now I just Test my Radius with users
> in user file.
> My NAS is Cisco, so I use the file dictionary.cisco but I face the message
> that:
>
> There is no attribute named Las-Code in file dictionary.cisco , so I comment
> these lines. But I faced the problem is that : when I dial up , at client I
> can't login because Invalid username/password. But I can see that this user
> is authorized successfully. I think may be there are somthings wrong with my
> config
>
>
> Fri Nov 24 14:07:44 2000: DEBUG: Packet dump:
> *** Received from 172.16.11.250 port 1645 ....
> Code: Access-Request
> Identifier: 121
> Authentic: 0Z<205><12><131><166>?/<128>.<223><199><143>+<212><195>
> Attributes:
> NAS-IP-Address = 172.16.11.250
> NAS-Port = 195
> NAS-Port-Type = Async
> User-Name = "fred"
> User-Password = "<18>u<240>|he<10>f^<179><8><250><229>C1<222>"
> Service-Type = Framed-User
> Framed-Protocol = PPP
>
> Fri Nov 24 14:07:44 2000: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Fri Nov 24 14:07:44 2000: DEBUG: Deleting session for fred, 172.16.11.250,
> 195
> Fri Nov 24 14:07:44 2000: DEBUG: Handling with Radius::AuthFILE
> Fri Nov 24 14:07:44 2000: DEBUG: Radius::AuthFILE looks for match with fred
> Fri Nov 24 14:07:44 2000: DEBUG: Radius::AuthFILE ACCEPT:
> Fri Nov 24 14:07:44 2000: DEBUG: Access accepted for fred
> Fri Nov 24 14:07:44 2000: DEBUG: Packet dump:
> *** Sending to 172.16.11.250 port 1645 ....
> Code: Access-Accept
> Identifier: 121
> Authentic: 0Z<205><12><131><166>?/<128>.<223><199><143>+<212><195>
> Attributes:
> Framed-Protocol = PPP
> Framed-IP-Netmask = 255.255.255.255
> Framed-Routing = None
> Framed-MTU = 1500
> Framed-Compression = Van-Jacobson-TCP-IP
>
Cisco's are very picky about the Service-Type attribute in the reply matching
the Service-Type in the request, so you will need to add the Service-Type
attribute to your reply. Something like this:
someuser Password = .....
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-IP-Netmask = 255.255.255.255,
Framed-Routing = None,
Framed-MTU = 1500,
Framed-Compression = Van-Jacobson-TCP-IP
Also note that in most cases you should use the standard dictionary.
hth
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
