Re: Freeradius -username for authentication is not picking from users file.
On 5 Aug 2013, at 08:20, rajeev sr rajee...@gmail.com wrote: Hello, I am trying to run the radtest on local machine which is CentOS 6.0. But am getting the following error while sending the Access Request message from client which is another machine. The user name is defined in users file under /usr/local/etc/raddb. But still am getting the error. I had provided the snapshot received on radiusd –Xx in the end. Can you please help me in figuring out the issue? Fri Aug 2 16:45:38 2013 : Debug: WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS! I really fail to see what's ambiguous about that error... The shared secret on the NAS and the RADIUS server is wrong and it's failing to decode the user's password correctly. Make sure the shared secret is the same on the NAS and the relevant client in clients.conf. Don't response with but they're the same, because they're not. You've either misconfigured the NAS or the RADIUS server. We can't help you figure out which. -Arran Arran Cudbard-Bell a.cudba...@freeradius.org FreeRADIUS Development Team - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius -username for authentication is not picking from users file.
Hi, User-Password = \334a\004\305\355x\321\332G\306\362b\226~\355+ that lineand the following in the debug: Fri Aug 2 16:45:38 2013 : Debug: WARNING: Unprintable characters in the password. Double-check the shared secret on the server and the NAS! are quite clear. incorrect shared secret. ensure that your server has an entry for your remote system in the clients.conf file and that you are using the correct shared secret on the radtest command line. alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius -username for authentication is not picking from users file.
On Mon, Aug 05, 2013 at 12:50:20PM +0530, rajeev sr wrote:
I am trying to run the radtest on local machine which is CentOS 6.0. But am
getting the following error while sending the Access Request message from
client which is another machine.
The user name is defined in users file under /usr/local/etc/raddb. But
still am getting the error. I had provided the snapshot received on radiusd
–Xx in the end. Can you please help me in figuring out the issue?
In addition to having an incorrect shared secret as already
pointed out, it looks like you've commented out files from the
authorize section of /usr/local/etc/raddb/sites-enabled/default.
Fri Aug 2 16:45:25 2013 : Debug: client 10.100.111.0/24 {
Fri Aug 2 16:45:25 2013 : Debug: require_message_authenticator = no
Fri Aug 2 16:45:25 2013 : Debug: secret = ABC123
Fri Aug 2 16:45:25 2013 : Debug: shortname = BTS111
Fri Aug 2 16:45:25 2013 : Debug: }
Fri Aug 2 16:45:25 2013 : Debug: client 10.100.111.2/24 {
Fri Aug 2 16:45:25 2013 : Debug: ipaddr = 10.100.111.2
Fri Aug 2 16:45:25 2013 : Debug: require_message_authenticator = no
Fri Aug 2 16:45:25 2013 : Debug: secret = ABC123
Fri Aug 2 16:45:25 2013 : Debug: shortname = BTS111
Fri Aug 2 16:45:25 2013 : Debug: nastype = other
Fri Aug 2 16:45:25 2013 : Debug: }
You've also got two netblocks that clash there. I'm not sure it
will hurt, but you probably want to remove one of them, or fix
the netmask.
Matthew
--
Matthew Newton, Ph.D. m...@le.ac.uk
Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom
For IT help contact helpdesk extn. 2253, ith...@le.ac.uk
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
