Re: (RADIATOR) Encrypted Password, How-To?
Mike, i got these from my logfile on trace #4 when i did a radpwtst -user vernie -p testfail (which "testfail" isn't the correct password). logfile entry: Mon Apr 26 15:17:25 1999: DEBUG: Packet dump: *** Received from 127.0.0.1 port 1856 Code: Access-Request Identifier: 114 Authentic: 1234567890123456 Attributes: User-Name = "vernie" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 NAS-Port-Type = Async User-Password = "141238,217201=m15418889160216}x153" Mon Apr 26 15:17:25 1999: DEBUG: Handling request with Handler 'Realm=DEFAULT' Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL Mon Apr 26 15:17:25 1999: DEBUG: Query is: select rdu_encrpass, rdu_sess_limit, rdu_timeofday from auth_rdu_tbl where rdu_username = 'vernie' Mon Apr 26 15:17:25 1999: DEBUG: Radius::AuthSQL looks for match with vernie Mon Apr 26 15:17:25 1999: DEBUG: Radius::AuthSQL ACCEPT: Mon Apr 26 15:17:25 1999: DEBUG: Access accepted for vernie Mon Apr 26 15:17:25 1999: DEBUG: Packet dump: *** Sending to 127.0.0.1 port 1856 Code: Access-Accept Identifier: 114 Authentic: 1234567890123456 Attributes: Mon Apr 26 15:17:25 1999: DEBUG: Packet dump: *** Received from 127.0.0.1 port 1856 Code: Accounting-Request Identifier: 115 Authentic: 175243p159Ur133)251149227243X13818120 Attributes: User-Name = "vernie" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 NAS-Port-Type = Async Acct-Session-Id = "1234" Acct-Status-Type = Start Mon Apr 26 15:17:25 1999: DEBUG: Handling request with Handler 'Realm=DEFAULT' Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL Mon Apr 26 15:17:25 1999: DEBUG: Handling accounting with Radius::AuthSQL Mon Apr 26 15:17:25 1999: DEBUG: do query is: insert into acct_log_tbl (acct_nas_port, acct_statustype, acct_username, acct_session_id) values (1234, 'Start', 'vernie', '1234') Mon Apr 26 15:17:25 1999: DEBUG: sdb1 Adding session for vernie, 203.63.154.1, 1234 Mon Apr 26 15:17:25 1999: DEBUG: do query is: delete from RADONLINE where NASIDENTIFIER='203.63.154.1' and NASPORT=1234 Mon Apr 26 15:17:25 1999: DEBUG: do query is: insert into RADONLINE (USERNAME, NASIDENTIFIER, NASPORT, ACCTSESSIONID, TIME_STAMP, FRAMEDIPADDRESS, NASPORTTYPE, SERVICETYPE) values ('vernie', '203.63.154.1', 1234, '1234', 925111045, '', 'Async', 'Framed-User') Mon Apr 26 15:17:25 1999: DEBUG: Accounting accepted Mon Apr 26 15:17:25 1999: DEBUG: Packet dump: *** Sending to 127.0.0.1 port 1856 Code: Accounting-Response Identifier: 115 Authentic: 175243p159Ur133)251149227243X13818120 Attributes: Mon Apr 26 15:17:25 1999: DEBUG: Packet dump: *** Received from 127.0.0.1 port 1856 Code: Accounting-Request Identifier: 116 Authentic: 169163gi148144f237d166=j8229188 Attributes: User-Name = "vernie" Service-Type = Framed-User NAS-IP-Address = 203.63.154.1 NAS-Port = 1234 NAS-Port-Type = Async Acct-Session-Id = "1234" Acct-Status-Type = Stop Acct-Delay-Time = 0 Acct-Session-Time = 1000 Acct-Input-Octets = 2 Acct-Output-Octets = 3 Mon Apr 26 15:17:25 1999: DEBUG: Handling request with Handler 'Realm=DEFAULT' Mon Apr 26 15:17:25 1999: DEBUG: Handling with Radius::AuthSQL Mon Apr 26 15:17:25 1999: DEBUG: Handling accounting with Radius::AuthSQL Mon Apr 26 15:17:25 1999: DEBUG: do query is: insert into acct_log_tbl (acct_nas_port, acct_inputoct, acct_statustype, acct_outputoct, acct_delaytime, acct_username, acct_session_id, acct_session_time) values (1234, 2, 'Stop', 3, 0, 'vernie', '1234', 1000) Mon Apr 26 15:17:25 1999: DEBUG: sdb1 Deleting session for vernie, 203.63.154.1, 1234 Mon Apr 26 15:17:25 1999: DEBUG: do query is: delete from RADONLINE where NASIDENTIFIER='203.63.154.1' and NASPORT=1234 Mon Apr 26 15:17:25 1999: DEBUG: Accounting accepted Mon Apr 26 15:17:25 1999: DEBUG: Packet dump: *** Sending to 127.0.0.1 port 1856 Code: Accounting-Response Identifier: 116 Authentic: 169163gi148144f237d166=j8229188 Attributes: On 26-Apr-99 Mike McCauley wrote: Hi Darwin, On Apr 26, 2:13pm, Darwin A. Bawasanta wrote: Subject: (RADIATOR) Encrypted Password, How-To? Hi All, we just got an eval copy of radiator 2.13.1 and i'm trying to set this thing right. However, i may have overlooked something here regarding the use of Encrypted Passwords, i can't seem to get it working properly. This
(RADIATOR) Users file format with PM3
Hi all, We are using Radiator 2.13.1 with patches over NT 4.0 SP3 and PM3 with radpwtst it works. 1- We want to know the users file configuration that we need to give a dinamic IP ( We know that we can give an IP depending of the PORT). ( Using PM3 client) I have the dictionay.livingston file with all the ATTRIBUTE and VALUE I do not want to use the livingston users file. I want to define a new users file with the users profile ( IP assignement...). Could you send us a users file with this configuration? Someting like this: Users: mikem4 Password = "fred" Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.255, Framed-Routing = None, Framed-MTU = 1500, Framed-Compression = Van-Jacobson-TCP-IP 2- My radius.cfg is: Foreground LogStdout # log (detail, radius.pid, password.log, ...) LogDir ./rad/log # usuarios ( users, dictionary, ...) DbDir ./rad/bd DictionaryFile %D/dictionary.livingston # You will probably want to change this to suit your site. Client localhostT Secret mysecret # base IP # Ej port=5 194.24.0.129+5 FramedGroupBaseAddress 193.224.0.0.129 /Client # for PM3 Client 193.224.0.123 Secret mysecret FramedGroupBaseAddress 193.224.0.129 DupInterval 0 /Client # others Client DEFAULT Secret mysecret FramedGroupBaseAddress 193.224.0.0.129 /Client Realm DEFAULT MaxSessions 1 PasswordLogFileName %L/password.log AuthBy FILE Filename %D/users /AuthBy # Log accounting to the detail file in LogDir AcctLogFileName %L/detail AcctLogFileFormat %User-Name %Acct-Status-Type %Acct-Session-Id WtmpFileName %L/wtmp /Realm I am using dictionary.livingston to access ATTRIBUTEs and VALUEs. Is all right? 3- I have problems with AcctLogFileFormat %User-Name %Acct-Status-Type %Acct-Session-Id. I can not write all what I want into the detail file. Only that when fred authentication Detail: fredser-Name %Acct-Status-Type %Acct-Session-Id fredser-Name %Acct-Status-Type %Acct-Session-Id fredser-Name %Acct-Status-Type %Acct-Session-Id fredser-Name %Acct-Status-Type %Acct-Session-Id I am using ATTRIBUTEs defined into dictionary.livingston file. What is the right format? 4-If you have experience with Radiator and PM3, please let me know if you could help me. Thank you for all your help and time. Best regards, Fernando Martin Interlinea2000 http://www.i2000.es Voz:(943)-621033 Fax:(943)-627340 === To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Linux again
OK, I have AuthBy UNIX and AuthBy DBFILE working, so now I'm trying to turn on Realms. I have these rules: Realm peakpeak.com # turn into lowercase RewriteUsername tr/A-Z/a-z/ AuthByPolicy ContinueWhileAccept AuthBy UNIX # strip realm name RewriteUsername s/^([^@]+)\@peakpeak\.com/$1/ What I want to happen is for AuthBy UNIX to rewrite usernames [EMAIL PROTECTED] into just chrism. This RewriteUsername statement does not appear to do that :) Any ideas? Thanks, Chris === To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Linux again
On Apr 26, 2:43pm, Chris M wrote: Subject: (RADIATOR) Linux again OK, I have AuthBy UNIX and AuthBy DBFILE working, so now I'm trying to turn on Realms. I have these rules: Realm peakpeak.com # turn into lowercase RewriteUsername tr/A-Z/a-z/ AuthByPolicy ContinueWhileAccept AuthBy UNIX # strip realm name RewriteUsername s/^([^@]+)\@peakpeak\.com/$1/ What I want to happen is for AuthBy UNIX to rewrite usernames [EMAIL PROTECTED] into just chrism. This RewriteUsername statement does not appear to do that :) Any ideas? The RewriteUsername should be inside the Realm clause, not the AuthBy clause. AuthBy does not do RewriteUsername. Cheers. -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody === To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Importing RADIUS logs into a database
What is the best way to get all the call stats from previous RADIUS logs (before I started using Radiator) into an SQL database so that AuthBy SQL can start adding records alongside all the old records? Thanks, Chris === To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.