Sorry, I should have been more clear. The error I listed was what was recieved back on the VPN box.

Actually I looked at the log for freeradius and I recieved the following which was strange since it is indicating the hostname of the VPN box instead of the LDAP username.


Wed Oct 23 12:52:24 2002
User-Name = "VPN1"
Acct-Status-Type = Accounting-On
Acct-Authentic = RADIUS
Acct-Delay-Time = 65
NAS-IP-Address = 136.160.x.x
NAS-Port-Type = Virtual
Client-IP-Address = 136.160.x.x
Timestamp = 1035391944

Thu Oct 24 09:53:25 2002
User-Name = "VPN1"
Acct-Status-Type = Accounting-On
Acct-Authentic = RADIUS
Acct-Delay-Time = 0
NAS-IP-Address = 136.160.x.x
NAS-Port-Type = Virtual
Client-IP-Address = 136.160.x.x
Timestamp = 1035467605

Thu Oct 24 09:56:55 2002
User-Name = "VPN1"
Acct-Status-Type = Accounting-Off
Acct-Authentic = RADIUS
Acct-Delay-Time = 0
NAS-IP-Address = 136.160.x.x
NAS-Port-Type = Virtual
Client-IP-Address = 136.160.x.x
Timestamp = 1035467815

Alan DeKok wrote:

Collin Smith <[EMAIL PROTECTED]> wrote:

I am trying to get a Cisco VPN NAS Device to authenticate from freeradius and I am getting a reject back no matter what I have tried using known good username/passwords.

The debug log should tell you WHY it's rejecting.


... Dial up has no troubles getting LDAP requests back from radius. Error is as follows:

user rejected, reason unspecified.

That is the smallest output from 'radiusd -X' I've ever seen. And
the server doesn't produce any such message. So the problem
definitely isn't FreeRADIUS.

What, exactly, were you trying to do? And why do you think it has
anything to do with RADIUS?

Alan DeKok.

- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

--
----------------------
Collin Douglas Smith
Network Analyst
[EMAIL PROTECTED]





- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to