Greetings,
I have a problem with FR1.0.0 and chap/pap.
Knowns:
FreeBSD 4.7-RELEASE
FreeRadius 1.0.0 (downloaded today, not CVS)
National dialup provider sending both PAP & CHAP requests.
Problem:
I have 2 types of authentication... those in the users file (for chap and
locl pap when attributes have to be returned) and those in the unix
password file. The problem I am having is when the national provider
send a CHAP password. It generates the following error:
Fri Sep 10 17:04:54 2004 : Auth: rlm_unix: Attribute "User-Password" is required for
authentication. Cann
ot use "CHAP-Password".
Debug output:
rad_recv: Access-Request packet from host 216.126.204.150:32813, id=67, length=136
NAS-IP-Address = 63.152.3.17
User-Name = "[EMAIL PROTECTED]"
CHAP-Password = 0x01e954782973979c56336c6a5df5bf4ebc
Called-Station-Id = "9069840005"
Calling-Station-Id = "9066438271"
NAS-Port = 13677
NAS-Port-Type = Async
Framed-Protocol = PPP
Service-Type = Framed-User
X-Ascend-PreSession-Time = 38
X-Ascend-Xmit-Rate = 50667
X-Ascend-Data-Rate = 24000
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 2
modcall[authorize]: module "preprocess" returns ok for request 2
users: Matched DEFAULT at 527
users: Matched DEFAULT at 546
users: Matched DEFAULT at 553
modcall[authorize]: module "files" returns ok for request 2
rlm_chap: Setting 'Auth-Type := CHAP'
modcall[authorize]: module "chap" returns ok for request 2
modcall[authorize]: module "mschap" returns noop for request 2
rlm_realm: Looking up realm "netonecom.net" for User-Name = "[EMAIL PROTECTED]"
rlm_realm: Found realm "netonecom.net"
rlm_realm: Adding Stripped-User-Name = "tstandrew"
rlm_realm: Proxying request from user tstandrew to realm netonecom.net
rlm_realm: Adding Realm = "netonecom.net"
rlm_realm: Authentication realm is LOCAL.
modcall[authorize]: module "suffix" returns noop for request 2
rlm_eap: No EAP-Message, not doing EAP
modcall[authorize]: module "eap" returns noop for request 2
modcall: group authorize returns ok for request 2
rad_check_password: Found Auth-Type CHAP
auth: type "CHAP"
Processing the authenticate section of radiusd.conf
modcall: entering group Auth-Type for request 2
rlm_chap: login attempt by "tstandrew" with CHAP password
rlm_chap: Could not find clear text password for user tstandrew
modcall[authenticate]: module "chap" returns invalid for request 2
modcall: group Auth-Type returns invalid for request 2
auth: Failed to validate the user.
Login incorrect (rlm_chap: Clear text password not available): [EMAIL
PROTECTED]/<CHAP-Password>] (from client ikano port 13677 cli 9066438271)
Delaying request 2 for 1 seconds
Finished request 2
Going to the next request
This is on a live server (emergency repair! old files and 3 sets of backups
toast) any help would be apprecieated!
--
·William Ragsdale ·http://www.netonecom.net
·Server Administrator ·Office Hours ·NetOne Communications, Inc.
·Work: 231-734-2917 10AM - 7PM ·2186 US 10
·FAX: 231-734-6395 ·Sears, MI 49679
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
