On Mar 18, 8:19pm, Jay West wrote:
> Subject: (RADIATOR) Argh!
> Several Radiator questions for the folks here from a radiator newbie....
>
> The following questions all pertain to radiator 2.13.1 on FreeBSD 3.1 (O/S
> was installed with DES, NOT MD5, but the perl MD5 lib is present and
> working)...
>
> 1) The documentation states all dictionary files must have at least 4
> attributes, which are user-name, user-password, encrypted-password, and
> acct-delay-time. However, some of these are missing from the stock supplied
> dictionary.whatever files. User-Password and Encrypted-Password for example
> aren't in the supplied dictionary.livingston. Is this an oversight or
> misunderstanding on my part?
Mostly oversight. You should find that the standard dictionary will suit you,
and that (at least) is complete.
>
> 2) radiusd starts fine and radpwtst gives correct results when run. However,
> when I look at the detail and logfile files, the user is assigned a strange
> IP address (206.63something as I recall) when my user file specified
> 255.255.255.254 should be passed back to the NAS (radpwtst).
Yes, radpwtst has 203.63.154.1 hard coded into it. Its not clever enough to
take note of the IP address passed back in the access accept and then use it in
subsequent accounting requests.
>
> 3) Even though radpwtst works ok (except for the above), when I move into
> production and point my NAS at radiator, all user authentication fails with
> "bad password" (even user/passwords that worked with radpwtst)?!
Probably you dont have the shared secret set in Radiator to agree with the one
in your NAS.
>
> If it helps, my NAS is a cisco 3620. When users dial in they ask the cisco
> for authentication, which in turn passes the request off to my radiator
> machine. I was using a livingston 2.x radius setup with the same equipment
> and all worked fine. Passwords are just cleartext in the users file.
>
> Any suggestions from the crowd?
Hope that helps.
Cheers.
>
> Thanks in advance!
>
> Jay West
>
>
> ===
> To unsubscribe, email '[EMAIL PROTECTED]' with
> 'unsubscribe radiator' in the body of the message.
>-- End of excerpt from Jay West
--
Mike McCauley [EMAIL PROTECTED]
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia Consulting and development
Phone, Fax: +61 3 9598-0985 http://www.open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, external, etc etc on Unix, Win95/8, NT, Rhapsody
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
