(RADIATOR) Radiator and Juniper
Hi all, Does anyone know of the specific attributes that need to be defined in the dictionary file for radiator to be able to talk to Juniper router (M20). Thanks, Imran. __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Radiator and kerberos interaction
Hi all, Has anyone got the radiator to talk to a kerberos version 5 server. I know it has to be done through PAM, but if anyone has any more information about how to proceed, then i would appreciate it. Thanks, Imran. __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Attributes not defined in the dictionary
Hi all, I am just trying to get the cisco 5500 switch to authenticate through radiator. In my logfile, i get messages like Wed Aug 1 12:53:28 2001: ERR: Attribute number 1 (vendor ) is not defined in you r dictionary Wed Aug 1 12:53:28 2001: ERR: Attribute number 2 (vendor ) is not defined in you r dictionary Wed Aug 1 12:53:28 2001: ERR: Attribute number 6 (vendor ) is not defined in you r dictionary Wed Aug 1 12:53:28 2001: ERR: Attribute number 4 (vendor ) is not defined in you r dictionary Wed Aug 1 12:53:28 2001: ERR: Attribute number 5 (vendor ) is not defined in you r dictionary Wed Aug 1 12:53:28 2001: ERR: Attribute number 1 (vendor ) is not defined in you r dictionary Wed Aug 1 12:53:31 2001: ERR: Attribute number 1 (vendor ) is not defined in you r dictionary However, i am using the default dictionary file that is provided and when i check it, it has the entries for the corresponding attributes. Here is the portion of the dictionary file. ATTRIBUTE User-Name 1 string ATTRIBUTE User-Password 2 string ATTRIBUTE CHAP-Password 3 binary ATTRIBUTE NAS-IP-Address 4 ipaddr ATTRIBUTE NAS-Port5 integer ATTRIBUTE Service-Type6 integer ATTRIBUTE Framed-Protocol 7 integer ATTRIBUTE Framed-IP-Address 8 ipaddr I have also pointed this dictionary file in my radius.cfg file. Does anyone knows what the problem is. Thanks. Imran. __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Here are my configs.........Plz help !!!
Hi all, Here are the radius.cfg and users file. I have not changed anything else. I have the switch configured to send requests on 1645 and 1646 ports. When i tried to send the requests on 1812 and 1813, it would take a lot of time for the answer to come back (which would be authentication failed) and also the logfile would not show me any entry. I am also sending u some of the output of the log file. C if u can figure it out. It would mean a lot to me. Also can anyone tell me the concept behind a dictionary file. Where do i specify that. Is it am empty file like logfile where all the NAS attributes will be stored? How do i specify it in radius.cfg Thanks a lot. It would mean a lot to me. # radius.cfg # # Example Radiator configuration file. # This very simple file will allow you to get started with # a simple system. You can then add and change features. # We suggest you start simple, prove to yourself that it # works and then develop a more complicated configuration. # # This example will authenticate from a standard users file in # the current directory and log accounting to a file in the current # directory. # It will accept requests from any client and try to handle request # for any realm. # And it will print out what its doing in great detail. # # You should consider this file to be a starting point only # $Id: linux-radius.cfg,v 1.1 2001/05/17 05:33:34 mikem Exp mikem $ Foreground LogStdout LogDir /var/log/radius DbDir /etc/radiator #DictionaryFile %D/dictionary.cis # Use a low trace level in production systems. Increase # it to 4 or 5 for debugging, or use the -trace flag to radiusd Trace 4 # You will probably want to add other Clients to suit your site, # one for each NAS you want to work with # # Secret imran # DupInterval 1 # # THIS IS THE 5500 CLIENT- ATTEMPTING A NON-NAMESERVED ENTRY DefaultRealmDEFAULT NasType Cisco Secret imran DupInterval 1 # For testing: this allows us to honour requests from radpwtst # on the same host. Secret imran DupInterval 0 # # # Filename %D/users # # # Log accounting to a detail file # AcctLogFileName %L/detail # Filename %D/users # Log accounting to a detail file AcctLogFileName %L/detail PasswordLogFileName %L/passwords .. and here is the users file # users # This is an example of how to set up simple user for # AuthBy FILE. # The example user mikem has a password of fred, and will # receive reply attributes suitable for most NASs. # You can do many more interesting things. See the reference # manual at /usr/share/doc/Radiator-2.18.1/ref.html # # You can test this user with the command # radpwtst mikem User-Password = "fred", Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.255, Framed-Routing = None, Framed-MTU = 1500, Framed-Compression = Van-Jacobson-TCP-IP moinUser-Password = "pete", Service-Type = Framed-User Framed-Protocol = Ethernet, Framed-IP-Netmask = 255.255.255.0, Framed-Routing = None, Framed-MTU = 1500 # Framed-Compression = Van-Jacobson-TCP-IP vince User-Password=fred vince Password=biondoli Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.255, Port-Limit = 1, Session-Timeout = 21600, Idle-Timeout = 3600 ... here is the output of the log file Thu Jul 26 11:52:57 2001: INFO: Access rejected for moin: Bad Password Thu Jul 26 11:53:16 2001: INFO: Access rejected for mikem: Bad Password Thu Jul 26 11:58:29 2001: INFO: Access rejected for vince: No such user Thu Jul 26 11:59:28 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12:01:08 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12:02:03 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12:02:36 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12:05:54 2001: INFO: Access rejected for mikem: Bad Password Thu Jul 26 12:06:38 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12:07:42 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12:08:33 2001: ERR: There is no value named Van-Jacobson-TCP-IP vince Password = "biondoli"Service-Type = Framed-User for attribute Framed-Co mpression. Using 0. Thu Jul 26 12:09:19 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12:09:27 2001: ERR: There is no value named Van-Jacobson-TCP-IP vince Password=biondoliService-Type = Framed-User for attribute Framed-Compre ssion. Using 0. Thu Jul 26 12:09:37 2001: INFO: Access rejected for mikem: Bad Password Thu Jul 26 12:10:17 2001: INFO: Access rejected for vince: No such user Thu Jul 26 12
(RADIATOR) when to restart the radiator?
Hi everyone, Does anyone know if i have to stop and start the server everytime i make any changes in the radius.cfg or the users file. If yes, then how do i do it. Thanks. Imran __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Here is the log file ..........still cant authenticate
Hi all, here is my logfile. I am still not able to get the users authenticated on the cisco 5500 switch. i had sent the radius.cfg and users file earlier. I am sending them again. Let me know if you can figure out what the problem is. Thanks a lot in advance. Imran. Tue Jul 24 11:36:36 2001: INFO: Server started: Radiator 2.18.2 on radii (DEMO) Tue Jul 24 14:03:21 2001: NOTICE: SIGTERM received: stopping Tue Jul 24 14:07:01 2001: INFO: Server started: Radiator 2.18.2 on radii (DEMO) Tue Jul 24 17:12:36 2001: NOTICE: SIGTERM received: stopping Tue Jul 24 17:12:41 2001: INFO: Server started: Radiator 2.18.2 on radii (DEMO) Tue Jul 24 17:29:10 2001: INFO: Access rejected for mikem: Bad Password Tue Jul 24 17:29:27 2001: INFO: Access rejected for mikem@backbone: No such user Tue Jul 24 17:29:40 2001: INFO: Access rejected for moin@backbone: No such user Tue Jul 24 17:30:44 2001: INFO: Access rejected for mikem: Bad Password Tue Jul 24 17:30:58 2001: INFO: Access rejected for moin@backbone: No such user Tue Jul 24 17:31:07 2001: INFO: Access rejected for moin: No such user Tue Jul 24 17:31:16 2001: INFO: Access rejected for mikem: Bad Password Wed Jul 25 17:29:12 2001: INFO: Access rejected for moin: Bad Password Wed Jul 25 17:29:23 2001: INFO: Access rejected for mikem: Bad Password Wed Jul 25 17:29:34 2001: INFO: Access rejected for moin@backbone: No such user Wed Jul 25 17:29:57 2001: INFO: Access rejected for moin@: No such user __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ # radius.cfg # # Example Radiator configuration file. # This very simple file will allow you to get started with # a simple system. You can then add and change features. # We suggest you start simple, prove to yourself that it # works and then develop a more complicated configuration. # # This example will authenticate from a standard users file in # the current directory and log accounting to a file in the current # directory. # It will accept requests from any client and try to handle request # for any realm. # And it will print out what its doing in great detail. # # You should consider this file to be a starting point only # $Id: linux-radius.cfg,v 1.1 2001/05/17 05:33:34 mikem Exp mikem $ #Foreground #LogStdout LogDir /var/log/radius DbDir /etc/radiator # Use a low trace level in production systems. Increase # it to 4 or 5 for debugging, or use the -trace flag to radiusd Trace 3 # You will probably want to add other Clients to suit your site, # one for each NAS you want to work with # THIS IS THE 5500 CLIENT- ATTEMPTING A NON-NAMESERVED ENTRY Secret imran Secret mysecret DupInterval 0 Filename %D/users # Log accounting to a detail file AcctLogFileName %L/detail Filename %D/users # Log accounting to a detail file AcctLogFileName %L/detail # users # This is an example of how to set up simple user for # AuthBy FILE. # The example user mikem has a password of fred, and will # receive reply attributes suitable for most NASs. # You can do many more interesting things. See the reference # manual at /usr/share/doc/Radiator-2.18.1/ref.html # # You can test this user with the command # radpwtst mikem Password=fred Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.255, Framed-Routing = None, Framed-MTU = 1500, Framed-Compression = Van-Jacobson-TCP-IP moinPassword=pete Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.255, Framed-Routing = None, Framed-MTU = 1500, Framed-Compression = Van-Jacobson-TCP-IP
(RADIATOR) Authentication failing..........please help !!!
Hi everone, I am new to the field of Radiator. We are in a process of testing it for our needs. I am running into some problems and any help to it would be greatly appreciated. I am sending my radius.cfg file which is stored under /usr/local/etc directory. I am also sending a copy of my users file, which contains the default user "mikem" as well as a newly created user by the name "moin". I have stored this file at both /etc/radiator and /usr/local/etc directories. I did not change anything else from the initial config. Please note that i have removed the IP address of our client from the file and replaced it with "a.b.c.d" The "radpwtst" command works properly and its output is sending Access-Request... OK sending Accounting-Request Start... OK sending Accounting-Request Stop... OK As far as the hardware config is concerned, Its a Linux box with Redhat on it, 933 Mhz P III processor, 256 MB RAM, 35 GB hard disk, etc. Please take time to view the config and suggest anything i need to change. Is there something that i am overlooking. U can also reach me at 303 735 4809. Thanks. Imran. __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ # radius.cfg # # Example Radiator configuration file. # This very simple file will allow you to get started with # a simple system. You can then add and change features. # We suggest you start simple, prove to yourself that it # works and then develop a more complicated configuration. # # This example will authenticate from a standard users file in # the current directory and log accounting to a file in the current # directory. # It will accept requests from any client and try to handle request # for any realm. # And it will print out what its doing in great detail. # # You should consider this file to be a starting point only # $Id: linux-radius.cfg,v 1.1 2001/05/17 05:33:34 mikem Exp mikem $ #Foreground #LogStdout LogDir /var/log/radius DbDir /etc/radiator # Use a low trace level in production systems. Increase # it to 4 or 5 for debugging, or use the -trace flag to radiusd Trace 3 # You will probably want to add other Clients to suit your site, # one for each NAS you want to work with # THIS IS THE 5500 CLIENT- ATTEMPTING A NON-NAMESERVED ENTRY Secret imran Secret mysecret DupInterval 0 Filename %D/users # Log accounting to a detail file AcctLogFileName %L/detail Filename %D/users # Log accounting to a detail file AcctLogFileName %L/detail # users # This is an example of how to set up simple user for # AuthBy FILE. # The example user mikem has a password of fred, and will # receive reply attributes suitable for most NASs. # You can do many more interesting things. See the reference # manual at /usr/share/doc/Radiator-2.18.1/ref.html # # You can test this user with the command # radpwtst mikem Password=fred Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.255, Framed-Routing = None, Framed-MTU = 1500, Framed-Compression = Van-Jacobson-TCP-IP moinPassword=pete Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Netmask = 255.255.255.255, Framed-Routing = None, Framed-MTU = 1500, Framed-Compression = Van-Jacobson-TCP-IP
