(RADIATOR) Multiple prefix
Rolando Riley
rriley at ayayai.com
Mon Dec 17 08:36:43 CST 2001
Hi Hugh:
I am still haveing problems with this handler . This is how I am setting
it:
<Handler Prefix = /gric|fcc/>
:
</Handler>
<Handler Prefix = IPASS/>
:
</Handler>
<Realm ayayai.com>
:
</Realm>
Okay... what is happening is that it is authenticating well "only" if the
user from IPASS or gric is this way:
gric/someuser at someotherdomain.com
IPASS/someuser at someotherdomain.com
But if the user try to auth like this it fails:
gric/someuser at ayayai.com
IPASS/someuser at ayayai.com
Checking the debug trace I see that this users fall on the "REALM
ayayai.com" giving authentication rejects. I am thinking that this is
happening because Realms has more priority than Handler? How can I solve
this situation?
------------------------------
Code: Access-Request
Identifier: 193
Authentic: <141>'zy<24><13>a<132>O<219><127><19>(<16><249>V
Attributes:
User-Name = "gric/gric at ayayai.com"
User-Password =
"V<178><158>@<227><168><243><255><171>C<150><250><219><150><156>@"
Client-Id = 200.24.140.2
NAS-Port = 1292
Acct-Session-Id = "84607095"
USR-Interface-Index = 2548
Service-Type = Framed-User
Framed-Protocol = PPP
Chassis-Call-Slot = 6
Chassis-Call-Span = 1
Chassis-Call-Channel = 12
Calling-Station-Id = "2657832"
Called-Station-Id = "055"
NAS-Port-Type = Async
Mon Dec 17 09:11:40 2001: DEBUG: Handling request with Handler
'Realm=ayayai.com'
Mon Dec 17 09:11:40 2001: DEBUG: Deleting session for gric/gric at ayayai.com,
200.24.140.2, 1
292
Mon Dec 17 09:11:40 2001: DEBUG: Handling with Radius::AuthRADIUS
Mon Dec 17 09:11:40 2001: DEBUG: Packet dump:
*** Sending to 216.219.28.131 port 1645 ....
Code: Access-Request
Identifier: 10
Authentic: <141>'zy<24><13>a<132>O<219><127><19>(<16><249>V
Attributes:
User-Name = "gric/gric at ayayai.com"
User-Password =
"<241>/<190><159>e<4>\<248><199><181><31><146><234><18><159><131>"
Client-Id = 200.24.140.2
NAS-Port = 1292
Acct-Session-Id = "84607095"
USR-Interface-Index = 2548
Service-Type = Framed-User
Framed-Protocol = PPP
Chassis-Call-Slot = 6
Chassis-Call-Span = 1
Chassis-Call-Channel = 12
Calling-Station-Id = "2657832"
Called-Station-Id = "055"
NAS-Port-Type = Async
Mon Dec 17 09:11:40 2001: DEBUG: Packet dump:
*** Received from 216.219.28.131 port 1645 ....
Code: Access-Reject
Identifier: 10
Authentic: <10><200><24><239><26>F2<142><152>sDAn<134><229><195>
Attributes:
Port-Message = "Request Denied"
Mon Dec 17 09:11:40 2001: DEBUG: Received reply in AuthRADIUS for req 10
from 216.219.28.131
:1645
Mon Dec 17 09:11:40 2001: DEBUG: Packet dump:
*** Sending to 200.24.140.2 port 1645 ....
Code: Access-Reject
Identifier: 193
Authentic: <141>'zy<24><13>a<132>O<219><127><19>(<16><249>V
Attributes:
Port-Message = "Request Denied"
Mon Dec 17 09:11:44 2001: DEBUG: Packet dump:
-----Mensaje original-----
De: Hugh Irvine [mailto:hugh at open.com.au]
Enviado el: Sunday, December 16, 2001 6:34 PM
Para: Rolando Riley; radiator at open.com.au
Asunto: Re: (RADIATOR) Multiple prefix
Hello Rolando -
On Sat, 15 Dec 2001 13:13, Rolando Riley wrote:
> Hugh,
>
> How can I handle multiple prefix on the same handler? I thought this
> would work but it is not.
> My prefix for gric are both gric or fcc
>
> <Handler Prefix = gric/, Prefix = fcc/>
> <AuthBy RADIUS>
> Synchronous
> Host 216.219.28.10
> Secret MySecret
> AuthPort 7000
> AcctPort 7001
> </AuthBy>
>
> AcctLogFileName %L/gric
> </Handler>
>
Your Handler should look like this:
<Handler Prefix = /gric|fcc/>
.....
</Handler>
regards
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list