(RADIATOR) Bay5399 / Radiator 2.18.4 / EAP errors
Jeremy Hinton
jgh at visi.net
Tue Sep 25 16:30:06 CDT 2001
Like a few others on the list, i seems to having problems with the
new EAP code and bay 5399s. My error message seems to be a bit different
though. Ive tried both "EAPType notpermitted" in the Realm definition and
"IgnoreAcctSignature" in the Client definition to no success. Included
below are a snipped config file and the debug logs. Note im using
AuthByLDAP2, and LDAP looks to by authenticating correctly.
### Config File (snipped)
<Client DEFAULT>
Secret xxxxxx
NasType Bay5399SNMP
DefaultRealm visi.net
SNMPCommunity visiNOC
IgnoreAcctSignature
</Client>
<Realm DEFAULT>
AuthByPolicy ContinueWhileAccept
PasswordLogFileName %L/logins.log
<AuthBy LDAP2>
EAPType notpermitted
NoDefault
ServerChecksPassword
AuthDN xxxxxxxxxx
AuthPassword xxxxxxxxxx
Host xxxxxxxxxx
BaseDN %0=%U,cn=%R
Scope base
PasswordAttr userPassword
UsernameAttr uid
# Debug 255
</AuthBy>
AcctLogFileName %L/radacct/%C/detail
</Realm>
### Logs
Tue Sep 25 21:19:07 2001: DEBUG: Packet dump:
*** Received from 206.246.195.69 port 2434 ....
Code: Access-Request
Identifier: 226
Authentic: lp<6>bQ<192><4>F6<16><3>+<27>`<1><0>
Attributes:
User-Name = "jgh"
User-Password =
"k<142><226><204><186><9><233>Ip<14><176><189><182>]B!"
Service-Type = Framed-User
Framed-Protocol = PPP
NAS-IP-Address = 206.246.195.69
Framed-IP-Address = 209.96.165.89
NAS-Port = 39
Annex-Port = 20202
NAS-Port-Type = Async
Connect-Info = "26400 21600 V.34"
Annex-Transmit-Speed = 26400
Annex-Receive-Speed = 21600
Annex-Wan-Number = 2
Annex-Logical-Channel-Number = 2
Message-Authenticator =
o<184><173><221>n<160>\<241><237>"&<217>-<235><2><22>
Tue Sep 25 21:19:07 2001: DEBUG: Handling request with Handler
'Realm=DEFAULT'
Tue Sep 25 21:19:07 2001: DEBUG: Deleting session for jgh,
206.246.195.69, 39
Tue Sep 25 21:19:07 2001: DEBUG: Handling with Radius::AuthLDAP2:
Tue Sep 25 21:19:07 2001: INFO: Connecting to x.x.x.x, port 389
Tue Sep 25 21:19:07 2001: INFO: Attempting to bind with xxxxxx,
xxxxxxx (server x.x.x.x:389)
Tue Sep 25 21:19:07 2001: DEBUG: LDAP got result for uid=jgh,cn=visi.net
Tue Sep 25 21:19:07 2001: DEBUG: LDAP got cn: Jeremy Hinton
Tue Sep 25 21:19:07 2001: DEBUG: LDAP got hostServer: visi.net
Tue Sep 25 21:19:07 2001: DEBUG: LDAP got sn:
Tue Sep 25 21:19:07 2001: DEBUG: LDAP got uid: jgh
Tue Sep 25 21:19:07 2001: DEBUG: LDAP got mail: jgh at visi.net
Tue Sep 25 21:19:07 2001: DEBUG: Radius::AuthLDAP2 looks for match with
jgh at visi.net
Tue Sep 25 21:19:07 2001: DEBUG: Handling with EAP
Tue Sep 25 21:19:07 2001: DEBUG: Radius::AuthLDAP2 REJECT: Missing
EAP-Message
Tue Sep 25 21:19:07 2001: INFO: Access rejected for jgh at visi.net: Missing
EAP-Message
Tue Sep 25 21:19:07 2001: DEBUG: Packet dump:
*** Sending to 206.246.195.69 port 2434 ....
Code: Access-Reject
Identifier: 226
Authentic: lp<6>bQ<192><4>F6<16><3>+<27>`<1><0>
Attributes:
Reply-Message = "Request Denied"
- jeremy
---------------------------------------------------------
Jeremy Hinton Yes, Rabbit has Brain.
jgh at visi.net I suppose thats why he never
VisiNet understands anything.
NOC Manager -- Winnie the Pooh
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list