(RADIATOR) Windows 2000 Help!!!

Hugh Irvine hugh at open.com.au
Sun Jul 14 22:59:16 CDT 2002


Aloha Pat -

As mentioned in my previous mail, I suspect you will have to set up your 
Windows box with whatever is required to run ADSI, then configure Radiator to 
match your setup. At the moment, you appear to be using the default for 
"open.com.au".

Have a look at section 6.40 in the Radiator 3.1 reference manual, and there is 
also an example configuration file in "goodies/adsi.cfg".

regards

Hugh


On Mon, 15 Jul 2002 12:34, Patrick Guerin wrote:
> Aloha Hugh,
>
> I corrected the typo...oops.
>
> Regarding the radpwtst, I added the nas_ip_address.  I also verified the
> username and password on the Active Directory.
>
> F:\radiator>perl radpwtst -user blah123 -password camper1 -nas_ip_address
> localhost
>
> Sun Jul 14 16:10:00 2002: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
>
> Sun Jul 14 16:10:00 2002: DEBUG:  Deleting session for blah123, 127.0.0.1,
> 1234
>
> Sun Jul 14 16:10:00 2002: DEBUG: Handling with ASDI
>
> Sun Jul 14 16:10:00 2002: DEBUG: BindString converted to
> LDAP://ns22.abc.com/cn=blah123
>
> Sun Jul 14 16:10:00 2002: DEBUG: AuthUser converted to cn=blah123,ou=csx
> users,dc=open,dc=com,dc=au
>
> Sun Jul 14 16:10:00 2002: DEBUG: Could not get user object:
> Win32::OLE(0.1502) error 0x8007052e: "Logon failure: unknown user name or
> bad password" in METHOD/PROPERTYGET "OpenDSObject"
>
> Sun Jul 14 16:10:00 2002: INFO: Access rejected for blah123: Could not
> find user
>
> Sun Jul 14 16:10:00 2002: DEBUG: Packet dump:
> *** Sending to 127.0.0.1 port 1599 ....
> Code:       Access-Reject
> Identifier: 150
> Authentic:  1234567890123456
> Attributes:
>         Reply-Message = "Request Denied"
>
> On Mon, 15 Jul 2002, Hugh Irvine wrote:
> > Hello Pat -
> >
> > The first problem is shown in the log file:
> >
> > Sun Jul 14 09:55:25 2002: ERR: Unknown keyword 'AcctLogFileame'
> >
> > Note the typo - it should be: AcctLogFileName ....
> >
> > As for the AuthBy ADSI, it looks like you have defined open.com.au
> > instead of your own dc. I think you will have to set up your ADSI server
> > correctly first, and then configure Radiator to match.
> >
> > regards
> >
> > Hugh
> >
> > On Mon, 15 Jul 2002 06:14, Patrick Guerin wrote:
> > > Aloha Everyone,
> > >
> > > I'm trying to get authentication via Windows 2000 active directory with
> > > no luck.  I also don't know why LogFile broke as it was working before
> > > the change to AuthBy ADSI.
> > >
> > > Any help would be greatly appreciated.
> > >
> > > Cheers,
> > >
> > > --pat
> > >
> > >
> > > -----------------------------------------------------------------------
> > >-- This is from the config file:
> > >
> > > <Realm DEFAULT>
> > >         <AuthBy ADSI>
> > >                 BindString LDAP://cn=%0,cn=Users,dc=open,dc=com,dc=au
> > >                 AuthUser cn=%0,ou=csx users,dc=open,dc=com,dc=au
> > >         </AuthBy>
> > >         #Log accounting to a detail file
> > >         AcctLogFileame ./detail
> > > </Realm>
> > > -----------------------------------------------------------------------
> > >--
> > >
> > >
> > > F:\radiator>perl radiusd -config_file goodies\simple.cfg
> > > Sun Jul 14 09:55:25 2002: ERR: Unknown keyword 'AcctLogFileame' in
> > > goodies\simple.cfg line 52
> > > Sun Jul 14 09:55:26 2002: ERR: Unknown keyword 'AcctLogFileName' in
> > > goodies\simple.cfg line 68
> > >
> > > Sun Jul 14 09:55:26 2002: INFO: Server started: Radiator 3.1 on ns3
> > > (DEMO) Sun Jul 14 09:55:33 2002: DEBUG: Packet dump:
> > > *** Received from 127.0.0.1 port 3925 ....
> > > Code:       Access-Request
> > > Identifier: 122
> > > Authentic:  1234567890123456
> > > Attributes:
> > >         User-Name = "blahblah123"
> > >         Service-Type = Framed-User
> > >         NAS-IP-Address = 203.63.154.1
> > >         NAS-Port = 1234
> > >         Called-Station-Id = "123456789"
> > >         Calling-Station-Id = "987654321"
> > >         NAS-Port-Type = Async
> > >         User-Password =
> > > "<154><234>2<221><151>m<4><246><188>8<9><160><216>}x<153
> > >
> > > >"
> > >
> > > Sun Jul 14 09:55:33 2002: DEBUG: Handling request with Handler
> > > 'Realm=DEFAULT'
> > > Sun Jul 14 09:55:33 2002: DEBUG:  Deleting session for blahblah123,
> > > 203.63.154.1, 1234
> > > Sun Jul 14 09:55:33 2002: DEBUG: Handling with ASDI
> > > Sun Jul 14 09:55:33 2002: DEBUG: BindString converted to
> > > LDAP://cn=sas5312,cn=Users,dc=open,dc=com,dc=au
> > > Sun Jul 14 09:55:33 2002: DEBUG: AuthUser converted to
> > > cn=blahblah123,ou=csx users,dc=open,dc=com,dc=au
> > > Sun Jul 14 09:55:47 2002: DEBUG: Could not get user object:
> > > Win32::OLE(0.1502) error 0x8007202b: "A referral was returned from the
> > > server"in METHOD/PROPERTYGET "OpenDSObject"
> > > Sun Jul 14 09:55:47 2002: INFO: Access rejected for blahblah123: Could
> > > not find user
> > >
> > > Sun Jul 14 09:55:47 2002: DEBUG: Packet dump:
> > > *** Sending to 127.0.0.1 port 3925 ....
> > > Code:       Access-Reject
> > > Identifier: 122
> > > Authentic:  1234567890123456
> > > Attributes:
> > >         Reply-Message = "Request Denied"
> > >
> > >
> > >
> > >
> > > ===
> > > Archive at http://www.open.com.au/archives/radiator/
> > > Announcements on radiator-announce at open.com.au
> > > To unsubscribe, email 'majordomo at open.com.au' with
> > > 'unsubscribe radiator' in the body of the message.

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list