(RADIATOR) Gric Authentication Problem.
Hugh Irvine
hugh at open.com.au
Mon Jul 29 20:29:05 CDT 2002
Hello Jorge -
It looks like there is an SQL error with the session database of some
kind that is causing problems.
Have you made any changes to the session database?
And what happens if you disable the session database temporarily?
regards
Hugh
On Tuesday, July 30, 2002, at 06:26 AM, Jorge E. Méndez H. wrote:
> Hello.
> I have problems with GRIC authenticatication in Radiator-3.1.
> GRIC users are authenticate in the REALM DEFAULT, it works well in
> Radiator-2.19, but not in 3.1, I have these errors in the log:
>
> Mon Jul 29 11:41:18 2002: DEBUG: Handling with Radius::AuthRADIUS
> Mon Jul 29 11:41:18 2002: DEBUG: Packet dump:
> *** Sending to xxx.xxx.xxx.xxx port 8765 ....
> Code: Access-Request
> Identifier: 1
> Authentic:
> <208><243><215><246><23><226><238><221>1<182>"<152><181>OE<23>
> Attributes:
> User-Name = "tester at ndg07.gric.com"
> User-Password =
> "><155>:<183>LH<254><144><27><133><253><4><185>B<24><193>"
> NAS-IP-Address = xxx.xxx.xxx.xxx
> NAS-Identifier = "xxx.xxx.xxx.xxx"
> NAS-Port = 14081
> Acct-Session-Id = "tester at ndg07.gric.com1"
> USR-Interface-Index = 0
> Tunnel-Supports-Tags = 0
> Service-Type = Login-User
> Modem-SlotNo = 56
> USR-Chassis-Call-Span = 1
> Modem-PortNo = 1
> USR-Connect-Speed = NONE
> NAS-Port-Type = Virtual
>
> DBD::Oracle::db do failed: ORA-03113: end-of-file on communication
> channel (DBD ERROR: OCIStmtExecute) at
> /usr/local/lib/perl5/site_perl/5.6.1/Radius/SqlDb.pm line 218.
> Mon Jul 29 11:41:21 2002: DEBUG: Packet dump:
> *** Received from xxx.xxx.xxx.xxx port 1812 ....
> Code: Access-Request
> Identifier: 31
> Authentic:
> <208><243><215><246><23><226><238><221>1<182>"<152><181>OE<23>
> Attributes:
> User-Name = "tester at ndg07.gric.com"
> User-Password =
> "|~<142>Q<238><165><127>]<141>v<25>]<9><163><228><201>"
> NAS-IP-Address = xxx.xxx.xxx.xxx
> NAS-Identifier = "xxx.xxx.xxx.xxx"
> NAS-Port = 14081
> Acct-Session-Id = "tester at ndg07.gric.com1"
> USR-Interface-Index = 0
> Tunnel-Supports-Tags = 0
> Service-Type = Login-User
> Modem-SlotNo = 56
> USR-Chassis-Call-Span = 1
> Modem-PortNo = 1
> USR-Connect-Speed = NONE
> NAS-Port-Type = Virtual
>
> Mon Jul 29 11:41:21 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 11:41:21 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 11:41:21 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 11:41:21 2002: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Mon Jul 29 11:41:21 2002: DEBUG: Deleting session for
> tester at ndg07.gric.com, xxx.xxx.xxx.xxx, 14081
> Mon Jul 29 11:41:21 2002: DEBUG: do query is: delete from RADONLINE
> where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=014081
>
> Mon Jul 29 11:41:21 2002: ERR: do failed for 'delete from RADONLINE
> where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=014081': ORA-03113:
> end-of-file on communication channel (DBD ERROR: OCIStmtExecute)
> Mon Jul 29 11:41:21 2002: DEBUG: Query is: select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID from RADONLINE where
> USER_NAME='tester at ndg07.gric.com'
>
> Mon Jul 29 11:41:21 2002: DEBUG: Handling with Radius::AuthRADIUS
> Mon Jul 29 11:41:21 2002: DEBUG: Packet dump:
> *** Sending to xxx.xxx.xxx.xxx port 8765 ....
> Code: Access-Request
> Identifier: 1
> Authentic:
> <208><243><215><246><23><226><238><221>1<182>"<152><181>OE<23>
> Attributes:
> User-Name = "tester at ndg07.gric.com"
> User-Password =
> "><155>:<183>LH<254><144><27><133><253><4><185>B<24><193>"
> NAS-IP-Address = xxx.xxx.xxx.xxx
> NAS-Identifier = "xxx.xxx.xxx.xxx"
> NAS-Port = 14081
> Acct-Session-Id = "tester at ndg07.gric.com1"
> USR-Interface-Index = 0
> Tunnel-Supports-Tags = 0
> Service-Type = Login-User
> Modem-SlotNo = 56
> USR-Chassis-Call-Span = 1
> Modem-PortNo = 1
> USR-Connect-Speed = NONE
> NAS-Port-Type = Virtual
>
> DBD::Oracle::db do failed: ORA-03113: end-of-file on communication
> channel (DBD ERROR: OCIStmtExecute) at
> /usr/local/lib/perl5/site_perl/5.6.1/Radius/SqlDb.pm line 218.
> Mon Jul 29 11:41:24 2002: DEBUG: Packet dump:
> *** Received from xxx.xxx.xxx.xxx port 1812 ....
> Code: Access-Request
> Identifier: 31
> Authentic:
> <208><243><215><246><23><226><238><221>1<182>"<152><181>OE<23>
> Attributes:
> User-Name = "tester at ndg07.gric.com"
> User-Password =
> "|~<142>Q<238><165><127>]<141>v<25>]<9><163><228><201>"
> NAS-IP-Address = xxx.xxx.xxx.xxx
> NAS-Identifier = "xxx.xxx.xxx.xxx"
> NAS-Port = 14081
> Acct-Session-Id = "tester at ndg07.gric.com1"
> USR-Interface-Index = 0
> Tunnel-Supports-Tags = 0
> Service-Type = Login-User
> Modem-SlotNo = 56
> USR-Chassis-Call-Span = 1
> Modem-PortNo = 1
> USR-Connect-Speed = NONE
> NAS-Port-Type = Virtual
>
> Mon Jul 29 11:41:24 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 11:41:24 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 11:41:24 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 11:41:24 2002: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Mon Jul 29 11:41:24 2002: DEBUG: Deleting session for
> tester at ndg07.gric.com, xxx.xxx.xxx.xxx, 14081
> Mon Jul 29 11:41:24 2002: DEBUG: do query is: delete from RADONLINE
> where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=014081
>
> Mon Jul 29 11:41:24 2002: ERR: do failed for 'delete from RADONLINE
> where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NASPORT=014081': ORA-03113:
> end-of-file on communication channel (DBD ERROR: OCIStmtExecute)
> Mon Jul 29 11:41:24 2002: DEBUG: Query is: select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID from RADONLINE where
> USER_NAME='tester at ndg07.gric.com'
>
> In Trace 3 i have this log:
> Mon Jul 29 15:13:09 2002: WARNING: Unknown reply received in AuthRADIUS
> for request 1 from xxx.xxx.xxx.xxx:8765
>
> This is the log in Radiator-2.19, and it works well:
> Mon Jul 29 10:40:49 2002: DEBUG: Packet dump:
> *** Received from xxx.xxx.xxx.xxx port 1812 ....
> Code: Access-Request
> Identifier: 18
> Authentic: <161><169>oN<211><0><174>U?:<171><176><151><1><203>O
> Attributes:
> User-Name = "tester at ndg07.gric.com"
> User-Password =
> "<253><5><187>08<177>V<207><225><208><252><3><250><156><172>U"
> NAS-IP-Address = xxx.xxx.xxx.xxx
> NAS-Identifier = "xxx.xxx.xxx.xxx"
> NAS-Port = 14081
> Acct-Session-Id = "tester at ndg07.gric.com1"
> USR-Interface-Index = 0
> Tunnel-Supports-Tags = 0
> Service-Type = Login-User
> Modem-SlotNo = 56
> USR-Chassis-Call-Span = 1
> Modem-PortNo = 1
> USR-Connect-Speed = NONE
> NAS-Port-Type = Virtual
>
> Mon Jul 29 10:40:49 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 10:40:49 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 10:40:49 2002: DEBUG: Rewrote user name to
> tester at ndg07.gric.com
> Mon Jul 29 10:40:49 2002: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Mon Jul 29 10:40:49 2002: DEBUG: Deleting session for
> tester at ndg07.gric.com, xxx.xxx.xxx.xxx, 14081
> Mon Jul 29 10:40:49 2002: DEBUG: do query is: delete from RADONLINE
> where NASIDENTIFIER='xxx.xxx.xxx.xxx' and NAS
> PORT=014081
>
> Mon Jul 29 10:40:49 2002: DEBUG: Query is: select NASIDENTIFIER,
> NASPORT, ACCTSESSIONID from RADONLINE where US
> ER_NAME='tester at ndg07.gric.com'
>
> Mon Jul 29 10:40:49 2002: DEBUG: Handling with Radius::AuthRADIUS
> Mon Jul 29 10:40:49 2002: DEBUG: Packet dump:
> *** Sending to xxx.xxx.xxx.xxx port 8765 ....
> Code: Access-Request
> Identifier: 1
> Authentic: <161><169>oN<211><0><174>U?:<171><176><151><1><203>O
> Attributes:
> User-Name = "tester at ndg07.gric.com"
> User-Password =
> "<198>y<211><254><155>Emf/5<174><152>7,<134><139>"
> NAS-IP-Address = xxx.xxx.xxx.xxx
> NAS-Identifier = "xxx.xxx.xxx.xxx"
> NAS-Port = 14081
> Acct-Session-Id = "tester at ndg07.gric.com1"
> USR-Interface-Index = 0
> Tunnel-Supports-Tags = 0
> Service-Type = Login-User
> Modem-SlotNo = 56
> USR-Chassis-Call-Span = 1
> Modem-PortNo = 1
> USR-Connect-Speed = NONE
> NAS-Port-Type = Virtual
>
> Mon Jul 29 10:40:50 2002: DEBUG: Packet dump:
> *** Received from xxx.xxx.xxx.xxx port 8765 ....
> Code: Access-Accept
> Identifier: 1
> Authentic: <237><175>+<216>;l<190><6><196><154>8\Q<178><127><1>
> Attributes:
> Service-Type = Framed-User
> Framed-Protocol = PPP
>
> Mon Jul 29 10:40:50 2002: DEBUG: Received reply in AuthRADIUS for req 1
> from xxx.xxx.xxx.xxx
> Mon Jul 29 10:40:50 2002: DEBUG: Access accepted for
> tester at ndg07.gric.com
> Mon Jul 29 10:40:50 2002: DEBUG: Packet dump:
> *** Sending to xxx.xxx.xxx.xxx port 1812 ....
> Code: Access-Accept
> Identifier: 18
> Authentic: <161><169>oN<211><0><174>U?:<171><176><151><1><203>O
> Attributes:
> Service-Type = Framed-User
> Framed-Protocol = PPP
>
> I use this statement to authenticate DEFAULT users in both Radiators
> (Radiator-2.19 and Radiator-3.1).
>
> <Realm DEFAULT>
> # Gric gric
> MaxSessions 1
> <AuthBy RADIUS>
> Host xxx.xxx.xxx.xxx
> Secret XXXX
> AuthPort 8765
> AcctPort 8766
> Retries 5
> Fork
> </AuthBy>
> AuthLog AcctFailLogsSQL
> <AuthLog FILE>
> Filename %L/%Y-%m-%d-RoamingGRIC-FailAuth.log
> #LogSuccess 1
> LogFailure 1
> FailureFormat %l:%n:%P:FAIL:%N:%1:%2:%N
> </AuthLog>
> </Realm>
> I have another REALMS and they are working well.
> Can you help me to solve this problem?
>
>
> Best Regards.
>
>
> Cordialmente:
>
> Jorge Eduardo Méndez Herrera
> Coordinador de Servicios de Internet
> Telesat S.A.
> Tel: 57-2-6440415 57-2-6440400 ext. 115.
> Santiago de Cali, Colombia.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/enriched
Size: 13952 bytes
Desc: not available
URL: <http://www.open.com.au/pipermail/radiator/attachments/20020730/6412079e/attachment.bin>
More information about the radiator
mailing list