(RADIATOR) I can't get access via Radiator

Hugh Irvine hugh at open.com.au
Thu Oct 17 09:36:57 CDT 2002 

Hello Edgar -

Thanks for sending the log file, which shows the following user 
"edgar.bermejo" being successfully authenticated with POP3 and with an 
Access-Accept is being sent back to the radius client at 
148.241.152.245. However there are no reply attributes included in the 
Access-Accept, which may be necessary to establish a session. You 
should check with your vendor to find out what reply attributes are 
required.

In the meantime you could try something like this (which may or may not 
work):

# define Realm

<Realm DEFAULT>
	<AuthBy POP3>
		......
		AddToReply Service-Type = Framed-User, \
			Framed-Protocol = PPP, \
			Framed-IP-Netmask = 255.255.255.255
	</AuthBy>
</Realm>


regards

Hugh



> Wed Oct 16 12:21:20 2002: DEBUG: Packet dump:
> *** Received from 148.241.152.245 port 1645 ....
> Code:       Access-Request
> Identifier: 67
> Authentic:  d<2><136><249><189>@L<239><194><241><217>V4<181><196><155>
> Attributes:
>         User-Name = "edgar.bermejo"
>         User-Password = 
> "<131><232><237><176><17><166><8><255><168>gY<154>*<6><211><235>"
>
>         NAS-IP-Address = 148.241.152.245
>         NAS-Port = 34
>
> Wed Oct 16 12:21:20 2002: DEBUG: Handling request with Handler 
> 'Realm=DEFAULT'
> Wed Oct 16 12:21:20 2002: DEBUG:  Deleting session for edgar.bermejo, 
> 148.241.152.245, 34
> Wed Oct 16 12:21:20 2002: DEBUG: Handling with POP3
> Wed Oct 16 12:21:21 2002: DEBUG: Access accepted for edgar.bermejo
> Wed Oct 16 12:21:21 2002: DEBUG: Packet dump:
> *** Sending to 148.241.152.245 port 1645 ....
> Code:       Access-Accept
> Identifier: 67
> Authentic:  d<2><136><249><189>@L<239><194><241><217>V4<181><196><155>
> Attributes:
>

On Friday, October 18, 2002, at 12:49 AM, Edgar Bermejo Arámburo wrote:

> Hello!
>
> I'm using Radiator to authenticate users via POP3. I followed the 
> steps of the installation and everything seems to be OK with the 
> radpwtst. I can get authentication via the POP3 server, it responds 
> that the user and password are right. But in the logfile I can't see 
> any Reply Message like "request accepted" or something like that. In 
> the other hand, if the user or/and the password are wrong the server 
> sends a "request denied". Can anyone help me to figure out why I can't 
> get access instead the POP3 responds that user and password are 
> correct? I'm using a 2212 NAS of IBM.
>
> Best regards.
>
> Here is my config: file:
>
> Foreground
> LogStdout
> LogDir          .
> DbDir           .
> # User a lower trace level in production systems:
> Trace           4
>
> # You will probably want to add other Clients to suit your site,
> # one for each NAS you want to work with
> <Client xyz.ccm.itesm.mx>
>         Secret abcde
> </Client>
>
> <Client DEFAULT>
>         Secret  mysecret
>         DupInterval 0
> </Client>
>
> <Realm DEFAULT>
>         <AuthBy POP3>
>                 # Host specifies the na,e of the POP server to use
>                 # Defaults to 'pop3'
>                 # You should set this to suit your own site
>                 Host my.server
>
>                 # AuthMode specifies the POP authentication mode to use
>                 # APOP means use APOP authentication
>                 # PASS means to use plaintext passwords (deprecated)
>                 # BEST means use APOP if available, else plaintext
>                 # Defaults to BEST
>                 AuthMode PASS
>
>                 # If Debug is set, PO3Client will print details
>                 # of its communications to stdout
>                 Debug 1
>
> And here is the logfile:
>
> Wed Oct 16 12:21:21 2002: DEBUG: Packet dump:
> *** Received from 148.241.152.245 port 1645 ....
> Code:       Access-Request
> Identifier: 68
> Authentic:  n<3><202>&<134>o8<239><166><221><145>/ <249><200><239>
> Attributes:
>         User-Name = "bbehrend"
>         User-Password = 
> "<221><159><198><<179><197><24>z'<150><233><15><128><167><162>6"
>         NAS-IP-Address = 148.241.152.245
>         NAS-Port = 35
>
> Wed Oct 16 12:21:21 2002: DEBUG: Handling request with Handler 
> 'Realm=DEFAULT'
> Wed Oct 16 12:21:21 2002: DEBUG:  Deleting session for bbehrend, 
> 148.241.152.245, 35
> Wed Oct 16 12:21:21 2002: DEBUG: Handling with POP3
> Wed Oct 16 12:21:26 2002: INFO: Access rejected for bbehrend: POP3 
> Authentication failed
> Wed Oct 16 12:21:26 2002: DEBUG: Packet dump:
> *** Sending to 148.241.152.245 port 1645 ....
> Code:       Access-Reject
> Identifier: 68
> Authentic:  n<3><202>&<134>o8<239><166><221><145>/ <249><200><239>
> Attributes:
>         Reply-Message = "Request Denied"
>
> Wed Oct 16 12:21:20 2002: DEBUG: Packet dump:
> *** Received from 148.241.152.245 port 1645 ....
> Code:       Access-Request
> Identifier: 67
> Authentic:  d<2><136><249><189>@L<239><194><241><217>V4<181><196><155>
> Attributes:
>         User-Name = "edgar.bermejo"
>         User-Password = 
> "<131><232><237><176><17><166><8><255><168>gY<154>*<6><211><235>"
>
>         NAS-IP-Address = 148.241.152.245
>         NAS-Port = 34
>
> Wed Oct 16 12:21:20 2002: DEBUG: Handling request with Handler 
> 'Realm=DEFAULT'
> Wed Oct 16 12:21:20 2002: DEBUG:  Deleting session for edgar.bermejo, 
> 148.241.152.245, 34
> Wed Oct 16 12:21:20 2002: DEBUG: Handling with POP3
> Wed Oct 16 12:21:21 2002: DEBUG: Access accepted for edgar.bermejo
> Wed Oct 16 12:21:21 2002: DEBUG: Packet dump:
> *** Sending to 148.241.152.245 port 1645 ....
> Code:       Access-Accept
> Identifier: 67
> Authentic:  d<2><136><249><189>@L<239><194><241><217>V4<181><196><155>
> Attributes:
>
> Wed Oct 16 12:21:15 2002: DEBUG: Packet dump:
> *** Received from 148.241.152.245 port 1645 ....
> Code:       Access-Request
> Identifier: 66
> Authentic:  8d<129>?<199>?b<231><152>1<245><177>)<142><205>:
> Attributes:
>         User-Name = "bbehrend"
>         User-Password = "?<152><247>5<6>Or<182>/<140> 
> 2<185>c<212><204>"
>         NAS-IP-Address = 148.241.152.245
>         NAS-Port = 35
>
> Wed Oct 16 12:21:15 2002: DEBUG: Handling request with Handler 
> 'Realm=DEFAULT'
> Wed Oct 16 12:21:15 2002: DEBUG:  Deleting session for bbehrend, 
> 148.241.152.245, 35
> Wed Oct 16 12:21:15 2002: DEBUG: Handling with POP3
> Wed Oct 16 12:21:20 2002: INFO: Access rejected for bbehrend: POP3 
> Authentication failed
> Wed Oct 16 12:21:20 2002: DEBUG: Packet dump:
> *** Sending to 148.241.152.245 port 1645 ....
> Code:       Access-Reject
> Identifier: 66
> Authentic:  8d<129>?<199>?b<231><152>1<245><177>)<142><205>:
> Attributes:
>         Reply-Message = "Request Denied"
>  
>  
>
> --
> _________________________________________
>
> Ing. Edgar Bermejo Arámburo
> Líder de Proyecto
> Depto. de Redes
> Dirección de Telecomunicaciones - DINF
> Tec de Monterrey, Campus Ciudad de México
> Tel. 5483 2007/2008 Fax. 5483 2002
>
> _________________________________________
>  
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/enriched
Size: 7618 bytes
Desc: not available
URL: <http://www.open.com.au/pipermail/radiator/attachments/20021018/a4830ef6/attachment.bin>

More information about the radiator mailing list