(RADIATOR) mssql and config file
Hugh Irvine
hugh at open.com.au
Fri Oct 18 01:38:46 CDT 2002
Hello Dan -
It sounds like your shared secrets are not set correctly.
The radpwtst utility uses the shared secret "mysecret" by default,
unless overridden by the -secret parameter. Here is the help output
from radpwtst:
./radpwtst -h
usage: ./radpwtst [-h] [-time] [-iterations n]
[-trace [level]] [-s server] [-secret secret]
[-noauth] [-noacct][-nostart] [-nostop] [-status] [-chap]
[-mschap] [-mschapv2]
[-accton] [-acctoff] [-framed_ip_address address]
[-auth_port port] [-acct_port port] [-identifier n]
[-user username] [-password password] [-nas_ip_address
address]
[-nas_port port] [-nas_port_type type] [-service_type service]
[-calling_station_id string] [-called_station_id string]
[-session_id string] [-interactive]
[-delay_time n] [-session_time n] [-input_octets n]
[-output_octets n] [-timeout n] [-dictionary file,file]
[-gui] [-class string] [-useoldascendpasswords]
[-code requestcode] [-raw data] [-rawfile filename]
[attribute=value]...
For your second problem, you will need to add the correct
AuthColumnDef's to your configuration.
Something like this (assuming the checkattr and replyattr columns
contain Attr = Value, ... lists):
<Realm DEFAULT>
<AuthBy SQL>
DBSource dbi:ODBC:radiusdb
DBUsername sa
DBAuth dbpassword
AuthSelect select radiusname, password, checkattr, replyattr from
RADIUSCUSTOMERTEST where radiusname= %0
AuthColumnDef 1, Password, check
AuthColumnDef 2, GENERIC, check
AuthColumnDef 3, GENERIC, reply
.....
If you still have problems, please send me a copy of your configuration
file (no secrets), together with a trace 4 debug from Radiator showing
what is happening.
regards
Hugh
On Friday, October 18, 2002, at 05:01 AM, Dan V wrote:
> Im running into a problem with not being to authenticate via test
> utilty.
> Here is my config file... Im wanting to authenticate and do accounting
> out of
> the MSSQL db. I can start up radiusd with no problems and no errors
> until i
> try running a testuser through test utility..I get "bad authenticator"
> from
> the test utility...but accounting works fine...and from the log i get
> "Bad
> attribute =value pair". What am i missing? I'm pretty sure i have
> everything
> in the DB correctly. Heck i dunno...thats why im asking.
>
> <Realm DEFAULT>
> <AuthBy SQL>
> DBSource dbi:ODBC:radiusdb
> DBUsername sa
> DBAuth dbpassword
> AuthSelect select radiusname, password, checkattr, replyattr from
> RADIUSCUSTOMERTEST where radiusname= %0
>
> AccountingTable RAD_ACCOUNTING
> AcctColumnDef USERNAME,User-Name
> AcctColumnDef TIME_STAMP,Timestamp,integer
> AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
> AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
> AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
> AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
> AcctColumnDef ACCTSESSIONID,Acct-Session-Id
> AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
> AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause
> AcctColumnDef NASIDENTIFIER,NAS-Identifier
> AcctColumnDef NASPORT,NAS-Port,integer
> AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
>
> AcctFailedLogFileName %D/missedaccounting
> </AuthBy>
> </Realm>
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list