(RADIATOR) radpwtst does not authenticate
Hugh Irvine
hugh at open.com.au
Fri Aug 8 18:09:42 CDT 2003
Hello Alan -
Thanks for sending the information.
It is difficult to see what is wrong as everything appears normal and I
can't see any error messages either from Radiator or Perl. As you can
see from the trace, you are receiving the initial access request which
is decoded, but there are no further messages. This makes me think that
Perl is crashing and there should be some messages on the command line.
I am guessing that either Radiator or one or more of the required Perl
modules are not installed correctly, but without seeing any error
messages it is very difficult to say.
All I can suggest is that you reinstall everything from scratch.
BTW - what happens when you run the "make test" for Radiator?
regards
Hugh
On Saturday, Aug 9, 2003, at 01:17 Australia/Melbourne, Alan Murrell
wrote:
> Hello,
>
> Sorry for the delay in response, but I did not get a chance to do
> further testing on this until now (I left my original post intact down
> at the bottom of this message in case a refresher is needed <grin>).
>
>> You should run "radiusd" from the command line first so you can see if
>> there are any errors:
>
>> perl radiusd -foreground -log_stdout -trace 4 -config_file .....
>
> Nope, no errors. Here is the output from the above:
>
> [root at winnie radius]# perl ./radiusd -foreground -log_file
> /usr/local/radius/log_20030808.log -trace 4 -config_file ./radius.cfg
> Fri Aug 8 08:00:43 2003: INFO: Server started: Radiator 2.18.2 on
> winnie.domain.com
>
>> If you still have problems please send me a copy of your configuration
>> file (no secrets) together with a trace 4 debug from startup as shown
>> above.
>
> Configuration file and trace 4 output are below. Hopefully they help?
>
>> BTW - the latest version of Radiator is 3.6 (plus patches) so you
>> might
>> want to consider upgrading.
>
> Yup, considered that, but unfortunately, I am unable to find our
> license information, which I assume i would need to upgrade. Besides
> that, I also wanted to use the same version as our currently-working
> RADIUS server, so I could use the same config file and setup (which I
> am).
>
> Note: Hostnames, passwords, and IP addresses have been changed for
> protection.
>
> --- trace 4 output ---
> Fri Aug 8 08:00:43 2003: INFO: Server started: Radiator 2.18.2 on
> winnie.domain.com
> Fri Aug 8 08:00:56 2003: DEBUG: Packet dump:
> *** Received from 127.0.0.1 port 32772 ....
> Code: Access-Request
> Identifier: 86
> Authentic: 1234567890123456
> Attributes:
> User-Name = "greg"
> Service-Type = Framed-User
> NAS-Identifier = "203.63.154.1"
> NAS-Port = 1234
> Client-Port-DNIS = "123456789"
> Caller-Id = "987654321"
> NAS-Port-Type = Async
> User-Password =
> "<1><234><150><20>L<231><131><163><160><2><251><31>9'<202><154>"
>
> Fri Aug 8 08:00:56 2003: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Fri Aug 8 08:00:56 2003: DEBUG: Rewrote user name to greg
> --- trace 4 output ---
>
> --- radius.cfg ---
> Foreground
> LogStdout
> Trace 3
> PidFile /var/run/radiusd.pid
> AuthPort 1645
> AcctPort 1646
> LogDir /var/log
> DbDir /usr/local/radius/raddb
> LogFile %L/radius
> DictionaryFile %D/dictionary
> DictionaryFile %D/dictionary.ascend
>
> <Client DEFAULT>
> Secret PROTECTED
> DupInterval 0
> NasType Cisco
> IdenticalClients 10.10.10.1
> </Client>
>
> <Realm DEFAULT>
> RewriteUsername tr/[A-Z/[a-z]/
> AcctLogFileName %L/detail
> PasswordLogFileName %L/password
>
> <AuthBy EMERALD>
> DBSource dbi:ODBC:boddingtons
> DBUsername platuser
> DBAuth PROTECTED
>
> AccountingTable Calls
> AcctColumnDef UserName,User-Name
> AcctColumnDef CallDate,Timestamp,integer-date
> AcctColumnDef AcctStatusType,Acct-Status-Type,integer
> AcctColumnDef AcctDelayTime,Acct-Delay-Time,integer
> AcctColumnDef AcctInputOctets,Acct-Input-Octets,integer
> AcctColumnDef AcctOutputOctets,Acct-Output-Octets,integer
> AcctColumnDef AcctSessionId,Acct-Session-Id
> AcctColumnDef AcctSessionTime,Acct-Session-Time,integer
> AcctColumnDef AcctTerminateCause,Acct_Terminate-Cause
> AcctColumnDef NASIdentifier,NAS-Identifier
> AcctColumnDef NASIdentifier,NAS-IP-Address
> AcctColumnDef NASPort,NAS-Port,integer
> AcctColumnDef FramedAddress, Framed-Address
> AuthSelect ,sa.LoginLimit
> AuthColumnDef 0,Simultaneous-Use,check
> </AuthBy>
> </Realm>
>
> <SessionDatabase SQL>
> DBSource dbi:ODBC:boddingtons
> DBUsername platuser
> DBAuth PROTECTED
> </SessionDatabase>
> --- radius.cfg ---
>
> TIA for your help.
>
> Alan Murrell <alan at zoolink.net>
>
>
> On Saturday, Aug 2, 2003, at 05:48 Australia/Melbourne, Alan Murrell
> wrote:
>
>> Hello,
>>
>> Mandrake 9.1
>> Radiator 2.18
>> iODBC 3.06
>> FreeTDS 0.53 (using version 4.2 "emulation")
>> DBD-ODBC 1.05
>> Connection to MSSQL database (Platypus)
>>
>> I am setting up a secondary RADIUS server, just in case our primary
>> ones goes kaput (plus, the current RADIUS server is due for a *major*
>> upgrade!)
>>
>> I insatlled the above, and since the current RADIUS server is running
>> Radiator 2.18, I just copied over the configs, dictionary files, and
>> '/etc/odbc.ini' file to the new server, so all the configs should be
>> identical. The current RADIUS server is also using iODBC (albeit a
>> little older), and FreeTDS.
>>
>> I started Radiator with the following command:
>>
>> /usr/local/radiusd -daemon
>>
>> It started fine. However, I tried testing with radpwtst. All I get
>> is:
>>
>> --- CUT HERE ---
>> [root at winnie radius]# ./radpwtst
>> sending Access-Request...
>> No reply
>> sending Accounting-Request Start...
>> No reply
>> sending Accounting-Request Stop...
>> No reply
>> --- CUT HERE ---
>>
>> Nothing appears in the /var/log/radius log files. I do not believe
>> the current RADIUS server uses OpenLink. If need be, I can post some
>> of the configs here.
>>
>> Thank you, in advance, for any help and insight you are able to offer.
>>
>> Alan Murrell <alan at zoolink.net>
>>
>>
>>
>>
>>
>>
>> ===
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>>
>>
>
> NB: have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
>
> --
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>
NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list