(RADIATOR) AuthBY URL problem on https
anyiu at asl.com.hk
anyiu at asl.com.hk
Tue Aug 19 23:09:18 CDT 2003
Dear support,
My customer is using Radiator 3.6 and AuthBY URL and running via
https. I have installed
1. Install MD5
2. Install module openssl-0.9.7b
3. ./config --openssldir=/usr/local/openssl
4. Install Crypt-SSLeay-0.51
5. Install module uri-1.24
6. Install MIME BASE64
7. Install IO-Socket-SSL
8. Install Net-SSLeay
9. Install module libwww-perl-5.69
My url.cfg:
=====
# This clause identifies the URL that will be used to authenticate the
username and passw
ord.
# the request wil be POSTed to www.mysite.com/test.cgi
# The username will be bassed in a tag named 'u'. The password will be
MD5 encrypted
# and passed in the tag called 'c'.
# IF the page returned by the web server contains the words 'all ok'
then the
# authentication succeeds.
<AuthBy URL>
Identifier AURL
Debug 4
AuthUrl https://mms1.hkcsl.com/servlet/iPass.UserAuth
Timeout 60
UserParam mrt
PasswordParam pwd
UrlMethod POST
BadPasswordKeyword "2"
BadUserKeyword "5"
AuthOKKeyword "0"
PasswordEncryption Clear
</AuthBy>
# This clause specifies to handle all authentication request with the
AuthBy URL above
<Realm>
AuthBy AURL
</Realm>
==============
When i run #./radiusd -config_file url.cfg, then run the radpwtst
The output from radiusd
-----
bash-2.03# ./radiusd -config_file config/url.cfg
Wed Aug 20 11:53:24 2003: DEBUG: AuthUrl loaded
Wed Aug 20 11:53:24 2003: DEBUG: New Radius::AuthURL constructed
Wed Aug 20 11:53:24 2003: DEBUG: Finished reading configuration
file 'config/url.cfg'
Wed Aug 20 11:53:24 2003: DEBUG: Reading dictionary file './dictionary'
Wed Aug 20 11:53:24 2003: DEBUG: Creating authentication port
0.0.0.0:1645
Wed Aug 20 11:53:24 2003: DEBUG: Creating accounting port 0.0.0.0:1646
Wed Aug 20 11:53:24 2003: NOTICE: Server started: Radiator 3.6 on IDRSA
Wed Aug 20 11:53:28 2003: DEBUG: Packet dump:
*** Received from 127.0.0.1 port 34119 ....
Code: Access-Request
Identifier: 43
Authentic: 1234567890123456
Attributes:
User-Name = "90227544"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
Called-Station-Id = "123456789"
Calling-Station-Id = "90227544"
NAS-Port-Type = Async
User-Password
= "<192><187>m<159><152>i6<194><188>8<9><160><216>}x<153>"
Wed Aug 20 11:53:28 2003: DEBUG: Handling request with Handler 'Realm='
Wed Aug 20 11:53:28 2003: DEBUG: Deleting session for 90227544,
203.63.154.1, 1234
Code: Access-Request
Identifier: 43
Authentic: 1234567890123456
Attributes:
User-Name = "90227544"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
Called-Station-Id = "123456789"
Calling-Station-Id = "90227544"
NAS-Port-Type = Async
User-Password
= "<192><187>m<159><152>i6<194><188>8<9><160><216>}x<153>"
Wed Aug 20 11:53:43 2003: DEBUG: AuthUrl HTTP Bad Request for 90227544
Wed Aug 20 11:53:43 2003: INFO: Access rejected for 90227544: HTTP Bad
Request for 90227544
Wed Aug 20 11:53:43 2003: DEBUG: Packet dump:
*** Sending to 127.0.0.1 port 34119 ....
Code: Access-Reject
Identifier: 43
Authentic: 1234567890123456
Attributes:
Reply-Message = "Request Denied"
Wed Aug 20 11:53:43 2003: DEBUG: Packet dump:
*** Received from 127.0.0.1 port 34119 ....
Code: Accounting-Request
Identifier: 44
Authentic: <144><164><19>@d<164>t2<1><154><3>wq<152>E<15>
Attributes:
User-Name = "90227544"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "00001234"
Acct-Status-Type = Start
Called-Station-Id = "123456789"
Calling-Station-Id = "90227544"
Acct-Delay-Time = 0
Wed Aug 20 11:53:43 2003: DEBUG: Handling request with Handler 'Realm='
Wed Aug 20 11:53:43 2003: DEBUG: Adding session for 90227544,
203.63.154.1, 1234
Code: Accounting-Request
Identifier: 44
Authentic: <144><164><19>@d<164>t2<1><154><3>wq<152>E<15>
Attributes:
User-Name = "90227544"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "00001234"
Acct-Status-Type = Start
Called-Station-Id = "123456789"
Calling-Station-Id = "90227544"
Acct-Delay-Time = 0
Timestamp = 1061351623
Wed Aug 20 11:53:43 2003: DEBUG: Accounting accepted
Wed Aug 20 11:53:43 2003: DEBUG: Packet dump:
*** Sending to 127.0.0.1 port 34119 ....
Code: Accounting-Response
Identifier: 44
Authentic: <144><164><19>@d<164>t2<1><154><3>wq<152>E<15>
Attributes:
Wed Aug 20 11:53:43 2003: DEBUG: Packet dump:
*** Received from 127.0.0.1 port 34119 ....
Code: Accounting-Request
Identifier: 45
Authentic:
#<216>:<150><156><149>i'<130><217><178><249><232><192><160><132>
Attributes:
User-Name = "90227544"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "00001234"
Acct-Status-Type = Stop
Called-Station-Id = "123456789"
Calling-Station-Id = "90227544"
Acct-Delay-Time = 0
Acct-Session-Time = 1000
Acct-Input-Octets = 20000
Acct-Output-Octets = 30000
Wed Aug 20 11:53:43 2003: DEBUG: Handling request with Handler 'Realm='
Wed Aug 20 11:53:43 2003: DEBUG: Deleting session for 90227544,
203.63.154.1, 1234
Code: Accounting-Request
Identifier: 45
Authentic:
#<216>:<150><156><149>i'<130><217><178><249><232><192><160><132>
Attributes:
User-Name = "90227544"
Service-Type = Framed-User
NAS-IP-Address = 203.63.154.1
NAS-Port = 1234
NAS-Port-Type = Async
Acct-Session-Id = "00001234"
Acct-Status-Type = Stop
Called-Station-Id = "123456789"
Calling-Station-Id = "90227544"
Acct-Delay-Time = 0
Acct-Session-Time = 1000
Acct-Input-Octets = 20000
Acct-Output-Octets = 30000
Timestamp = 1061351623
Wed Aug 20 11:53:43 2003: DEBUG: Accounting accepted
Wed Aug 20 11:53:43 2003: DEBUG: Packet dump:
*** Sending to 127.0.0.1 port 34119 ....
Code: Accounting-Response
Identifier: 45
Authentic:
#<216>:<150><156><149>i'<130><217><178><249><232><192><160><132>
Attributes:
=====================
Please help to solve the problem. Thanks a lot!
REgards,
Angus
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list