(RADIATOR) Problem with Radiator 3.5, flat file, Cisco AS5300

Hugh Irvine hugh at open.com.au
Fri Feb 7 00:17:26 CST 2003 

Hello Craig -

Yes it looks like the format of your flat file is incorrect.

It should look like this:

# users file

bench Password = xxxxxx
	Service-Type = Framed-User,
	Framed-Protocol = PPP

Note that for common reply attributes it is more usual to use an 
AddToReply in your AuthBy clause:

	<AuthBy FILE>
		.....
		AddToReply Service-Type = Framed-User, \
			Framed-Protocol = PPP
	</AuthBy>

regards

Hugh


On Friday, Feb 7, 2003, at 16:18 Australia/Melbourne, Craig Bruenderman 
wrote:

> I have a FreeBSD box running Radiator 2.18 with MySQL. The 2 AS5300s
> work fine with it. I have attempted to run Radiator 3.5 on another box,
> using a flat file database, and have been unable to get a successful
> connection. Seems like the Service-Type may be the problem but I don't
> know what its expecting.
>
>
> Here is the AS5300's debug
>
> Feb  6 08:30:41.060 est: %ISDN-6-CONNECT: Interface Serial1:0 is now
> connected to 8122762881
> Feb  6 08:31:06.036 est: AAA: parse name=tty30 idb type=10 tty=30
> Feb  6 08:31:06.036 est: AAA: name=tty30 flags=0x11 type=4 shelf=0
> slot=0 adapter=0 port=30 channel=0
> Feb  6 08:31:06.036 est: AAA: parse name=Serial1:0 idb type=12 tty=-1
> Feb  6 08:31:06.036 est: AAA: name=Serial1:0 flags=0x51 type=1 shelf=0
> slot=0 adapter=0 port=1 channel=0
> Feb  6 08:31:06.036 est: AAA/MEMORY: create_user (0x6170CAA8) user=''
> ruser='' port='tty30' rem_addr='8122762881/812277
> 0009' authen_type=ASCII service=LOGIN priv=1
> Feb  6 08:31:06.036 est: AAA/AUTHEN/START (2608848358): port='tty30'
> list='' action=LOGIN service=LOGIN
> Feb  6 08:31:06.036 est: AAA/AUTHEN/START (2608848358): non console
> login - defaults to local database
> Feb  6 08:31:06.036 est: AAA/AUTHEN/START (2608848358): Method=LOCAL
> Feb  6 08:31:06.036 est: AAA/AUTHEN (2608848358): status = GETUSER
> Feb  6 08:31:06.160 est: AAA/AUTHEN/ABORT: (2608848358) because
> Autoselected.
> Feb  6 08:31:06.160 est: AAA/MEMORY: free_user (0x6170CAA8) user=''
> ruser='' port='tty30' rem_addr='8122762881/81227700
> 09' authen_type=ASCII service=LOGIN priv=1
> Feb  6 08:31:09.168 est: As30 AAA/AUTHOR/FSM: (0): LCP succeeds
> trivially
> Feb  6 08:31:11.488 est: AAA: parse name=Async30 idb type=10 tty=30
> Feb  6 08:31:11.488 est: AAA: name=Async30 flags=0x11 type=4 shelf=0
> slot=0 adapter=0 port=30 channel=0
> Feb  6 08:31:11.488 est: AAA: parse name=Serial1:0 idb type=12 tty=-1
> Feb  6 08:31:11.488 est: AAA: name=Serial1:0 flags=0x51 type=1 shelf=0
> slot=0 adapter=0 port=1 channel=0
> Feb  6 08:31:11.488 est: AAA/MEMORY: create_user (0x6170CAA8)
> user='bench' ruser='' port='Async30' rem_addr='8122762881
> /8122770009' authen_type=CHAP service=PPP priv=1
> Feb  6 08:31:11.488 est: AAA/AUTHEN/START (583876146): port='Async30'
> list='' action=LOGIN service=PPP
> Feb  6 08:31:11.492 est: AAA/AUTHEN/START (583876146): using "default"
> list
> Feb  6 08:31:11.492 est: AAA/AUTHEN/START (583876146): Method=radius
> (radius)
> Feb  6 08:31:11.492 est: RADIUS: ustruct sharecount=1
> Feb  6 08:31:11.492 est: RADIUS: added cisco VSA 2 len 7 "Async30"
> Feb  6 08:31:11.492 est: RADIUS: Initial Transmit Async30 id 15
> 208.149.145.26:1645, Access-Request, len 115
> Feb  6 08:31:11.492 est:         Attribute 4 6 D0959007
> Feb  6 08:31:11.492 est:         Attribute 5 6 0000001E
> Feb  6 08:31:11.492 est:         Attribute 26 15 0000000902094173
> Feb  6 08:31:11.492 est:         Attribute 61 6 00000000
> Feb  6 08:31:11.492 est:         Attribute 1 7 62656E63
> Feb  6 08:31:11.492 est:         Attribute 30 12 38313232
> Feb  6 08:31:11.492 est:         Attribute 31 12 38313232
> Feb  6 08:31:11.492 est:         Attribute 3 19 A9863A42
> Feb  6 08:31:11.492 est:         Attribute 6 6 00000002
> Feb  6 08:31:11.492 est:         Attribute 7 6 00000001
> Feb  6 08:31:11.512 est: RADIUS: Received from id 15
> 208.149.145.26:1645, Access-Accept, len 32
> Feb  6 08:31:11.512 est:         Attribute 6 6 00000000
> Feb  6 08:31:11.512 est:         Attribute 9 6 FFFFFFFE
> Feb  6 08:31:11.512 est: AAA/AUTHEN (583876146): status = PASS
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR/LCP: Authorize LCP
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR/LCP (3642619420):
> Port='Async30' list='' service=NET
> Feb  6 08:31:11.516 est: AAA/AUTHOR/LCP: As30 (3642619420) user='bench'
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR/LCP (3642619420): send AV
> service=ppp
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR/LCP (3642619420): send AV
> protocol=lcp
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR/LCP (3642619420): found list
> "default"
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR/LCP (3642619420): 
> Method=radius
> (radius)
> Feb  6 08:31:11.516 est: RADIUS: no appropriate authorization type for
> user.
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR (3642619420): Post
> authorization status = FAIL
> Feb  6 08:31:11.516 est: As30 AAA/AUTHOR/LCP: Denied
> Feb  6 08:31:11.516 est: AAA/MEMORY: free_user (0x6170CAA8) 
> user='bench'
> ruser='' port='Async30' rem_addr='8122762881/8
> 122770009' authen_type=CHAP service=PPP priv=1
> Feb  6 08:31:11.664 est: As30 AAA/AUTHOR/FSM: (0): LC
>
>
>
>
>
> Here is the radiator logfile
> *** Received from 208.149.144.7 port 1645 ....
> Code:       Access-Request
> Identifier: 15
> Authentic:  %<189>r<201><22>O<170>E<5><247><8><138>T@<147>P
> Attributes:
>         NAS-IP-Address = 208.149.144.7
>         NAS-Port = 30
>         Cisco-NAS-Port = "Async30"
>         NAS-Port-Type = Async
>         User-Name = "bench"
>         Called-Station-Id = "8122770009"
>         Calling-Station-Id = "8122762881"
>         CHAP-Password =
> <169><134>:B!n<10><201><247><167><228><240><220><227><232>1<29>
>         Service-Type = Framed-User
>         Framed-Protocol = PPP
>
> Thu Feb  6 08:33:03 2003: DEBUG: Handling request with Handler
> 'Realm=DEFAULT'
> Thu Feb  6 08:33:03 2003: DEBUG:  Deleting session for bench,
> 208.149.144.7, 30
> Thu Feb  6 08:33:03 2003: DEBUG: Handling with Radius::AuthFILE:
> Thu Feb  6 08:33:03 2003: DEBUG: Radius::AuthFILE looks for match with
> bench
> Thu Feb  6 08:33:03 2003: DEBUG: Radius::AuthFILE ACCEPT:
> Thu Feb  6 08:33:03 2003: DEBUG: Access accepted for bench
> Thu Feb  6 08:33:03 2003: ERR: There is no value named Framed-User
> Framed-Protocol = PPP for attribute Service-Type. Using 0.
> Thu Feb  6 08:33:03 2003: DEBUG: Packet dump:
> *** Sending to 208.149.144.7 port 1645 ....
> Code:       Access-Accept
> Identifier: 15
> Authentic:  %<189>r<201><22>O<170>E<5><247><8><138>T@<147>P
> Attributes:
>         Service-Type = Framed-User<9>Framed-Protocol = PPP
>         Framed-Netmask = 255.255.255.254
>
>
> Any ideas?
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list