(RADIATOR) MD5 Salt Encrypted VSA's
Hugh Irvine
hugh at open.com.au
Sat Sep 24 02:54:27 CDT 2005
Hello Steve -
You should install the latest patches for Radiator 3.13, as there
have been quite a few modifications for this.
Here is an example of a radpwtst to generate a Change-Filter-Request:
perl radpwtst -noauth -noacct -trace 4 -code Change-Filter-
Request .....
sending Change-Filter-Request...
Packet dump:
*** Sending to 127.0.0.1 port 1645 ....
Code: Change-Filter-Request
Identifier: 110
Authentic: <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
Attributes:
You will need to add the NAS IP address and the shared secret, plus
whatever attributes are required to complete the operation.
Here is the help for radpwtst:
perl radpwtst -h
usage: radpwtst [-h] [-time] [-iterations n]
[-trace [level]] [-s server] [-secret secret]
[-noauth] [-noacct][-nostart] [-nostop] [-status]
[-chap] [-mschap] [-mschapv2] [-eapmd5] [-eapotp] [-eapgtc]
[-eaphex xxxxxxxxxxxxx]
[-accton] [-acctoff] [-framed_ip_address address]
[-auth_port port] [-acct_port port] [-identifier n]
[-user username] [-password password]
[-nas_ip_address address] [-nas_identifier string]
[-nas_port port] [-nas_port_type type] [-service_type
service]
[-calling_station_id string] [-called_station_id string]
[-session_id string] [-interactive]
[-delay_time n] [-session_time n] [-input_octets n]
[-output_octets n] [-timeout n] [-dictionary file,file]
[-gui] [-class string] [-useoldascendpasswords]
[-code requestcode] [-raw data] [-rawfile filename]
[-rawfileseq filename]
[-outport port] [-bind_address dotted-ip-address]
[attribute=value]...
You will find the list of RADIUS requests that you can generate in
"Radius/Radius.pm".
Hope that helps.
regards
Hugh
On 24 Sep 2005, at 15:08, Steve Phillips wrote:
> Hugh Irvine wrote:
>
>> Hello Steve -
>> What version of Radiator are you running?
>> The latest Radiator 3.13, plus the latest patches now support
>> correct COA.
>> You can use the radpwtst utility to generate these requests.
>> If you have any problems please let us know.
>> regards
>> Hugh
>>
>
> Hey Hugh,
>
> I've installed Radiator 3.13, the server itself is not running as
> the only purpose of this box is to generate the requests using
> radpwtst.
>
> I've had a look through the ref.html reference manual and the
> goodies as well as the changelog and cannot find anything past
> maybe the -code switch (which doesn't appear to be the right
> option, tho the ref.html alludes to some clauses which may be what
> I'm after ?)
>
> Would you have any examples of generating COA type messages via
> radpwtst ?
>
> Cheers,
>
> --
> Steve.
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list