[RADIATOR] Radiator + LDAP tries to use "(?uid=)" as search filter...

Heikki Vatiainen hvn at open.com.au
Mon Sep 12 15:48:33 CDT 2011


On 09/12/2011 11:34 PM, Isaac Freeman wrote:

> Here is a more complete output from radiusd -foreground:

Thanks. Looks like the attribute list is empty.

> Mon Sep 12 14:51:40 2011: DEBUG: Packet dump:
> *** Received from 127.0.0.1 port 36795 ....
> Code:       Access-Request
> Identifier: 205
> Authentic:  2=<128>6<149><128><142>8<12><2>Y<147><216>ld<212>
> Attributes:

> Again, I am using the radpwtst command provided with Radiator and providing
> the username to that command with:
> 
> radpwtst -user testuser -password qwer1234
> 
> Am I missing something with this command such that it wouldn't pass the
> username on to the server?

The command looks fine. Try this:

- go to the Radiator distribution directory
- run radpwtst like this:
  ./radpwtst -noacct -trace 4 -user testuser -password qwer1234

The output should be like below. I'm wondering if radpwtst is not
picking up the dictionary file correctly and for this was not able to
encode any of the attributes in the outgoing request.

Mon Sep 12 20:45:59 2011: DEBUG: Reading dictionary file './dictionary'
sending Access-Request...
Mon Sep 12 20:45:59 2011: DEBUG: Packet dump:
*** Sending to 127.0.0.1 port 1645 ....
Code:       Access-Request
Identifier: 179
Authentic:  <247>|<216>7u<155><204>'<208><10>)<209><246><203><10><220>
Attributes:
        User-Name = "testuser"
        Service-Type = Framed-User
        NAS-IP-Address = 203.63.154.1
        NAS-Identifier = "203.63.154.1"
        NAS-Port = 1234
        Called-Station-Id = "123456789"
        Calling-Station-Id = "987654321"
        NAS-Port-Type = Async
        User-Password =
Q3<192>s<136><183>4<220><226><21><182><188><7><131>;t

-- 
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.


More information about the radiator mailing list