RE: Steelhead (final) & IEA RadiusNT 1.16.60

Eric Nguyen ( e.nguyen@citybv.almac.co.uk )
Wed, 18 Jun 1997 13:07:47 +0100

I have found a solution to the problem:

I was dialing using an NT 4 SP3 workstation.

You must set routing and RAS to accept 'Clear text', reboot your server,
next stop R&RAS,

Edit the registry and remove:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\PPP\CHAP
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\PPP\SPAP

Now restart R&RAS, clients dialing in must use the clear text option
(PAP). If you ever reinstall or modify option in R&RAS make sure
to delete the keys again (or modify the .inf file so that it doeas not
add the keys anymore).

---Eric NGUYEN.                                          I.T. Manager.                  Searchnet Associates Ltd.

Tel: +44 (0) 131 466 7170Email: mailto:e.nguyen@search-net.netwww: http://www.eece.napier.ac.uk/~eric_nICQ: UIN#: 1155629



> -----Original Message-----> From:	Eric Nguyen > Sent:	Monday, June 16, 1997 3:25 PM> To:	'NTISP List'; 'RadiusNT List'> Subject:	Steelhead (final) & IEA RadiusNT 1.16.60> > Are RadiusNT 1.16.60 and Steelhead (final) compatible ?> > > I have tried to get it to work, but pretty unsuccessfully so far:> > Config NT4 server SP3 + Steelhead + RadiusNT1.16.60> > RAS modem with security and accounting set to Radius, Option "Require> encrypted authentication"> > 'RADLOGIN test test' works fine with user file> > test	Password = "test"> 	User-Service = "Framed-User",> 	Framed-Protocol = "PPP"> > If I try to dial-in from another modem into the server, it does not> work> and rejects me. > Can anybody help ?> > Below the answer from the radius server:> > D:\radius>radius -x15> > RadiusNT 1.16.60 2/7/97 Copyright (c) 1996 IEA Software, Inc.> All Rights Reserved, Worldwide> > Some portions Copyright (c) 1992 Livingston Enterprises, Inc.>           and Copyright (c) 1995 Ascend Communications, Inc.> > > > 0) Mode: 0> 1) EncryptPasswords: 0> 2) IgnoreCase: 0> 3) ReqAcctAuth: 0> 4) Options: 0> 5) Debug: 11> 6) ODBCDatasource: Radius> 7) DataDirectory: d:\radius\> 8) AcctDirectory: d:\radius\acct\> 9) UsersFile: users> 10) Username:> 11) Password:> 12) AuthPort: 1645> 13) AcctPort: 1646> > Param: Debug Level: 15> Initializing Winsock...>  Client:r1.search-net.net:192.168.1.23:xxxxx> >  Loading users...>  User:test>  User:DEFAULT> 2 users loaded!> > ************************** radlogin test test> ************************************ OK>  Radius NT is ready to receive requests!> radrecv: Request from host c0a80117 code=1, id=1, length=0>     NAS-IP-Address = 127.0.0.1>     NAS-Port = 0>     User-Name = "test">     Password = "\027_<\026\031{\333\237J\271\005\242b\307|\341"> rad_authenticate()> Checking user record PW_PASSWORD type> authPapPwd> chkPwd->strvalue is test> decrypted pwd is test> Sending Ack of id 1 to c0a80117 (r1.search-net.net)>     User-Service = Framed-User>     Framed-Protocol = PPP> *********************** From external modem> **********************************OK> Response Time: 310> radrecv: Request from host c0a80117 code=1, id=3, length=74>     User-Name = "test">     CHAP-Challenge = "5\304\243\023\014\235#\247 *\301n`z\274\001">     Challenge-Response => "\001\022\224\310k`\247\034U\370'\227\217\253\271h\235">     Ascend-MPP-Idle-Percent = 1397047634> rad_authenticate()> Checking user record PW_PASSWORD type> authChapPwd> Sending Reject of id 3 to c0a80117 (r1.search-net.net)> > Response Time: 220> > > > ---> Eric NGUYEN.                                          > I.T. Manager.                  > Searchnet Associates Ltd.> > Tel: +44 (0) 131 466 7170> Email: mailto:e.nguyen@search-net.net> www: http://www.eece.napier.ac.uk/~eric_n> ICQ: UIN#: 1155629> > > >  ---------------------------------------------------------->  RadiusNT Mailing List           listserver@emerald.iea.com