Re: Still trying to authenticate from the ODBC OR the user table and can't

Doris Dean ( (no email) )
Tue, 2 Dec 1997 16:44:08 -0800

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Previous message: David Harris: "Re: RARAS Accounting Info"
Next message: David Inman: "Options"

Dale, this was the information I needed .. I dropped the Servers table and
added it back in with the fields showing the ttype of varchar. I restarted
the SQL database and Radius and it is now authenticating ...

Thanks for the information. And we are looking at the possibilty of
upgrading to 2.2 but I want to ensure this would work first.

Doris
-----Original Message-----
From: Dale E. Reed Jr. <daler@iea.com>
To: RadiusNT@iea-software.com <RadiusNT@iea-software.com>
Date: Thursday, November 27, 1997 7:58 PM
Subject: Re: Still trying to authenticate from the ODBC OR the user table
and can't

>On Thu, 27 Nov 1997, Doris Dean wrote:
>
>> I have checked ... re-checked and triple checked the settings ... The
Radius
>> version we are running is V1.16.60 with Radius Administrator version 1.1
>
>I'd recommend you upgrade to 2.2.
>
>> SQL Statement: Select Server, IPAddress, Secret From Servers
>> Client:primary :206.87.84.203 :nosmog
>
>Is this using SQL Server? This is a pretty old problem. Your
>field types are "char" and not "varchar". This causes the
>IPAddress field to be "206.87.84.203 " and it doesn't match
>the NAS' IP Address of "206.87.84.203" (notice the two spaces after
>the first).
>
>> radius: Parse error -98 for user default
>
>This means the default user entry has an error in it. Check tabs
>and case/spelling on the attributes.
>
>> When radius authenticates from the portmaster internal table I get this
>> response :
>
>This is just an accounting record. No big deal.
>
>> radrecv: Request from host ce5754fd code=4, id=134, length=94
>> Acct-Session-Id = "15002C27"
>> User-Name = "rbnson"
>> NAS-Identifier = 206.87.84.203
>> NAS-Port = 1
>> NAS-Port-Type = Async
>> Acct-Status-Type = Start
>> Acct-Authentic = Local
>> User-Service = Framed-User
>> Framed-Protocol = PPP
>> Framed-Address = 206.87.84.169
>> Acct-Delay-Time = 0
>> Allocating Statement...
>>
>> When radius authenticates an id NOT in the internal portmaster table I
get
>> the following
>>
>> radrecv: Request from host ce5754fd code=1, id=135, length=73
>> User-Name = "qiz"
>> Password = "h\340+yB\252\027\265p\352\006\002\\201\364\017"
>> NAS-Identifier = 206.87.84.203
>> NAS-Port = 5
>> NAS-Port-Type = Async
>> User-Service = Framed-User
>> Framed-Protocol = PPP
>> rad_authenticate_ODBC()
>> LOG: Calc_digest: from 206.87.84.203, ID 135 : Wrong NAS Address
>> rad_auth() calc_digest ret'd error
>
>Since the IP Address doesn't match one from the clients list,
>it fails the authentication.
>
>> LOG: Authenticate: from 206.87.84.203 - Security Breach: qiz
>>
>>
>> One peculiar thing ... when I put in the ID and Password in the Radius
>> Administrator and then check it, it replys with an ok etc. Then I save
the
>> settings before closing the Radius Adminstrator, close it and then when I
go
>> back in to it, the ID and Password fields are blank. Is this normal ???
>
>This is a problem with RadiusNT 1.16.60's admin. It doesn't read
>the security information from the Registry. 2.2 fixes this.
>
>Dale E. Reed Jr. (daler@iea.com)
>_________________________________________________________________
> IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs
> Internet Solutions for Today | http://www.iea-software.com
>
>
> ----------------------------------------------------------
> RadiusNT Mailing List lists@iea-software.com
>

Previous message: David Harris: "Re: RARAS Accounting Info"
Next message: David Inman: "Options"