Here are my observations:
- the username when it goes to get the information from the SQL =
database is
correct.
- the database password is now "WINNT"
- the username in the line beginning (WINNT) is correct sometimes
- when it is correct and the password entered by the user (the
decrypted password) is correct everything goes well.
- once the username is wrong, no one will be authenticated until
radius is stopped and restarted. As mentioned below, the username can =
make
no sense or it can be a word or partial word from the packet received.=20
If there is anything else I can do to help locate the problem, please =
let me
know.
Thanks.
-----Original Message-----
From: Dale E. Reed Jr. [mailto:daler@iea-software.com]
Sent: Friday, March 26, 1999 9:16 PM
To: radiusnt@iea-software.com
Subject: Re: [RadiusNT] 2ND Request for HELP - USER AUTHENTIFICATION
PROBLEMS
"David W. Kornitz" wrote:
>=20
> We have recently upgraded to Emerald 2.5. Since doing so, we
> started noticing users having more problems getting authenticated.
> Running Radius in debug mode, the following occurs: (Username and
> Password have been change.)
Which version of RadiusNT are you using? 2.5.162 had some significant
updates for the trimname option. Also, chance the database password
to just WINNT rather than WINNT\ and see if it makes any difference.
It might be looking for the domain after the \, which you don't have.
=20
> ------------------------------------------------------------------
>=20
> radrecv: Request from host cc5fc483 code=3D1, id=3D165, length=3D60
> NAS-Identifier =3D 127.0.0.1
> NAS-Port =3D 0
> User-Name =3D "USERX"
> Password =3D "[\300Rmz\373\320\264\236\305o3\337\336\376["
> rad_authenticate_ODBC() Password =3D
> "[\300Rmz\373\320\264\236\305o3\337\336\376["
>=20
> SQL Statement: Select DateDiff(Minute, GetDate(), DateAdd(Day,
> (ma.Extension+ma.OverDue+1), maExpireDate)), DateDiff(Minute, =
GetDate(),
> DateAdd(Day, sa.Extension+1, saExpireDate)), sa.AccountID, =
sa.AccountType,
> sa.Password, sa.Login, sa.Shell, ma.Balance, ma.OverLimit From
> MasterAccounts ma, SubAccounts sa Where (sa.Login=3D'USERX' or
> sa.Shell=3D'USERX' or sa.Email=3D'USERX') AND =
ma.CustomerID=3Dsa.CustomerID and
> sa.Active<>0 and ma.Active<>0
>=20
> Decrypted Password: PASSWORDX
> Database Password: WINNT\
> =
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
> (WINNT) User:=B2=C4_=CC=04 Domain: Password:PASSWORDX
> =
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
> Sending Reject of id 165 to cc5fc483 (lasagna.compufort.com)
> SQL Statement: INSERT INTO RadLogs(RadLogMsgID, LogDate, Username, =
Data,
> CallerID) VALUES (11, GetDate(), 'USERX', 'PASSWORDX', NULL)
>=20
> User: USERX Bad Password
>=20
>
------------------------------------------------------------------------=
----
> -----------------------
>=20
> Each time the attempt fails (provided the password is correctly =
entered)
on
> the line:
>=20
> =
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
> (WINNT) User:=B2=C4_=CC=04 Domain: Password:PASSWORDX
> =
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
>=20
> the username is not correct. In this particular example, it is
> not intelligible and in other cases you'll see "NAS-PORT", =
"User-Name"
> or something similar. The problem occurs on both from "RADLOGIN", as
> well as, the two TOTAL CONTROL racks.
>=20
> To eliminate the server as the source of the problem, we installed
> EMERALD 2.5 with RADIUS on a new machine (fresh install) and the same
> problem reoccurred.
>=20
> The problem is not constant, after three or four failed attempts it
> just starts working again and then stops again.
--=20
Dale E. Reed Jr. Emerald and RadiusNT
__________________________________________
IEA Software, Inc. www.iea-software.com
For more information about this list, including removal, please
see this URL: http://www.iea-software.com/maillist.html
For more information about this list, including removal, please
see this URL: http://www.iea-software.com/maillist.html