Re: Setting Up Merit Radius

igoldste@mum.neric.org
Wed, 10 Apr 1996 10:36:49 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: William Bulley: "Re: Setting Up Merit Radius"
Previous message: Alpha N. Spider: "Re: Setting Up Merit Radius"
In reply to: William Bulley: "Re: Setting Up Merit Radius"
Next in thread: William Bulley: "Re: Setting Up Merit Radius"

Web --
This is all being tested from the same AIX box. I am using the -d
option on both the radiusd and radpwtst commands and they are both
pointing to /usr/private/etc/raddb. Since we are not using realms, I
deleted the authfile (and then touch'd it to re-create it as empty).

Alpha N. Spider suggested:

>Try putting a "client/server" entry in the client file, we had the same
>problem when we were testing the MERIT RADIUS. It seems that you are not
>an authorised client to the server if you do not have that entry in the
>file!! or you do not know which server to use!! something like that!!

At the moment the clients file has a single entry of:
mum.neric.org testmum
with the samples commented out.

I'm running the deamon with:
radiusd -d /usr/private/etc/raddb -x &
in background and then in another telnet window trying:
radpwtst -d /usr/private/etc/raddb -s mum.neric.org -r 1 -u ppp testuser
and then enter the testuser's shell password.

Any further suggestions would be appreciated.
--Ira Goldstein

On Tue, 9 Apr 1996, William Bulley wrote:

> According to igoldste@mum.neric.org:
> >
> > I've compiled the Merit version of Radius and rradcheck seems to be ok:
> >
> > auth queue: 1/0, acct queue: 0/0, maxtime: 0 (Tue Apr 9 15:24:30 1996)
> > authfile: 0, clients: 4, users: 4, fsm: 5, Tue Apr 9 15:24:30 1996
> > Version 2.4.21 NOSHADOW aix M_UNIX
> >
> > "mum(1645)" is responding
> >
> > but when I try to test it with radpwtst I get:
> > "testuser" authentication failed(RC=1): No reply from RADIUS server
> > "mum.neric.org(1645)"
> >
> > I've tried this without an authfile, with just a "NULL UNIX-PW" line in
> > the authfile and with the realm in the authfile set as:
> > neric.org UNIX-PW
> > DEFAULT RADIUS mum.neric.org
> > NULL UNIX-PW
> >
> > The logfile shows:
> > Tue Apr 9 15:43:23 1996: config_files: ./clients (4 entries) read to memory
> > Tue Apr 9 15:43:23 1996: read_users: ./users (4 entries) read to memory
> > Tue Apr 9 15:43:23 1996: read_auth: ./authfile (3 entries) read to memory
> > Tue Apr 9 15:44:03 1996: rad_authenticate: 170/0 'testuser' at
> > mum.neric.org PPP
> > Tue Apr 9 15:44:03 1996: rad_authenticate: 170/0 'testuser' at
> > mum.neric.org PPP
>
> Is one machine or two? If two, is shared secret? Don't need authfile
> at all if not using realms (must exist, but could be empty). If NULL
> realm is okay, don't need three entries, just "NULL UNIX-PW" is all.
>
> If one, may need "-d" option on radpwtst (so as to get secret with self).
>
> Regards,
>
> web...
>
> --
> William Bulley, N8NXN Senior Systems Research Programmer
> Merit Network Inc. Domain: web@merit.edu
> 4251 Plymouth Road MaBell: (313) 764-9993
> Ann Arbor, Michigan 48105-2785 Fax: (313) 747-3185
>

Next message: William Bulley: "Re: Setting Up Merit Radius"
Previous message: Alpha N. Spider: "Re: Setting Up Merit Radius"
In reply to: William Bulley: "Re: Setting Up Merit Radius"
Next in thread: William Bulley: "Re: Setting Up Merit Radius"