Re: RADIUS 2.0 on Linux 2.0.xx (fwd) *LONG*

David B. Peterson (dave@spacestar.net)
Wed, 8 Jan 1997 11:26:23 -0500

>Once upon a time David B. Peterson shaped the electrons to say...
>>suffix doesn't work as I thought it would. It requires a space between the
>>username and the suffix. I have included session listings and the relevant
>
>RADIUS truncates usernames on a space. So "bob %ppp" is treated as "bob".
>What is happening is you are catching your first entry with just the username.
>
>
>>login:
>>Username: dave.ppp
>>Password:
>
>Why do you have login: AND Username:?

Historical. We used to have a Cisco access server. The prompt line reads:
set all prompt login:^Username:

>You need to use 'radiusd -x' to see why RADIUS is rejecting this.

Here is the terminal session:
-----
Welcome to Spacestar Communications! (Firmware, Inc.)

Login as 'pcl' to go to PC-Library

login:
Username:dave%ppp
Password:
Invalid Login
login:
Username:dave.ppp
Password:
Invalid Login
login:
Username:dave$ppp
Password:
Invalid Login

NO CARRIER
atdl
Dialing...T8299410
CONNECT 31200/ARQ/V34/LAPM/V42BIS

Welcome to Spacestar Communications! (Firmware, Inc.)

Login as 'pcl' to go to PC-Library

login:
Username:dave
Password:
PPP session from (206.145.230.215) to 206.145.230.197
beginning....~}#@!}!}!} };}1}}]~&} } } } }%}&Nl}&{l"~~}#@!}!}"}
};}1}$}%\}3}'}$pN%
-----

Here is the radiusd -x output
-----

Wed Jan 8 11:21:25 1997: [20015] radrecv: Request from host
206.145.230.215 cod
e=1, id=14, length=60
Wed Jan 8 11:21:25 1997: [20015] User-Name = "dave%ppp"
Wed Jan 8 11:21:25 1997: [20015] Password = "--deleted--"
Wed Jan 8 11:21:25 1997: [20015] NAS-IP-Address = 206.145.230.215
Wed Jan 8 11:21:25 1997: [20015] NAS-Port = 1
Wed Jan 8 11:21:25 1997: [20018] unix_pass: getpwnam for<dave%ppp> failed
Wed Jan 8 11:21:25 1997: [20018] Sending Reject of id 14 to tc3.mpls
(206.145.2
30.215)
Wed Jan 8 11:21:33 1997: [20015] radrecv: Request from host
206.145.230.215 cod
e=1, id=15, length=60
Wed Jan 8 11:21:33 1997: [20015] User-Name = "dave.ppp"
Wed Jan 8 11:21:33 1997: [20015] Password = "--deleted--"
Wed Jan 8 11:21:33 1997: [20015] NAS-IP-Address = 206.145.230.215
Wed Jan 8 11:21:33 1997: [20015] NAS-Port = 1
Wed Jan 8 11:21:33 1997: [20019] unix_pass: getpwnam for<dave.ppp> failed
Wed Jan 8 11:21:33 1997: [20019] Sending Reject of id 15 to tc3.mpls
(206.145.2
30.215)
Wed Jan 8 11:21:38 1997: [20015] radrecv: Request from host
206.145.230.215 cod
e=1, id=16, length=60
Wed Jan 8 11:21:38 1997: [20015] User-Name = "dave$ppp"
Wed Jan 8 11:21:38 1997: [20015] Password = "--deleted--"
Wed Jan 8 11:21:38 1997: [20015] NAS-IP-Address = 206.145.230.215
Wed Jan 8 11:21:38 1997: [20015] NAS-Port = 1
Wed Jan 8 11:21:39 1997: [20020] unix_pass: getpwnam for<dave$ppp> failed
Wed Jan 8 11:21:39 1997: [20020] Sending Reject of id 16 to tc3.mpls
(206.145.2
30.215)
Wed Jan 8 11:22:20 1997: [20015] radrecv: Request from host
206.145.230.215 cod
e=1, id=17, length=56
Wed Jan 8 11:22:20 1997: [20015] User-Name = "dave"
Wed Jan 8 11:22:20 1997: [20015] Password = "--deleted--"
Wed Jan 8 11:22:20 1997: [20015] NAS-IP-Address = 206.145.230.215
Wed Jan 8 11:22:20 1997: [20015] NAS-Port = 1
Wed Jan 8 11:22:20 1997: [20021] Sending Accept of id 17 to tc3.mpls
(206.145.2
30.215)
Wed Jan 8 11:22:20 1997: [20021] User-Service-Type = 2
Wed Jan 8 11:22:20 1997: [20021] Framed-Protocol = PPP
Wed Jan 8 11:22:20 1997: [20021] Framed-Address = 255.255.255.254
Wed Jan 8 11:22:20 1997: [20021] Framed-Netmask = 255.255.255.0
Wed Jan 8 11:22:20 1997: [20021] Framed-Routing = None
Wed Jan 8 11:22:20 1997: [20021] Framed-Compression = Van-Jacobson-TCP-IP
Wed Jan 8 11:22:20 1997: [20021] Framed-MTU = 1500
Wed Jan 8 11:22:20 1997: [20021] Session-Timeout = 28800
-----

And here (again) is the relevant portion of the users file.
-----

DEFAULT Password = "UNIX"
User-Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 255.255.255.254,
Framed-Netmask = 255.255.255.0,
Framed-Routing = None,
Framed-Compression = Van-Jacobsen-TCP-IP,
Framed-MTU = 1500,
Session-Timeout = 28800

DEFAULT Auth-Type = System, Suffix = ".ppp"
User-Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 255.255.255.254,
Framed-Netmask = 255.255.255.0,
Framed-Routing = None,
Framed-Compression = Van-Jacobsen-TCP-IP,
Framed-MTU = 1500,
Session-Timeout = 28800

DEFAULT Password = "UNIX", Suffix = "%ppp"
User-Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 255.255.255.254,
Framed-Netmask = 255.255.255.0,
Framed-Routing = None,
Framed-Compression = Van-Jacobsen-TCP-IP,
Framed-MTU = 1500,
Session-Timeout = 28800

DEFAULT Auth-Type = System, Suffix = $ppp
User-Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 255.255.255.254,
Framed-Netmask = 255.255.255.0,
Framed-Routing = None,
Framed-Compression = Van-Jacobsen-TCP-IP,
Framed-MTU = 1500,
Session-Timeout = 28800
-----

Thanks for your help!

-Dave

-- --
David B. Peterson, Systems Manager 612-996-0000
Spacestar Communications <http://www.spacestar.net/>
Unsolicited commercial e-mail will be proofread for $250