From owner-freebsd-questions  Thu Oct 19 17:47:10 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from smtp1.sentex.ca (smtp1.sentex.ca [199.212.134.4])
	by hub.freebsd.org (Postfix) with ESMTP id 5FF5137B4E5
	for <questions@freebsd.org>; Thu, 19 Oct 2000 17:47:06 -0700 (PDT)
Received: from chimp.simianscience.com (cage.simianscience.com [64.7.134.1])
	by smtp1.sentex.ca (8.11.0/8.11.0) with SMTP id e9K0kgq50444;
	Thu, 19 Oct 2000 20:46:47 -0400 (EDT)
From: Mike Tancsa <mike@sentex.net>
To: durham@w2xo.pgh.pa.us (Jim Durham)
Cc: questions@freebsd.org
Subject: Re: Radiusd with Portmaster2 on FreeBSD4.1
Date: Thu, 19 Oct 2000 20:46:41 -0400
Message-ID: <nc5vus474304u546up6k3qctgcgrte6i86@4ax.com>
References: <SEN.971924764.962929327@news.sentex.net>
In-Reply-To: <SEN.971924764.962929327@news.sentex.net>
X-Mailer: Forte Agent 1.8/32.548
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On 18 Oct 2000 23:06:04 -0400, in sentex.lists.freebsd.questions you =
wrote:

>I'm using the cistron radiusd on FreeBSD 4.1 with an old Portmaster
>2E to authenticate a user base of around 100 users.

It does work, as we have several such boxes still in a few pops.  What =
does
/var/log/radius show for the error ? ie. why is RADIUS rejected them ?
Also, is your radius server running on a machine that has multiple
interfaces ? If so, specify the address to bind to explicitly.

	---Mike

>
>The portmaster had been running on its internal user list, and worked,
>
>I am using the default user config file and using AuthType =3D System so
>I can use the Unix password file.
>
>The only way that the Radius server will authenticate a user is
>if they are also in the Portmaster user table. If I take the
>user out of the user table on the Portmaster, radiusd rejects the
>authentication. I see this running radiusd in the "-x -x" mode.
>
>Yes, I have the authentication server and accounting server
>values on the Portmaster pointing to the IP of the radius box.
>I have CHAP and PAP off. One clue is that radiusd reports
>that it is handed a CHAP password by the Portmaster, even
>though CHAP is off. This does not happen when the user is
>in the portmaster user table and is authenticated.
>
>I have read all the docs and the manuals on the Livingston site.
>
>Anyone know what's going on here?
>
>-Jim Durham
>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-questions" in the body of the message

Mike Tancsa  (mdtancsa@sentex.net)	=09
Sentex Communications Corp,   	=09
Waterloo, Ontario, Canada
"Given enough time, 100 monkeys on 100 routers=20
could setup a national IP network." (KDW2)


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message