From owner-freebsd-isp Sat Feb 14 03:11:33 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id DAA06174 for freebsd-isp-outgoing; Sat, 14 Feb 1998 03:11:33 -0800 (PST) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from www3.shellnet.co.uk (www3.shellnet.co.uk [194.129.209.14]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id DAA06168 for ; Sat, 14 Feb 1998 03:11:30 -0800 (PST) (envelope-from ircadmin@shellnet.co.uk) Received: from mailhost.shellnet.co.uk (mailhost.shellnet.co.uk [194.129.209.3]) by www3.shellnet.co.uk (8.8.7/8.8.8) with SMTP id LAA06594 for ; Sat, 14 Feb 1998 11:11:12 GMT Received: by mailhost.shellnet.co.uk with MERCUR-SMTP/POP3-Server (v2.10) for at Sat, 14 Feb 98 11:09:41 +0000 From: "Steven Fletcher (Shellnet IRC administrator)" To: "IBS / Andre Oppermann" Cc: Subject: RE: RADIUS for BSDi running under FreeBSD Date: Sat, 14 Feb 1998 11:11:54 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal Importance: Normal In-Reply-To: <34E4A171.4EC6840C@pipeline.ch> X-MimeOLE: Produced By Microsoft MimeOLE V4.72.2106.4 Message-Id: <98021411094149200@mailhost.shellnet.co.uk> Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > -----Original Message----- > From: owner-freebsd-isp@FreeBSD.ORG > [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of IBS / Andre Oppermann > Sent: 13 February 1998 19:39 > To: Steven Fletcher (Shellnet IRC administrator) > Cc: freebsd-isp@FreeBSD.ORG > Subject: Re: RADIUS for BSDi running under FreeBSD > > > Steven Fletcher (Shellnet IRC administrator) wrote: > > > > Dear gurus..... > > > > I am trying swap all of my dial up users over to a RADIUS authentication > > system so that we no longer need to have 150 users on our Windows NT box > > I did the same some weeks ago with some boxes, much better now. > Oh, thank you thank you thank you ! Now - radius authenticates the user and we can browse from the Dial up client, but 2 questions remain; here is a log of what I mean: ============================================================================ ===================== bash# /etc/radiusd -x Sat Feb 14 10:56:58 1998: [207] /etc/radiusd: Livingston RADIUS 2.0.1 97/5/22 NDBM NOSHADOW PASSCHANGE bsdi flat_users Sat Feb 14 10:56:58 1998: [207] using udp port 1645 for RADIUS Sat Feb 14 10:56:58 1998: [207] using udp port 1646 for RADIUS accounting Sat Feb 14 10:56:58 1998: [207] updated client cache with 1 clients Sat Feb 14 10:57:04 1998: [208] radrecv: Request from host code=4, id=1, length=26 Sat Feb 14 10:57:04 1998: [208] Acct-Status-Type = 7 Sat Feb 14 10:57:04 1998: [208] Sending Accounting-Response for id 1 to () Sat Feb 14 10:58:44 1998: [207] radrecv: Request from host code=1, id=2, length=63 Sat Feb 14 10:58:44 1998: [207] User-Name = "dud" Sat Feb 14 10:58:44 1998: [207] Password = "\371\345\273\033\347=\205\306\267c\262\270\241\333D\251" Sat Feb 14 10:58:44 1998: [207] NAS-Port = 0 Sat Feb 14 10:58:44 1998: [207] Framed-Protocol = PPP Sat Feb 14 10:58:44 1998: [207] received unknown attribute 32 * OK; Is attribute 32 NAS-Identifier, and considering there seemed to be no problems with connecting, and that the Win 95 Dial up client could web browse, do I need to add it to the dictionary ? Sat Feb 14 10:58:44 1998: [210] Sending Accept of id 2 to () Sat Feb 14 10:58:44 1998: [210] Service-Type = Framed-User Sat Feb 14 10:58:44 1998: [210] Framed-Protocol = PPP Sat Feb 14 10:58:45 1998: [208] radrecv: Request from host code=4, id=3, length=58 Sat Feb 14 10:58:45 1998: [208] Acct-Status-Type = Start Sat Feb 14 10:58:45 1998: [208] Acct-Session-Id = "22669" Sat Feb 14 10:58:45 1998: [208] User-Name = "dud" Sat Feb 14 10:58:45 1998: [208] NAS-Port = 0 Sat Feb 14 10:58:45 1998: [208] received unknown attribute 32 * Again; do I need to add attribute 32 ? Sat Feb 14 10:58:45 1998: [208] Framed-Protocol = PPP Sat Feb 14 10:58:45 1998: [208] accounting: client sent accounting-request with invalid request authenticator * What is an invalid request authenticator ? Sat Feb 14 10:58:45 1998: [208] Sending Accounting-Response for id 3 to () Sat Feb 14 10:59:20 1998: [208] radrecv: Request from host code=4, id=4, length=58 Sat Feb 14 10:59:20 1998: [208] Acct-Status-Type = Stop Sat Feb 14 10:59:20 1998: [208] Acct-Session-Id = "22669" Sat Feb 14 10:59:20 1998: [208] User-Name = "dud" Sat Feb 14 10:59:20 1998: [208] NAS-Port = 0 Sat Feb 14 10:59:20 1998: [208] received unknown attribute 32 * Again, 32 :) Sat Feb 14 10:59:20 1998: [208] Framed-Protocol = PPP Sat Feb 14 10:59:20 1998: [208] accounting: client sent accounting-request with invalid request authenticator * Again, invalid request authenticator ? Sat Feb 14 10:59:20 1998: [208] Sending Accounting-Response for id 4 to () ============================================================================ ===================== It seems to me that these are trivial errors, but as I am not quite sure yet what they mean. I would be extremely grateful to anyone who could provide any help here. On another branch - Can Radius (or does it already) manage to stop multiple logins ? Thanks for your time and your marvelous help, Steven Fletcher - Shellnet. steven@shellnet.co.uk To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message