[Help-gnu-radius] Trying to test local authentication

[Tucker, Nick]

Hi guys,

 

I am somewhat of a Radius noob, but I am trying to test Radius
authentication with our Netcache devices.

 

The way we define a Radius server is the following:

 

Format: ip-address:port:password

Example: 11.22.33.44:1812:RaDi1

 

I have a FreeBSD box I have installed GNU-Radius on.  It looks like on a
basic level it is working:

 

May 23 14:53:02 Main.info: Starting

May 23 14:53:02 Main.info: Terminating the subprocesses

May 23 14:53:02 Main.info: Loading configuration files.

May 23 14:53:02 Main.info: reading /usr/local/etc/raddb/config

May 23 14:53:02 Main.info: /usr/local/etc/raddb/users reloaded.

May 23 14:53:02 Main.info: Ready

May 23 14:53:02 Main.info: Ready to process requests.

 

However, after I configure my Netcache to point at this server, I start
getting these in the log:

 

May 23 15:23:35 Auth.error: (Access-Request 10.61.68.65 59 "admin" CLID=

=^]

): request from unknown client

May 23 15:23:41 Auth.error: (Access-Request 10.61.68.65 61 "admin" CLID=

=^]

): request from unknown client

May 23 15:23:51 Auth.error: (Access-Request 10.61.68.65 62 "admin" CLID=

=^]

): request from unknown client

 

"admin" is not the username or password that I configured above in the
"Format" example.  It is the saved username from firefox that is needed
to login to these devices.

 

I defined this user in the user in the "users" file:

 

admin   Auth-Type = Local,

                User-Password = "NetCache"

        Service-Type = Framed-User,

                Framed-Protocol = PPP

 

When I traced this, I seen the request indeed using the "admin"
username, however, the password is encrypted.

 

I am not trying to test this against a MYSQL database or anything fancy.
The best scenario for me would be to test against /etc/passwd or
something flat, like I have defied above.

 

Obviously this package is slightly overkill for my needs, have I missed
anything easy?