[Serusers] Authentication problem with freeradius with mysql option

Jithender Reddy A jeeth90 at rediffmail.com
Mon Apr 5 11:25:14 CEST 2004 

An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20040405/963f3931/attachment.htm>
-------------- next part --------------
Hello,

I have identified the problem.

When i use the following digest then it is giving me the error message saying  "auth: No User-Password or CHAP-Password attribute in the request"

digest file content is:
-----
 User-Name = "test", Digest-Response = "631d6d73147add2f9e437f59bbc3aeb7", 
Digest-Realm = "testrealm", Digest-Nonce = "1234abcd" , 
Digest-Method = "INVITE", Digest-URI = "sip:5555551212 at example.com", 
Digest-Algorithm = "MD5", Digest-User-Name = "test"
-----

if change the field "Digest-Nonce" to "User-Password" then it is authenticating, I think there is some problem in dictionary, but it is working fine with out mysql  option ( if i use users file insted mysql). 

Any one got idea where could be the problem

thanks in advance

jeeth

On Sun, 04 Apr 2004 Jithender Reddy A wrote :
>
>Hello Everyone.
>
>I am trying to configure my SER with freeradius and i followed the document which is available at iptel.org.doc and everything works fine. Now i want to port freeradius to mysql and i have made changces according the tips provided at http://www.frontios.com/freeradius.html , after that freeradius has stated the problems it is working fine with radtest but it is giving problem when i try to run radclient with digest option. here i am giving the radius dump
>
>I have given the following entry in radroupcheck table.
>
>dynamic Auth-Type := Digest
>
>table raddcheck values:
>jeeth Password == jeeth
>
>
>I dont know where i am doing mistake.
>
>Hope some one might have come across this, Please send some tips on configuring SER , freeradius with mysql support.
>
>Thanks in advance
>----------------------
>rad_recv: Access-Request packet from host 127.0.0.1:32903, id=78, length=141
>         User-Name = "jeeth at localhost"
>         Digest-Response = "631d6d73147add2f9e437f59bbc3aeb7"
>         Digest-Attributes = "\001\013testrealm"
>         Digest-Attributes = "\002\007jeeth"
>         Digest-Attributes = "\003\010INVITE"
>         Digest-Attributes = "\004\025sip:jeeth at localhost"
>         Digest-Attributes = "\006\005MD5"
>         Digest-Attributes = "\n\006test"
>modcall: entering group authorize for request 25
>   modcall[authorize]: module "preprocess" returns ok for request 25
>   modcall[authorize]: module "chap" returns noop for request 25
>   modcall[authorize]: module "mschap" returns noop for request 25
>     rlm_realm: Looking up realm "localhost" for User-Name = "jeeth at localhost"
>     rlm_realm: Found realm "DEFAULT"
>     rlm_realm: Adding Stripped-User-Name = "jeeth"
>     rlm_realm: Proxying request from user jeeth to realm DEFAULT
>     rlm_realm: Adding Realm = "DEFAULT"
>     rlm_realm: Authentication realm is LOCAL.
>   modcall[authorize]: module "suffix" returns noop for request 25
>radius_xlat:  'jeeth'
>rlm_sql (sql): sql_set_user escaped user --> 'jeeth'
>radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 'jeeth' ORDER BY id'
>rlm_sql (sql): Reserving sql socket id: 4
>radius_xlat:  'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE usergroup.Username = 'jeeth' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
>radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radreply WHERE Username = 'jeeth' ORDER BY id'
>radius_xlat:  'SELECT radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op  FROM radgroupreply,usergroup WHERE usergroup.Username = 'jeeth' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
>rlm_sql (sql): Released sql socket id: 4
>   modcall[authorize]: module "sql" returns ok for request 25
>modcall: group authorize returns ok for request 25
>auth: type Local
>auth: No User-Password or CHAP-Password attribute in the request
>auth: Failed to validate the user.
>------
>
>_______________________________________________
>Serusers mailing list
>serusers at lists.iptel.org
>http://lists.iptel.org/mailman/listinfo/serusers

More information about the sr-users mailing list