XTRadius -> MySQL: Access denied

XTRadius -> MySQL: Access denied

Post by Frederic Fau » Wed, 09 Aug 2000 04:00:00



Hello,

        I've set up XTRadius, MySQL, and Ahmad S. Al-rasheedan's
Authmysql-1.0 add-on to have the radius server connect to the MySQL
process and authenticate users. While authentication works when done
through the default (ie. Unix -> /etc/password), I get an "Access
denied" when going through MySQL.

I know very little about DBMS, so it could be something basic, such as
having to determine the user account that XTRadius uses to connect to
the MySQL process, and make sure that this account is allowed to query
MySQL... but I'm a complete newbie at those things:

# radtest toto test radius.acme.com localhost testing123
Sending request to server radius.acme.com, port 1812.
radrecv: Reply from host 127.0.0.1 code=3, id=95, length=32
    Reply-Message = "Bad auth.\012"
Access denied.

/var/log/radius.log
Tue Aug  8 12:14:51 2000: Debug: Exec-Program-Wait: plaintext: Bad
auth.
Tue Aug  8 12:14:51 2000: Auth: Login incorrect: [toto] (from nas
local/S0) (external check failed)

Any help much appreciated,
FF.

 
 
 

XTRadius -> MySQL: Access denied

Post by Frederic Fau » Fri, 18 Aug 2000 04:00:00




Quote:>/var/log/radius.log
>Tue Aug  8 12:14:51 2000: Debug: Exec-Program-Wait: plaintext: Bad
>auth.
>Tue Aug  8 12:14:51 2000: Auth: Login incorrect: [toto] (from nas
>local/S0) (external check failed)

For those struggling with the same kind of problem with other Radius
servers, remember to use ENCRYPT() instead of PASSSWORD() when hashing
passwords in MySQL. Otherwise, the application called by the Radius
won't accept the user's password if it users crypt() to hash passwords
locally before comparing the two passwords.

HTH
FF.