Solaris 2.5 PPP: CHAP authentication problems

Solaris 2.5 PPP: CHAP authentication problems

Post by Jens Clausse » Thu, 19 Sep 1996 04:00:00



I have a PPP server running without problems on Solaris 2.5. In order
to increase security, I want to set up CHAP authentication for dial-in
clients. Here is a fragment of my test entry in asppp.cf:
(secrets etc. blanked out with XXX)

path
        peer_system_name Ptest
        peer_ip_address DBppptest
        require_authentication chap pap
        chap_name chaphere
        chap_peer_name chaptest
        chap_peer_secret XXX
        chap_secret YYY

After successful connection, CHAP authentication fails because the
server does not sent its chap name in the "CHAP challenge", such that
the client (ppp-2.2.0f on Linux) cannot match the server name in the
secret table:

15:34:50 parse_config_file: Successful configuration
22:25:29 038152 ipdptp0 PPP DIAG OPEN
22:25:29 038153 ipdptp3 SEND PPP ASYNC 34 Octets LCP Config-Req  ID=59 LEN=29 MRU=1500 ACCM=200a0000 Auth=CHAP Al
g=MD5 MAG#=e3a147b9 ProtFCOMP AddrCCOMP
22:25:29 038154 ipdptp3 RECEIVE PPP ASYNC 34 Octets LCP Config-ACK  ID=59 LEN=29 MRU=1500 ACCM=200a0000 Auth=CHAP
 Alg=MD5 MAG#=e3a147b9 ProtFCOMP AddrCCOMP
22:25:31 038155 ipdptp3 RECEIVE PPP ASYNC 29 Octets LCP Config-Req  ID=02 LEN=24 MRU=1500 ACCM=ffffffff MAG#=15ab
fdc2 ProtFCOMP AddrCCOMP
22:25:31 038156 ipdptp3 SEND PPP ASYNC 29 Octets LCP Config-ACK  ID=02 LEN=24 MRU=1500 ACCM=ffffffff MAG#=15abfdc
2 ProtFCOMP AddrCCOMP
22:25:31 038157 ipdptp3 SEND PPP ASYNC 20 Octets CHAP Challenge  ID=01 LEN=15 Value-size= 10 Value: cb 39 cb 5f 8e 0c b9 ac a3 05 Name:
                                      ^^^^^ No name given here. I
would expect "chaphere" in this field. Is this a Bug? Or am I missing
something?

22:25:31 038158 ipdptp3 RECEIVE PPP ASYNC 34 Octets CHAP Response  ID=01 LEN=29 Value-size= 16 Value: 6b df 03 28
 f9 0f a6 7b 54 1a 7e 9d 57 01 30 59 Name: chaptest
22:25:31 process_ppp_msg: PPP_ERROR_IND Remote Authentication Failed
22:25:31 038159 ipdptp3 SEND PPP ASYNC 9 Octets CHAP Failure  ID=01 LEN=4 Message:
22:25:31 038160 ipdptp3 SEND PPP ASYNC 9 Octets LCP Term-REQ  ID=5a LEN=4
22:25:31 038161 ipdptp3 RECEIVE PPP ASYNC 9 Octets LCP Term-ACK  ID=5a LEN=4
22:25:32 038162 ipdptp3 PPP DIAG CLOSE

Thanks for any hints

Jens

--
Jens Clau?en                   Lehrstuhl fr Dialogorientierte Systeme
Tel. +49 851 509-3063          Universit?t Passau, FMI Zimmer 107

 
 
 

1. Solaris 2.5 PPP and Win95 PAP/CHAP Question

I've just recently upgraded our Sparc machines to Solaris 2.5 in order to
handle Win95 dialup networking for clients when I ran into a slight snafu.

I have a dynamic-ip point-to-point setup working rather well using a GNP
SerialSmart terminal.  The problem is getting connections to be automated...

I have the PAP config commands in the asppp.cf file (they are right as far as
I can tell) but I still have to manually login before PPP can begin (i.e.,
having to popup the dialog window, enter username and password, then click on
'continue').  

Running the aspppd process in debug mode shows that the PAP negotiation indeed
takes place, but still no joy: Wind95 DUN times out on the dreaded "Verifying
Username and Password" dialog box.

Am I running into a limitation of Solaris PPP? Or just out to lunch?

Obviously, PPP connections work fine when connecting 'manually', and I DO
know how to use the scripter utility in Win95, but this is unacceptable for
the relatively inexperienced (suprise) customers we anticipate having.

Thanks in advance for any advice or pointers to information.  Reply via email,
please.

Todd Wyatt

2. Hardware: cat5e sockets + cables

3. Problem PPP with Sol 2.5 and NT4 with CHAP

4. Need help on network config

5. ppp chap authentication problem

6. DO SCSI Hard drives work with Linux?

7. PPP CHAP Worldnet Authentication Problem

8. Korn Shell for Linux.

9. ISP CHAP AUTHENTICATION PROBLEM solaris 2.7 x86

10. Problems with Authentication on Solaris 2.5 Hosts

11. PCNFS authentication problem on Solaris 2.5

12. Having trouble with user ppp and CHAP authentication

13. PAP & CHAP authentication in PPP