[VPN] VPN3000 RADIUS authentication

Kejvan Redjamand kejvan at cdg.chalmers.se
Mon Nov 11 06:38:33 EST 2002


Hi

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/csnt30/user/ad.htm

regards

Kejv

On Sun, 10 Nov 2002, Yang Lee wrote:

> Date: Sun, 10 Nov 2002 16:47:50 -0800
> From: Yang Lee <ylee at net50.com>
> To: kazuki kamiya <kazuki.kamiya at uniadex.co.jp>, vpn at lists.shmoo.com
> Subject: RE: [VPN] VPN3000 RADIUS authentication
>
> Hi Kazuki,
>
> >From the radiusd log file you provided, it seems like the radiusd server
> needs more attribute definition for the VPN3000 client:
>
> ------------------------------------------------------------------------
> 	Nov 8 18:48:12.232 radiusd[1160] Authenticate:IINTERNAL: No Valid
> 	Reply Attribute for rad : 192.168.2.1.1025, id=4
> ------------------------------------------------------------------------
>
> You may need to add Cisco VPN3000 radius attributes into your dictionary.
> Please contact Cisco TAC for the dictionary definition file.
>
> Hope this help,
>
> Regards,
>
> -Yang Lee
> -----Original Message-----
> From: vpn-admin at lists.shmoo.com [mailto:vpn-admin at lists.shmoo.com]On Behalf
> Of kazuki kamiya
> Sent: Friday, November 08, 2002 3:28 AM
> To: vpn at lists.shmoo.com
> Subject: [VPN] VPN3000 RADIUS authentication
>
>
>
> Hi all
>
> I'm trying VPN3000 to authenticate with Free RADIUS.
> But I have a trouble.
> Dose someone teach me what debug log mean,and what should
> I do?
> Should I add some attribute to dictionary file or users file ?
>
>
> RADIUS which I'm using is DTC RADIUS(Based on Ascend RADIUS).
>
>
> ####  Users file ##########################################
> rad	Password="rad"
>
>
> #### RADIUS debug log ###################################
>   request : User-Name ="rad"
>   request : Use-Password ="XXXXXX"
>   request : NAS-Port = 1009
>   request : Service-Type = Framed-User
>   request : Framed-Protocol = PPP
>   request : Tunnel-Client-Endpoint = " 172.16.1.100"
>   request : NAS-IP-Address = 192.168.2.1
>   request : NAS-Port-Type = Virtual
>   user_parse : Password = "rad"
> Nov 8 18:48:12.232 radiusd[1160] Authenticate:IINTERNAL: No Valid
> Reply Attribute for rad : 192.168.2.1.1025, id=4
> Nov 8 18:48:12.251 radiusd[1160]send_reject:192.168.2.1.1024.id =1
> Nov 8 18:48:12.251 radiusd[1160]send_answer:Req IP = 192.168.2.1,
> NAS IP = 192.168.2.1]
> _______________________________________________
> VPN mailing list
> VPN at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/vpn
>
> _______________________________________________
> VPN mailing list
> VPN at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/vpn
>


  / Kejvan





More information about the VPN mailing list