hi,
I have a problem in the authentication hotspot using my radius server…
The system radius+ldap in PAP mode works. with the mikrotik (ke it uses CHAP) gives this problem to me:
rad_recv: Access-Request packet from host 192.168.2.253:1024, id=3, length=150
NAS-Identifier = “MikroTik”
NAS-Port-Type = Ethernet
Calling-Station-Id = “00:01:4A:5D:30:6F”
Called-Station-Id = “00:11:95:25:48:62”
NAS-Port-Id = “ether2”
User-Name = “pastore”
NAS-Port = 2148532235
Acct-Session-Id = “8010000b”
CHAP-Challenge = 0x7a06a6f8c49d9cda1d3381a3dd0d8313
CHAP-Password = 0x1d3e1a04b105dcc59905931be1eb825771
NAS-IP-Address = 192.168.2.253
rad_lowerpair: User-Name now ‘pastore’
rad_rmspace_pair: User-Name now ‘pastore’
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 20
modcall[authorize]: module “preprocess” returns ok for request 20
rlm_chap: Setting ‘Auth-Type := CHAP’
modcall[authorize]: module “chap” returns ok for request 20
rlm_ldap: - authorize
rlm_ldap: performing user authorization for pastore
radius_xlat: ‘(uid=pastore)(objectclass=radiusprofile)’
radius_xlat: ‘ou=users,ou=radius,dc=wai-fly,dc=com’
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn: Got Id: 0
rlm_ldap: performing search in ou=users,ou=radius,dc=wai-fly,dc=com, with filter (uid=pastore)(objectclass=radiusprofile)
rlm_ldap: looking for check items in directory…
rlm_ldap: looking for reply items in directory…
rlm_ldap: Adding radiusIdleTimeout as Idle-Timeout, value 600 & op=11
rlm_ldap: user pastore authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
modcall[authorize]: module “ldap” returns ok for request 20
modcall: group authorize returns ok for request 20
rad_check_password: Found Auth-Type CHAP
auth: type “CHAP”
Processing the authenticate section of radiusd.conf
modcall: entering group Auth-Type for request 20
rlm_chap: login attempt by “pastore” with CHAP password
rlm_chap: Could not find clear text password for user pastore
modcall[authenticate]: module “chap” returns invalid for request 20
modcall: group Auth-Type returns invalid for request 20
auth: Failed to validate the user.
Login incorrect (rlm_chap: Clear text password not available): [pastore/] (from client Mikrotik port 2148532235 cli 00:01:4A:5D:30:6F)
Delaying request 20 for 1 seconds
Finished request 20
Going to the next request
— Walking the entire request list —
Waking up in 1 seconds…
rad_recv: Access-Request packet from host 192.168.2.253:1024, id=3, length=150
Sending Access-Reject of id 3 to 192.168.2.253:1024
— Walking the entire request list —
Waking up in 5 seconds…
— Walking the entire request list —
Cleaning up request 20 ID 3 with timestamp 4329ab85
Nothing to do. Sleeping until we see a request.
you know as I can resolve the problem or like sending the password in PAP (text clear)?
but it continues not to work…