Ok, I have freeRADIUS set up and working perfectly fine for winbox logins, I even have the groups working...
I am NOT using mySQL, just the users file. I cannot seem to get authentication to work for PPTP. I run radius in debug and get the following Errors:
rad_recv: Access-Request packet from host xx.xx.xx.xx port 43984, id=95, length=176
Service-Type = Framed-User
Framed-Protocol = PPP
NAS-Port = 85
NAS-Port-Type = Virtual
User-Name = "joshp"
Calling-Station-Id = "xx.xxx.xx.xx"
Called-Station-Id = "xx.xx.xx.xx"
MS-CHAP-Challenge = xxxxxxxxxxxxxx
MS-CHAP2-Response = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
NAS-Identifier = "Niagara3"
NAS-IP-Address = xx.xx.xx.xx
# Executing section authorize from file /etc/raddb/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
[mschap] Found MS-CHAP attributes. Setting 'Auth-Type = mschap'
++[mschap] returns ok
++[digest] returns noop
[suffix] No '@' in User-Name = "joshp", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
[files] users: Matched entry DEFAULT at line 172
++[files] returns ok
++[expiration] returns noop
++[logintime] returns noop
[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.
++[pap] returns noop
Found Auth-Type = MSCHAP
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group MS-CHAP {...}
[mschap] No Cleartext-Password configured. Cannot create LM-Password.
[mschap] No Cleartext-Password configured. Cannot create NT-Password.
[mschap] Creating challenge hash with username: joshp
[mschap] Told to do MS-CHAPv2 for joshp with NT-Password
[mschap] FAILED: No NT/LM-Password. Cannot perform authentication.
[mschap] FAILED: MS-CHAP2-Response is incorrect
++[mschap] returns reject
Failed to authenticate the user.
Using Post-Auth-Type Reject
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group REJECT {...}
[attr_filter.access_reject] expand: %{User-Name} -> joshp
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
rad_recv: Access-Request packet from host 71.13.94.63 port 43984, id=95, length=176
Waiting to send Access-Reject to client Niagara2 port 43984 - ID: 95
Waking up in 0.6 seconds.
rad_recv: Access-Request packet from host 71.13.94.63 port 43984, id=95, length=176
Waiting to send Access-Reject to client Niagara2 port 43984 - ID: 95
Waking up in 0.3 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 95 to 71.13.94.63 port 43984
MS-CHAP-Error = "\001E=691 R=1"
Waking up in 4.9 seconds.
Cleaning up request 0 ID 95 with timestamp +12