Hello Cortney -
On Sat, 30 Sep 2000, Cortney Thompson wrote:
> Ever since I have upgraded to 2.16.3 I have been recieving a growing number
> of these errors.
>
> Fri Sep 29 11:30:12 2000: WARNING: No CHAP-Password or User-Password in
> request: does your dictionary have User-Password in it?
>
> I figured it was just a bad packet with no password in it, but I am
> starting to get more and more of them.
>
> I have checked my dictionary and everything looks good in it, and why did
> this just start when I upgraded.
>
I don't think the upgrade is related.
You should start by looking at a trace 4 debug to see what the packets actually
contain. It is our experience that this is usually due to a user trying to use
encrypted passwords from a Windows platform, which results in an MS-CHAP
password being sent in the access request instead of CHAP-Password or
User-Password.
Note that Mike has recently added MS-CHAP support in a patch to Radiator 2.16.3
(available from the patches area:
http://www.open.com.au/radiator/downloads/patches-2.16.3/).
Here is the relevant section from patches.README:
12/9/00 Added MS-CHAP support. Like ordinary CHAP, it works with
plaintext and not encrypted passwrods in the user database. requires
Digest-MD4-1.0 or better from CPAN. Download AuthGeneric.pm, DES.pm and
MSCHAP.pm, Radius.pm from here. New version of radpwtsts from here also permits -mschap
for testing. Also added support for
MS-MPPE-Send-Key and MS-MPPE-Recv-Key as tunnel passwords.
hth
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
