[c-nsp] authentication attempt using RADIUS server fails
Duleep Pillai
duleeppillai at yahoo.com
Tue May 10 20:50:01 EDT 2011
Hi,
Are you using Radius for operator authentication? Have you tried TACACS+?
Try the free TACACS+ for Windows (if you are a Windows user) from www.tacacs.net.
Regards
Date: Tue, 10 May 2011 06:20:25 -0700 (PDT)
From: teklay gebremichael <teklish76 at yahoo.com>
To: cisco forum <cisco-nsp at puck.nether.net>
Subject: [c-nsp] authentication attempt using RADIUS server fails
Message-ID: <930704.40090.qm at web43137.mail.sp1.yahoo.com>
Content-Type: text/plain; charset=utf-8
hello,
I have installed free Radius server for authentication. i have also configured
the Radius server to use a database for auth. from the localhost running radrest
works fine. and for testing purpose i configured a Cisco 2950 switch to use
radius server for username and password to login. at the beginning it
authenticated successfully. but later the switch started to reject
authentication even when i try to reconfigure with the same commands. when i
run radiusd -X from the radius server the following error was found.
................
++[pap] returns updated
Found Auth-Type = PAP
# Executing group from file /usr/local/etc/raddb/sites-enabled/default
+- entering group PAP {...}
[pap] login attempt with password "??eV???$N?E???"
[pap] Using CRYPT password "ju9ubTh7VCKmw"
[pap] Passwords don't match
++[pap] returns reject
Failed to authenticate the user.
WARNING: Unprintable characters in the password. Double-check the shared
secret on the server and the NAS!
Using Post-Auth-Type Reject
------------------------------
More information about the cisco-nsp
mailing list