[j-nsp] radiusd problem...

Erdem Sener erdems at gmail.com
Mon Jan 2 09:59:32 EST 2006


Hi,

 It seems your 'template accounts' are missing under [system login].

 You may follow the documentation from:

http://www.juniper.net/techpubs/software/junos/junos74/swconfig74-system-basics/html/sys-mgmt-authentication.html

HTH
Erdem

On 1/2/06, Erol KAHRAMAN <erol.kahraman at gmail.com> wrote:
> hi to everybody,
>
> I installed FreeRADIUS v 1.0.4 on FedoraCore4 server. Created system
> accounts and test it for my (HP) switches. Everything was ok. But when
> i tried to connect to my router by using radius i got the following
> error.
>
> Jan  2 14:56:13  Router1 sshd: rad_send_request: No valid RADIUS
> responses received
> Jan  2 14:56:13  Router1 sshd[8236]: Failed password for user2 from
> 10.1.1.2 port 45067 ssh2
> Jan  2 14:56:39  Router1 sshd[8236]: rad_send_request: No valid RADIUS
> responses received
> Jan  2 14:56:40  Router1 sshd[8236]: Failed password for user2 from
> 10.1.1.2 port 45067 ssh2
> Jan  2 14:57:45  Router1 sshd[8236]: rad_send_request: No valid RADIUS
> responses received
> Jan  2 14:57:45  Router1 sshd[8236]: Accepted password for user2 from
> 10.1.1.2 port 45067 ssh2
> Jan  2 14:58:06  Router1 sshd: rad_send_request: No valid RADIUS
> responses received
> Jan  2 14:58:06  Router1 sshd[8240]: Failed password for user2 from
> 10.1.1.2 port 45068 ssh2
> Jan  2 14:58:08  Router1 inetd[3454]: /usr/sbin/sshd[8240]: exited, status 255
> Jan  2 14:58:26  Router1 sshd: rad_send_request: No valid RADIUS
> responses received
> Jan  2 14:58:26  Router1 sshd[8242]: Failed password for user1 from
> 10.1.1.2 port 45069 ssh2
> Jan  2 14:58:40  Router1 sshd[8242]: rad_send_request: No valid RADIUS
> responses received
> Jan  2 14:58:40  Router1 sshd[8242]: Failed password for user1 from
> 10.1.1.2 port 45069 ssh2
> Jan  2 15:00:14  Router1 sshd[8242]: fatal: Timeout before
> authentication for 10.1.1.2
> Jan  2 15:00:14  Router1 inetd[3454]: /usr/sbin/sshd[8242]: exited, status 255
>
> my router configuration is:
>
> system {
>    authentication-order [ radius password ];
>    }
>    radius-server {
>        10.1.2.2 {
>            secret ""; ## SECRET-DATA
>        }
>    }
>
>        class isletmen {
>            permissions view;
>        }
>
>        user user1 {
>            uid 2000;
>            class superuser;
>            authentication {
>                encrypted-password ""; ## SECRET-DATA
>            }
>        }
>        user user2 {
>            uid 3000;
>            class isletmen;
>            authentication {
>                encrypted-password ""; ## SECRET-DATA
>
> what could be the problem ?
>
> And also want to ask a question, which authentication server is more
> preferable TACACS or RADIUS
>
> --
> Erol KAHRAMAN
> System Network Administrator
>
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/juniper-nsp
>



More information about the juniper-nsp mailing list