Bay/Nortel 14.20 and Cistron radius
Mordechai T. Abzug
morty@sanctuary.arbutus.md.us
Tue, 18 Sep 2001 15:46:39 -0400
I'm trying to get a Bay/Nortel/Wellfleet box to play nice with Cistron
RADIUS for access to the router's TI.
I've got authentication working to the point where when I try to log
in to the router, if I use the right RADIUS username and password, the
router's RADIUS logs (log -ffwidt -eRADIUS) show authentication
successful, and with the wrong password, the logs show authentication
failure. Same goes for radiusd's own logs (with -y -z). But either
way, the router doesn't actually let me in, and TI (log -ffwidt -eTI)
complains of an invalid login.
Here's the BCC config I added (actual passwords and IPs have been
changed to protect the guilty):
access
radius-server-accounts enabled
users
back
radius
radius-client slot 1 address 192.168.14.1
authentication enabled
accounting enabled
back
radius-client slot 2 address 192.168.14.1
authentication enabled
accounting enabled
back
radius-client slot 3 address 192.168.14.1
authentication enabled
accounting enabled
back
radius-server address 192.168.14.2
authentication-server-type primary
accounting-server-type primary
primary-server-secret cowtest
automatic-reset enabled
back
Here is the users entry:
morty Auth-Type = Local, Password = "mortest"
Service-Type = Framed-User,
Port-Limit = 2
I suspect I'm missing some attribute that Bay wants or some additional
config option, but I have no idea what. Can anyone clue me in here?
Thanks!
- Morty