need help setting up a "telnet" user that telnets to a host
I'm trying to duplicate the functionality we have in our ascends, namely this user... unixuser Service-Type=Login-User, Login-Service=Telnet, Login-TCP-Port=23, Login-IP-Host=192.168.100.101 (This isn't merit radius, no need to comment that the syntax is wrong) is telneted directly to the ip host listed when he logs in. On the hiperarc, the call is just dropped. Any ideas? thx,
More insight: I just tried logging in with any username at the login: prompt, it doesn't work at all, it doesn't even try and authenticate it with the radius server. I guess all of our authentication is with PAP. :) I have... RADIUS AUTHENTICATION SETTINGS Local Authentication is: DISABLED Remote Authentication is: ENABLED Anyone seen this before? thx,
-----Original Message----- From: usr-tc-bounces+nabil=nccom.com@mailman.xmission.com [mailto:usr-tc-bounces+nabil=nccom.com@mailman.xmission.com] On Behalf Of Aaron Nabil Sent: Friday, May 07, 2004 3:58 AM To: usr-tc@mailman.xmission.com Subject: [USR-TC] need help setting up a "telnet" user that telnets to a host
I'm trying to duplicate the functionality we have in our ascends, namely this user...
unixuser Service-Type=Login-User, Login-Service=Telnet, Login-TCP-Port=23, Login-IP-Host=192.168.100.101
(This isn't merit radius, no need to comment that the syntax is wrong)
is telneted directly to the ip host listed when he logs in. On the hiperarc, the call is just dropped.
Any ideas?
thx,
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
So are you trying to connect locally or via radius or both? Try doing an add user ? to add a user locally. What's your config look like when you issue this command: show ppp settings Todd ----- Original Message ----- From: "Aaron Nabil" <nabil@nccom.com> To: "'Discussion relating to the 3Com/US Robotics Total Controlmodemsystems.'" <usr-tc@mailman.xmission.com> Sent: Friday, May 07, 2004 7:56 AM Subject: RE: [USR-TC] need help setting up a "telnet" user that telnets to ahost
More insight: I just tried logging in with any username at the login: prompt, it doesn't work at all, it doesn't even try and authenticate it with the radius server. I guess all of our authentication is with PAP. :)
I have...
RADIUS AUTHENTICATION SETTINGS Local Authentication is: DISABLED Remote Authentication is: ENABLED
Anyone seen this before?
thx,
-----Original Message----- From: usr-tc-bounces+nabil=nccom.com@mailman.xmission.com [mailto:usr-tc-bounces+nabil=nccom.com@mailman.xmission.com] On Behalf Of Aaron Nabil Sent: Friday, May 07, 2004 3:58 AM To: usr-tc@mailman.xmission.com Subject: [USR-TC] need help setting up a "telnet" user that telnets to a host
I'm trying to duplicate the functionality we have in our ascends, namely this user...
unixuser Service-Type=Login-User, Login-Service=Telnet, Login-TCP-Port=23, Login-IP-Host=192.168.100.101
(This isn't merit radius, no need to comment that the syntax is wrong)
is telneted directly to the ip host listed when he logs in. On the hiperarc, the call is just dropped.
Any ideas?
thx,
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
On Behalf Of Todd Bertolozzi So are you trying to connect locally or via radius or both?
RADIUS AUTHENTICATION SETTINGS Local Authentication is: DISABLED Remote Authentication is: ENABLED
Try doing an add user ? to add a user locally.
I certainly could, however I'd need to enable local authentication (it's currently disabled). It might be a good test, but the objective is to do it via radius.
What's your config look like when you issue this command:
show ppp settings
PPP SETTINGS PPP AUTHENTICATION DIAL_IN Users Authenticate: ANY PPP Authentication Preference: PAP System Transmit Authentication Name: HiPer PPP offloading: ENABLED CCP will be attempted for call type(s): NONE System MTU : 1514 Primary NBNS Server address: 0.0.0.0 Secondary NBNS Server address: 0.0.0.0 DNS configuration Usage: PPP-DNS Primary PPP DNS Server address: 192.168.100.10 Secondary PPP DNS Server address: 192.168.100.11 PPP session start message: Send Accounting for PPP Abnormal Disc: ENABLED PPP Address Field Compression: ENABLED PPP Protocol Field Compression: ENABLED PPP Multilink PPP: ENABLED PPP BACP and BAP: DISABLED PPP Bap Hunt Group Phone Number: PPP Receive ACCM: DISABLED PPP Negotiated Callback: DISABLED PPP Process RADIUS Challenge during PAP: DISABLED PAP Authentication Retries: 3 PPP Send EDO status: ENABLED
From the command prompt on the arc can you ping your radius server? It should be listed further below your RADIUS AUTHENTICATION SETTINGS. If so did you setup the secrets to match your radius server?
From a command prompt on the arc you should be able to issue the following command to test a known username/password that is setup on your radius server:
_auth username password If it doesn't authenticate my guess is that either you can't ping the radius server or you don't have the same secrets on the arc as what the radius server is looking for. Todd ----- Original Message ----- From: "Aaron Nabil" <nabil@nccom.com> To: "'Discussion relating to the 3Com/US Robotics Total Controlmodemsystems.'" <usr-tc@mailman.xmission.com> Sent: Friday, May 07, 2004 7:56 AM Subject: RE: [USR-TC] need help setting up a "telnet" user that telnets to ahost
More insight: I just tried logging in with any username at the login: prompt, it doesn't work at all, it doesn't even try and authenticate it with the radius server. I guess all of our authentication is with PAP. :)
I have...
RADIUS AUTHENTICATION SETTINGS Local Authentication is: DISABLED Remote Authentication is: ENABLED
Anyone seen this before?
thx,
-----Original Message----- From: usr-tc-bounces+nabil=nccom.com@mailman.xmission.com [mailto:usr-tc-bounces+nabil=nccom.com@mailman.xmission.com] On Behalf Of Aaron Nabil Sent: Friday, May 07, 2004 3:58 AM To: usr-tc@mailman.xmission.com Subject: [USR-TC] need help setting up a "telnet" user that telnets to a host
I'm trying to duplicate the functionality we have in our ascends, namely this user...
unixuser Service-Type=Login-User, Login-Service=Telnet, Login-TCP-Port=23, Login-IP-Host=192.168.100.101
(This isn't merit radius, no need to comment that the syntax is wrong)
is telneted directly to the ip host listed when he logs in. On the hiperarc, the call is just dropped.
Any ideas?
thx,
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
_______________________________________________ USR-TC mailing list USR-TC@mailman.xmission.com http://mailman.xmission.com/cgi-bin/mailman/listinfo/usr-tc
participants (2)
-
Aaron Nabil -
Todd Bertolozzi