[Openswan Users] [Fwd: RE: OpenSwan: L2tp + Radius Problem]

lhecking at users.sourceforge.net lhecking at users.sourceforge.net
Mon Nov 28 05:22:10 EST 2011 

----- Forwarded message from Vietti Federico <f.vietti at reply.it> -----

Date: Mon, 28 Nov 2011 05:15:29 -0500
From: Vietti Federico <f.vietti at reply.it>
Subject: RE: [Openswan Users] OpenSwan: L2tp + Radius Problem

Btu the problem is not on AD/Radius. The problem is that both configuring OpenSWAN/L2TP to authenticate on Radius or on AD I have the mentioned error:

Nov 25 08:29:15 fc-proxy xl2tpd[14229]: Connection established to 31.157.188.159, 56350.  Local: 13517, Remote: 28 (ref=0/0).  LNS session is 'default'
Nov 25 08:29:15 fc-proxy xl2tpd[14229]: Call established with 31.157.188.159, Local: 2601, Remote: 697, Serial: 1
Nov 25 08:29:15 fc-proxy pppd[14240]: Plugin /usr/lib64/pppd/2.4.4/radius.so loaded.
Nov 25 08:29:15 fc-proxy pppd[14240]: RADIUS plugin initialized.
Nov 25 08:29:15 fc-proxy pppd[14240]: Plugin /usr/lib64/pppd/2.4.4/radattr.so loaded.
Nov 25 08:29:15 fc-proxy pppd[14240]: RADATTR plugin initialized.
Nov 25 08:29:15 fc-proxy pppd[14240]: pppd 2.4.4 started by root, uid 0
Nov 25 08:29:15 fc-proxy pppd[14240]: Using interface ppp0
Nov 25 08:29:15 fc-proxy pppd[14240]: Connect: ppp0 <--> /dev/pts/3
Nov 25 08:29:16 fc-proxy pppd[14240]: rc_avpair_new: unknown attribute 60
Nov 25 08:29:16 fc-proxy pppd[14240]: Peer DOMAIN\USER failed CHAP authentication
Nov 25 08:29:18 fc-proxy xl2tpd[14229]: control_finish: Connection closed to 31.157.188.159, serial 1 ()
Nov 25 08:29:18 fc-proxy xl2tpd[14229]: control_finish: Connection closed to 31.157.188.159, port 56350 (), Local: 13517, Remote: 28

I've followed the following manual for authentication on Radius: http://unamed.blog.com/2011/03/06/l2tpipsec-radius-on-linux/
The following for authentication on AD: http://rootmanager.com/ubuntu-ipsec-l2tp-windows-domain-auth/setting-up-openswan-xl2tpd-with-native-windows-clients.html

Anyone have an idea?

Federico Vietti

-----Original Message-----
From: lhecking at users.sourceforge.net [mailto:lhecking at users.sourceforge.net]
Sent: luned?? 28 novembre 2011 11:04
To: Vietti Federico
Subject: Re: [Openswan Users] OpenSwan: L2tp + Radius Problem

Vietti Federico writes:
> And is there any way to configure OpenSWAN with L2TP and authentication on Radius Server or directly on Microsoft Active Directory?

 This may be possible, but I believe in this case AD must run on the same host  as radius. I'm unfamiliar with anything MS, so you should probably do some  research.


----- End forwarded message -----

More information about the Users mailing list