search

dwimberger / crowd-radius-server

A RADIUS server that delegates authentication to a Atlassian Crowd installation via the Crowd REST API.
Apache License 2.0
20 stars 12 forks source link

Connecting a Router to the Server #2

Closed Jacobingalls closed 9 years ago

Jacobingalls commented 10 years ago

I set up the radius server to allow connections from my router, using RadLogin i verified that the server is working

20:48:36.439 [Thread-2] DEBUG net.wimpi.crowd.radius.RadiusService - Retrieving secret for client 192.168.1.145 isavail=true 20:48:36.440 [Thread-2] DEBUG net.wimpi.crowd.radius.RadiusService - Retrieving secret for client 192.168.1.145 isavail=true 20:48:36.440 [Thread-2] DEBUG net.wimpi.crowd.radius.RadiusService - PacketReceiver()::run()::Received radius packet to queue. 20:48:36.543 [pool-1-thread-3] DEBUG net.wimpi.crowd.radius.RadiusService - send response: Access-Accept, ID 11 to /192.168.1.145:54413 20:48:36.544 [pool-1-thread-3] DEBUG net.wimpi.crowd.radius.RadiusService - Retrieving secret for client 192.168.1.145 isavail=true

but when the router makes the request

21:04:42.251 [Thread-2] DEBUG net.wimpi.crowd.radius.RadiusService - Retrieving secret for client 192.168.1.1 isavail=true 21:04:42.251 [Thread-2] DEBUG net.wimpi.crowd.radius.RadiusService - Retrieving secret for client 192.168.1.1 isavail=true 21:04:42.252 [Thread-2] ERROR net.wimpi.crowd.radius.RadiusService - PacketReceiver()::run() org.tinyradius.util.RadiusException: Access-Request: User-Password or CHAP-Password/CHAP-Challenge missing at org.tinyradius.packet.AccessRequest.decodeRequestAttributes(AccessRequest.java:160) ~[crowd-radius-server-1.0-SNAPSHOT.jar:na] at org.tinyradius.packet.RadiusPacket.decodePacket(RadiusPacket.java:886) ~[crowd-radius-server-1.0-SNAPSHOT.jar:na] at org.tinyradius.packet.RadiusPacket.decodeRequestPacket(RadiusPacket.java:538) ~[crowd-radius-server-1.0-SNAPSHOT.jar:na] at net.wimpi.crowd.radius.RadiusService$PacketReceiver.run(RadiusService.java:449) ~[crowd-radius-server-1.0-SNAPSHOT.jar:na] at java.lang.Thread.run(Thread.java:745) [na:1.7.0_60]

Thanks, Jacob

bassrock commented 9 years ago

@Jacobingalls did you figure this out I am getting the same error

Jacobingalls commented 9 years ago

No, we ended up changing the structure of our stack. We now have Microsoft AD as the Authoritative user store, and Crowd running off that.

On Mar 16, 2015, at 3:45 PM, bassrock notifications@github.com wrote:

@Jacobingalls https://github.com/Jacobingalls did you figure this out I am getting the same error

— Reply to this email directly or view it on GitHub https://github.com/dwimberger/crowd-radius-server/issues/2#issuecomment-81927529.

dwimberger commented 9 years ago

The current implementation will only work for PAP (it's commented in the source, I'll add a note to the Wiki). Usually one requires access to the password in cleartext to do CHAP, which is not possible through the Crowd REST API.