No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade
Knowledge Base

L2TP Dial-up Authentication Fails Because LNS is not Configured with Radius key

Publication Date:  2012-07-27  |   Views:  2  |   Downloads:  0  |   Author:  Wu Zheng  |   Document ID:  EKB0000136808

Contents

Issue Description

Topology: PC--LAC (MA5200)--LNS (AR28)--Radius Server
Problem: AR28 serves as LNS, and L2TP dial-up authentication uses Radius. During dial-up of PC, MA5200 and AR28 could set up tunnel, but PPP authentication fails, and session cannot be set up. 

Alarm Information

......
*0.78656390 JBVPDN RDS/8/DEBUG:Send attribute list:
*0.78656390 JBVPDN RDS/8/DEBUG:
[1  User-name                   ] [16] [bstest@bsjb.yn]
[2  Password                    ] [18] [65C2A5E41BEF58B1CCA3B11CF61D219A]
[4  NAS-IP-Address              ] [6 ] [220.163.246.43]
[32 NAS-Identifier              ] [8 ] [JBVPDN]
[5  NAS-Port                    ] [6 ] [0]
[61 NAS-Port-Type               ] [6 ] [5]
[6  Service-Type                ] [6 ] [2]
[7  Framed-Protocol             ] [6 ] [1]
*0.78656390 JBVPDN RDS/8/DEBUG:Send: IP=[61.166.150.104], UserIndex=[8], ID=[5], RetryTimes=[0], Code=[1], Length=[92]
......
*0.78665390 JBVPDN RDS/8/DEBUG:RADIUS Server No Response

Handling Process

1. AR28 could ping to the address of RADIUS Server, indicating that the link from AR28 to RADIUS Server is straightforward. DEBUG helps ascertain that AR28 has reported the username and password to RADIUS Server. 
2. The problem could be solved by configuring correct key for AR28. 

Root Cause

AR28 has sent the username and password to RADIUS Server, but the server does not respond. This is because AR28 is not configured with key for RADIUS and accounting. 

Suggestions

Null