Issue with authentication with RADIUS when using VPN

Our customer has a problem with auhtentication against Radius vhen he is using VPN or SSL VPN. Authentication on SSH or TELNET via RADIUS is working fine . When I configure on VPN (and SSL VPN) authentication against the local database, everything is working fine and tunnel is established.
In attachement is running-config of customer's gateway and capture file of communication between RADIUS server and gateway (radius access request starting at 85th line).
I found in this file at AVP attributes that the gateway is sending ipsec profile name (in this case "VPN") instead of username.

SSLVPN is configured to use the local database of usernames only in this config. It is not configured to use RADIUS.

Similar Messages

  • Am using firefox 5 and am not able of uploading any file as attachmenet using my Yahoo email account , this problem does not happen with hotmail account or when using IE.

    when sending email through yahoo account , i cant upload any attachment with email, a sign of uploading lasts forever without uploading the file.
    this issue do not happen with hotmail account or when using IE to browse Yahoo account.

    Install ClamXav and run a scan with that. It should pick up any trojans.   
    17" 2.2GHz i7 Quad-Core MacBook Pro  8G RAM  750G HD + OCZ Vertex 3 SSD Boot HD 
    Got problems with your Apple iDevice-like iPhone, iPad or iPod touch? Try Troubleshooting 101

  • Still Having Problem with Battery Overheating with Car Dock/Charger when using Maps/Navigation

    I'm having a problem with the battery overheating when using Google Navigation in the OEM Samsung car dock and car charger.  On a trip last weekend, I started off with a fully charged battery (because posts on other sites have complained that the Charge cannot keep up with the power draw of the Google nav app while using the car charger).  About an hour into my trip, I got a message that the battery was overheating and to unplug the charger which I did.  I then had to contend with the screen going out because it was running on the battery.  I let the phone discharge to about 70% then tried the car charger again.  Within a few minutes, I got the same overheating message.  It was not an overly hot day and the car A/C was set at 68 degrees.  
    This morning (with the battery at about 85%) I tried to use the Navigation without the car dock while charging and got the same results...the phone battery overheated and I had to unplug the charger. The battery temperature reached 116 degrees. (also, the battery level was also dropping while using the Maps or Nav application even though it was hooked up to the car charger).  
    I'm very disappointed with this situation since I was hoping I could replace my old Garmin GPS with the Charge.  But between the phone dimming the screen while running on battery, and having a depleted battery in the phone at the end of the trip, its just not a viable option.  I really like this phone, but I'm running against the "return" clock.  
    Any ideas?
    Could this be a software problem that will be corrected by an update in the future?
    fyi:  other Charge problems in the last 5 days:
    - dropping audio on calls to other Verizon phones.
    - use of camera flash causing the phone to reboot.
    (I do have the 'class 4' 32gb card in my Charge)
    Thanks in advance,
    Rich

    Jerry:
    Yes, the phone is charging while in the car dock.  I confirmed it both under the "about phone-status-battery status" menu and by my battery widget.  By watching the battery widget, I also noticed that the voltage steadily increased over the ride home.  It started at about 3.90 volts and ended at 4.02 volts.  I don't know if that is significant.  This time the battery did not overheat.  The Max temp was 110 degrees, but no notice to disconnect came up.  This might be because the sun was behind me on the drive home rather than beating down on the dash like it was this weeked.
    I've ordered a cheap universal dock from Amazon for about $15.00 which clips onto the a/c vent.  I want to see if this keeps the temperature down.  If this works, I can still return the fancy-schmantzy Samsung OEM car dock. (The car-dock interface wasn't that impressive anyway).
    Please let me know if the volt change means anything.
    And thanks again for your help!
    Rich

  • Quicktime Player with the magic mouse, when used with a bug -

    On 10.7 Lion, Quicktime Player with the magic mouse, when used with a bug …
    Quicktime Player will not respond, but use the USB mouse with no problem

    Message was edited by: b j t

  • Does Mackie Control work with Final Cut 7 when using USB MIDI?

    I have a Mackie Control Universal Pro connected via USB to my mac and it works GREAT with Logic and all the complimentary Logic Studio software.
    The problem I am having is, when I try to use it with Final Cut, it wont work at all. I have read the post concerning this that was answered by Andy Mees but, I dont use a true MIDI connection, only USB.
    Any thoughts?

    Does Mackie Control work with Final Cut 7 when using USB MIDI?
    No one will know until FCP 7 is released.
    -DH

  • Has anyone had issues with poor image quality when using lightroom to process raw images from Canon 7dmk2

    Hi everyone..
    ..I have been having image quality issues when using Lightroom to process raw files from a 7d mk2... They are all soft with poor clarity.....tonight in despair I tried processing them  using  canon's software and they are totally different..."much better"
    anyone else had similar problems....Andy

    I have a 7D2 and have not had what I interpret as poor image quality that has anything to do with the camera.
    Can you post a screenshot of what you’re seeing and what specifically you don’t like?  Maybe there is something you can do differently or at least there may be an explanation for what you’re seeing.
    And if you have a raw image that you wouldn’t mind sharing in a public forum, upload to http://www.dropbox.com/ then post a public share link to it in a reply, here.
    In other words post a screenshot of what you see in LR, another of what you see using DPP, and a link to the raw file you’re processing.

  • No contact with DHCP server when using VPN Client

    Pretty weird problem I discovered recently.
    We use the VPN Client to connect to a 1841 router. Everything works fine except for one small thing.
    The client do not send out _any_ traffic if the destination is the ip-address of the DHCP-server the client got its original ip-address from.
    This is verified by Wireshark. A ping on the client do not produce any ESP packets towards the VPN concentrator. No matter what traffic you try actually.
    Discovered this when wanting to use Remote Desktop towards the Windows Server that is the local DHCP server and was not able to connect. Then tested ping and still no response. That made me look closer and found out that I could not communicate at all with the DHCP server.
    As I said, pretty weird.
    Anyone else have seen this? Anyone have a solution? Right now I use OpenVPN instead when I need to control that server.
    - Roger

    Hi and thanks for responding.
    Nothing here apart from being unable to send any packets to the dhcp-server. No problem sending to any other system on the same subnet. The same happens when I connect my pc to another subnet that is served by another dhcp-server. Then I can not connect to _that_ dhcp-server. I can then of course connect to the previous dhcp-server.
    I mean _no_ packets are generated out the client at all if the destination are your dhcp-server. No problem with the packet being blocked by a firewall or anything like that. Ping another system on the same subnet as the dhcp-server and the client happily generates ESP packets and sends them to the vpn-concentrator.
    I do not know if it was clear enough in the first post so I am saying it here: the vpn-concentrator gives out the ip for the vpn connection. The dhcp-server I can not connect to is the server that gives the client its ip-address _before_ starting up the vpn client.
    We use this vpn system so the IT personell will be able to connect to restricted resources from their laptops anywhere in the network, also when using wireless.
    This was discovered when one admin wanted to connect from his laptop to a server that also happened to be the dhcp-server that had given his laptop his ip address before he used vpn.
    Should be easy enough for anyone else to test. Just ping your dhcp-server after starting the vpn connection. No RFC 1918 addresses of course, there must be a route from your vpn-concentrator to your dhcp-server and at least icmp echo must be open through any firewall/acl.
    The vpn version is 4.8.00.0440 on Windows XP configured to not allow local LAN access. I might test this with other versions/OS'es when I have the time.
    Regards,
    - Roger

  • Oracle SQL Developer issue when using VPN (Cisco)

    All,
    We've got a somewhat obscure issue with SQL Developer connectivity to our databases from a remote employee's laptop.
    The database is hosted inside our firewall and when the employee tries to connect to the database he receives the following error:
    +"Error Encountered: An error was encountered performing the requested operation: The network adaptor could not establish the connection. Vendor Code 20"+
    I believe I may have seen the following error at one point as well...
    Status : Failure -Test failed: IO Error: The Network Adapter could not establish the connection
    Note: He gets this error when logged into our VPN & while he can connect via SQL*Plus to that same database. He gets the error regardless if he uses the tnsnames entry option in SQL Developer or if he is using the "Basic" connection type.
    What's interesting is that if he disconnects from the VPN, turns off his wireless connectivity and then hard-wires into our network he can connect, no issue.
    The strangest part for me is that while he can not connect to the database via SQL Developer, he can connect via SQL*Plus. He can ping the source IP address fine, he can tnsping the database no problem, he can connect via SQL*Plus, he just can't connect via SQL*Developer. Since SQL*Plus and tnsping are working, I know he can access the db server via port 1521, so I don't think it's a port issue.
    Another strange thing: When he connects to our network via an "old" VPN (open VPN) he has no issues.
    His machine is Windoz 64 bit (HP laptop) and he's using the latest version of SQL Developer and a newer JVM.
    Also interesting: I also have a Windoz 64 bit laptop (Lenovo) and I do not have the same issues as he does. I however am running an older version of SQL Developer and probably an older JVM.
    I dug around a bit, seems like perhaps this has something to do with IPv6? No idea what to do next except have my network guy look at firewall logs to try to capture where the connectivity is being dropped.
    Any thoughts or suggestions would be appreciated. I've tried all kinds of things (giving him my tnsnames.ora and sqlnet.ora file, manually editing those files, tried IP addresses instead of host names, tried host names with the .doman.org extensions, etc.).
    Again, any suggestions would be appreciated and thank you very much.
    Rich
    Edited by: rmurnane on Oct 23, 2012 10:58 AM

    Since SQLPlus is installed and works fine you could try to set
    Tools -> Preferences -> Database -> Advanced -> Use OCI/Thick driverThis should enable SQLDeveloper to use the same oracle client SQLPlus is using to connect to the database.
    Mind that by setting this option you need to have an 11g client (or instant client) installed that matches the ojdbc6.jar version used by SQLDeveloper, so if you are using an older client this may not be a usable solution.

  • Problem with variables in formulas when using CrystalReportViewer

    Post Author: Aksu
    CA Forum: Formula
    Hi! I have a problem with variables in Crystal Reports formulas, when using CrystalDecisions.Windows.Forms.CrystalReportViewer class from VS2005-project. ReportViewer always gives error:*************Crystal Report Windows Forms ViewerThis field name is not known.Details: errorKindError in File C:\{dir&#93;}\{file}.rpt:Error in formula <mCustomerAttributes>.'Dim result As String'This field name is not known.Details: errorKind ************* Report without variables works fine with Viewer and in Crystal Reports Designer report with variables works also fine. I have tried with both "formula-syntaxes" - basic and crystal. But Viewer always gives error when trying to define new variable.I think the problem might be with CR -versions, because VS-project has formerly been designed to VS2003 and CR9 or 10. Now I'm using VS2005 and CR11. Though I have changed all references to new CrystalDecisions-asseblies (Ver.11.0.3300.0), when I debug the project and checkout the Viewers ReportSources FormatEngine Shows version CR9_2.... I have no idea where it gets this version...***************DEBUG-view when Viewer is created *******************CrystalReportViewer    |_        ReportSourceClassFactoryName ... , Version=11.0.3300.0 , ...    |_            ReportSource            |_                FormatEngine    {CrystalDecisions.CrystalReports.Engine.FormatEngine}                        |_                        ClientVersionHeader    {CrystalDecisions.Shared.ReportServiceVersionHeader}                            |_                            |    version = 920     (int)                            |_                                Static members                                            |_                                        VER_CR9    = 920    (int)**************************************** Could anyone have any answers or tips for this problem? I'd really appreciate it... ---Aksu

    Has anyone been able to answer this question?
    I am having the same problem:
    I am designing a report in Crystal Reports XI Developer that contains parameters, which are passed to a stored procedure and are also used within formulas ( in Crystal Syntax ie. {?FORMAT_ID} ) in the report itself.
    I can run the report successfully in CRXI Developer.  The formulas use the correct values from the parameters entered during execution and everything looks good.
    I then deploy the report to Business Objects Enterprise XI.  I do all of the things necessary to manage the report including setting up the proper database connection information and default parameter values.
    When I run the report using the Crystal Report Viewer, I get the following error message:
    Error in File Forecasting.rpt:
    Error in formula <Report Format>.
    'if (not isNull({?FORMAT_ID} ) ) then
    This field name is not known.
    Details: errorKind
    This happens when I press the "Preview" button in the Manage Object dialog from Crystal or when I run the report using InfoView.
    I have changed the formulas and it doesn't seem to matter what the specific content of the formula is; other than the existence of a parameter reference in the formula.  If I comment out the parameter and replace it with a hard-coded value, it gets through the formula fine.
    Does Business Objects Enterprise XI support crystal reports with parameter references in the formulas?
    Thanks,
    Tim H.
    Edited by: Tim Haley on Nov 25, 2008 11:11 PM
    Edited by: Tim Haley on Nov 25, 2008 11:12 PM

  • Cannot rename file with non-ASCII characters when using the

    My application moves files from one directory to another by calling File[] srcFiles = srcDir.listFiles() to get a list of files in the source directory, and then calling srcFiles.renameTo(destFile) to rename each file.
    This does not work (renameTo returns false and the file is not moved) under the following circumstances:
    - the file's leaf name contains non-ASCII characters, for example "�"
    - the OS is Solaris 9
    - the LANG and LC_* environment variables are unset, i.e. the C locale is being used
    If I set the LANG environment variable to, for example, en_GB.UTF-8 then the rename succeeds.
    I have tried calling srcFiles[index].getName().getBytes("UTF-8") and the non-ASCII characters are being replaced with ? (0x3f) characters when LANG is unset.
    Is this a bug in the JRE? I would argue that since my code does not actually manipulate the filename (I just use the File object that File.listFiles() gives me) then the rename should succeed. Of course I would not expect the file name to be displayed correctly if I printed it out.
    I have reproduced this behaviour with JDK 1.4.2_05 and 1.5.0_04 on Solaris 9.
    Francis

    Thanks for the info Alan.
    I considered setting the locale in the environment (this sounds like the "correct" fix to me and we might implement it later), but this application shares a WebLogic server with many other applications so we would have to do a huge amount of testing to make sure that the locale change wouldn't break the other apps. In the end I worked around the problem by making the code that generates the filenames in the first place strip out any non-ASCII characters (the names of the files are not critically important).
    Looking forward to JSR-203, in the meantime perhaps a note about this behaviour in the java.io.File javadoc would be useful.

  • Problems with a Business Object when using data RAW.

    Hi,
      I've created a Z bapi with parameter tables as
        FILE_BIN like SDOKCNTBIN
    The structure SDOKCNTBIN has one RAW field.
    When I go to SWO1 and implement a new Bapi, the following error occurs:
    "Field SDOKCNTBIN -LINE is too large to be included in container"
    Does anyone knows why when I declare an structure with a field RAW, gives that error?
    Thanks in advance!

    Does this occur when using Immediate Mode?
    Here's a blurb from my ADF Toy Store paper about Batch Mode and immediate mode.
    http://www.oracle.com/technology/products/jdev/collateral/papers/10g/adftoystore/readme.html#batchmode

  • ACR returning images with pixel drop-out when used as smart filter in HDR2

    Photoshop CC - when using a 32-bit image in HDR2 "Tone in ACR" returns an image that contains areas where random groups of pixels are simply black. Typically occurs in shadow areas.
    Same 5 raw files processed by Oloneo exhibit no problems. Individual raw files processed by Photoshop CC show no problem - only seen in HDR2.
    I tried accessing Photoshop Bug Report but it hands you off to Photoshop.com where after you make the report it won't let you sign in. Revel only accepts photos.

    GOT IT!!!!
    After we eliminated Adobe settings, and the software, I started wondering what's outside that could be affecting VPE.
    It's the resolution of the screen!  I have a MBP Retina.
    Using SetResX, I cranked the resolution of my screen from the default retina 1440 x 900 to the hardware's native res of 2880 x 1800.
    THIS FIXED IT.
    The resulting PNGs from the export perfectly match the planes (DXF Mesh).
    So, I'm asserting that there may be a bug in the current release of PS CC where it is not compatible with the default retina resolution on the MacBook Pro.

  • No Data retrieved with AJAX Call HTMLDB_GET when using Safari Browser

    In my apex (4.0) app i have certain page a which uses JS AJAX htmldb_get to pull some data from an on-demand process using xml structure
    var get = new htmldb_Get(null, $v('pFlowId'),
    'APPLICATION_PROCESS=get_markerdata', $v('pFlowStepId'));
    if (!MEBMarkerdataXML) {// Tabelle mit Kunden leer? Dann aus DB abfragen
    MEBMarkerdataXML = get.get('XML');
    l_Count = MEBMarkerdataXML.getElementsByTagName("Kunde").length;
    I ran into a strange behavior when using Safari Browser (Mac and Windows) when opening the page.
    As long as the process retrieves less than 50 rows everything works fine. The data is pulled from the OnDemand Process and delivered to the browser; the XML Data can be selected in JS for further processing
    <<<<<<<<<<<<<< HTTP Traffic taken from Safari <<<<<<<<<<<<<<<
    Anfrage-URL:http://80.149.218.10:8080/apex/wwv_flow.show
    Anfragemethode:POST
    Status-Code:200 OK
    Anfrage
    Content-Type:application/x-www-form-urlencoded
    Origin:http://80.149.218.10:8080
    Referer:http://80.149.218.10:8080/apex/f?p=41107101:43:1599514482232751::
    User-Agent:Mozilla/5.0 (Windows NT 5.1) AppleWebKit/534.55.3 (KHTML, like Gecko) Version/5.1.5 Safari/534.55.3
    Formulardaten
    p_request:APPLICATION_PROCESS=get_markerdata
    p_instance:1599514482232751
    p_flow_id:41107101
    p_flow_step_id:43
    Antwort
    Cache-Control:no-cache
    Content-Type:text/xml;charset=UTF-8
    Date:Thu, 03 May 2012 10:19:35 GMT
    Pragma:no-cache
    Server:Apache-Coyote/1.1
    Transfer-Encoding:Identity
    X-DB-Content-length:53329
    X-ORACLE-IGNORE:IGNORE, IGNORE, IGNORE, IGNORE
    <<<<<<<<<<<<<<<<
    When calling for more then 50 rows Safaris shows a POST Error -1001 and no Data is delivered.
    This occurs only on some Mac's and my Dev WIN-XP PC using SF Browser; never on iPad/iPhone . Never when using FF on Mac or PC.
    I googled a lot of different Sources, it seems to be a Timeout Problem when making a long runing AJAX Call. But i did not find any useful hint.
    Any Ideas from the APEX & HTTP Gurus?
    Regards
    Peter

    It's just that in my experience htmldb_Get.get() is troublesome for browsers, due to the fact it performs a synchronous request. The browser can do nothing else while it waits for the response. I've seen Firefox really struggle with it in the past couple years. Also, I've seen no good reason to use synchronous XMLHttpRequest calls. As you can see, it's simple to refactor a call to htmldb_Get.get() into a call to htmldb_Get.GetAsync().
    For your case in particular, I was just guessing Safari have implemented a timeout to ensure that they don't end up waiting indefinitely for a request that never returns as this would be fatal. You're probably hitting that timeout.
    I don't think htmldb_Get is officially documented anywhere, but you can find the source here... http://apex.oracle.com/i/javascript/uncompressed/apex_4_0.js
    There is also a pure jQuery way to perform AJAX request, I recommend using this because at least it's documented. Here's a snippet of a typical APEX AJAX request done the jQuery way:
    apex.jQuery.ajax({
      dataType: "xml", //supports text, xml, json, jsonp, script, or html
      type: "post",
      url: "wwv_flow.show",
      traditional: true,
      data: {
        p_request: "APPLICATION_PROCESS=get_markerdata",
        p_flow_id: $("#pFlowId").val(),
        p_flow_step_id: $("#pFlowStepId").val(),
        p_instance: $("#pInstance").val()
      success: function (data, textStatus, jqXHR) {
        // Do your thing in here
      error: function (xhr, ajaxOptions, thrownError) {
        // Handle error in here
    });Then you can refer to great documentation here... http://api.jquery.com/jQuery.ajax/

  • Problem with spaces in filenames when using ODI tools

    Hi everyone,
    has anyone of you ever encountered the following behaviour:
    When using any ODI tool related to file manipulation the tool does not work if the file parameter value contains a blank/space. Example:
    OdiFileDelete "-DIR=c:temp" "-FILE=Test this.txt" "-RECURSE=NO" "-CASESENS=NO" "-NOFILE_ERROR=YES"
    In this case an error will occur saying the file does not exist although it exists in the directory.
    Has anyone a workaround for this?
    Thanks in advance,
    Hauke

    Hi Madha,
    thanks for the prompt answer.
    We decided to rename the files to make the tools work. Definitely not always applicable but in our case it's possible. Any hint why the behaviour is designed like this?
    Regards,
    Hauke

  • IPad cannot 'see' ATV2 when using VPN

    I have a private local network with a number of machines on it (mostly Mac) managed by a Mac Mini Server. This network is secured and has no internet connection. Within this network is an Apple TV2 which is used to show media on a large video wall. Up until recently (before security requirement) it was also used to mirror iPad displays and run Keynote presentations. This was all working fine up until I was forced to rebuild and secure the network.
    So I rebuilt the network. A security device manages the wireless access point on the outside and access to the inside network from devices connected to the wireless access point is via IPSec VPN (authentication managed by RADIUS server on Mac Mini). There is no internet connectivity anywhere near this network.
    This is all working fine. iPads can access the wireless access point and when the VPN is connected they can access the web server on the inside and other various apps on the iPads can access network shares or screen shares. The problems start when setting up the ATV2 config.
    First, to allow external devices to access the ATV2 or for a central library to be accessible Home Sharing needs to be active. Guess what, Home Sharing can only be activated by authenticating against the Apple servers which requires an internet connection. After jumping through several convoluted hoops to get home sharing activated on the ATV2, and separately on the iPads and Mac Mini Server I am now trying to get the Remote app, AirPlay and Display Mirroring to work. No luck.
    With the iPad connected to the network via VPN it can still access all of the web services, the network tool app that I have can even ping the ATV2 and I can show videos via AirPlay from iTunes on the Mac Mini Server but for the life of me I cannot get the Remote app, Air Play or display mirroring on the iPad to recognise that there is an ATV2 on the network.
    In frustration I switched the wireless access point to the other side of the security device (don't tell IT dept) and reconnected the iPad to the network, this time without the requirement for VPN. Lo and behold the ATV2 appeared immediately in the remote app and it was available for AirPlay and display mirroring. Switching the AP back to the outside and going in again with the VPN and the iPad is blind again to the ATV2.
    Any clues as to what is breaking? I suspect that the Bonjour service is not passing through the VPN. This is the only explanation I can think of.
    Any suggestions on how to get this working would be great. Otherwise I am going to have to rethink how I use the iPads and ATV together. The constraint I have is that the connection between the iPads and the internal network MUST be secure.

    Yes, Bonjour is needed for AirPlay.
    As its multicast, typically VPN's don't allow the broadcast msg to spread as it would produce too much noise to the end devices.
    You are basicially SOL
    Ashish

Maybe you are looking for