S7610radius认证登录设备之后断开连接

radius配置

line vty 0 63

authentication-mode scheme

user-role level-15

user-role network-operator

protocol inbound ssh

#

ssh server enable

#

radius scheme 4aradius

primary authentication 110.17.169.170 key cipher $c$3$iN+yL3sl1Bvb8aNZXSz1gQIrlxHFa+f4p033yDM=

secondary authentication 110.17.169.171 key cipher $c$3$gQdcOxNaerF8t41pzf/4ruFbLkRCR37EwoHN64k=

user-name-format without-domain

nas-ip 110.19.4.131

#

domain 4aradius

authentication default radius-scheme 4aradius local

authorization default radius-scheme 4aradius local

accounting default none

#

domain default enable 4aradius

以下是debug

<ZXJ_IDC_7606>*May 22 16:30:26:527 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; PAM_RADIUS: Processing RADIUS authentication. *May 22 16:30:26:528 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; PAM_RADIUS: Sent authentication request successfully. *May 22 16:30:26:528 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Processing AAA request data. *May 22 16:30:26:528 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Got request data successfully, primitive: authentication. *May 22 16:30:26:528 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Getting RADIUS server info. *May 22 16:30:26:528 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Got RADIUS server info successfully. *May 22 16:30:26:528 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Created request context successfully. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Created request packet successfully, dstIP: 110.17.169.170, dstPort: 1812, VPN instance: --(public), socketFd: 34, pktID: 107. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Added packet socketfd to epoll successfully, socketFd: 34. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Mapped PAM item to RADIUS attribute successfully. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Got RADIUS username format successfully, format: 2. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Added attribute user-name successfully, user-name: nm_zhangb. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Filled RADIUS attributes in packet successfully. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Composed request packet successfully. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Created response timeout timer successfully. *May 22 16:30:26:530 2019 ZXJ_IDC_7606 RADIUS/7/PACKET: -MDC=1; User-Name="nm_zhangb" NAS-Identifier="ZXJ_IDC_7606" Framed-IP-Address=110.17.169.168 NAS-Port-Type=Virtual Acct-Session- User-Password=****** Service-Type=Login-User NAS-IP-Address=110.19.4.131 H3c-Product- H3c-Nas-Startup-Timestamp=1556137038 *May 22 16:30:26:531 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Sent request packet successfully. *May 22 16:30:26:532 2019 ZXJ_IDC_7606 RADIUS/7/PACKET: -MDC=1; 01 6b 00 9d d3 ec 60 ba 9b ac 00 d4 77 06 2a c2 0d 08 d1 72 01 0b 6e 6d 5f 7a 68 61 6e 67 62 20 0e 5a 58 4a 5f 49 44 43 5f 37 36 30 36 08 06 6e 11 a9 a8 3d 06 00 00 00 05 2c 29 30 30 30 30 30 30 30 31 32 30 31 39 30 35 32 32 31 36 33 30 32 36 30 30 30 30 30 30 30 31 30 30 31 32 35 30 36 36 31 02 12 5b 14 b4 c3 38 4d 6c 29 93 2d ec 27 59 9e c9 c9 06 06 00 00 00 01 04 06 6e 13 04 83 1a 11 00 00 63 a2 ff 0b 48 33 43 20 53 37 36 30 36 1a 0c 00 00 63 a2 3b 06 5c c0 c4 4e *May 22 16:30:26:532 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Sent request packet and create request context successfully. *May 22 16:30:26:532 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Added request context to global table successfully. *May 22 16:30:26:532 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Processing AAA request data. *May 22 16:30:26:577 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Reply SocketFd recieved EPOLLIN event. *May 22 16:30:26:577 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Received reply packet succuessfully. *May 22 16:30:26:577 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Found request context, dstIP: 110.17.169.170, dstPort: 1812, VPN instance: --(public), socketFd: 34, pktID: 107. *May 22 16:30:26:578 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; The reply packet is valid. *May 22 16:30:26:578 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Decoded reply packet successfully. *May 22 16:30:26:578 2019 ZXJ_IDC_7606 RADIUS/7/PACKET: -MDC=1; Reply-Message="Welcome nm_zhangb !" *May 22 16:30:26:578 2019 ZXJ_IDC_7606 RADIUS/7/PACKET: -MDC=1; 02 6b 00 29 84 53 3c 6e 2c 9c 6d 58 89 7a 14 56 12 91 44 19 12 15 57 65 6c 63 6f 6d 65 20 6e 6d 5f 7a 68 61 6e 67 62 20 21 *May 22 16:30:26:578 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; Sent reply message successfully. *May 22 16:30:26:578 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; PAM_RADIUS: Fetched authentication reply-data successfully, resultCode: 0 *May 22 16:30:26:578 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; PAM_RADIUS: Received authentication reply message, resultCode: 0 *May 22 16:30:26:580 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; PAM_RADIUS: Processing RADIUS authorization. *May 22 16:30:26:581 2019 ZXJ_IDC_7606 RADIUS/7/EVENT: -MDC=1; PAM_RADIUS: RADIUS Authorization successfully. %May 22 16:30:26:582 2019 ZXJ_IDC_7606 SSHS/6/SSHS_LOG: -MDC=1; Accepted password for nm_zhangb from 110.17.169.168 port 45788. %May 22 16:30:27:641 2019 ZXJ_IDC_7606 SSHS/6/SSHS_CONNECT: -MDC=1; SSH user nm_zhangb (IP: 110.17.169.168) connected to the server successfully. %May 22 16:30:27:964 2019 ZXJ_IDC_7606 SSHS/6/SSHS_DISCONNECT: -MDC=1; SSH user nm_zhangb (IP: 110.17.169.168) disconnected from the server.