RADIUS authentication doesn't work after upgrading to 4.2

search cancel

RADIUS authentication doesn't work after upgrading to 4.2

book

Article ID: 376883

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

After upgrading one PAM cluster to version 4.2 user logins using LDAP+RADIUS authentication fail. The error is related to RADIUS authentication.

WARN - Authentication failed for user ..., reasons: Access-Request must contain password chap authentication protocol is not supported

Another cluster running PAM 4.1 still and integrating with the same RADIUS server for authentication has no problem.

Environment

PAM 4.2 GA

Cause

PAM incorrectly may send a CHAP authentication request to the configured Radius server even when the user (group) is configured to use PAP authentication.

Resolution

Apply the 4.2.0.03 hotfix, which is available for download from the PAM Solutions & Patches page. When you get to the page, search for "4.2.0.03", since the patch is listed pretty far down the page.

Installation instructions are found in the Hotfix 4.2.0.03 documentation page.

Feedback

thumb_up Yes

thumb_down No