HP-UX AAA Server A.07.01 Administrator's Guide
Table 28-5 Common Authentication Failure Problems
TroubleshootingProblem
Authentication failed. Unsuccessful password comparison for
user '<user name>' in realm '<realm name>'. Verify password
Log MessageUnable to
authenticate
in request and user profile. Verify shared secret match between
client '<client>' and client configuration in '/etc/opt/aaa/clients'
or Access Devices screen in Server Manager
This error occurs because of any of the following reasons:Cause
• The shared secret configured for the RADIUS client and the
HP-UX AAA Server do not match.
• The password provided by the user does not match the
password configured in the user profile datastore.
Solution 1. Ensure that the shared secret configured on the RADIUS client
matches the one specified in the Access Devices screen of the
Server Manager.
2. Ensure that the password supplied by the user is correct.
session_allowed: Access rejected. Active sessions for user is at
maximum configured (Simultaneous-Use) limit '<limit>
Log MessageUnable to
authenticate
The HP-UX AAA Server received an Access-Request from a user
whose number of active sessions equal the configured
simultaneous session limit.
Cause
Or,
The NAS went offline abruptly and resulted in a stale session in
the HP-UX AAA Server, for the affected user.
Advise the user to terminate the existing session before attempting
to start a new one.
Solution
If the user does not have an active open session, use the Session
screen of the Server Manager to delete the stale session. For more
information, see Chapter 14 (page 152).
Or,
Increase the simultaneous session limit for the user. For more
information on configuring simultaneous sessions, see “Limiting
Simultaneous Sessions” (page 155).
Troubleshooting the HP-UX AAA Server 353