Identity & Policy Control - SBR Carrier & SRC
Identity & Policy Control - SBR Carrier & SRC

Problem Accessing via GUI

‎08-07-2011 09:02 PM

Hi,

 

I tried to login via SBR GUI (port 1812) but the request is refused whereas I can access via telenet using the same credential.

 

Is there anything need to do to enable access via GUI?

 

 

Thanks,

asmash

7 REPLIES 7
Identity & Policy Control - SBR Carrier & SRC

Re: Problem Accessing via GUI

‎08-08-2011 01:53 AM

You might have to check what port is configured in radius.ini file.

If the configured port is 1812, check tcp connection status, if it is close_wait or inappropriate state, you will have to restart the process.

 

Regards,

Raveen

 

Note: If this answers your question, you could mark this post as accepted solution, that way it helps others as well. Kudos will be cool if I earned it!
Identity & Policy Control - SBR Carrier & SRC

Re: Problem Accessing via GUI

‎08-10-2011 01:12 AM

Hi,

 

Following is the port section in radius.ini >

 

[Ports]
TcpControlPort       =  1812
;TcpControlAddress   =  1.2.3.4
SecureTcpAdminPort   =  1813
;SecureTcpAdminAddress = 1.2.3.4
UDPAuthPort          =  1645
UDPAcctPort          =  1646
UDPAuthPort          =  1812
UDPAcctPort          =  1813
;UDPProxyPortBlockStart  = 28000
;UDPProxyPortBlockLength =    64

 

As I'm already connected to SBR Administrator GUI, I guess tcp port is ok.

 

Somehow SBR is not accepting login credential by this way.

 

//asmash

 

Attachments

Identity & Policy Control - SBR Carrier & SRC

Re: Problem Accessing via GUI

‎08-10-2011 01:54 AM

Hi Asmash,

 

Seems to me that your credentials are incorrect or would have expired.

What Version and Edition of SBR are you running ?

What's the operating system the SBR is installed on ?

From when are you encountering this issue ?

 

Thanks

 

Ashish Paul
Identity & Policy Control - SBR Carrier & SRC

Re: Problem Accessing via GUI

‎08-30-2011 08:04 PM

Hi Ashish,

 

It's SBR SPE v6.1 running on Solaris. Never tried to access via Web before but this time need to collect some reporting which is exclusive to GUI (Concurrent Session, etc.).

 

http://forums.juniper.net/t5/Identity-and-Policy-Control/How-to-check-Concurrent-Session-in-SBR/td-p...

 

And I'm pretty sure that the credential I'm using is correct as I CAN login via Telnet.

 

 

Thanks,

Ashraf

Identity & Policy Control - SBR Carrier & SRC

Re: Problem Accessing via GUI

‎09-04-2011 11:44 PM

Hi,

 

I understand that the credentials that you provide is valid.

Could you confirm if you telnet that admin port as well ?

If not, please telnet including the port number and update.

[Eg: telnet 10.10.10.1 1812

        telnet 10.10.10.1 1813 ]

 

Run ./sbrd status fro /opt/JNPRsbr/radius and see if the port is in close_wait or any inappropriate state.

While running telnet you could get snoop trace[ both at client machine and SBR installed server]  and netstat -a output as well.

 

Also you may try restarting SBR process( if it is feasible) and see if that helps!

If restart doesn't help, you will have to open up a JTAC case.

 

Cheers,

Raveen

Note: If this answers your question, you could mark this post as accepted solution, that way it helps others as well. Kudos will be cool if I earned it!
Identity & Policy Control - SBR Carrier & SRC

Re: Problem Accessing via GUI

‎09-10-2011 07:25 AM

Dear Raveen,

 

The port is live.

 

The GUI is accessible via root user only.

So, what to do to enable it for other non-root users?

 

 

BR,

asmash

Identity & Policy Control - SBR Carrier & SRC

Re: Problem Accessing via GUI

‎09-11-2011 10:33 PM

Hi,

 

You use the Administrators panel to grant the right to use the SBR Administrator to configure a Steel-Belted Radius Carrier server.
When the Steel-Belted Radius Carrier software is installed by root, that account is suggested as the default SBR Carrier Administrator account as well. That account has the right to use the SBR Administrator at its default (full) level of access. 
The Administrators panel lists the users and groups on the server who have been explicitly granted the right to run the SBR Administrator.

 

Thanks

 

Ashish Paul