VPNC asks for password with Xauth password and IPSec secret in config

ks · 2014-06-14 09:19:58

Hi guys,

hopefully somebody knows the answer here:

With vpnc 0.5.3 on 3.14.6-1-ARCH x86_64 - I have a config file for company VPN like this:

Xauth username XXX
Xauth password XXX
IPSec gateway 217.XXX.XXX.XXX
IPSec secret XXX
IPSec ID XXX
IKE Authmode psk
IKE DH Group dh2

when connecting like:

vpnc --debug 2 work.vpn

I end up with:

"Password for VPN <Xauth username>@<IPSec gateway>:"

even when both passwords are in the config file.

Question: Does it imply that the Xauth password is 100% NOT correct?

running as: vpnc --non-inter eecorp.conf
ends with: vpnc: noninteractive can't reuse password

Full log looks like this:

vpnc version 0.5.3

S1 init_sockaddr
 [2014-06-14 11:11:10]

S2 make_socket
 [2014-06-14 11:11:10]

S3 setup_tunnel
 [2014-06-14 11:11:10]
   using interface tun0

S4 do_phase1_am
 [2014-06-14 11:11:10]

S4.1 create_nonce
 [2014-06-14 11:11:10]

S4.2 dh setup
 [2014-06-14 11:11:10]

S4.3 AM packet_1
 [2014-06-14 11:11:10]

S4.4 AM_packet2
 [2014-06-14 11:11:10]
   (Cisco Unity)
   (Xauth)
   (DPD)
   (unknown)
   (unknown)
   got ike lifetime attributes: 2147483 seconds
   IKE SA selected psk+xauth-3des-sha1
   peer is XAUTH capable (draft-ietf-ipsec-isakmp-xauth-06)
   peer is DPD capable (RFC3706)
   NAT status: no NAT-T VID seen

S4.5 AM_packet3
 [2014-06-14 11:11:10]

S4.6 cleanup
 [2014-06-14 11:11:10]

S5 do_phase2_xauth
 [2014-06-14 11:11:10]

S5.1 xauth_request
 [2014-06-14 11:11:10]

S5.2 notice_check
 [2014-06-14 11:11:10]

S5.3 type-is-xauth check
 [2014-06-14 11:11:10]

S5.4 xauth type check
 [2014-06-14 11:11:10]

S5.5 do xauth reply
 [2014-06-14 11:11:10]

S5.2 notice_check
 [2014-06-14 11:11:10]

S5.3 type-is-xauth check
 [2014-06-14 11:11:10]

S5.4 xauth type check
 [2014-06-14 11:11:10]

S5.5 do xauth reply
 [2014-06-14 11:11:10]
   

---!!!!!!!!! entering phase2_fatal !!!!!!!!!---



S7.11 send isakmp termination message
 [2014-06-14 11:11:10]
vpnc: noninteractive can't reuse password

Is it possible that the passwords are correct but some other config options on my side prevent the authentication to succeed?

Thanks for any brains!

Best,
KS

Last edited by ks (2014-06-14 10:08:06)

karol · 2014-06-14 09:54:03

Welcome to the forums, ks :-)

Please edit your post.
When posting configs, code or command output, please use [ code ] tags https://bbs.archlinux.org/help.php#bbcode

like this

It makes the code more readable and - in case of longer listings - more convenient to scroll through.

Norm1710 · 2014-10-12 08:34:54

Did you find a resolution to this problem? I'm having exactly the same issue.

Cheers
Ian

Norm1710 · 2014-10-12 08:52:26

Oh dear. The solution was rather simple. I was logging into a different box and thus using the wrong login name. Using the right login name let me straight in without problems.

Always check that basics, no matter how certain you are that they are right...

Cheers
Ian

ks · 2014-10-12 08:53:41

Norm1710 wrote:

Oh dear. The solution was rather simple. I was logging into a different box and thus using the wrong login name. Using the right login name let me straight in without problems.
Always check that basics, no matter how certain you are that they are right...
Cheers
Ian

Just came here to say the same - it was different credentials after all.

KS

raydenz · 2016-02-28 10:57:24

ks wrote:

Norm1710 wrote:
Oh dear. The solution was rather simple. I was logging into a different box and thus using the wrong login name. Using the right login name let me straight in without problems.
Always check that basics, no matter how certain you are that they are right...
Cheers
Ian
Just came here to say the same - it was different credentials after all.
KS

hello,

I have exactly the same problem and vpnc ask me a password for VPN
Here is my configuration file

IPSec gateway mygateway
IPSec ID myGroupID
IPSec secret myGroupPassword

Xauth username myusername 
Xauth password mypassword
IKE Authmode psk

I am on Ubuntu 14.04 and have no problem when i connect to the vpn with the Network Manager
but when i use vpnc it asks me a VPN password and i tried my user password and the group password but it does not work

"Password for VPN <Xauth username>@<IPSec gateway>:"
vpnc: authentication unsuccessful

I only have a group password(IPSec secret) and user password (Xauth password)..
what is the VPN password?
and what do you mean when you say it was different credentials?

Regards,

Ray

ks · 2016-02-28 11:20:54

Hi Ray,

by different credentials I meant the login and password I was supplying was different than expected - human error on input side, not a software error of the vpnc stack.

Best,
KS

raydenz · 2016-02-28 17:03:03

hi KS

Thank you for the response but for you the VPN password was the same as "Xauth password" or "IPSec secret" ?
For me i just copied and past the password so i cannot have an error.

Regards,

Ray

Arch Linux

#1 2014-06-14 09:19:58

VPNC asks for password with Xauth password and IPSec secret in config

#2 2014-06-14 09:54:03

Re: VPNC asks for password with Xauth password and IPSec secret in config

#3 2014-10-12 08:34:54

Re: VPNC asks for password with Xauth password and IPSec secret in config

#4 2014-10-12 08:52:26

Re: VPNC asks for password with Xauth password and IPSec secret in config

#5 2014-10-12 08:53:41

Re: VPNC asks for password with Xauth password and IPSec secret in config

#6 2016-02-28 10:57:24

Re: VPNC asks for password with Xauth password and IPSec secret in config

#7 2016-02-28 11:20:54

Re: VPNC asks for password with Xauth password and IPSec secret in config

#8 2016-02-28 17:03:03

Re: VPNC asks for password with Xauth password and IPSec secret in config

Board footer