Добрый день
уcтановил Freeradius для авторизации телнет клиентов маршрутизатора
во время настройки проверял работу радиус протокола с маршрутизатора

в файле users есть две практически идентичные записи для пользователей

steve   Cleartext-Password := "testing"    (пользователь прописанный по умолчанию)
        Service-Type = Framed-User,
        Framed-Protocol = PPP,
        Framed-IP-Address = 172.16.3.33,
        Framed-IP-Netmask = 255.255.255.0,
        Framed-Routing = Broadcast-Listen,
        Framed-Filter-Id = "std.ppp",
        Framed-MTU = 1500,
        Framed-Compression = Van-Jacobsen-TCP-IP

huawei   Cleartext-Password := "testing"
         Service-Type = Framed-User,
         Framed-Protocol = PPP,
         Framed-IP-Address = 172.16.3.33,
         Framed-IP-Netmask = 255.255.255.0,
         Framed-Routing = Broadcast-Listen,
         Framed-Filter-Id = "std.ppp",
         Framed-MTU = 1500,
         Framed-Compression = Van-Jacobsen-TCP-IP
притестировании авторизации с маршрутизатора, авторизация пользователя steve проходит на ура <Huawei>test-aaa steve testing radius-template 1
<Huawei>
Info: Account test succeed
авторизация пользователя huawei не проходит
<Huawei>test-aaa huawei testing radius-template 1
<Huawei>
Info: User name or password is wrong

Интересно в чем же проблема ???? Вывод freeradius -X для обоих попыток приложен ниже :

rad_recv: Access-Request packet from host 192.168.0.5 port 1812, id=9, length=133
    User-Name = "huawei"
    CHAP-Password = 0xdad2b61d89afff062746ca7826572165c1
    CHAP-Challenge = 0x53dc270456650daa421f3ead4d1d2f5a
    Service-Type = Framed-User
    Framed-Protocol = PPP
    NAS-Identifier = "Huawei"
    NAS-Port-Type = Ethernet
    Acct-Session-Id = "Huawei00000000000000aa7f56c3000286"
    NAS-IP-Address = 192.168.0.5
# Executing section authorize from file /etc/freeradius/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
[chap] Setting 'Auth-Type := CHAP'
++[chap] returns ok
++[mschap] returns noop
++[digest] returns noop
[suffix] No '@' in User-Name = "huawei", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
[files] users: Matched entry DEFAULT at line 172
++[files] returns ok
++[expiration] returns noop
++[logintime] returns noop
[pap] WARNING! No "known good" password found for the user.  Authentication may fail because of this.
++[pap] returns noop
Found Auth-Type = CHAP
# Executing group from file /etc/freeradius/sites-enabled/default
+- entering group CHAP {...}
[chap] login attempt by "huawei" with CHAP password
[chap] Cleartext-Password is required for authentication
++[chap] returns invalid
Failed to authenticate the user.
Using Post-Auth-Type Reject
# Executing group from file /etc/freeradius/sites-enabled/default
+- entering group REJECT {...}
[attr_filter.access_reject]     expand: %{User-Name} -> huawei
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 9 to 192.168.0.5 port 1812
Waking up in 4.9 seconds.
Cleaning up request 0 ID 9 with timestamp +4
Ready to process requests.

Подскажите пожалуйста в чем же проблема ?!!