freeradius no longer accepts Crypt-Password after upgrade

Rens Houben shadur at systemec.nl
Wed Jun 15 10:08:05 CEST 2005 

Argh.

So I decided to try and wipe the thing, then do a clean install and just
add in the correct values for sql.conf and the required tweaks to
radiusd.conf, but I seem to have made the problem worse because now it
claims it can't even find the user.

Log output, intersparsed with the mysql results from each query,
attached below. It seems to be complaining about the lack of Auth-Type
attribute, but as you can see it's right there... At least so I think.

What am I missing?

Regards,
-- 
Rens Houben                           |    opinions are mine
Resident linux guru and sysadmin      | if my employers have one
Systemec Internet Services.           |they'll tell you themselves
PGP key at http://swordbreaker.systemec.nl/~shadur/shadur.key.asc
-------------- next part --------------
rad_recv: Access-Request packet from host 194.229.164.1:19309, id=101, length=76
	User-Name = "hecker"
	User-Password = "---------"
	Service-Type = Framed-User
	Framed-Protocol = PPP
	NAS-IP-Address = 194.229.164.1
	NAS-Port = 16
	NAS-Port-Type = ISDN
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 2
  modcall[authorize]: module "preprocess" returns ok for request 2
  modcall[authorize]: module "chap" returns noop for request 2
  modcall[authorize]: module "mschap" returns noop for request 2
    rlm_realm: No '@' in User-Name = "hecker", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 2
  rlm_eap: No EAP-Message, not doing EAP
  modcall[authorize]: module "eap" returns noop for request 2
    users: Matched entry DEFAULT at line 152
    users: Matched entry DEFAULT at line 171
    users: Matched entry DEFAULT at line 183
  modcall[authorize]: module "files" returns ok for request 2
radius_xlat:  'hecker'
rlm_sql (sql): sql_set_user escaped user --> 'hecker'
radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 'hecker' ORDER BY id'

mysql> SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 'hecker' ORDER BY id;
+-----+----------+----------------+---------------+------+
| id  | UserName | Attribute      | Value         | op   |
+-----+----------+----------------+---------------+------+
| 280 | hecker   | Crypt-Password | QYRryBOOozwKg | ==   |
+-----+----------+----------------+---------------+------+

rlm_sql (sql): Reserving sql socket id: 2
radius_xlat:  'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE usergroup.Username = 'hecker' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'

+----+-----------+----------------+-------+------+
| id | GroupName | Attribute      | Value | op   |
+----+-----------+----------------+-------+------+
|  2 | venlo     | Huntgroup-Name | venlo | ==   |
|  5 | venlo     | Auth-Type      | Local | :=   |
+----+-----------+----------------+-------+------+

radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radreply WHERE Username = 'hecker' ORDER BY id'
Empty set (0.00 sec)


radius_xlat:  'SELECT radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op  FROM radgroupreply,usergroup WHERE usergroup.Username = 'hecker' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
+----+-----------+--------------------+---------------------+------+
| id | GroupName | Attribute          | Value               | op   |
+----+-----------+--------------------+---------------------+------+
|  2 | venlo     | Auth-Type          | Local               | :=   |
|  3 | venlo     | Framed-Protocol    | PPP                 | :=   |
|  6 | venlo     | Service-type       | Framed-User         | :=   |
|  7 | venlo     | Framed-Compression | Van-Jacobsen-TCP-IP | :=   |
| 16 | venlo     | Framed-Address     | Select-by-NAS       | :=   |
+----+-----------+--------------------+---------------------+------+


rlm_sql (sql): No matching entry in the database for request from user [hecker]
rlm_sql (sql): Released sql socket id: 2
  modcall[authorize]: module "sql" returns notfound for request 2
modcall: group authorize returns ok for request 2
  rad_check_password:  Found Auth-Type System
auth: type "System"
  Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 2
rlm_unix: [hecker]: invalid password
  modcall[authenticate]: module "unix" returns reject for request 2
modcall: group authenticate returns reject for request 2
auth: Failed to validate the user.
Delaying request 2 for 1 seconds
Finished request 2
Going to the next request

More information about the Freeradius-Users mailing list