Realm users authentication failure

[Luca Corti]

Hello,

I've setup a simple freeradius server to authenticate two local realms,
one stripped (no @realm suffix, let's call it myrealm) and the other
with @suffix (let's call it otherrealm.com). I use the rlm_sql module to
auth against a MySQL backend.

I'm using radtest to do inital server testing and everything seems to
work so far for users in myrealm, but I get auth-reject for any
user at otherrealm.com.

In the logs of the radius server I see just:

Tue Oct 18 23:47:15 2005 : Info: rlm_sql (sql): No matching entry in the
database for request from user [user at otherrealm.com]

This is the relevant configuration.

--- proxy.conf ---

realm myrelam {
        type            = radius
        authhost        = LOCAL
        accthost        = LOCAL
}

realm otherrealm.com {
        type            = radius
        authhost        = LOCAL
        accthost        = LOCAL
        nostrip
}


--- radiusd.conf ---

...

realm suffix {
	format = suffix
	delimiter = "@"
	ignore_default = yes
	ignore_null = yes
}

authorize {
	chap
        mschap
        suffix
        sql
}

preacct {
        acct_unique
        suffix
}

accounting {
        sql
}

session {
        sql
}

...


Any idea?

thanks in advance


-- 
Luca Corti
PGP Key ID 1F38C091
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20051019/7e55ce7c/attachment.pgp>