0.9.3 > 1.1.0 sql errors

Andrew Long along at escapewire.com
Thu Jan 4 19:39:36 CET 2007 

Can you clarify:

 In 0.9.3 (/usr/local/raddb/dictionary):
 VALUE          Service-Type            Administrative-User     6

 In 1.1.0 (usr/local/share/freeradius/dictionary.rfc2865):
 VALUE   Service-Type    Administrative-User     6

And this represents data from tables on BOTH servers:
mysql> SELECT * from radgroupcheck where value like '%Administ%';
+----+-----------+--------------+----+----------------+
| id | GroupName | Attribute    | op | Value          |
+----+-----------+--------------+----+----------------+
|  1 | colubris  | Service-Type | == | Administrative |
|  6 | nomadix   | Service-Type | == | Administrative |
+----+-----------+--------------+----+----------------+
2 rows in set (0.00 sec)

Now, 0.9.3 runs smoothly and returns no error... While 1.1.0
returns:

rad_recv: Access-Request packet from host 204.95.127.xxx:2048, id=187, length=192
        Acct-Session-Id = "538beb43"
        NAS-Port = 0
        NAS-Port-Type = Wireless-802.11
        User-Name = "hawth_cn3000"
        Calling-Station-Id = "00-02-2D-A7-90-E3"
        Called-Station-Id = "00-03-52-00-2A-70"
        Framed-IP-Address = 10.1.64.1
        CHAP-Password = 0xbbcfb2ff55c0f0631707a373efafcc4d80
        CHAP-Challenge = 0xb3b35eed6c545478a382df419e830423
        NAS-Identifier = "M003-00235"
        NAS-IP-Address = 204.95.127.xxx
        Framed-MTU = 1496
        Connect-Info = "HTTPS"
        Service-Type = Administrative-User
        Message-Authenticator = 0x56f3a49ec1ef7b05bbe9f308140c404c
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
Invalid operator for item Suffix: reverting to '=='
Invalid operator for item Suffix: reverting to '=='
Invalid operator for item Suffix: reverting to '=='
  modcall[authorize]: module "preprocess" returns ok for request 0
  rlm_chap: Setting 'Auth-Type := CHAP'
  modcall[authorize]: module "chap" returns ok for request 0
  rlm_eap: No EAP-Message, not doing EAP
  modcall[authorize]: module "eap" returns noop for request 0
    rlm_realm: No '@' in User-Name = "hawth_cn3000", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 0
  modcall[authorize]: module "files" returns notfound for request 0
  modcall[authorize]: module "mschap" returns noop for request 0
radius_xlat:  'hawth_cn3000'
rlm_sql (sql): sql_set_user escaped user --> 'hawth_cn3000'
radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = 'hawth_cn3000' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 4
radius_xlat:  'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE usergroup.Username = 'hawth_cn3000' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
! ERROR
rlm_sql: Failed to create the pair: Unknown value Administrative for attribute Service-Type
rlm_sql (sql): Error getting data from database

(It authenticates, but only sends the first of several A-V pairs
needed by the CN3200: "At least one required internal page was not retrieved - Keeping
previous set of internal pages." )

I apologize if this is getting unclear, please bear with me, I need to
get this going.

MUCH thanks.

Andrew

More information about the Freeradius-Users mailing list