problem with ldap authentication

Frank Bonnet f.bonnet at esiee.fr
Tue Mar 24 11:37:12 CET 2009


Frank Bonnet wrote:
> Alan DeKok wrote:
>> Frank Bonnet wrote:
>>> is it possible to use freeradius with NIS instead of LDAP ?
>>> thanks
>>   Yes.  NIS is just a different way of getting users to "seem" to be in
>> /etc/passwd.  So there shouldn't be anything to do.  Just install the
>> server, and it should work.
>>
>>   Alan DeKok.
>> -
>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> 
> you mean uncomment the /etc/passwd in this section
> in radiusd.conf file right ?
> 
> # Unix /etc/passwd style authentication
> 

OK now I'm still in trouble ... even after removing LDAP statements
here is the log of the session, how to setup the User-password to
the right value to use /etc/passwd file ?
thanks



rad_recv: Access-Request packet from host 127.0.0.1:32817, id=0, length=214
	User-Name = "bonj"
	CHAP-Challenge = 0xbba7f4f69dfb6cf2342f1cbba4e7e482
	CHAP-Password = 0x00f7fbe0aa077445403b77c55ab120f811
	NAS-IP-Address = 127.0.0.1
	Service-Type = Login-User
	Framed-IP-Address = 192.168.182.2
	Calling-Station-Id = "00-15-AF-8E-7C-E4"
	Called-Station-Id = "00-12-79-90-10-21"
	NAS-Identifier = "nas01"
	Acct-Session-Id = "49c8b43400000030"
	NAS-Port-Type = Wireless-802.11
	NAS-Port = 48
	Message-Authenticator = 0x9dfa1ebe41cae3090fd9d919498bb04c
	WISPr-Logoff-URL = "http://192.168.182.1:3990/logoff"
   Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
   modcall[authorize]: module "preprocess" returns ok for request 0
     rlm_realm: No '@' in User-Name = "bonj", looking up realm NULL
     rlm_realm: No such realm "NULL"
   modcall[authorize]: module "suffix" returns noop for request 0
   rlm_eap: No EAP-Message, not doing EAP
   modcall[authorize]: module "eap" returns noop for request 0
     users: Matched entry DEFAULT at line 155
   modcall[authorize]: module "files" returns ok for request 0
modcall: leaving group authorize (returns ok) for request 0
   rad_check_password:  Found Auth-Type System
auth: type "System"
   Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 0
rlm_unix: Attribute "User-Password" is required for authentication. 
Cannot use "CHAP-Password".
   modcall[authenticate]: module "unix" returns invalid for request 0
modcall: leaving group authenticate (returns invalid) for request 0
auth: Failed to validate the user.
Delaying request 0 for 1 seconds
Finished request 0



More information about the Freeradius-Users mailing list