authentication failed because sqlcounter...

Nizar Zulmi siapa_bilang_emailku_panjang at yahoo.com
Fri May 8 21:13:39 CEST 2009


mm confusing..i just enable the sqlcounter in radiusd.conf. i just let it as default no change i made in noresetcounter module. then i adding noresetcounter in authorize and instantiate section. 
i have defined 1user named tes and password tes has loged in normally before i add attribut max-all-session in the table radcheck just like this. 
+----+----------+-----------------+----+--------+
| id | UserName | Attribute       | op | Value  |
+----+----------+-----------------+----+--------+
|  1 | nizar    | Password        | == | nizar  | 
|  2 | nizar1   | Password        | == | nizar1 | 
|  6 | tes      | Max-All-Session | == | 90     | 
|  4 | tes      | Password        | == | tes    | 
+----+----------+-----------------+----+--------+
after i adding the attribut max-all-session the user tes cannot login anymore. i do running freeradius in debug mode and the following si the result..
somebody help me please...
================freeradius debug result=======
rad_recv: Access-Request packet from host 192.168.0.1:56614, id=0, length=194
    User-Name = "tes"
    User-Password = "tes"
    NAS-IP-Address = 0.0.0.0
    Service-Type = Login-User
    Framed-IP-Address = 192.168.182.3
    Calling-Station-Id = "00-1E-68-23-E9-C8"
    Called-Station-Id = "00-00-E2-78-FF-39"
    NAS-Identifier = "nas01"
    Acct-Session-Id = "4a04816800000000"
    NAS-Port-Type = Wireless-802.11
    NAS-Port = 0
    Message-Authenticator = 0x1c3a148590ef0762aed6069cc9ac0715
    WISPr-Logoff-URL = "http://192.168.182.1:3990/logoff"
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 3
  modcall[authorize]: module "preprocess" returns ok for request 3
  modcall[authorize]: module "chap" returns noop for request 3
  modcall[authorize]: module "mschap" returns noop for request 3
    rlm_realm: No '@' in User-Name = "tes", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 3
  rlm_eap: No EAP-Message, not doing EAP
  modcall[authorize]: module "eap" returns noop for request 3
radius_xlat:  'tes'
rlm_sql (sql): sql_set_user escaped user --> 'tes'
radius_xlat:  'SELECT id, UserName, Attribute, Value, op           FROM radcheck           WHERE Username = 'tes'           ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 0
radius_xlat:  'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE usergroup.Username = 'tes' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat:  'SELECT id, UserName, Attribute, Value, op           FROM radreply           WHERE Username = 'tes'           ORDER BY id'
radius_xlat:  'SELECT radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op  FROM radgroupreply,usergroup WHERE usergroup.Username = 'tes' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 0
rlm_sql (sql): No matching entry in the database for request from user [tes]
  modcall[authorize]: module "sql" returns notfound for request 3
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
  modcall[authorize]: module "noresetcounter" returns noop for request 3
rlm_pap: WARNING! No "known good" password found for the user.  Authentication may fail because of this.
  modcall[authorize]: module "pap" returns noop for request 3
modcall: leaving group authorize (returns ok) for request 3
auth: No authenticate method (Auth-Type) configuration found for the request: Rejecting the user
auth: Failed to validate the user.
Delaying request 3 for 1 seconds
Finished request 3
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 1 seconds...
rad_recv: Access-Request packet from host 192.168.0.1:56614, id=0, length=194
Sending Access-Reject of id 0 to 192.168.0.1 port 56614
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 3 ID 0 with timestamp 4a048180
Nothing to do.  Sleeping until we see a request.




      
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090508/8eb2fb81/attachment.html>


More information about the Freeradius-Users mailing list