Huntgroup problem

Parashar Singh parashar.singh2003 at gmail.com
Mon May 25 09:25:31 CEST 2009


Hi
I am new to freeradius.
I want to implement huntgroup for associating a user name with particular
NAS device.
I am performing username authentication with Auth-Type = LDAP
If my NAS devices are cisco routes, with IP A.B.C.D, and I want to
authenticate this device with
user1/***** in LDAP, can some one pls provide what are configuration needed
to modified in which files.

If I am doing following in /etc/raddb/users file:

kmcuser Auth-Type = LDAP, Huntgroup-Name == "kmc1"
        Fall-Through = Yes

and following lines in /etc/raddb/huntgroup file:

kmc1            NAS-IP-Address == 172.16.0.150

After restarting radius server with radiusd -X,
Now if I am trying to logon to NAS device, it is unsuccessfull with
following messages:

rad_recv: Access-Request packet from host 172.16.0.150:47715, id=31,
length=65
        NAS-IP-Address = 172.16.0.155
        Service-Type = Login-User
        NAS-Port-Type = Virtual
        User-Name = "kmcuser"
        User-Password = "kmcnet"
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
  modcall[authorize]: module "preprocess" returns ok for request 0
  modcall[authorize]: module "chap" returns noop for request 0
  modcall[authorize]: module "mschap" returns noop for request 0
    rlm_realm: No '@' in User-Name = "kmcuser", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 0
  rlm_eap: No EAP-Message, not doing EAP
  modcall[authorize]: module "eap" returns noop for request 0
  modcall[authorize]: module "files" returns notfound for request 0
modcall: leaving group authorize (returns ok) for request 0
auth: No authenticate method (Auth-Type) configuration found for the
request: Re
jecting the user
auth: Failed to validate the user.
Login incorrect: [kmcuser] (from client private-network-1 port 0)
Delaying request 0 for 1 seconds
Finished request 0
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 31 to 172.16.0.150 port 47715
Waking up in 4 seconds...



so pls tell me how shall I solve this problem?/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090525/7eaccd2a/attachment.html>


More information about the Freeradius-Users mailing list