AW: AW: AW: AW: Authenticating SSH login on a Cisco IOS switch to AD

Mon Feb 14 12:50:42 CET 2011

That is clear, but it seems it is missing in the Lenny Package somehow as http://lists.freeradius.org/pipermail/freeradius-users/2011-January/msg00192.html has exactly the same problem as me, no modules folder being read causing the ntlm_auth not being recognized as module.

Where can I find a proper radiusd.conf? Or where in the radiusd.conf should it be?

The beginning part of our current radiusd.conf:

# -*- text -*-
##
## radiusd.conf	-- FreeRADIUS server configuration file.
##
##	http://www.freeradius.org/
##	$Id: radiusd.conf.in,v 1.272 2008/04/26 15:14:33 aland Exp $
##

######################################################################
#
#	Read "man radiusd" before editing this file.  See the section
#	titled DEBUGGING.  It outlines a method where you can quickly
#	obtain the configuration you want, without running into
#	trouble.
#
#	Run the server in debugging mode, and READ the output.
#
#		$ radiusd -X
#
#	We cannot emphasize this point strongly enough.  The vast
#	majority of problems can be solved by carefully reading the
#	debugging output, which includes warnings about common issues,
#	and suggestions for how they may be fixed.
#
#	There may be a lot of output, but look carefully for words like:
#	"warning", "error", "reject", or "failure".  The messages there
#	will usually be enough to guide you to a solution.
#
#	If you are going to ask a question on the mailing list, then
#	explain what you are trying to do, and include the output from
#	debugging mode (radiusd -X).  Failure to do so means that all
#	of the responses to your question will be people telling you
#	to "post the output of radiusd -X".

######################################################################
#
#  	The location of other config files and logfiles are declared
#  	in this file.
#
#  	Also general configuration for modules can be done in this
#  	file, it is exported through the API to modules that ask for
#  	it.
#
#	See "man radiusd.conf" for documentation on the format of this
#	file.  Note that the individual configuration items are NOT
#	documented in that "man" page.  They are only documented here,
#	in the comments.
#
#	As of 2.0.0, FreeRADIUS supports a simple processing language
#	in the "authorize", "authenticate", "accounting", etc. sections.
#	See "man unlang" for details.
#

prefix = /usr
exec_prefix = /usr
sysconfdir = /etc
localstatedir = /var
sbindir = ${exec_prefix}/sbin
logdir = /var/log/freeradius
raddbdir = /etc/freeradius
radacctdir = ${logdir}/radacct

#  Location of config and logfiles.
confdir = ${raddbdir}
run_dir = ${localstatedir}/run/freeradius

# Should likely be ${localstatedir}/lib/radiusd
db_dir = $(raddbdir)

> -----Ursprüngliche Nachricht-----
> Von: freeradius-users-bounces+chris.schaatsbergen=aleo-
> solar.de at lists.freeradius.org [mailto:freeradius-users-
> bounces+chris.schaatsbergen=aleo-solar.de at lists.freeradius.org] Im
> Auftrag von Alan DeKok
> Gesendet: Montag, 14. Februar 2011 12:40
> An: FreeRadius users mailing list
> Betreff: Re: AW: AW: AW: Authenticating SSH login on a Cisco IOS switch
> to AD
> 
> Schaatsbergen, Chris wrote:
> > OK, I think I found out where things are going wrong.
> >
> > In my Radius -X log I noticed the "Starting - reading configuration
> files" is short, compared to those of others. What is missing is
> actually:
> >
> > including files in directory /usr/local/etc/raddb/modules/
> ...
> > Now where do I enable/disable loading the modules folder?
> 
>   radiusd.conf?
> 
>   Alan DeKok.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html