Log auth message

BALSIANOK, Peter Peter.Balsianok at orange.sk
Wed Jun 19 08:19:21 CEST 2013


Microsoft Outlook has changed first letter :(

log {
         destination = files
         file = /app_log/radius/radius.log
         auth = yes
         auth_badpass = yes
         auth_goodpass = yes
}

When i use parameter -x, everythink works correct ( i see auth log message ):

WARNING: Ignoring "sql" (see raddb/mods-available/README.rst)
WARNING: Ignoring "ldap" (see raddb/mods-available/README.rst)
WARNING: Ignoring "sql" (see raddb/mods-available/README.rst)
WARNING: Ignoring "sql" (see raddb/mods-available/README.rst)
radiusd: #### Opening IP addresses and Ports ####
Listening on proxy address * port 0
Listening on auth address * port 1812 as server default
Listening on auth address * port 1645 as server default
Ready to process requests.
Waking up in 0.3 seconds.
(0) # Executing section authorize from file /storage/app/radius/raddb/auth/sites-enabled/default
rlm_perl: Added pair NAS-Port-Type = Virtual
rlm_perl: Added pair Acct-Session-Id = d597d9250ac7aeba
rlm_perl: Added pair Service-Type = Framed-User
rlm_perl: Added pair Calling-Station-Id = 421995222222
rlm_perl: Added pair Called-Station-Id = GRETEST01BB2.VPS
rlm_perl: Added pair Framed-Protocol = GPRS-PDP-Context
rlm_perl: Added pair User-Name = gre at test.sk
rlm_perl: Added pair NAS-Identifier = ggsn-01-bb2.orange.sk
rlm_perl: Added pair User-Password = tojejedno
rlm_perl: Added pair Acct-Multi-Session-Id = d597d92505600f87
rlm_perl: Added pair Realm = DEFAULT
rlm_perl: Added pair Stripped-User-Name = gre
rlm_perl: Added pair NAS-IP-Address = 213.151.211.225
rlm_perl: Added pair Current-Time = 1371622553
rlm_perl: Added pair Password-With-Header = {SSHA}TypEiJb0E3IVkhcPcO5Eybq/SYYPcrk+Ix1kTg==
rlm_perl: Added pair VPDN_SERVICE_ID = User-GPRS-GRE
(0) # Executing group from file /storage/app/radius/raddb/auth/sites-enabled/default
(0) pap : login attempt with password "tojejedno"
(0) pap : Using SSHA encryption.
(0) pap : User authenticated successfully
(0) Login OK: [gre at test.sk/tojejedno] (from client localhost port 0 cli 421995222222)
(0) # Executing section post-auth from file /storage/app/radius/raddb/auth/sites-enabled/default
rlm_perl: Added pair NAS-Port-Type = Virtual
rlm_perl: Added pair Acct-Session-Id = d597d9250ac7aeba
rlm_perl: Added pair Service-Type = Framed-User
rlm_perl: Added pair Called-Station-Id = GRETEST01BB2.VPS
rlm_perl: Added pair Calling-Station-Id = 421995222222
rlm_perl: Added pair Framed-Protocol = GPRS-PDP-Context
rlm_perl: Added pair User-Name = gre at test.sk
rlm_perl: Added pair User-Password = tojejedno
rlm_perl: Added pair NAS-Identifier = ggsn-01-bb2.orange.sk
rlm_perl: Added pair Acct-Multi-Session-Id = d597d92505600f87
rlm_perl: Added pair Realm = DEFAULT
rlm_perl: Added pair NAS-IP-Address = 213.151.211.225
rlm_perl: Added pair Stripped-User-Name = gre
rlm_perl: Added pair Framed-Protocol = PPP
rlm_perl: Added pair Service-Type = Framed-User
rlm_perl: Added pair Framed-IP-Address = 10.10.10.1
rlm_perl: Added pair Framed-IP-Netmask = 255.255.255.255
rlm_perl: Added pair SSHA1-Password = 0x4f2a448896f413721592170f70ee44c9babf49860f72b93e231d644e
rlm_perl: Added pair Current-Time = 1371622553
rlm_perl: Added pair Password-With-Header = {SSHA}TypEiJb0E3IVkhcPcO5Eybq/SYYPcrk+Ix1kTg==
rlm_perl: Added pair Auth-Type = PAP
rlm_perl: Added pair VPDN_SERVICE_ID = User-GPRS-GRE
Waking up in 1.7 seconds.
Ready to process requests.

-----Original Message-----
From: freeradius-users-bounces+peter.balsianok=orange.sk at lists.freeradius.org [mailto:freeradius-users-bounces+peter.balsianok=orange.sk at lists.freeradius.org] On Behalf Of Alan DeKok
Sent: Wednesday, June 19, 2013 3:11 AM
To: FreeRadius users mailing list
Subject: Re: Log auth message

BALSIANOK, Peter wrote:
> Configuration ( for logging in radiusd.conf ):
> Log {

  Log?  Or log ?  It is case sensitive.

>         destination = files
>         file = /app_log/radius/radius.log
>         auth = yes
>         auth_badpass = yes
>         auth_goodpass = yes
> }
> 
> Difference between cases are runtime parameters:
> 1. /storage/app/radius/freeradius-3.0.0/sbin/radiusd -d 
> /storage/app/radius/raddb/auth 2. 
> /storage/app/radius/freeradius-3.0.0/sbin/radiusd -x -d 
> /storage/app/radius/raddb/auth
...

> I will not see any auth log message in the main radius log file /app_log/radius/radius.log ( somethink like ):
> Tue Jun 18 08:12:55 2013 : Auth: Login OK: [gre at test.sk/tojejedno] 
> (from client IPSECgtw-01-BB1 port 997 cli 421995222222)

  The messages should be there.

  Run it in debugging mode to see if the "auth*" configuration items are parsed correctly.

  It should also print the "Login OK" messages in debugging mode, too.

  Alan DeKok.

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


More information about the Freeradius-Users mailing list