virtual servers

Andrew Meyer andrewm659 at yahoo.com
Wed Nov 29 15:56:10 CET 2017


So i'm getting this when I restart radiusd:

[root at asm-rancid02 mods-enabled]# sudo systemctl status radiusd -l 
● radiusd.service - FreeRADIUS high performance RADIUS server. 
Loaded: loaded (/usr/lib/systemd/system/radiusd.service; enabled; vendor preset: disabled) 
Active: failed (Result: exit-code) since Wed 2017-11-29 08:54:47 CST; 1s ago 
Process: 15573 ExecStart=/usr/sbin/radiusd -d /etc/raddb (code=exited, status=0/SUCCESS) 
Process: 17531 ExecStartPre=/usr/sbin/radiusd -C -X (code=exited, status=1/FAILURE) 
Process: 17530 ExecStartPre=/bin/chown -R radiusd.radiusd /var/run/radiusd (code=exited, status=0/SUCCESS) 
Main PID: 15580 (code=exited, status=0/SUCCESS) 

Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: uses = 0 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: lifetime = 0 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: cleanup_interval = 30 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: idle_timeout = 60 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: retry_delay = 30 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: spread = no 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: } 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: # Instantiating module "eap-tls" from file /etc/raddb/mods-enabled/eap-ts 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: /etc/raddb/mods-enabled/eap-ts[14]: Failed to find 'Auth-Type eap-tls' section.  Cannot authenticate users. 
Nov 29 08:54:47 asm-rancid02.mgt.asm.borg.local radiusd[17531]: /etc/raddb/mods-enabled/eap-ts[14]: Instantiation failed for module "eap-tls" 
[root at asm-rancid02 mods-enabled]# 



Is that because I haven't told a virtual server where to look yet?


On Wednesday, November 29, 2017 4:49 AM, Matthew Newton <mcn at freeradius.org> wrote:



On Wed, 2017-11-29 at 04:15 +0000, Andrew Meyer via Freeradius-Users
wrote:
> I need some help with setting up multiple eap types.  I am running
> CentOS 7.4.  I have 2 profiles or virtual servers setup and want to
> use eap for one and eap-tls for the other. I am a little confused on
> how to set this up.

Easiest way is probably to copy the eap module configuration
raddb/mods-available/eap to say raddb/mods-available/eap-ts, and rename
the instance name, so you have

eap {
  # configuration for one type of eap
  ...
}

as the default, and then e.g.

eap eap-tls {
  # configuration for another type of eap
  ...
}

as your new copy.

Then in one virtual server call "eap" as usual, and in the other
virtual server call "eap-tls".

-- 
Matthew


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html



More information about the Freeradius-Users mailing list