When i try to execute the radtest command with AD user logon credentials it rejects the packet and here is the output.
<br>rad_recv: Access-Request packet from host 127.0.0.1:32874, id=81, length=61
<br>User-Name = "test"
<br>User-Password = "test123"
<br>NAS-IP-Address = 255.255.255.255
<br>NAS-Port = 0
<br>Processing the authorize section of radiusd.conf
<br>modcall: entering group authorize for request 0
<br>modcall[authorize]: module "preprocess" returns ok for request 0
<br>modcall[authorize]: module "chap" returns noop for request 0
<br>modcall[authorize]: module "mschap" returns noop for request 0
<br>rlm_realm: No '@' in User-Name = "test", looking up realm NULL
<br>rlm_realm: No such realm "NULL"
<br>modcall[authorize]: module "suffix" returns noop for request 0
<br>rlm_eap: No EAP-Message, not doing EAP
<br>modcall[authorize]: module "eap" returns noop for request 0
<br>users: Matched entry DEFAULT at line 152
<br>modcall[authorize]: module "files" returns ok for request 0
<br>modcall: leaving group authorize (returns ok) for request 0
<br>rad_check_password: Found Auth-Type System
<br>auth: type "System"
<br>Processing the authenticate section of radiusd.conf
<br>modcall: entering group authenticate for request 0
<br>rlm_unix: [test]: invalid password
<br>modcall[authenticate]: module "unix" returns reject for request 0
<br>modcall: leaving group authenticate (returns reject) for request 0
<br>auth: Failed to validate the user.
<br>
<br>using wbinfo -u and wbinfo -g command, able to pull the users and groups from AD.
<br>
<br>Also I have linux nis server running under same subnet. This machine is binded to linux NIS domain and joined to windows 2003 domain. Here is my nsswitch.conf file.
<br>
<br>passwd: files winbind nis dns
<br>shadow: files nis dns
<br>group: files winbind nis dns
<br>
<br>#hosts: db files nisplus nis dns
<br>hosts: files dns winbind nis
<br>
<br>In users.conf its default configuration:
<br>DEFAULT Auth-Type = System
<br>Fall-Through = 1
<br>
<br>Also i tried removing it from linux nis domain and running only with winbind service, it didnt help me.
<br>Here is the log file i found about winbind service.
<br>
<br>winbindd[16208]: [2006/08/28 10:57:31, 0] nsswitch/winbindd_util.c:winbindd_param_init(560)
<br>winbindd[16208]: winbindd: idmap uid range missing or invalid
<br>winbindd[16208]: [2006/08/28 10:57:31, 0] nsswitch/winbindd_util.c:winbindd_param_init(561)
<br>winbindd[16208]: winbindd: cannot continue, exiting.
<br>winbind: winbindd startup succeeded
<br>
<br>I have another linux machine running good with the same error message.
<br>could someone throw some light to resolve my issue.
<br>Thanks,
<br>Kartthik