<br> modcall[authorize]: module "auth_log" returns ok for request 3<br> modcall[authorize]: module "chap" returns noop for request 3<br> rlm_realm: Looking up realm "voip.domain.br" for User-Name = "teste@voip.domain.br"<br> rlm_realm: Found realm "DEFAULT"<br> rlm_realm: Proxying request from user teste to realm DEFAULT<br> rlm_realm: Adding Realm = "DEFAULT"<br> rlm_realm: Preparing to proxy authentication request to realm "DEFAULT"<br> modcall[authorize]: module "suffix" returns updated for request 3<br> rlm_digest: Adding Auth-Type = DIGEST<br> modcall[authorize]: module "digest" returns ok for request 3<br> rlm_ldap: - authorize<br> rlm_ldap: performing user authorization for teste@voip.domain.br<br> radius_xlat: '(uid=teste@voip.domain.br)'<br> radius_xlat: 'ou=users,dc=voip,dc=domain,dc=br'<br> rlm_ldap: ldap_get_conn: Checking Id:
0<br> rlm_ldap: ldap_get_conn: Got Id: 0<br> rlm_ldap: performing search in ou=users,dc=voip,dc=domain,dc=br, with filter (uid=teste@voip.domain.br)<br> rlm_ldap: object not found or got ambiguous search result<br> rlm_ldap: search failed<br> rlm_ldap: ldap_release_conn: Release Id: 0<br> modcall[authorize]: module "ldap" returns notfound for request 3<br> modcall: leaving group authorize (returns notfound) for request 3<br> Sending Access-Request of id 3 to 10.2.1.XY port 1600<br> User-Name = "teste@voip.domain.br"<br> Digest-Attributes = 0x0a077465737465<br> Digest-Attributes = 0x010e766f69702e756662612e6272<br> Digest-Attributes = 0x022a34353039343233343264313165616336306262366262633263373539643630666362383939656131<br> Digest-Attributes =
0x04127369703a766f69702e756662612e6272<br> Digest-Attributes = 0x030a5245474953544552<br> Digest-Response = "4283445dcb36643dab5f437e10f692bf"<br> Service-Type = IAPP-Register<br> X-Ascend-PW-Lifetime = 0x7465737465<br> NAS-IP-Address = 10.2.1.XX<br> NAS-Port = 5060<br> Proxy-State = 0x323038<br> Re-sending Access-Request of id 0 to 10.2.1.XX port 1600<br> User-Name = "teste@voip.domain.br"<br> Digest-Attributes = 0x0a077465737465<br> Digest-Attributes = 0x010e766f69702e756662612e6272<br> Digest-Attributes =
0x022a34353039343233343264313165616336306262366262633263373539643630666362383939656131<br> Digest-Attributes = 0x04127369703a766f69702e756662612e6272<br> Digest-Attributes = 0x030a5245474953544552<br> Digest-Response = "4283445dcb36643dab5f437e10f692bf"<br> Service-Type = IAPP-Register<br> X-Ascend-PW-Lifetime = 0x7465737465<br> NAS-IP-Address = 10.2.1.XX<br> NAS-Port = 5060<br> Client-IP-Address = 10.2.1.XX<br> Realm = "DEFAULT"<br> Module-Failure-Message = "rlm_ldap: User not found"<br> Realm =
"DEFAULT"<br> Proxy-State = 0x323035<br> Waking up in 1 seconds...<br> rad_recv: Access-Request packet from host 10.2.1.XX:33634, id=206, length=200<br> Ignoring duplicate packet from client OpenSER:33634 - ID: 206, due to outstanding proxied request 1.<br> <br> Its seems the proxy is working, but it dont communicate with the IAS. <br> <br> -- Module-Failure-Message = "rlm_ldap: User not found" --<br> I dont know what meanig, but the sound is not good.<br> The command ldasearch return a rigth answer, I dont know what happended.<br> <br> The problem is in IAS? How can I test it?<br> <br> Any ideia?<br> <br> Merci.<br> <br> --------<br><br><b><i>freeradius-users-request@lists.freeradius.org</i></b> escreveu:<blockquote class="replbq" style="border-left: 2px solid rgb(16, 16, 255); margin-left: 5px; padding-left: 5px;"><jamesw @deakin.edu.au=""><freeradius-users @lists.freeradius.org=""><stefan.winter @restena.lu=""><freeradius-users
@lists.freeradius.org="">Hi,<br><br>> How can I transform freeradius server in a proxy?<br>> I configured the proxy.conf, but seems dont work<br>><br>> And I uncommnet the line in radiusd.conf:<br>><br>> proxy_requests = yes<br>> $INCLUDE ${confdir}/proxy.conf<br>><br>> I wanna do this:<br>> |Openser| -> |Radiusclient| -> |Freeradius| -> |IAS| -> |AD|<br>><br>> Its work?<br>><br>> And in IAS should I configured anything?<br><br>Configure the NULL realm with the same settings as DEFAULT. Other than that, <br>the config sounds good to me. Did you change anything apart from that in the <br>default config file? In particular, you need to have at least one instance of <br>the "realm" module in authorize { }. The default config has "suffix" in <br>there, that should be fine. You need to be sure then that your user names <br>don't contain the @ character - otherwise they won't match the DEFAULT realm <br>you set up
in proxy.conf.<br><br>If you are positive that an instance of realm is in authorize and NULL is <br>configured, but it still doesn't work then please post the debug output <br>(radiusd -X) of a packet that arrived and was supposed to be proxied, but <br>wasn't.<br><br>> Sorry for the portuguese e-mail.<br><br>When I read it, I wondered what strange dialect of Spanish this is. :-) <br>Portuguese and Spanish aren't that far apart after all, it seems.<br><br>Greetings,<br><br>Stefan Winter<br></freeradius-users></stefan.winter></freeradius-users></jamesw></blockquote><br><p>
<hr size=1>
<a href="http://us.rd.yahoo.com/mail/br/tagline/freeisp/*http://br.acesso.yahoo.com">Yahoo! Acesso Grátis</a> - Internet rápida e grátis. Instale o discador agora!