<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;}
@page Section1
{size:612.0pt 792.0pt;
margin:72.0pt 90.0pt 72.0pt 90.0pt;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=FR-CA link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal>Hi again,<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>I want to know what I making wrong. I have an MSSQL database
and it’s working great. Now I want to tweak my setup with including some
attribute in group. But it’s seems that rlm_sql didn’t go see
groupcheck or groupreply. I also put read_groups = yes in mssql.conf<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>Here is my database and debut output<o:p></o:p></p>
<p class=MsoNormal>usergroup<o:p></o:p></p>
<p class=MsoNormal>1,"guillaume","dynamic"<o:p></o:p></p>
<p class=MsoNormal>2,"jacques","dynamic"<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>Radcheck<o:p></o:p></p>
<p class=MsoNormal>1,"guillaume","Cleartext-Password","xxxxxx",":="<o:p></o:p></p>
<p class=MsoNormal>2,"jacques","Cleartext-Password","xxxxx",":="<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>Radreply<o:p></o:p></p>
<p class=MsoNormal>5, ,"guillaume","Fall-Through","Yes","="<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>Radgroupcheck<o:p></o:p></p>
<p class=MsoNormal>2,"dynamic","Expiration","""4
april 2008""",":="<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>Radgroupreply<o:p></o:p></p>
<p class=MsoNormal>1,"dynamic","Framed-Compression","Van-Jacobsen-TCP-IP",":=",0<o:p></o:p></p>
<p class=MsoNormal>2,"dynamic","Framed-Protocol","PPP",":=",0<o:p></o:p></p>
<p class=MsoNormal>3,"dynamic","Service-Type","Framed-User",":=",0<o:p></o:p></p>
<p class=MsoNormal>4,"dynamic","Framed-MTU","1500",":=",0<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>rad_recv: Access-Request packet from host 172.20.50.202 port
1088, id=49, length=249<o:p></o:p></p>
<p class=MsoNormal> Message-Authenticator =
0xacf874dd95a5e7a44477ebe85628c2d2<o:p></o:p></p>
<p class=MsoNormal> Service-Type = Framed-User<o:p></o:p></p>
<p class=MsoNormal> User-Name = "guillaume\000"<o:p></o:p></p>
<p class=MsoNormal> Framed-MTU = 1488<o:p></o:p></p>
<p class=MsoNormal> State = 0x937fe8889b4ef1e0c024c3839183ef26<o:p></o:p></p>
<p class=MsoNormal> Called-Station-Id =
"00-0F-3D-AB-1C-07:testGuillaume"<o:p></o:p></p>
<p class=MsoNormal> Calling-Station-Id = "00-0E-35-99-F3-E9"<o:p></o:p></p>
<p class=MsoNormal> NAS-Identifier = "D-Link Access Point"<o:p></o:p></p>
<p class=MsoNormal> NAS-Port-Type = Wireless-802.11<o:p></o:p></p>
<p class=MsoNormal> Connect-Info = "CONNECT 54Mbps 802.11g"<o:p></o:p></p>
<p class=MsoNormal> EAP-Message =
0x023100261900170301001b37f64ad3eba1ecf9db603f2431312964a27e49ca72e0f0d1588d99<o:p></o:p></p>
<p class=MsoNormal> NAS-IP-Address = 172.20.50.202<o:p></o:p></p>
<p class=MsoNormal> NAS-Port = 1<o:p></o:p></p>
<p class=MsoNormal> NAS-Port-Id = "STA port # 1"<o:p></o:p></p>
<p class=MsoNormal>+- entering group authorize<o:p></o:p></p>
<p class=MsoNormal>++[preprocess] returns ok<o:p></o:p></p>
<p class=MsoNormal> expand: %{User-Name} -> guillaume<o:p></o:p></p>
<p class=MsoNormal>rlm_sql (sql): sql_set_user escaped user --> 'guillaume'<o:p></o:p></p>
<p class=MsoNormal>rlm_sql (sql): Reserving sql socket id: 2<o:p></o:p></p>
<p class=MsoNormal> expand: SELECT id,UserName,Attribute,Value,op FROM
radcheck WHERE Username = '%{SQL-User-Name}' ORDER BY id -> SELECT<o:p></o:p></p>
<p class=MsoNormal> id,UserName,Attribute,Value,op FROM radcheck WHERE Username
= 'guillaume' ORDER BY id<o:p></o:p></p>
<p class=MsoNormal>query: SELECT id,UserName,Attribute,Value,op FROM radcheck
WHERE Username = 'guillaume' ORDER BY id<o:p></o:p></p>
<p class=MsoNormal>rlm_sql (sql): User found in radcheck table<o:p></o:p></p>
<p class=MsoNormal> expand: SELECT id,UserName,Attribute,Value,op FROM
radreply WHERE Username = '%{SQL-User-Name}' ORDER BY id -> SELECT<o:p></o:p></p>
<p class=MsoNormal> id,UserName,Attribute,Value,op FROM radreply WHERE Username
= 'guillaume' ORDER BY id<o:p></o:p></p>
<p class=MsoNormal>query: SELECT id,UserName,Attribute,Value,op FROM radreply
WHERE Username = 'guillaume' ORDER BY id<o:p></o:p></p>
<p class=MsoNormal>rlm_sql (sql): Released sql socket id: 2<o:p></o:p></p>
<p class=MsoNormal>++[sql] returns ok<o:p></o:p></p>
<p class=MsoNormal>++? if (ok)<o:p></o:p></p>
<p class=MsoNormal>? Evaluating "ok" -> TRUE<o:p></o:p></p>
<p class=MsoNormal>++? if (ok) -> TRUE<o:p></o:p></p>
<p class=MsoNormal>++- entering if (ok)<o:p></o:p></p>
<p class=MsoNormal>+++[control] returns ok<o:p></o:p></p>
<p class=MsoNormal>++- if (ok) returns ok<o:p></o:p></p>
<p class=MsoNormal> rlm_eap: EAP packet type response id 49 length 38<o:p></o:p></p>
<p class=MsoNormal> rlm_eap: Continuing tunnel setup.<o:p></o:p></p>
<p class=MsoNormal>++[eap] returns ok<o:p></o:p></p>
<p class=MsoNormal>++[expiration] returns noop<o:p></o:p></p>
<p class=MsoNormal>++[logintime] returns noop<o:p></o:p></p>
<p class=MsoNormal> rad_check_password: Found Auth-Type EAP<o:p></o:p></p>
<p class=MsoNormal>auth: type "EAP"<o:p></o:p></p>
<p class=MsoNormal>+- entering group authenticate<o:p></o:p></p>
<p class=MsoNormal> rlm_eap: Request found, released from the list<o:p></o:p></p>
<p class=MsoNormal> rlm_eap: EAP/peap<o:p></o:p></p>
<p class=MsoNormal> rlm_eap: processing type peap<o:p></o:p></p>
<p class=MsoNormal> rlm_eap_peap: Authenticate<o:p></o:p></p>
<p class=MsoNormal> rlm_eap_tls: processing TLS<o:p></o:p></p>
<p class=MsoNormal> eaptls_verify returned 7<o:p></o:p></p>
<p class=MsoNormal> rlm_eap_tls: Done initial handshake<o:p></o:p></p>
<p class=MsoNormal> eaptls_process returned 7<o:p></o:p></p>
<p class=MsoNormal> rlm_eap_peap: EAPTLS_OK<o:p></o:p></p>
<p class=MsoNormal> rlm_eap_peap: Session established. Decoding tunneled
attributes.<o:p></o:p></p>
<p class=MsoNormal> rlm_eap_peap: Received EAP-TLV response.<o:p></o:p></p>
<p class=MsoNormal> rlm_eap_peap: Success<o:p></o:p></p>
<p class=MsoNormal> rlm_eap: Freeing handler<o:p></o:p></p>
<p class=MsoNormal>++[eap] returns ok<o:p></o:p></p>
<p class=MsoNormal>Sending Access-Accept of id 49 to 172.20.50.202 port 1088<o:p></o:p></p>
<p class=MsoNormal> MS-MPPE-Recv-Key =
0xc65d46cf1ee515a044585d7158c6c0dd39d183728c7541316f1171f701729069<o:p></o:p></p>
<p class=MsoNormal> MS-MPPE-Send-Key =
0x338d0bb6e1edd84602c3795eb3dc12da8e04b1b85dd988013a7e621e3f40399a<o:p></o:p></p>
<p class=MsoNormal> EAP-Message = 0x03310004<o:p></o:p></p>
<p class=MsoNormal> Message-Authenticator =
0x00000000000000000000000000000000<o:p></o:p></p>
<p class=MsoNormal> User-Name = "guillaume"<o:p></o:p></p>
<p class=MsoNormal>Finished request 9.<o:p></o:p></p>
<p class=MsoNormal>Going to the next request<o:p></o:p></p>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal>Thank<o:p></o:p></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>----------------------------</span><span
style='font-size:12.0pt;font-family:"Times New Roman","serif"'><o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Guillaume
Chartrand</span><span style='font-size:12.0pt;font-family:"Times New Roman","serif"'><o:p></o:p></span></p>
</div>
</body>
</html>