Hello!
<div><br></div><div>I'm having problems configuring freeradius with smsmotp. I did every step according to the materials found here:</div><div><a href="http://wiki.freeradius.org/Rlm_smsotp" target="_blank">http://wiki.freeradius.org/Rlm_smsotp</a></div>
<div><br></div><div>The problem is that freeradius doesn't start up succesfully. According to the logs, it can't find the smsotp Auth-type.</div><div><br></div><div>My default site configuration:</div><div><div>authorize {</div>
<div> smsotp</div></div><div>...</div><div>}</div><div><div>authenticate {</div><div> Auth-Type smsotp {</div><div> pap</div><div> smsotp</div><div> }</div><div>
<br></div><div> Auth-Type smsotp-reply {</div><div> smsotp</div><div> }</div></div><div>...}</div><div><br></div><div>The part I've added to the users file:</div><div><div>feri Cleartext-Password := "Abcd1234"</div>
<div>DEFAULT Auth-Type := smsotp</div></div><div><br></div><div>The debug output:</div><div><div>Starting - reading configuration files ...</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/radiusd.conf</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/proxy.conf</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/clients.conf</div>
<div>including files in directory /local/freeradius-server-2.1.12/etc/raddb/modules/</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/wimax</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/rediswho</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/sradutmp</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/chap</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/digest</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/perl</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/linelog</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/replicate</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/echo</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/detail.log</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/soh</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/unix</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/ldap</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/acct_unique</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/cui</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/smbpasswd</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/redis</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/exec</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/otp</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/<a href="http://detail.example.com" target="_blank">detail.example.com</a></div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/counter</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/logintime</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/mschap</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/mac2ip</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/smsotp</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/sql_log</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/always</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/krb5</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/checkval</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/detail</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/policy</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/dynamic_clients</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/radutmp</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/ippool</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/passwd</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/mac2vlan</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/opendirectory</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/pam</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/ntlm_auth</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/etc_group</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/expiration</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/realm</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/inner-eap</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/pap</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/expr</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/files</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/attr_filter</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/preprocess</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/attr_rewrite</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/modules/sqlcounter_expire_on_login</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/eap.conf</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/policy.conf</div><div>including files in directory /local/freeradius-server-2.1.12/etc/raddb/sites-enabled/</div>
<div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/sites-enabled/control-socket</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/sites-enabled/default.bak</div><div>
including configuration file /local/freeradius-server-2.1.12/etc/raddb/sites-enabled/inner-tunnel</div><div>including configuration file /local/freeradius-server-2.1.12/etc/raddb/sites-enabled/default</div><div>main {</div>
<div> allow_core_dumps = no</div><div>}</div><div>including dictionary file /local/freeradius-server-2.1.12/etc/raddb/dictionary</div><div>main {</div><div> name = "radiusd"</div><div> prefix = "/local/freeradius-server-2.1.12"</div>
<div> localstatedir = "/local/freeradius-server-2.1.12/var"</div><div> sbindir = "/local/freeradius-server-2.1.12/sbin"</div><div> logdir = "/local/freeradius-server-2.1.12/var/log/radius"</div>
<div> run_dir = "/local/freeradius-server-2.1.12/var/run/radiusd"</div><div> libdir = "/local/freeradius-server-2.1.12/lib"</div><div> radacctdir = "/local/freeradius-server-2.1.12/var/log/radius/radacct"</div>
<div> hostname_lookups = no</div><div> max_request_time = 30</div><div> cleanup_delay = 5</div><div> max_requests = 1024</div><div> pidfile = "/local/freeradius-server-2.1.12/var/run/radiusd/radiusd.pid"</div>
<div> checkrad = "/local/freeradius-server-2.1.12/sbin/checkrad"</div><div> debug_level = 0</div><div> proxy_requests = yes</div><div> log {</div><div> stripped_names = no</div><div>
auth = no</div>
<div> auth_badpass = no</div><div> auth_goodpass = no</div><div> }</div><div> security {</div><div> max_attributes = 200</div><div> reject_delay = 1</div><div> status_server = yes</div>
<div>
}</div><div>}</div><div>radiusd: #### Loading Realms and Home Servers ####</div><div> proxy server {</div><div> retry_delay = 5</div><div> retry_count = 3</div><div> default_fallback = no</div><div>
dead_time = 120</div>
<div> wake_all_if_all_dead = no</div><div> }</div><div> home_server localhost {</div><div> ipaddr = 127.0.0.1</div><div> port = 1812</div><div> type = "auth"</div><div> secret = "testing123"</div>
<div> response_window = 20</div><div> max_outstanding = 65536</div><div> require_message_authenticator = yes</div><div> zombie_period = 40</div><div> status_check = "status-server"</div>
<div> ping_interval = 30</div><div> check_interval = 30</div><div> num_answers_to_alive = 3</div><div> num_pings_to_alive = 3</div><div> revive_interval = 120</div><div> status_check_timeout = 4</div>
<div> coa {</div><div> irt = 2</div><div> mrt = 16</div><div> mrc = 5</div><div> mrd = 30</div><div> }</div><div> }</div><div> home_server_pool my_auth_failover {</div><div> type = fail-over</div>
<div> home_server = localhost</div><div> }</div><div> realm <a href="http://example.com" target="_blank">example.com</a> {</div><div> auth_pool = my_auth_failover</div><div> }</div><div> realm LOCAL {</div>
<div> }</div><div>
radiusd: #### Loading Clients ####</div><div> client localhost {</div><div> ipaddr = 127.0.0.1</div><div> require_message_authenticator = no</div><div> secret = "testing123"</div><div> nastype = "other"</div>
<div> }</div><div> client 192.168.25.68 {</div><div> require_message_authenticator = no</div><div> secret = "Abcd1234"</div><div> shortname = "WLC"</div><div> nastype = "cisco"</div>
<div> }</div><div>radiusd: #### Instantiating modules ####</div><div> instantiate {</div><div> Module: Linked to module rlm_exec</div><div> Module: Instantiating module "exec" from file /local/freeradius-server-2.1.12/etc/raddb/modules/exec</div>
<div> exec {</div><div> wait = no</div><div> input_pairs = "request"</div><div> shell_escape = yes</div><div> }</div><div> Module: Linked to module rlm_expr</div><div> Module: Instantiating module "expr" from file /local/freeradius-server-2.1.12/etc/raddb/modules/expr</div>
<div> Module: Linked to module rlm_expiration</div><div> Module: Instantiating module "expiration" from file /local/freeradius-server-2.1.12/etc/raddb/modules/expiration</div><div> expiration {</div><div> reply-message = "Password Has Expired "</div>
<div> }</div><div> Module: Linked to module rlm_logintime</div><div> Module: Instantiating module "logintime" from file /local/freeradius-server-2.1.12/etc/raddb/modules/logintime</div><div> logintime {</div>
<div>
reply-message = "You are calling outside your allowed timespan "</div><div> minimum-timeout = 60</div><div> }</div><div> }</div><div>radiusd: #### Loading Virtual Servers ####</div><div>server { # from file /local/freeradius-server-2.1.12/etc/raddb/radiusd.conf</div>
<div> modules {</div><div> Module: Creating Auth-Type = digest</div><div> Module: Creating Post-Auth-Type = REJECT</div><div> Module: Checking authenticate {...} for more modules to load</div><div> Module: Linked to module rlm_pap</div>
<div> Module: Instantiating module "pap" from file /local/freeradius-server-2.1.12/etc/raddb/modules/pap</div><div> pap {</div><div> encryption_scheme = "auto"</div><div> auto_header = no</div>
<div> }</div><div> Module: Linked to module rlm_chap</div><div> Module: Instantiating module "chap" from file /local/freeradius-server-2.1.12/etc/raddb/modules/chap</div><div> Module: Linked to module rlm_mschap</div>
<div> Module: Instantiating module "mschap" from file /local/freeradius-server-2.1.12/etc/raddb/modules/mschap</div><div> mschap {</div><div> use_mppe = yes</div><div> require_encryption = no</div>
<div> require_strong = no</div><div> with_ntdomain_hack = no</div><div> allow_retry = yes</div><div> }</div><div> Module: Linked to module rlm_digest</div><div> Module: Instantiating module "digest" from file /local/freeradius-server-2.1.12/etc/raddb/modules/digest</div>
<div> Module: Linked to module rlm_unix</div><div> Module: Instantiating module "unix" from file /local/freeradius-server-2.1.12/etc/raddb/modules/unix</div><div> unix {</div><div> radwtmp = "/local/freeradius-server-2.1.12/var/log/radius/radwtmp"</div>
<div> }</div><div> Module: Linked to module rlm_eap</div><div> Module: Instantiating module "eap" from file /local/freeradius-server-2.1.12/etc/raddb/eap.conf</div><div> eap {</div><div> default_eap_type = "md5"</div>
<div> timer_expire = 60</div><div> ignore_unknown_eap_types = no</div><div> cisco_accounting_username_bug = no</div><div> max_sessions = 4096</div><div> }</div><div> Module: Linked to sub-module rlm_eap_md5</div>
<div> Module: Instantiating eap-md5</div><div> Module: Linked to sub-module rlm_eap_leap</div><div> Module: Instantiating eap-leap</div><div> Module: Linked to sub-module rlm_eap_gtc</div><div> Module: Instantiating eap-gtc</div>
<div> gtc {</div><div> challenge = "Password: "</div><div> auth_type = "PAP"</div><div> }</div><div> Module: Linked to sub-module rlm_eap_tls</div><div> Module: Instantiating eap-tls</div>
<div> tls {</div><div> rsa_key_exchange = no</div><div> dh_key_exchange = yes</div><div> rsa_key_length = 512</div><div> dh_key_length = 512</div><div> verify_depth = 0</div><div> CA_path = "/local/freeradius-server-2.1.12/etc/raddb/certs"</div>
<div> pem_file_type = yes</div><div> private_key_file = "/local/freeradius-server-2.1.12/etc/raddb/certs/server.pem"</div><div> certificate_file = "/local/freeradius-server-2.1.12/etc/raddb/certs/server.pem"</div>
<div> CA_file = "/local/freeradius-server-2.1.12/etc/raddb/certs/ca.pem"</div><div> private_key_password = "whatever"</div><div> dh_file = "/local/freeradius-server-2.1.12/etc/raddb/certs/dh"</div>
<div> random_file = "/local/freeradius-server-2.1.12/etc/raddb/certs/random"</div><div> fragment_size = 1024</div><div> include_length = yes</div><div> check_crl = no</div><div> cipher_list = "DEFAULT"</div>
<div> make_cert_command = "/local/freeradius-server-2.1.12/etc/raddb/certs/bootstrap"</div><div> ecdh_curve = "prime256v1"</div><div> cache {</div><div> enable = no</div><div> lifetime = 24</div>
<div> max_entries = 255</div><div> }</div><div> verify {</div><div> }</div><div> ocsp {</div><div> enable = no</div><div> override_cert_url = yes</div><div> url = "<a href="http://127.0.0.1/ocsp/" target="_blank">http://127.0.0.1/ocsp/</a>"</div>
<div> }</div><div> }</div><div> Module: Linked to sub-module rlm_eap_ttls</div><div> Module: Instantiating eap-ttls</div><div> ttls {</div><div> default_eap_type = "md5"</div><div> copy_request_to_tunnel = no</div>
<div> use_tunneled_reply = no</div><div> virtual_server = "inner-tunnel"</div><div> include_length = yes</div><div> }</div><div> Module: Linked to sub-module rlm_eap_peap</div><div> Module: Instantiating eap-peap</div>
<div> peap {</div><div> default_eap_type = "mschapv2"</div><div> copy_request_to_tunnel = no</div><div> use_tunneled_reply = no</div><div> proxy_tunneled_request_as_eap = yes</div>
<div>
virtual_server = "inner-tunnel"</div><div> soh = no</div><div> }</div><div> Module: Linked to sub-module rlm_eap_mschapv2</div><div> Module: Instantiating eap-mschapv2</div><div> mschapv2 {</div>
<div> with_ntdomain_hack = no</div><div> send_error = no</div><div> }</div><div> Module: Checking authorize {...} for more modules to load</div><div> Module: Linked to module rlm_preprocess</div><div> Module: Instantiating module "preprocess" from file /local/freeradius-server-2.1.12/etc/raddb/modules/preprocess</div>
<div> preprocess {</div><div> huntgroups = "/local/freeradius-server-2.1.12/etc/raddb/huntgroups"</div><div> hints = "/local/freeradius-server-2.1.12/etc/raddb/hints"</div><div> with_ascend_hack = no</div>
<div> ascend_channels_per_line = 23</div><div> with_ntdomain_hack = no</div><div> with_specialix_jetstream_hack = no</div><div> with_cisco_vsa_hack = no</div><div> with_alvarion_vsa_hack = no</div>
<div> }</div><div> Module: Linked to module rlm_realm</div><div> Module: Instantiating module "suffix" from file /local/freeradius-server-2.1.12/etc/raddb/modules/realm</div><div> realm suffix {</div><div> format = "suffix"</div>
<div> delimiter = "@"</div><div> ignore_default = no</div><div> ignore_null = no</div><div> }</div><div> Module: Linked to module rlm_files</div><div> Module: Instantiating module "files" from file /local/freeradius-server-2.1.12/etc/raddb/modules/files</div>
<div> files {</div><div> usersfile = "/local/freeradius-server-2.1.12/etc/raddb/users"</div><div> acctusersfile = "/local/freeradius-server-2.1.12/etc/raddb/acct_users"</div><div> preproxy_usersfile = "/local/freeradius-server-2.1.12/etc/raddb/preproxy_users"</div>
<div> compat = "no"</div><div> }</div><div>/local/freeradius-server-2.1.12/etc/raddb/users[206]: Parse error (check) for entry DEFAULT: Unknown value smsotp for attribute Auth-Type</div><div>Errors reading /local/freeradius-server-2.1.12/etc/raddb/users</div>
<div>/local/freeradius-server-2.1.12/etc/raddb/modules/files[7]: Instantiation failed for module "files"</div><div>/local/freeradius-server-2.1.12/etc/raddb/sites-enabled/default.bak[170]: Failed to load module "files".</div>
<div>/local/freeradius-server-2.1.12/etc/raddb/sites-enabled/default.bak[69]: Errors parsing authorize section.</div></div><div><br></div><div>Could anyone point me in the right direction? Any help would be appreciated.</div>
<div><br></div><div>Regards,</div>
<div>Feri</div><div><br></div>