<html><body><div style="color:#000; background-color:#fff; font-family:times new roman, new york, times, serif;font-size:10pt"><div style="" class="">Hi,</div><div style="" class=""><br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;">I'm basically new to freeradius. Please help to isolate this problem. Shown below are the logs for radiusd -X.</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;"><br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;">I'm getting the warning below. It looks like I'm having config issues and cannot find where to
start.<br></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;"><br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;">I just did a local check if Authentciation will be accepted.<br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;"><br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;">
<style style="" class="">
<!--
/* Font Definitions */
@font-face
{font-family:"MS 明朝";
mso-font-charset:78;
mso-generic-font-family:auto;
mso-font-pitch:variable;
mso-font-signature:1 134676480 16 0 131072 0;}
@font-face
{font-family:"MS 明朝";
mso-font-charset:78;
mso-generic-font-family:auto;
mso-font-pitch:variable;
mso-font-signature:1 134676480 16 0 131072 0;}
@font-face
{font-family:Cambria;
panose-1:2 4 5 3 5 4 6 3 2 4;
mso-font-charset:0;
mso-generic-font-family:auto;
mso-font-pitch:variable;
mso-font-signature:-536870145 1073743103 0 0 415 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{mso-style-unhide:no;
mso-style-qformat:yes;
mso-style-parent:"";
margin:0in;
margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:12.0pt;
font-family:Cambria;
mso-ascii-font-family:Cambria;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:"MS 明朝";
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Cambria;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
pre
{mso-style-noshow:yes;
mso-style-priority:99;
mso-style-link:"HTML Preformatted Char";
margin:0in;
margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:Courier;
mso-fareast-font-family:"MS 明朝";
mso-fareast-theme-font:minor-fareast;
mso-bidi-font-family:Courier;}
span.HTMLPreformattedChar
{mso-style-name:"HTML Preformatted Char";
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-unhide:no;
mso-style-locked:yes;
mso-style-link:"HTML Preformatted";
mso-ansi-font-size:10.0pt;
mso-bidi-font-size:10.0pt;
font-family:Courier;
mso-ascii-font-family:Courier;
mso-hansi-font-family:Courier;
mso-bidi-font-family:Courier;}
.MsoChpDefault
{mso-style-type:export-only;
mso-default-props:yes;
font-family:Cambria;
mso-ascii-font-family:Cambria;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:"MS 明朝";
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Cambria;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.25in 1.0in 1.25in;
mso-header-margin:.5in;
mso-footer-margin:.5in;
mso-paper-source:0;}
div.WordSection1
{page:WordSection1;}
-->
</style>
</div><pre style="" class="">echo "User-Name=testing,User-Password=testing,Framed-Protocol=PPP " | /usr/local/bin/radclient localhost:1812 auth testing123</pre>
<div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;">Radiusd -X debug</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;"><br style="" class="">Received Access-Request Id 252 from 127.0.0.1:60268 to 127.0.0.1:1812 length 53<br style="" class=""> User-Name = 'testing'<br style="" class=""> User-Password = 'testing'<br style="" class=""> Framed-Protocol = PPP<br style="" class="">(1) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default<br style="" class="">(1) authorize {<br style="" class="">(1) filter_username filter_username {<br style="" class="">(1) if (User-Name != "%{tolower:%{User-Name}}")
<br style="" class="">(1) EXPAND %{tolower:%{User-Name}}<br style="" class="">(1) --> testing<br style="" class="">(1) if (User-Name != "%{tolower:%{User-Name}}") -> FALSE<br style="" class="">(1) if (User-Name =~ / /) <br style="" class="">(1) if (User-Name =~ / /) -> FALSE<br style="" class="">(1) if (User-Name =~ /@.*@/ ) <br style="" class="">(1) if (User-Name =~ /@.*@/ ) -> FALSE<br style="" class="">(1) if (User-Name =~ /\\.\\./ ) <br style="" class="">(1) if (User-Name =~ /\\.\\./ ) -> FALSE<br style="" class="">(1) if ((User-Name =~ /@/) && (User-Name !~ /@(.+)\\.(.+)$/)) <br style="" class="">(1) if ((User-Name =~ /@/) && (User-Name !~
/@(.+)\\.(.+)$/)) -> FALSE<br style="" class="">(1) if (User-Name =~ /\\.$/) <br style="" class="">(1) if (User-Name =~ /\\.$/) -> FALSE<br style="" class="">(1) if (User-Name =~ /@\\./) <br style="" class="">(1) if (User-Name =~ /@\\./) -> FALSE<br style="" class="">(1) } # filter_username filter_username = notfound<br style="" class="">(1) [preprocess] = ok<br style="" class="">(1) [chap] = noop<br style="" class="">(1) [mschap] = noop<br style="" class="">(1) [digest] = noop<br style="" class="">(1) suffix : No '@' in User-Name = "testing", looking up realm NULL<br style="" class="">(1) suffix : No such realm "NULL"<br style="" class="">(1) [suffix] = noop<br style="" class="">(1) eap : No EAP-Message, not doing EAP<br style=""
class="">(1) [eap] = noop<br style="" class="">(1) files : users: Matched entry DEFAULT at line 181<br style="" class="">(1) [files] = ok<br style="" class="">(1) [expiration] = noop<br style="" class="">(1) [logintime] = noop<br style="" class="">(1) WARNING: pap : No "known good" password found for the user. Not setting Auth-Type.<br style="" class="">(1) WARNING: pap : Authentication will fail unless a "known good" password is available.<br style="" class="">(1) [pap] = noop<br style="" class="">(1) } # authorize = ok<br style="" class="">(1) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject<br style="" class="">(1) Failed to authenticate the user.<br style="" class="">(1) Using Post-Auth-Type Reject<br style="" class="">(1) # Executing group from file /usr/local/etc/raddb/sites-enabled/default<br style="" class="">(1) Post-Auth-Type REJECT
{<br style="" class="">(1) attr_filter.access_reject : EXPAND %{User-Name}<br style="" class="">(1) attr_filter.access_reject : --> testing<br style="" class="">(1) attr_filter.access_reject : Matched entry DEFAULT at line 11<br style="" class="">(1) [attr_filter.access_reject] = updated<br style="" class="">(1) eap : Request didn't contain an EAP-Message, not inserting EAP-Failure<br style="" class="">(1) [eap] = noop<br style="" class="">(1) remove_reply_message_if_eap remove_reply_message_if_eap {<br style="" class="">(1) if (reply:EAP-Message && reply:Reply-Message) <br style="" class="">(1) if (reply:EAP-Message && reply:Reply-Message) -> FALSE<br style="" class="">(1) else else {<br style="" class="">(1) [noop] = noop<br style="" class="">(1) } # else else =
noop<br style="" class="">(1) } # remove_reply_message_if_eap remove_reply_message_if_eap = noop<br style="" class="">(1) } # Post-Auth-Type REJECT = updated<br style="" class="">(1) Delaying response for 1 seconds<br style="" class="">Waking up in 0.3 seconds.<br style="" class="">Waking up in 0.6 seconds.<br style="" class="">(1) Sending delayed response<br style="" class="">Sending Access-Reject Id 252 from 127.0.0.1:1812 to 127.0.0.1:60268<br style="" class="">Waking up in 3.9 seconds.<br style="" class="">(1) Cleaning up request packet ID 252 with timestamp +1643<br style="" class="">Ready to process requests.</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;"><br></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color:
transparent; font-style: normal;">Thanks,</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: times new roman,new york,times,serif; background-color: transparent; font-style: normal;">Gie<br style="" class=""></div></div></body></html>