Hello Alan, everyone, It finally succeeded. Two were wrong. One point is pointed out from Alan, in that the users file only describes the user name (without realm), The other one was not restarted after changing the users file, and the change was not reflected. As a result, authentication in the users file now works by writing in the users file as follows. # cat users radtest Cleartext-Password := "test" - users file # radtest radtest@eduroam.test.edu test localhost 0 testing 123 -> Received Access-Accept - ntlm_auth (AD backend) # radtest -t mschap aduser@eduroam.test.edu test localhost 0 testing 123 -> Received Access-Accept Thank you very much for your advice. 2017-01-26 0:33 GMT+09:00 Alan DeKok <aland@deployingradius.com>:
On Jan 24, 2017, at 11:24 PM, Seiichirou Hiraoka <seiichirou.hiraoka@gmail.com> wrote:
This is my radiusd -X all debug logs.
As I guessed, you have a realm "eduroam.test.edu"
You need to edit the "users" file entry to have name "radtest", and not "radtest@eduroam.test.edu"
"radtest@eduroam.test.edu" (0) suffix : Found realm "~^eduroam.test.edu$" (0) suffix : Adding Stripped-User-Name = "radtest"
This is the name used for comparisons in the "users" file, sql, etc.
Alan DeKok.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html