-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
In principle, rlm_unix should work with NIS; it will set the Crypt-Password control item, which will be looked at by rlm_pap. It should be as simple as:
authorize { ... unix pap ... } authenticate { Auth-Type PAP { pap } ... }
Try this, post a debug of it not working if so.
Well, I've tried that and I still get a REJECT. I've attached the output, one is for the startup output from 'radiusd -X', the radius_debug_serveroutput.txt file is the output when I run radtest. The only thing I've changed in the config files is to add the DEFAULT Auth-Type = System at the top of the users file. In the authorize section of sites-enabled/default Unix was commented out, but I uncommented it. Everything else was as you list above. Now that I think about it, I don't even NEED FreeRADIUS to use NIS, since I'm running radiusd on the NIS master, the logins are all there in /etc/passwd anyway. Well, that simplifies things a bunch. But it still doesn't explain why I can't get any user to authenticate on that server. - -- Mark Haney Network/Systems Administrator Practichem W: (919) 714-8428 Fedora release 20 (Heisenbug) 3.13.4-200.fc20.x86_64 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJTGhD2AAoJEM/YzwEAv6e7I7QH/3qJRBEpt2TfTdJS1migV9fp 3fv6bQjXe0BdEifcHfbJzo3m/ftiKX9AK5F88fINUdvcbnJQzbCC0PqbVuHNoElz sW6ChKWg4brjUtiJQHxoQE+FKdF1ltvObAQ7NAueWuCsh9KLj/Yggjmq2tQ6PPjn aYNJG5L+mX9NpBv+ge7oRwFn9MG6APS5tqGsY/W69L9szAb6ItYbYzrA7tTX1y4Y jL8wE6h0Qb3ZUb2jhzNx+w3AxP9csc/lf6+27Kx9lsrKx6i0EwLYFaVHHEL7Kxms tpXAYKJ2p1r9XT+QodsVTBi97oDdFfROs/S3rQTIn8rV8Oh1p1fJopKBYeA70fg= =ff36 -----END PGP SIGNATURE-----