Sorry , i thought i had attached the radiusd -X report......... rad_recv: Access-Request packet from host 192.168.1.150 port 56916, id=97, length=123 User-Name = "username@realm" Acct-Session-Id = "1340979220W15beb" NAS-Port = 0 Calling-Station-Id = "1115551212" NAS-Identifier = "192.168.1.150" User-Password = "1234567" Message-Authenticator = 0x5b68c4b10cdd7a5dc3cf1d01361e6d24 # Executing section authorize from file /etc/raddb/sites-enabled/default +- entering group authorize {...} ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop [suffix] Looking up realm "realm" for User-Name = "username@realm" [suffix] No such realm "realm" ++[suffix] returns noop [eap] No EAP-Message, not doing EAP ++[eap] returns noop [sql] expand: %{User-Name} -> username@realm [sql] sql_set_user escaped user --> 'username@realm' rlm_sql (sql): Reserving sql socket id: 1 [sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'username@realm' ORDER BY id [sql] User found in radcheck table [sql] expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'username@realm' ORDER BY id [sql] expand: SELECT groupname FROM usergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM usergroup WHERE username = 'username@realm' ORDER BY priority [sql] expand: SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, Value, op FROM radgroupcheck WHERE groupname = 'MyGroup' ORDER BY id [sql] User found in group MyGroup [sql] expand: SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = '%{Sql-Group}' ORDER BY id -> SELECT id, groupname, attribute, value, op FROM radgroupreply WHERE groupname = 'MyGroup' ORDER BY id rlm_sql (sql): Released sql socket id: 1 ++[sql] returns ok ++[expiration] returns noop ++[logintime] returns noop ++[pap] returns updated Found Auth-Type = PAP # Executing group from file /etc/raddb/sites-enabled/default +- entering group PAP {...} [pap] login attempt with password "1234567" [pap] Using clear text password "1234567" [pap] User authenticated successfully ++[pap] returns ok # Executing section post-auth from file /etc/raddb/sites-enabled/default +- entering group post-auth {...} [sql] expand: %{User-Name} -> username@realm [sql] sql_set_user escaped user --> 'username@realm' [sql] expand: %{User-Password} -> 1234567 [sql] expand: INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( '%{User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-Type}', '%S') -> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'username@realm', '1234567', 'Access-Accept', '2012-06-29 15:13:08') rlm_sql (sql) in sql_postauth: query is INSERT INTO radpostauth (username, pass, reply, authdate) VALUES ( 'username@realm', '1234567', 'Access-Accept', '2012-06-29 15:13:08') rlm_sql (sql): Reserving sql socket id: 0 rlm_sql (sql): Released sql socket id: 0 ++[sql] returns ok ++[exec] returns noop Sending Access-Accept of id 97 to 192.168.1.150 port 56916 Finished request 1. Going to the next request Waking up in 4.9 seconds. > Date: Fri, 29 Jun 2012 20:57:50 +0700
Subject: Re: FreeRADIUS SQl Ippool problem - From: list@fajar.net To: djtaz@iol.ie; freeradius-users@lists.freeradius.org
On Fri, Jun 29, 2012 at 8:46 PM, Taz Manian <djtazie@hotmail.com> wrote:
But the username isnt the problem, that authenticates properly and if i put in
You should fix that. There might be a compatibility code that allows it to work today, but the next versions might not have it.
I get no info back for the pools at all when i do a radiusd -X
And the debug log says ... what?
If you think you can solve it by yourself so that you don't need to send the output to this list, then don't bother asking here. Seriusly.
In any case, the debug log SHOULD tell you whether it runs sqlipool-related queries. If so, then try running those queries manually, see if the result is indeed what you expect them to be.
If it DOESN'T run sqlipool-related queries, then your problem is elsewhere. Probably because your setup DOESN'T read radgroupcheck by default (yes, it can be that way, if you configure it to do so). In that case moving Pool-Name to radcheck should be an easy way to test.
-- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html