Hi.

I had been installed freeradius 2.0.4 in debian 4.0 and with daloradius like web management interface

Now i'm have an inconvenient with the users that i have in mysql. That users can autenthicate in mysql but, can't get authenticate completly; i think you know waht I mean.

Freeradius don't authenticate with mysql, so it uses another ways like EAP, PAP an others.

I had been edited the users file in the attribute auth-type with various values: Local, EAP, PAP, System...

I got this when i try to loggin i got this:


rad_recv: Access-Request packet from host 127.0.0.1 port 32814, id=68, length=212
        Vendor-14559-Attr-8 = 0x312e302e3132
        User-Name = "juanpal"
        User-Password = "juanpal"
        NAS-IP-Address = 192.168.181.1
        Service-Type = Login-User
        Framed-IP-Address = 192.168.181.2
        Calling-Station-Id = "08-00-27-0A-F7-67"
        Called-Station-Id = "08-00-27-C0-08-85"
        NAS-Identifier = "nas01"
        Acct-Session-Id = "499d9aa800000001"
        NAS-Port-Type = Wireless-802.11
        NAS-Port = 1
        WISPr-Logoff-URL = "http://192.168.181.1:3990/logoff"
        Message-Authenticator = 0xd5b4b59894a7fbb350da9e2f90d9
eb5c
+- entering group authorize
++[preprocess] returns ok
        expand: /var/log/freeradius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d -> /var/log/freeradius/radacct/127.0.0.1/auth-detail-20090219
rlm_detail: /var/log/freeradius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands to /var/log/freeradius/radacct/127.0.0.1/auth-detail-20090219
        expand: %t -> Thu Feb 19 13:13:58 2009
++[auth_log] returns ok
        expand: %{Realm} ->
++[attr_filter] returns noop
++[chap] returns noop
++[mschap] returns noop
    rlm_realm: No '@' in User-Name = "juanpal", looking up realm NULL
    rlm_realm: No such realm "NULL"
++[suffix] returns noop
  rlm_eap: No EAP-Message, not doing EAP
++[eap] returns noop
    users: Matched entry DEFAULT at line 61
WARNING: Found User-Password == "...".
WARNING: Are you sure you don't mean Cleartext-Password?
WARNING: See "man rlm_pap" for more information.
    users: Matched entry DEFAULT at line 201
++[files] returns ok
        expand: %{User-Name} -> juanpal
rlm_sql (sql): sql_set_user escaped user --> 'juanpal'
rlm_sql (sql): Reserving sql socket id: 3
        expand: SELECT id, UserName, Attribute, Value, op           FROM radcheck           WHERE Username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, UserName, Attribute, Value, op           FROM radcheck           WHERE Username = 'juanpal'           ORDER BY id
rlm_sql (sql): User found in radcheck table
        expand: SELECT id, UserName, Attribute, Value, op           FROM radreply           WHERE Username = '%{SQL-User-Name}'           ORDER BY id -> SELECT id, UserName, Attribute, Value, op           FROM radreply           WHERE Username = 'juanpal'           ORDER BY id
        expand: SELECT GroupName FROM usergroup WHERE UserName='%{SQL-User-Name}' -> SELECT GroupName FROM usergroup WHERE UserName='juanpal'
rlm_sql (sql): Released sql socket id: 3
++[sql] returns ok
  rad_check_password:  Found Auth-Type Local
auth: type Local
auth: user supplied User-Password does NOT match local User-Password
auth: Failed to validate the user.
Login incorrect: [juanpal/juanpal] (from client localhost port 1 cli 08-00-27-0A-F7-67)
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 68 to 127.0.0.1 port 32814
        Service-Type = Login-User
        Session-Timeout := 2400
Waking up in 4.9 seconds.
Cleaning up request 0 ID 68 with timestamp +10
Ready to process requests.

As you see, the user juanpal authenticate with mysql but the next step stop him

My user file has this:

DEFAULT Auth-Type := Local, Crypt-password = User-Password
        Fall-Through = yes


Whit auth-type = System, the users need to be Systems users.
Whit aut-type = ACCEPT, anyone can loggin.
I don't know what try now, i had been google, read in many forums.


Thanks a lot.


--
Juan Pablo Botero
Administrador de Sistemas informáticos
http://jpill.wordpress.com
eSSuX: http://slcolombia.org/eSSuX
Linux Registered user #435293