Jacobs, Joseph wrote:
I’m trying to set up Freeradius to authenticate against the local Linux user accounts. .. joe2 Auth-Type := System (I’ve tried this with both := and =)
Don't do that.
bob Cleartext-Password := "hello"
OK. Then:
[files] users: Matched entry bob at line 8
That makes sense.
Sending Access-Accept of id 124 to 127.0.0.1 port 54241
So that works.
When I run “radtest joe2 secret localhost 0 testing1234” ... ++[unix] returns notfound
That's pretty definitive. The user isn't in /etc/passwd, or /etc/shadow. Or, the server can't read it.
[files] users: Matched entry joe2 at line 6
That entry is wrong, delete it.
One of the steps involved putting the group for freeradius to be “shadow” but there is no “shadow” group in the group file in CentOS 6.3.
That's fine. If you're running the server as root, that isn't necessary.
I also did confirm that I can log into my server using joe2 / secret password.
Well, FreeRADIUS asks the system for "joe2"s password. It says "not found". Alan DeKok.