I've seen that on my radius servers before right before it goes into krb and get's my token from our kerberos server. I'm quite sure I've missed something in the config but I'm not finding it and the doc's I've found are lacking in the krb area. Believe me asking for help here is a last resort. LB On 6/8/2012 12:13 PM, Timmy wrote:
On 2012-06-09 12:00 AM, Lisa Besko wrote:
I'm trying to get FreeRadius2 to authenicate with MIT Kerberos. When radius enters kerberos, it dies with no message. Any suggestions on where to look for clues?
OS: FreeBSD 9 Radius: FreeRadius 2.1.12 Kerberos: MIT Kbr5 1.9.2
I'm not seeing obvious errors in Debug output.
[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this. ++[pap] returns noop Found Auth-Type = Kerberos # Executing group from file /usr/local/etc/raddb/sites-enabled/default +- entering group Kerberos {...}
I have experience configuring FreeRadius the original but was hoping to move to 2.
Lisa, Here is the **Clue**: No "known good" password found for the user.
It should be a Password problem.