freeradius no longer accepts Crypt-Password after upgrade
Hello group, Due to a recent catastrophic hardware failure on one of our radius servers I've had to install a new machine. In the process we also upgraded freeradius from 0.9.3 to 1.0.2-4, and somehow the radius server now refuses to accept anything other than a User-Password attribute -- it keeps failing to log in users that have a Crypt-Password set. I've attached a -xxx debug log below, minus passwords and usernames. The literal same configuration works fine on another machine running 0.9.3 and retrieving its data from the same database server. Can anyone suggest what I might be missing? -- Rens Houben | opinions are mine Resident linux guru and sysadmin | if my employers have one Systemec Internet Services. |they'll tell you themselves PGP key at http://swordbreaker.systemec.nl/~shadur/shadur.key.asc
shadur@systemec.nl (Rens Houben) wrote:
The literal same configuration works fine on another machine running 0.9.3 and retrieving its data from the same database server. Can anyone suggest what I might be missing?
It should work. Are you using the 1.0.2 dictionary files, or the 0.9.3 ones? If you're using the 0.9.3 ones, switch the server to using the new ones. That should help. Alan DeKok.
Argh. So I decided to try and wipe the thing, then do a clean install and just add in the correct values for sql.conf and the required tweaks to radiusd.conf, but I seem to have made the problem worse because now it claims it can't even find the user. Log output, intersparsed with the mysql results from each query, attached below. It seems to be complaining about the lack of Auth-Type attribute, but as you can see it's right there... At least so I think. What am I missing? Regards, -- Rens Houben | opinions are mine Resident linux guru and sysadmin | if my employers have one Systemec Internet Services. |they'll tell you themselves PGP key at http://swordbreaker.systemec.nl/~shadur/shadur.key.asc
participants (2)
-
Alan DeKok -
shadur@systemec.nl