New download of Freeradius 2.1.9. Compiled and accepted all defaults. This is right out the box and the first self test is failing. Can anyone provide some helpful hints? Followed directions: Edit the users file, and add the following line of text at the top, before anything else: testing Cleartext-Password := "password" Start the server in debugging mode (radiusd -X), and run radtest from another terminal window: $ radtest testing password 127.0.0.1 0 testing123 Server rejects with the following debug: rad_recv: Access-Request packet from host 127.0.0.1 port 60552, id=144, length=59 User-Name = "testing" User-Password = "password" NAS-IP-Address = x.x.x.x NAS-Port = 0 +- entering group authorize {...} ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop [suffix] No '@' in User-Name = "testing", looking up realm NULL [suffix] No such realm "NULL" ++[suffix] returns noop [eap] No EAP-Message, not doing EAP ++[eap] returns noop ++[unix] returns notfound ++[files] returns noop ++[expiration] returns noop ++[logintime] returns noop [pap] WARNING! No "known good" password found for the user. Authentication may fail because of this. ++[pap] returns noop No authenticate method (Auth-Type) configuration found for the request: Rejecting the user Failed to authenticate the user. Using Post-Auth-Type Reject +- entering group REJECT {...} [attr_filter.access_reject] expand: %{User-Name} -> testing attr_filter: Matched entry DEFAULT at line 11 ++[attr_filter.access_reject] returns updated Delaying reject of request 0 for 1 seconds Going to the next request Waking up in 0.9 seconds. Sending delayed reject for request 0 Sending Access-Reject of id 144 to 127.0.0.1 port 60552 Waking up in 4.9 seconds.
On 09/20/2010 08:45 PM, Schwartz, Curtis H. (GSFC-443.0)[SGT, INC] wrote:
Edit the users file, and add the following line of text at the top, before anything else:
testing Cleartext-Password := "password"
You say this, but then:
++[files] returns noop
Are you sure you edited the right file?
++[files] returns noop
Was the key.... I was editing the wrong users file... all is well now... Thanks tons! ------------------------------------------------------------------------------------ -----Original Message----- From: freeradius-users-bounces+curtis.h.schwartz=nasa.gov@lists.freeradius.org [mailto:freeradius-users-bounces+curtis.h.schwartz=nasa.gov@lists.freeradius.org] On Behalf Of Phil Mayers Sent: Monday, September 20, 2010 4:21 PM To: freeradius-users@lists.freeradius.org Subject: Re: Newbie On 09/20/2010 08:45 PM, Schwartz, Curtis H. (GSFC-443.0)[SGT, INC] wrote:
Edit the users file, and add the following line of text at the top, before anything else:
testing Cleartext-Password := "password"
You say this, but then:
++[files] returns noop
Are you sure you edited the right file? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Start the server in debugging mode (radiusd -X), and run radtest from another terminal window: $ radtest testing password 127.0.0.1 0 testing123
Server rejects with the following debug:
ou've removed all the utput apart from the bit YOU were interested in. can you confirm, from the radiusd -X output that you didnt post to this list that the daemon is reading the same users file that you edited. can you also confirm that you started the daemon AFTER you had edited that file? alan
participants (3)
-
Alan Buxey -
Phil Mayers -
Schwartz, Curtis H. (GSFC-443.0)[SGT, INC]