Below is my "/usr/local/etc/raddb/mods-enabled/sql" file. I'm using freeradius 3.0.11 now, the server works very well, but still can't log queries to a file. I would appreciate any thoughts. Thanks. # -*- text -*- ## ## sql.conf -- SQL modules ## ## $Id: e1431d634a28f20a0e5deaeedd66a161deb88eb7 $ ###################################################################### # # Configuration for the SQL module # # The database schemas and queries are located in subdirectories: # # sql/<DB>/main/schema.sql Schema # sql/<DB>/main/queries.conf Authorisation and Accounting queries # # Where "DB" is mysql, mssql, oracle, or postgresql. # # sql { # The sub-module to use to execute queries. This should match # the database you're attempting to connect to. # # * rlm_sql_mysql # * rlm_sql_mssql # * rlm_sql_oracle # * rlm_sql_postgresql # * rlm_sql_sqlite # * rlm_sql_null (log queries to disk) # driver = "rlm_sql_firebird" # # Several drivers accept specific options, to set them, a # config section with the the name as the driver should be added # to the sql instance. # # Driver specific options are: # # sqlite { # # Path to the sqlite database # filename = "/my/sqlite/database.db" # # # If the file above does not exist and bootstrap is set # # a new database file will be created, and the SQL statements # # contained within the file will be executed. # bootstrap = "/my/sqlite/schema.sql" # } # # mysql { # # If any of the below files are set tls encryption is enabled # tls { # ca_file = "/etc/ssl/certs/my_ca.crt" # ca_path = "/etc/ssl/certs/" # certificate_file = "/etc/ssl/certs/private/client.crt" # private_key_file = "/etc/ssl/certs/private/client.key" # cipher = "DHE-RSA-AES256-SHA:AES128-SHA" # } # } # # The dialect of SQL you want to use, this should usually match # the driver you selected above. # # If you're using rlm_sql_null, then it should be the type of # database the logged queries are going to be executed against. dialect = "firebird" # Connection info: # server = "localhost" port = 3050 login = "sysdba" password = "passdbq" # Database table configuration for everything except Oracle radius_db = "/eternet/DB/RADIUS.FDB" # If you are using Oracle then use this instead # radius_db = "(DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=localhost)(PORT=1521))(CONNECT_DATA=(SID=your_sid)))" # If you're using postgresql this can also be used instead of the connection info parameters # radius_db = "dbname=radius host=localhost user=radius password=raddpass" # If you want both stop and start records logged to the # same SQL table, leave this as is. If you want them in # different tables, put the start table in acct_table1 # and stop table in acct_table2 acct_table1 = "radacct" acct_table2 = "radacct" # Allow for storing data after authentication postauth_table = "radpostauth" # Tables containing 'check' items authcheck_table = "radius_check" groupcheck_table = "radgroupcheck" # Tables containing 'reply' items authreply_table = "radius_reply" groupreply_table = "radgroupreply" # Table to keep group info usergroup_table = "radusergroup" # If set to 'yes' (default) we read the group tables # If set to 'no' the user MUST have Fall-Through = Yes in the radreply table read_groups = no # Remove stale session if checkrad does not see a double login delete_stale_sessions = yes # Write SQL queries to a logfile. This is potentially useful for tracing # issues with authorization queries. logfile = ${logdir}/sqllog.sql #logfile = /usr/local/var/log/radius/sqllog.sql # As of version 3.0, the "pool" section has replaced the # following configuration items: # # num_sql_socks # connect_failure_retry_delay # lifetime # max_queries # # The connection pool is new for 3.0, and will be used in many # modules, for all kinds of connection-related activity. # # When the server is not threaded, the connection pool # limits are ignored, and only one connection is used. # pool { # Number of connections to start start = 20 # Minimum number of connections to keep open min = 3 # Maximum number of connections # # If these connections are all in use and a new one # is requested, the request will NOT get a connection. # # Setting 'max' to LESS than the number of threads means # that some threads may starve, and you will see errors # like "No connections available and at max connection limit" # # Setting 'max' to MORE than the number of threads means # that there are more connections than necessary. # max = ${thread[pool].max_servers} # Spare connections to be left idle # # NOTE: Idle connections WILL be closed if "idle_timeout" # is set. spare = 6 # Number of uses before the connection is closed # # 0 means "infinite" uses = 0 # The lifetime (in seconds) of the connection lifetime = 0 # idle timeout (in seconds). A connection which is # unused for this length of time will be closed. idle_timeout = 300 # NOTE: All configuration settings are enforced. If a # connection is closed because of "idle_timeout", # "uses", or "lifetime", then the total number of # connections MAY fall below "min". When that # happens, it will open a new connection. It will # also log a WARNING message. # # The solution is to either lower the "min" connections, # or increase lifetime/idle_timeout. } # Set to 'yes' to read radius clients from the database ('nas' table) # Clients will ONLY be read on server startup. read_clients = yes # Table to keep radius client info client_table = "get_svr_nas" # Read database-specific queries $INCLUDE ${modconfdir}/${.:name}/main/${dialect}/queries.conf } LUCAS DIAZ | DPTO. REDES _______________________________________________________ Istilart 255 | Tel.: 02983 513040 C.P. B7500EGE | Tres Arroyos | Bs As | Argentina www.eternet.cc | ETERNET SISTEMAS -- *LUCAS DIAZ | DPTO. REDES* _______________________________________________________ Istilart 255 | Tel.: 02983 513040 C.P. B7500EGE | Tres Arroyos | Bs As | Argentina * *www.eternet.cc <http://www.eternet.cc/> | *ETERNET SISTEMAS *
hi, what are you trying to log to a file - the actual queries? (I'm guessing thats the case by the ' logfile = ${logdir}/sqllog.sql' entry ) what does the freeradius debug show? what OS are you using? - eg checked that SELinux is not complaining? alan
Exactly. The debug shows the queries, but don't mention that were trying to write it to a log. The OS is CentOS Linux release 7.1.1503 (Core) SELinux is disabled. Thanks. *LUCAS DIAZ | DPTO. REDES* _______________________________________________________ Istilart 255 | Tel.: 02983 513040 C.P. B7500EGE | Tres Arroyos | Bs As | Argentina * *www.eternet.cc <http://www.eternet.cc/> | *ETERNET SISTEMAS * On 01/26/2016 11:57 AM, Alan Buxey wrote:
hi,
what are you trying to log to a file - the actual queries? (I'm guessing thats the case by the ' logfile = ${logdir}/sqllog.sql' entry )
what does the freeradius debug show? what OS are you using? - eg checked that SELinux is not complaining?
alan
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Sorry about that. I launched the server with "/usr/local/sbin/radiusd -Xxxxxxxxxxxxxx", and below is the output for a wireless 802.11 authentication. Thanks. Wed Jan 27 09:59:25 2016 : Debug: (2) Received Access-Request Id 234 from 10.150.105.215:45083 to 172.31.255.213:1812 length 160 Wed Jan 27 09:59:25 2016 : Debug: (2) Service-Type = Framed-User Wed Jan 27 09:59:25 2016 : Debug: (2) NAS-Port-Id = "wlan1" Wed Jan 27 09:59:25 2016 : Debug: (2) NAS-Port-Type = Wireless-802.11 Wed Jan 27 09:59:25 2016 : Debug: (2) User-Name = "D4CA6D804F87" Wed Jan 27 09:59:25 2016 : Debug: (2) Calling-Station-Id = "D4-CA-6D-80-4F-87" Wed Jan 27 09:59:25 2016 : Debug: (2) Called-Station-Id = "4C-5E-0C-66-CF-33:costaneray15E" Wed Jan 27 09:59:25 2016 : Debug: (2) User-Password = "D4CA6D804F87" Wed Jan 27 09:59:25 2016 : Debug: (2) NAS-Identifier = "AP Costanera y Calle 15 Norte" Wed Jan 27 09:59:25 2016 : Debug: (2) NAS-IP-Address = 10.150.105.215 Wed Jan 27 09:59:25 2016 : Debug: (2) session-state: No State attribute Wed Jan 27 09:59:25 2016 : Debug: (2) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default Wed Jan 27 09:59:25 2016 : Debug: (2) authorize { Wed Jan 27 09:59:25 2016 : Debug: (2) policy filter_username { Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name != "%{toupper:%{User-Name}}") { Wed Jan 27 09:59:25 2016 : Debug: (2) EXPAND TMPL XLAT STRUCT Wed Jan 27 09:59:25 2016 : Debug: (2) EXPAND %{toupper:%{User-Name}} Wed Jan 27 09:59:25 2016 : Debug: (2) --> D4CA6D804F87 Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name != "%{toupper:%{User-Name}}") -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ / /) { Wed Jan 27 09:59:25 2016 : Debug: No matches Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ / /) -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /@.*@/ ) { Wed Jan 27 09:59:25 2016 : Debug: No matches Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /@.*@/ ) -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /\\.\\./ ) { Wed Jan 27 09:59:25 2016 : Debug: No matches Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /\\.\\./ ) -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) if ((User-Name =~ /@/) && (User-Name !~ /@(.+)\\.(.+)$/)) { Wed Jan 27 09:59:25 2016 : Debug: No matches Wed Jan 27 09:59:25 2016 : Debug: (2) if ((User-Name =~ /@/) && (User-Name !~ /@(.+)\\.(.+)$/)) -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /\\.$/) { Wed Jan 27 09:59:25 2016 : Debug: No matches Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /\\.$/) -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /@\\./) { Wed Jan 27 09:59:25 2016 : Debug: No matches Wed Jan 27 09:59:25 2016 : Debug: (2) if (User-Name =~ /@\\./) -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) } # policy filter_username = notfound Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling preprocess (rlm_preprocess) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from preprocess (rlm_preprocess) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [preprocess] = ok Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling chap (rlm_chap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from chap (rlm_chap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [chap] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling mschap (rlm_mschap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from mschap (rlm_mschap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [mschap] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling digest (rlm_digest) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from digest (rlm_digest) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [digest] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling suffix (rlm_realm) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) suffix: Checking for suffix after "@" Wed Jan 27 09:59:25 2016 : Debug: (2) suffix: No '@' in User-Name = "D4CA6D804F87", looking up realm NULL Wed Jan 27 09:59:25 2016 : Debug: (2) suffix: No such realm "NULL" Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from suffix (rlm_realm) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [suffix] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling eap (rlm_eap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) eap: No EAP-Message, not doing EAP Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from eap (rlm_eap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [eap] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling files (rlm_files) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from files (rlm_files) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [files] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling sql (rlm_sql) for request 2 Wed Jan 27 09:59:25 2016 : Debug: %{User-Name} Wed Jan 27 09:59:25 2016 : Debug: Parsed xlat tree: Wed Jan 27 09:59:25 2016 : Debug: attribute --> User-Name Wed Jan 27 09:59:25 2016 : Debug: (2) sql: EXPAND %{User-Name} Wed Jan 27 09:59:25 2016 : Debug: (2) sql: --> D4CA6D804F87 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: SQL-User-Name set to 'D4CA6D804F87' Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: FROM 1 TO 10 MAX 11 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: Examining SQL-User-Name Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: APPENDING SQL-User-Name FROM 0 TO 10 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: TO in 10 out 10 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[0] = Service-Type Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[1] = NAS-Port-Id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[2] = NAS-Port-Type Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[3] = User-Name Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[4] = Calling-Station-Id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[5] = Called-Station-Id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[6] = User-Password Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[7] = NAS-Identifier Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[8] = NAS-IP-Address Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: to[9] = Event-Timestamp Wed Jan 27 09:59:25 2016 : Debug: rlm_sql (sql): Reserved connection (5) Wed Jan 27 09:59:25 2016 : Debug: SELECT 0 as id, username, attribute, val, op FROM radius_check('%{Framed-IP-Address}', '%{SQL-User-Name}', '%{NAS-IP-Address}', '%{NAS-Port-Id}', '%{Service-Type}', '%{NAS-Port-Type}') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: Parsed xlat tree: Wed Jan 27 09:59:25 2016 : Debug: literal --> SELECT 0 as id, username, attribute, val, op FROM radius_check(' Wed Jan 27 09:59:25 2016 : Debug: attribute --> Framed-IP-Address Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> SQL-User-Name Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> NAS-IP-Address Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> NAS-Port-Id Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> Service-Type Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> NAS-Port-Type Wed Jan 27 09:59:25 2016 : Debug: literal --> ') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: EXPAND SELECT 0 as id, username, attribute, val, op FROM radius_check('%{Framed-IP-Address}', '%{SQL-User-Name}', '%{NAS-IP-Address}', '%{NAS-Port-Id}', '%{Service-Type}', '%{NAS-Port-Type}') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: --> SELECT 0 as id, username, attribute, val, op FROM radius_check('', 'D4CA6D804F87', '10.150.105.215', 'wlan1', 'Framed-User', 'Wireless-802.11') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: Executing select query: SELECT 0 as id, username, attribute, val, op FROM radius_check('', 'D4CA6D804F87', '10.150.105.215', 'wlan1', 'Framed-User', 'Wireless-802.11') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: User found in radcheck table Wed Jan 27 09:59:25 2016 : Debug: (2) sql: Conditional check items matched, merging assignment check items Wed Jan 27 09:59:25 2016 : Debug: (2) sql: Cleartext-Password := "D4CA6D804F87" Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: FROM 1 TO 0 MAX 1 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: Examining Cleartext-Password Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: APPENDING Cleartext-Password FROM 0 TO 0 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: TO in 0 out 0 Wed Jan 27 09:59:25 2016 : Debug: SELECT 0 as id, username, attribute, val, op FROM radius_reply('%{Framed-IP-Address}', '%{SQL-User-Name}', '%{NAS-IP-Address}', '%{NAS-Port-Id}', '%{Service-Type}', '%{NAS-Port-Type}') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: Parsed xlat tree: Wed Jan 27 09:59:25 2016 : Debug: literal --> SELECT 0 as id, username, attribute, val, op FROM radius_reply(' Wed Jan 27 09:59:25 2016 : Debug: attribute --> Framed-IP-Address Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> SQL-User-Name Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> NAS-IP-Address Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> NAS-Port-Id Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> Service-Type Wed Jan 27 09:59:25 2016 : Debug: literal --> ', ' Wed Jan 27 09:59:25 2016 : Debug: attribute --> NAS-Port-Type Wed Jan 27 09:59:25 2016 : Debug: literal --> ') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: EXPAND SELECT 0 as id, username, attribute, val, op FROM radius_reply('%{Framed-IP-Address}', '%{SQL-User-Name}', '%{NAS-IP-Address}', '%{NAS-Port-Id}', '%{Service-Type}', '%{NAS-Port-Type}') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: --> SELECT 0 as id, username, attribute, val, op FROM radius_reply('', 'D4CA6D804F87', '10.150.105.215', 'wlan1', 'Framed-User', 'Wireless-802.11') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: Executing select query: SELECT 0 as id, username, attribute, val, op FROM radius_reply('', 'D4CA6D804F87', '10.150.105.215', 'wlan1', 'Framed-User', 'Wireless-802.11') ORDER BY id Wed Jan 27 09:59:25 2016 : Debug: (2) sql: User found in radreply table, merging reply items Wed Jan 27 09:59:25 2016 : Debug: (2) sql: Session-Timeout = 100000 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: FROM 1 TO 0 MAX 1 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: Examining Session-Timeout Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: APPENDING Session-Timeout FROM 0 TO 0 Wed Jan 27 09:59:25 2016 : Debug: (2) sql: ::: TO in 0 out 0 Wed Jan 27 09:59:25 2016 : Debug: rlm_sql (sql): Released connection (5) Wed Jan 27 09:59:25 2016 : Info: rlm_sql (sql): Closing connection (6), from 12 unused connections Wed Jan 27 09:59:25 2016 : Debug: rlm_sql_firebird: socket destructor called, closing socket Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from sql (rlm_sql) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [sql] = ok Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling expiration (rlm_expiration) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from expiration (rlm_expiration) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [expiration] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling logintime (rlm_logintime) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from logintime (rlm_logintime) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [logintime] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: calling pap (rlm_pap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authorize]: returned from pap (rlm_pap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [pap] = updated Wed Jan 27 09:59:25 2016 : Debug: (2) } # authorize = updated Wed Jan 27 09:59:25 2016 : Debug: (2) Found Auth-Type = PAP Wed Jan 27 09:59:25 2016 : Debug: (2) # Executing group from file /usr/local/etc/raddb/sites-enabled/default Wed Jan 27 09:59:25 2016 : Debug: (2) Auth-Type PAP { Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authenticate]: calling pap (rlm_pap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) pap: Login attempt with password "D4CA6D804F87" (12) Wed Jan 27 09:59:25 2016 : Debug: (2) pap: Comparing with "known good" Cleartext-Password "D4CA6D804F87" (12) Wed Jan 27 09:59:25 2016 : Debug: (2) pap: User authenticated successfully Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[authenticate]: returned from pap (rlm_pap) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [pap] = ok Wed Jan 27 09:59:25 2016 : Debug: (2) } # Auth-Type PAP = ok Wed Jan 27 09:59:25 2016 : Debug: (2) # Executing section post-auth from file /usr/local/etc/raddb/sites-enabled/default Wed Jan 27 09:59:25 2016 : Debug: (2) post-auth { Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[post-auth]: calling exec (rlm_exec) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[post-auth]: returned from exec (rlm_exec) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [exec] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) policy remove_reply_message_if_eap { Wed Jan 27 09:59:25 2016 : Debug: (2) if (reply:EAP-Message && reply:Reply-Message) { Wed Jan 27 09:59:25 2016 : Debug: (2) if (reply:EAP-Message && reply:Reply-Message) -> FALSE Wed Jan 27 09:59:25 2016 : Debug: (2) else { Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[post-auth]: calling noop (rlm_always) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) modsingle[post-auth]: returned from noop (rlm_always) for request 2 Wed Jan 27 09:59:25 2016 : Debug: (2) [noop] = noop Wed Jan 27 09:59:25 2016 : Debug: (2) } # else = noop Wed Jan 27 09:59:25 2016 : Debug: (2) } # policy remove_reply_message_if_eap = noop Wed Jan 27 09:59:25 2016 : Debug: (2) } # post-auth = noop Wed Jan 27 09:59:25 2016 : Auth: (2) Login OK: [D4CA6D804F87] (from client default port 0 cli D4-CA-6D-80-4F-87) Wed Jan 27 09:59:25 2016 : Debug: (2) Sent Access-Accept Id 234 from 172.31.255.213:1812 to 10.150.105.215:45083 length 0 Wed Jan 27 09:59:25 2016 : Debug: (2) Session-Timeout = 100000 Wed Jan 27 09:59:25 2016 : Debug: (2) Finished request Wed Jan 27 09:59:25 2016 : Debug: Waking up in 2.9 seconds. Wed Jan 27 09:59:28 2016 : Debug: (2) Cleaning up request packet ID 234 with timestamp +139 Wed Jan 27 09:59:28 2016 : Info: Ready to process requests Wed Jan 27 09:59:31 2016 : Info: Ready to process requests *LUCAS DIAZ | DPTO. REDES* _______________________________________________________ Istilart 255 | Tel.: 02983 513040 C.P. B7500EGE | Tres Arroyos | Bs As | Argentina * *www.eternet.cc <http://www.eternet.cc/> | *ETERNET SISTEMAS * On 01/27/2016 09:53 AM, A.L.M.Buxey@lboro.ac.uk wrote:
Hi,
without sharing I cannot share a solution.
alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (3)
-
A.L.M.Buxey@lboro.ac.uk -
Alan Buxey -
Lucas Diaz