Been here, done that. It doesn't help, looks like Access-Reject's generated during authorize phase are never passed to
post_auth phase.
Are you using the latest release of FreeRADIUS? It was a bug in version 1.0.2 and earlier.
CVS snapshot.
Why is authorization failing? I know in 1.0.1 post-auth is not processed if the authorization module returns RLM_USERLOCK (eg in LDAP the access attribute has denied access). Not sure what the logic is for the latest versions though...
On 181, 06 30, 2005 at 10:30:47PM +1000, Mitchell, Michael J wrote:
Been here, done that. It doesn't help, looks like Access-Reject's generated during authorize phase are never passed to
post_auth phase.
Are you using the latest release of FreeRADIUS? It was a bug in version 1.0.2 and earlier.
CVS snapshot.
Why is authorization failing? I know in 1.0.1 post-auth is not processed if the authorization module returns RLM_USERLOCK (eg in LDAP the access attribute has denied access).
It fails in perl script used to glue freeradius server with existing authentication database. Perl authorization function returns RLM_MODULE_REJECT. -- Andrey Panin | Linux and UNIX system administrator pazke@donpac.ru | PGP key: wwwkeys.pgp.net
participants (2)
-
Andrey Panin -
Mitchell, Michael J