Hi, Dear Feeradius USER After correcting my default file in /etc/freeradius/sites-available, I've got the following errors after testing authentication: It's seems to be a missing authentification method in my configuration. We're using a CISCO4400 controler, and the 'Web RADIUS authentication' parameter is set to 'PAP' on my Controller./ Cleaning up request 1 ID 14 with timestamp +376 Waking up in 1.0 seconds. Cleaning up request 2 ID 15 with timestamp +377 Ready to process requests. rad_recv: Access-Request packet from host 127.0.0.1 port 40925, id=168, length=57 User-Name = "irech" User-Password = "tmcqtv0" NAS-IP-Address = 192.168.55.150 NAS-Port = 10 +- entering group authorize ++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop rlm_realm: No '@' in User-Name = "irech", looking up realm NULL rlm_realm: No such realm "NULL" ++[suffix] returns noop rlm_eap: No EAP-Message, not doing EAP ++[eap] returns noop ++[unix] returns notfound ++[files] returns noop ++[expiration] returns noop ++[logintime] returns noop rlm_pap: WARNING! No "known good" password found for the user. Authentication may fail because of this. ++[pap] returns noop auth: No authenticate method (Auth-Type) configuration found for the request: Rejecting the user auth: Failed to validate the user. Login incorrect: [irech/tmcqtv0] (from client localhost port 10) Found Post-Auth-Type Reject +- entering group REJECT expand: %{User-Name} -> irech attr_filter: Matched entry DEFAULT at line 11 ++[attr_filter.access_reject] returns updated Delaying reject of request 3 for 1 seconds Going to the next request Waking up in 0.9 seconds. Sending delayed reject for request 3 Sending Access-Reject of id 168 to 127.0.0.1 port 40925 Waking up in 4.9 seconds. Cleaning up request 3 ID 168 with timestamp +548 Ready to process requests. auth: No authenticate method (Auth-Type) configuration found for the re/q Could you help me to go on ? Best Regards -- __________________________________ Isabelle RECH LE RECIS Enssib Département informatique 17-21 Bd du 11 Novembre 1918 69623 Villeurbanne Cedex Tel : 04 72 44 43 34 http://www.enssib.fr/ __________________________________
Isabelle RECH wrote:
It's seems to be a missing authentification method in my configuration. We're using a CISCO4400 controler, and the 'Web RADIUS authentication' parameter is set to 'PAP' on my Controller./
Did you configure a "known good" password for the user?
rlm_pap: WARNING! No "known good" password found for the user. Authentication may fail because of this.
No. How do you expect the server to authenticate the user when it doesn't know who the user is, and it doesn't know which password is correct? Alan DeKok.
participants (2)
-
Alan DeKok -
Isabelle RECH