PEAP with sql - plain Identity
Norbert Grochal
norboro at celpol.pl
Thu Feb 9 12:51:39 CET 2006
Oh no, with these queries:
> authorize_check_query = "SELECT id, UserName, Attribute, Value, op
\
> FROM ${authcheck_table} \
> WHERE id = 74 \
> ORDER BY id"
> authorize_reply_query = "SELECT id, UserName, Attribute, Value, op
\
> FROM ${authreply_table} \
> WHERE id = 74 \
> ORDER BY id"
I can use any login name and radius always authirize me... Why?
I removed my changes from sql.conf and add one record to radcheck:
insert into radcheck (UserName, Attribute, op, Value) values ('cserwis',
'User-Name', '==', 'aaa');
Now I have 2 records for 'cserwis' but I also have an error:
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM
radcheck WHERE Username = 'cserwis' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 0
radius_xlat: 'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
ck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE
usergroup.Username = 'cserwis' AND usergroup.GroupName =
radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM
radreply WHERE Username = 'cserwis' ORDER BY id'
radius_xlat: 'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgrouprep
ly.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE
usergroup.Username = 'cserwis' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 0
rlm_sql (sql): No matching entry in the database for request from user
[cserwis]
modcall[authorize]: module "sql" returns notfound for request 7
"No matching entry in the database" ... but there are 2 records...
Norbert
More information about the Freeradius-Users
mailing list