Problem with authentication
tnt at kalik.co.yu
tnt at kalik.co.yu
Thu Dec 13 22:13:34 CET 2007
Switch on sqltrace in sql.conf and see what happened with the queries.
You do have a password for this user in radcheck table? You have posted
just radreply table.
Ivan Kalik
Kalik Informatika ISP
Dana 13/12/2007, "Pablo Lucchetti" <pablo at lnx.org.ar> piše:
>
>rad_recv: Access-Request packet from host 192.168.1.109:1601, id=6,
>length=49
> User-Name = "test-user"
> User-Password = "test-pass"
>rad_lowerpair: User-Name now 'test-user'
>rad_lowerpair: User-Password now 'test-pass'
>rad_rmspace_pair: User-Name now 'test-user'
>rad_rmspace_pair: User-Password now 'test-pass'
> Processing the authorize section of radiusd.conf
>modcall: entering group authorize for request 0
> modcall[authorize]: module "chap" returns noop for request 0
> modcall[authorize]: module "mschap" returns noop for request 0
>radius_xlat: ''
>rlm_sql (sql): Reserving sql socket id: 4
>rlm_sql (sql): SQL query error; rejecting user
>rlm_sql (sql): Released sql socket id: 4
> modcall[authorize]: module "sql" returns fail for request 0
>modcall: leaving group authorize (returns fail) for request 0
>There was no response configured: rejecting request 0
>Server rejecting request 0.
>Sending Access-Reject of id 6 to 192.168.1.109 port 1601
>Finished request 0
>Going to the next request
>--- Walking the entire request list ---
>Waking up in 6 seconds...
>--- Walking the entire request list ---
>Cleaning up request 0 ID 6 with timestamp 47619d3f
>Nothing to do. Sleeping until we see a request.
>
>
>tnt at kalik.co.yu wrote:
>> OK. Capital X ==> radiusd -X. And send from the point the request is
>> received - you can skip the server startup.
>>
>> Ivan Kalik
>> Kalik Informatika ISP
>>
>>
>> Dana 13/12/2007, "Pablo Lucchetti" <pablo at lnx.org.ar> piše:
>>
>>> gessuttia:~# freeradius -x
>>> Starting - reading configuration files ...
>>> Using deprecated naslist file. Support for this will go away soon.
>>> Module: Loaded PAP
>>> Module: Instantiated pap (pap)
>>> Module: Loaded CHAP
>>> Module: Instantiated chap (chap)
>>> Module: Loaded MS-CHAP
>>> Module: Instantiated mschap (mschap)
>>> Module: Loaded SQL
>>> rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
>>> rlm_sql (sql): Attempting to connect to root at 127.0.0.1:/radius
>>> rlm_sql (sql): starting 0
>>> rlm_sql (sql): Attempting to connect rlm_sql_mysql #0
>>> rlm_sql_mysql: Starting connect to MySQL server for #0
>>> rlm_sql (sql): Connected new DB handle, #0
>>> rlm_sql (sql): starting 1
>>> rlm_sql (sql): Attempting to connect rlm_sql_mysql #1
>>> rlm_sql_mysql: Starting connect to MySQL server for #1
>>> rlm_sql (sql): Connected new DB handle, #1
>>> rlm_sql (sql): starting 2
>>> rlm_sql (sql): Attempting to connect rlm_sql_mysql #2
>>> rlm_sql_mysql: Starting connect to MySQL server for #2
>>> rlm_sql (sql): Connected new DB handle, #2
>>> rlm_sql (sql): starting 3
>>> rlm_sql (sql): Attempting to connect rlm_sql_mysql #3
>>> rlm_sql_mysql: Starting connect to MySQL server for #3
>>> rlm_sql (sql): Connected new DB handle, #3
>>> rlm_sql (sql): starting 4
>>> rlm_sql (sql): Attempting to connect rlm_sql_mysql #4
>>> rlm_sql_mysql: Starting connect to MySQL server for #4
>>> rlm_sql (sql): Connected new DB handle, #4
>>> Module: Instantiated sql (sql)
>>> Module: Loaded Acct-Unique-Session-Id
>>> Module: Instantiated acct_unique (acct_unique)
>>> Initializing the thread pool...
>>> Listening on authentication *:1812
>>> Listening on accounting *:1813
>>> Ready to process requests.
>>>
>>> sql.conf
>>>
>>> sql {
>>> driver = "rlm_sql_mysql"
>>>
>>> server = "127.0.0.1"
>>> login = "dbuser"
>>> password = "dbpass"
>>> radius_db = "radius"
>>>
>>> acct_table1 = "radacct"
>>> acct_table2 = "radacct"
>>>
>>> postauth_table = "radpostauth"
>>> authcheck_table = "radcheck"
>>> authreply_table = "radreply"
>>> groupcheck_table = "radgroupcheck"
>>> groupreply_table = "radgroupreply"
>>> usergroup_table = "usergroup"
>>>
>>> deletestalesessions = yes
>>>
>>> sqltrace = no
>>> sqltracefile = ${logdir}/sqltrace.sql
>>>
>>> num_sql_socks = 5
>>> connect_failure_retry_delay = 60
>>>
>>> }
>>>
>>> radreoply table
>>>
>>> mysql> select * from radreply;
>>> +----+-----------+-------------------+----+---------------+
>>> | id | UserName | Attribute | op | Value |
>>> +----+-----------+-------------------+----+---------------+
>>> | 1 | test-user | Framed-IP-Address | = | 192.168.1.109 |
>>> | 2 | test-user | Framed-IP-Address | = | 0.0.0.0 |
>>> +----+-----------+-------------------+----+---------------+
>>> 2 rows in set (0.00 sec)
>>>
>>>
>>>
>>>
>>>
>>> tnt at kalik.co.yu wrote:
>>>> Send radiusd -X output. Have you done something to sql.conf apart from
>>>> database connection details?
>>>>
>>>> Ivan Kalik
>>>> Kalik Informatika ISP
>>>>
>>>>
>>>> Dana 13/12/2007, "Pablo Lucchetti" <pablo at lnx.org.ar> piše:
>>>>
>>>>> Hi,
>>>>>
>>>>> I've a Freeradius on a Debian Etch with Mysql but when I'm triying to
>>>>> test with NTRadPing always got the same error.
>>>>> The user already exists in database
>>>>>
>>>>>
>>>>> rad_recv: Access-Request packet from host 192.168.1.109:4027, id=2,
>>>>> length=49
>>>>> User-Name = "test-user"
>>>>> User-Password = "test-pass"
>>>>> rlm_sql (sql): Reserving sql socket id: 4
>>>>> rlm_sql (sql): SQL query error; rejecting user
>>>>> rlm_sql (sql): Released sql socket id: 4
>>>>> Sending Access-Reject of id 2 to 192.168.1.109 port 4027
>>>>>
>>>>>
>>>>> Any help please?
>>>>>
>>>>>
>>>>> Thanks in advance,
>>>>> Pablo
>>>>> -
>>>>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/usershtml
>>>>>
>>>>>
>>>> -
>>>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>>>>
>>>> __________ Información de NOD32, revisión 2721 (20071213) __________
>>>>
>>>> Este mensaje ha sido analizado con NOD32 antivirus system
>>>> http://www.nod32.com
>>>>
>>>>
>>>>
>>> -
>>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/usershtml
>>>
>>>
>>
>> -
>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>>
>> __________ Información de NOD32, revisión 2721 (20071213) __________
>>
>> Este mensaje ha sido analizado con NOD32 antivirus system
>> http://www.nod32.com
>>
>>
>>
>-
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
More information about the Freeradius-Users
mailing list