freeradius, ldap error - HELP ME!

Thibault Le Meur Thibault.LeMeur at supelec.fr
Wed Mar 21 16:49:35 CET 2007


> 
> >> and in the dictonary file:
> >> $INCLUDE /etc/radiusclient/dictionary.microsoft
> >> $INCLUDE /etc/radiusclient/dictionary.ascend
> >> $INCLUDE /etc/radiusclient/dictionary.compat
> >> $INCLUDE /etc/radiusclient/dictionary.merit
> >> $INCLUDE /usr/share/freeradius/dictionary
> > 
> > Don't write "$INCLUDE" but "INCLUDE" without the "$": this is the 
> > syntax for radiusclient.
> 
> Now.. without "$"

 
> the /etc/freeradius/users file now contain:
> 
> DEFAULT Auth-Type = "MS-CHAP"
>         Fall-Through = yes

Not a good idea ;-)


> > But this can work only if radiusclient knows the MS-CHAP Radius 
> > attributes, which is not the case for the momenet (see above the 
> > INCLUDE issue).
> > 
> 
> Well.. I try now... and....(roll of drumps):
> 
> Listening on authentication *:1812
> Listening on accounting *:1813
> Ready to process requests.
> 
> NOTHING!!!! the freeradius don't recive request (uff)

That's because the NAS doesn't send packets (or because you have firewall
rules droppig packets, but this shouldn't be the case since you got packets
in the past).

> 
> and:
> 
> debian:~# plog
> Mar 21 16:13:52 debian pppd[3885]: sent [LCP TermAck id=0x2] 
> Mar 21 16:13:52 debian pppd[3885]: rcvd [LCP TermAck id=0x2] 
> Mar 21 16:13:52 debian pppd[3885]: Connection terminated. Mar 
> 21 16:13:52 debian pppd[3885]: Waiting for 1 child processes...
> Mar 21 16:13:52 debian pppd[3885]:   script /usr/sbin/pppoe -n -I eth1
> - -e 2:32:c8:93:a2:15:29 -T 60 -S '', pid 3886
> Mar 21 16:13:52 debian pppd[3885]: Script /usr/sbin/pppoe -n 
> -I eth1 -e 2:32:c8:93:a2:15:29 -T 60 -S '' finished (pid 
> 3886), status = 0x1 Mar 21 16:13:52 debian pppd[3885]: Exit. debian:~#
> 
> MMM damn! why freeradius don't want work with me?

It's not a Freeradius issue, but a ppp/radiusclient issue ;-)

> 
> P.S.
> without the Deafult Auth-Type in the users file...it's the 
> same... If I put $INCLUDE instead INCLUDE... work like before...

Very strange I've got several servers her using radiusclient with the
INCLUDE syntax !!

Or may it be an issue with the dictionnary files ?
> >> $INCLUDE /usr/share/freeradius/dictionary

Avoid this one, it shouldn't be necessary.

> >> $INCLUDE /etc/radiusclient/dictionary.microsoft
> >> $INCLUDE /etc/radiusclient/dictionary.ascend
> >> $INCLUDE /etc/radiusclient/dictionary.compat
> >> $INCLUDE /etc/radiusclient/dictionary.merit

Are these dictionaries from the radiusclient distro or did you copy the
dictionaries from freeradius ?
Please use only dictionaries from the radiusclient distributions.
(Or try the one I posted if you don't have them in the distro).

Let me know,
Thibault





More information about the Freeradius-Users mailing list