Some users can't login after upgrade!

Alan DeKok aland at deployingradius.com
Fri Nov 9 16:10:45 CET 2007


Dean, Barry wrote:
> The debug output (private data masked) can be picked up from:
> 
> Version 1.1.4 (Works): http://pcwww.liv.ac.uk/~bvd/radius/114.txt
> Version 1.1.7 (Broken): http://pcwww.liv.ac.uk/~bvd/radius/117.txt
> 
> They are reasonably long so I did not want to post them as a long email!
> 
> My reading of them indicates that the eDirectory returns a "NOT OK" to 1.1.7 and an "OK" to 1.1.4 for the
> same user account!

  Novell contributed a patch to allow changing the eDirectory NMAS
authentication option.  In the source, they look for "<No Default>".  In
the debug logs you provide, eDirectory returns "------No default------".

  Try changinging "sasDefaultLoginSequence" to "<No Default>" for the user.

  In short, the Novell patch doesn't seem to agree with the behavior of
Novell's eDirectory server.

  Alan DeKok.



More information about the Freeradius-Users mailing list