Some users can't login after upgrade!
Alan DeKok
aland at deployingradius.com
Fri Nov 9 16:10:45 CET 2007
Dean, Barry wrote:
> The debug output (private data masked) can be picked up from:
>
> Version 1.1.4 (Works): http://pcwww.liv.ac.uk/~bvd/radius/114.txt
> Version 1.1.7 (Broken): http://pcwww.liv.ac.uk/~bvd/radius/117.txt
>
> They are reasonably long so I did not want to post them as a long email!
>
> My reading of them indicates that the eDirectory returns a "NOT OK" to 1.1.7 and an "OK" to 1.1.4 for the
> same user account!
Novell contributed a patch to allow changing the eDirectory NMAS
authentication option. In the source, they look for "<No Default>". In
the debug logs you provide, eDirectory returns "------No default------".
Try changinging "sasDefaultLoginSequence" to "<No Default>" for the user.
In short, the Novell patch doesn't seem to agree with the behavior of
Novell's eDirectory server.
Alan DeKok.
More information about the Freeradius-Users
mailing list