Why my schema is not working?

Dmitry A. Sysoev snaut at snaut.ru
Fri Apr 4 11:54:05 CEST 2008


 
Hmm... And why:
select * from usergroup where
username='250092020001115 at evdo.uln.skylink.ru';
1	17652	250092020001115 at evdo.uln.skylink.ru		blackholed
10

rad_recv: Access-Request packet from host 127.0.0.1 port 23905, id=127,
length=81
        User-Name = "250092020001115 at evdo.uln.skylink.ru"
        User-Password = "EBLAImXtaUidLnSa"
        NAS-IP-Address = 10.173.65.200
+- entering group authorize
        expand: simbirsk -> simbirsk
SIMBIRSK-ULN: Does not match: User-Name =
250092020001115 at evdo.uln.skylink.ru
++[SIMBIRSK-ULN] returns ok
        expand: uuuuuuuuuu -> uuuuuuuuuu
UUU: Does not match: User-Name = 250092020001115 at evdo.uln.skylink.ru
++[UUU] returns ok
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
    rlm_realm: Looking up realm "evdo.uln.skylink.ru" for User-Name =
"250092020001115 at evdo.uln.skylink.ru"
    rlm_realm: Found realm "evdo.uln.skylink.ru"
    rlm_realm: Proxying request from user 250092020001115 to realm
evdo.uln.skylink.ru
    rlm_realm: Adding Realm = "evdo.uln.skylink.ru"
    rlm_realm: Authentication realm is LOCAL.
++[suffix] returns noop
    users: Matched entry DEFAULT at line 3
++[files] returns ok
        expand: %{User-Name} -> 250092020001115 at evdo.uln.skylink.ru
rlm_sql (sqlauth): sql_set_user escaped user -->
'250092020001115 at evdo.uln.skylink.ru'
rlm_sql (sqlauth): Reserving sql socket id: 1
        expand: SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE
Username = '%{SQL-User-Name}' ORDER BY id -> SELECT
id,UserName,Attribute,Value,op FROM radcheck WHERE Username =
'250092020001115 at evdo.uln.skylink.ru' ORDER BY id
WARNING: Found User-Password == "...".
WARNING: Are you sure you don't mean Cleartext-Password?
WARNING: See "man rlm_pap" for more information.
rlm_sql (sqlauth): User found in radcheck table
        expand: SELECT id,UserName,Attribute,Value,op FROM radreply WHERE
Username = '%{SQL-User-Name}' ORDER BY id -> SELECT
id,UserName,Attribute,Value,op FROM radreply WHERE Username =
'250092020001115 at evdo.uln.skylink.ru' ORDER BY id
        expand: SELECT GroupName FROM usergroup WHERE
UserName='%{SQL-User-Name}' OR CLID='%{Calling-Station-Id}' order by
priority -> SELECT GroupName FROM usergroup WHERE
UserName='250092020001115 at evdo.uln.skylink.ru' OR CLID='' order by priority
        expand: SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
ck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
(usergroup.Username = '%{SQL-User-Name}' or usergroup.CLID =
'%{Calling-Station-Id}') AND usergroup.GroupName = radgroupcheck.GroupName
ORDER BY usergroup.PRIORITY,radgroupcheck.id -> SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
ck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
(usergroup.Username = '250092020001115 at evdo.uln.skylink.ru' or
usergroup.CLID = '') AND usergroup.GroupName = radgroupcheck.GroupName ORDER
BY usergroup.PRIORITY,radgroupcheck.id
rlm_sql (sqlauth): Released sql socket id: 1
++[sqlauth] returns ok
  rad_check_password:  Found Auth-Type Local
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
!!!    Replacing User-Password in config items with Cleartext-Password.
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
!!! Please update your configuration so that the "known good"
!!!
!!! clear text password is in Cleartext-Password, and not in User-Password.
!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
auth: type Local
auth: user supplied User-Password matches local User-Password
Login OK: [250092020001115 at evdo.uln.skylink.ru/EBLAImXtaUidLnSa] (from
client localhost port 0)
Sending Access-Accept of id 127 to 127.0.0.1 port 23905
        Callback-Id == "0250092020001115"
Finished request 3.
Going to the next request
Waking up in 4.9 seconds.
Cleaning up request 3 ID 127 with timestamp +156
Ready to process requests.




-----Original Message-----
From: freeradius-users-bounces+snaut=snaut.ru at lists.freeradius.org
[mailto:freeradius-users-bounces+snaut=snaut.ru at lists.freeradius.org] On
Behalf Of Ivan Kalik
Sent: Friday, April 04, 2008 1:43 PM
To: freeradius-users at lists.freeradius.org
Subject: Re: Why my schema is not working?

>rlm_sql (sqlauth): User found in group mppc

He is a member of another group that has higher priority.

Ivan Kalik
Kalik Informatika ISP

-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html




More information about the Freeradius-Users mailing list