Why my schema is not working?

Ivan Kalik tnt at kalik.net
Fri Apr 4 12:30:42 CEST 2008


1. That entry wasn't there whe server looked.

2. You are not looking into the same database as the server.

Ivan Kalik
Kalik Informatika ISP


Dana 4/4/2008, "Dmitry A. Sysoev" <snaut at snaut.ru> piše:

>
>Hmm... And why:
>select * from usergroup where
>username='250092020001115 at evdo.uln.skylink.ru';
>1	17652	250092020001115 at evdo.uln.skylink.ru		blackholed
>10
>
>rad_recv: Access-Request packet from host 127.0.0.1 port 23905, id=127,
>length=81
>        User-Name = "250092020001115 at evdo.uln.skylink.ru"
>        User-Password = "EBLAImXtaUidLnSa"
>        NAS-IP-Address = 10.173.65.200
>+- entering group authorize
>        expand: simbirsk -> simbirsk
>SIMBIRSK-ULN: Does not match: User-Name =
>250092020001115 at evdo.uln.skylink.ru
>++[SIMBIRSK-ULN] returns ok
>        expand: uuuuuuuuuu -> uuuuuuuuuu
>UUU: Does not match: User-Name = 250092020001115 at evdo.uln.skylink.ru
>++[UUU] returns ok
>++[preprocess] returns ok
>++[chap] returns noop
>++[mschap] returns noop
>    rlm_realm: Looking up realm "evdo.uln.skylink.ru" for User-Name =
>"250092020001115 at evdo.uln.skylink.ru"
>    rlm_realm: Found realm "evdo.uln.skylink.ru"
>    rlm_realm: Proxying request from user 250092020001115 to realm
>evdo.uln.skylink.ru
>    rlm_realm: Adding Realm = "evdo.uln.skylink.ru"
>    rlm_realm: Authentication realm is LOCAL.
>++[suffix] returns noop
>    users: Matched entry DEFAULT at line 3
>++[files] returns ok
>        expand: %{User-Name} -> 250092020001115 at evdo.uln.skylink.ru
>rlm_sql (sqlauth): sql_set_user escaped user -->
>'250092020001115 at evdo.uln.skylink.ru'
>rlm_sql (sqlauth): Reserving sql socket id: 1
>        expand: SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE
>Username = '%{SQL-User-Name}' ORDER BY id -> SELECT
>id,UserName,Attribute,Value,op FROM radcheck WHERE Username =
>'250092020001115 at evdo.uln.skylink.ru' ORDER BY id
>WARNING: Found User-Password == "...".
>WARNING: Are you sure you don't mean Cleartext-Password?
>WARNING: See "man rlm_pap" for more information.
>rlm_sql (sqlauth): User found in radcheck table
>        expand: SELECT id,UserName,Attribute,Value,op FROM radreply WHERE
>Username = '%{SQL-User-Name}' ORDER BY id -> SELECT
>id,UserName,Attribute,Value,op FROM radreply WHERE Username =
>'250092020001115 at evdo.uln.skylink.ru' ORDER BY id
>        expand: SELECT GroupName FROM usergroup WHERE
>UserName='%{SQL-User-Name}' OR CLID='%{Calling-Station-Id}' order by
>priority -> SELECT GroupName FROM usergroup WHERE
>UserName='250092020001115 at evdo.uln.skylink.ru' OR CLID='' order by priority
>        expand: SELECT
>radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
>ck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
>(usergroup.Username = '%{SQL-User-Name}' or usergroup.CLID =
>'%{Calling-Station-Id}') AND usergroup.GroupName = radgroupcheck.GroupName
>ORDER BY usergroup.PRIORITY,radgroupcheck.id -> SELECT
>radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupche
>ck.Value,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
>(usergroup.Username = '250092020001115 at evdo.uln.skylink.ru' or
>usergroup.CLID = '') AND usergroup.GroupName = radgroupcheck.GroupName ORDER
>BY usergroup.PRIORITY,radgroupcheck.id
>rlm_sql (sqlauth): Released sql socket id: 1
>++[sqlauth] returns ok
>  rad_check_password:  Found Auth-Type Local
>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
>!!!
>!!!    Replacing User-Password in config items with Cleartext-Password.
>!!!
>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
>!!!
>!!! Please update your configuration so that the "known good"
>!!!
>!!! clear text password is in Cleartext-Password, and not in User-Password.
>!!!
>!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
>!!!
>auth: type Local
>auth: user supplied User-Password matches local User-Password
>Login OK: [250092020001115 at evdo.uln.skylink.ru/EBLAImXtaUidLnSa] (from
>client localhost port 0)
>Sending Access-Accept of id 127 to 127.0.0.1 port 23905
>        Callback-Id == "0250092020001115"
>Finished request 3.
>Going to the next request
>Waking up in 4.9 seconds.
>Cleaning up request 3 ID 127 with timestamp +156
>Ready to process requests.
>
>
>
>
>-----Original Message-----
>From: freeradius-users-bounces+snaut=snaut.ru at lists.freeradius.org
>[mailto:freeradius-users-bounces+snaut=snaut.ru at lists.freeradius.org] On
>Behalf Of Ivan Kalik
>Sent: Friday, April 04, 2008 1:43 PM
>To: freeradius-users at lists.freeradius.org
>Subject: Re: Why my schema is not working?
>
>>rlm_sql (sqlauth): User found in group mppc
>
>He is a member of another group that has higher priority.
>
>Ivan Kalik
>Kalik Informatika ISP
>
>-
>List info/subscribe/unsubscribe? See
>http://www.freeradius.org/list/users.html
>
>-
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>




More information about the Freeradius-Users mailing list