Group Membership query??

Marc LEURENT lftsy at free.fr
Mon Jan 14 18:53:33 CET 2008 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Good evening,
I'm sending a group membership query from openser to freeradius...
I would like to send a group membership query, but it's a group
authorize query that is received...

Any idea?
Thanks!!!

See output below:

Going to the next request
Sending Access-Reject of id 62 to 172.24.4.1 port 35340
Waking up in 1 seconds...
rad_recv: Access-Request packet from host 172.24.4.1:35344, id=62,
length=75
        User-Name = "mleurent at sip.bob.net"
        Sip-Group = "suspended"
        Service-Type = Voice
        NAS-Port = 0
        NAS-IP-Address = 172.24.4.1
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 5
  modcall[authorize]: module "preprocess" returns ok for request 5
radius_xlat:
'/var/log/freeradius/radacct/172.24.4.1/auth-detail-20080114'
rlm_detail:
/var/log/freeradius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d
expands to /var/log/freeradius/radacct/172.24.4.1/auth-detail-20080114
  modcall[authorize]: module "auth_log" returns ok for request 5
  modcall[authorize]: module "chap" returns noop for request 5
  modcall[authorize]: module "mschap" returns noop for request 5
  modcall[authorize]: module "digest" returns noop for request 5
    rlm_realm: Looking up realm "sip.bob.net" for User-Name =
"mleurent at sip.bob.net"
    rlm_realm: No such realm "sip.bob.net"
  modcall[authorize]: module "suffix" returns noop for request 5
  rlm_eap: No EAP-Message, not doing EAP
  modcall[authorize]: module "eap" returns noop for request 5
radius_xlat:  'mleurent at sip.bob.net'
rlm_sql (sql): sql_set_user escaped user --> 'mleurent at sip.bob.net'
radius_xlat:  'SELECT id, UserName, Attribute, Value, op          
FROM radcheck           WHERE Username =
'mleurent at sip.bob.net'           ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 0
radius_xlat:  'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op

FROM radgroupcheck,usergroup WHERE usergroup.Username =
'mleurent at sip.bob.net' AND usergroup.GroupName =
radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat:  'SELECT id, UserName, Attribute, Value, op          
FROM radreply           WHERE Username =
'mleurent at sip.bob.net'           ORDER BY id'
radius_xlat:  'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op

FROM radgroupreply,usergroup WHERE usergroup.Username =
'mleurent at sip.bob.net' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 0
  modcall[authorize]: module "sql" returns ok for request 5
rlm_python [freeradius-cdrtool]: entering the authorization phase ...
rlm_python [freeradius-cdrtool]: ignoring unsupported method.
  modcall[authorize]: module "python" returns ok for request 5
modcall: leaving group authorize (returns ok) for request 5
auth: type Local
auth: No User-Password or CHAP-Password attribute in the request
auth: Failed to validate the user.
Login incorrect: [mleurent at sip.bob.net/<no User-Password attribute>]
(from client private port 0)
Delaying request 5 for 1 seconds
Finished request 5
Going to the next request
- --- Walking the entire request list ---
Waking up in 1 seconds...
- --- Walking the entire request list ---







 sql: group_membership_query = "SELECT GroupName FROM usergroup WHERE
UserName='%{SQL-User-Name}'"

 sql: authorize_check_query = "SELECT id, UserName, Attribute, Value,
op           FROM radcheck           WHERE Username =
'%{SQL-User-Name}'           ORDER BY id"
 sql: authorize_reply_query = "SELECT id, UserName, Attribute, Value,
op           FROM radreply           WHERE Username =
'%{SQL-User-Name}'           ORDER BY id"
 sql: authorize_group_check_query = "SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.V
alue,radgroupcheck.op  FROM radgroupcheck,usergroup WHERE
usergroup.Username = '%{SQL-User-Name}' AND usergroup.GroupName =
radgroupcheck.GroupName ORDER BY radgroupcheck.id"
 sql: authorize_group_reply_query = "SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.V
alue,radgroupreply.op  FROM radgroupreply,usergroup WHERE
usergroup.Username = '%{SQL-User-Name}' AND usergroup.GroupName =
radgroupreply.GroupName ORDER BY radgroupreply.id"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHi6GcN4+o+2LtdFwRAo6dAKDcrKrHkCQbAZVG760/THgVbvjAiQCgmEmi
xhAa8CvRnHNc5E9wKRj7wjA=
=K+hh
-----END PGP SIGNATURE-----

More information about the Freeradius-Users mailing list