text "files" authentcation fails (2.0.3)
oz
oz at bluemonk.de
Fri Jun 6 12:37:10 CEST 2008
Hello group,
I try to migrate a freeradius-Server from 1.1.7 to 2.0.3 using the new 2.0
syntax. Authentication uses the plain textfile /etc/raddb/users.
Although my test-user matches an entry, I get an error-message "auth: No
authenticate method (Auth-Type)..."
I have no idea how to change this Auth-Type.
The exact error you can see in an excerpt of radiusd -X:
#radiusd -X
FreeRADIUS Version 2.0.3, for host i686-pc-linux-gnu, built on Apr 3 2008
at 13:33:47
Copyright (C) 1999-2008 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License.
Starting - reading configuration files ...
[...]
files {
usersfile = "/usr/local/etc/raddb/users"
acctusersfile = "/usr/local/etc/raddb/acct_users"
preproxy_usersfile = "/usr/local/etc/raddb/preproxy_users"
compat = "cistron"
}
[/usr/local/etc/raddb/users]:1 Cistron compatibility checks for entry odsl ...
Changing 'Password =' to 'Password =='
Changing 'Huntgroup-Name =' to 'Huntgroup-Name =='
Changing 'Simultaneous-Use =' to 'Simultaneous-Use +='
[...]
Ready to process requests.
[...]
Going to the next request
Ready to process requests.
User-Password = "XYZ8AB"
User-Name = "odsl"
Acct-Session-Id = "erx GigabitEthernet 6/0.44:44:0004269184"
Service-Type = Framed-User
Framed-Protocol = PPP
ERX-Pppoe-Description = "pppoe 00:a0:c5:53:c9:40"
Calling-Station-Id = "#erx705#E60#44"
NAS-Port-Type = Ethernet
NAS-Port = 1610612780
NAS-Port-Id = "GigabitEthernet 6/0.44:44"
NAS-IP-Address = XX.XX.XX.XX
NAS-Identifier = "erx705"
+- entering group authorize
++[preprocess] returns ok
WARNING: Found User-Password == "...".
WARNING: Are you sure you don't mean Cleartext-Password?
WARNING: See "man rlm_pap" for more information.
users: Matched entry odsl at line 1
++[files] returns ok
auth: No authenticate method (Auth-Type) configuration found for the
request: Rejecting the user
auth: Failed to validate the user.
Login incorrect: [odsl/XYZ8AB] (from client testerx port 1610612780 cli
#erx705#E60#44)
Delaying reject of request 0 for 1 seconds
Going to the next request
I have nothing special in my authorize and authenticate sections, because
there was no need for it in 1.1.7 (no pap-settings for example). In short
these entries:
/etc/raddb/radiusd.conf:
[...]
files {
usersfile = ${confdir}/users
acctusersfile = ${confdir}/acct_users
preproxy_usersfile = ${confdir}/preproxy_users
compat = cistron
}
[...]
$INCLUDE sites-enabled/
/etc/raddb/sites-available/default:
authorize {
preprocess
}
authenticate {
}
[...]
Do I need rlm_pap now in 2.0.3 for using "files"-authentication?
Any ideas, how I can make users/files authentication work again?
Greetings,
oz
More information about the Freeradius-Users
mailing list