text "files" authentcation fails (2.0.3)

oz oz at bluemonk.de
Fri Jun 6 12:37:10 CEST 2008 

Hello group,

I try to migrate a freeradius-Server from 1.1.7 to 2.0.3 using the new 2.0 
syntax. Authentication uses the plain textfile /etc/raddb/users.
Although my test-user matches an entry, I get an error-message "auth: No 
authenticate method (Auth-Type)..."

I have no idea how to change this Auth-Type.

The exact error you can see in an excerpt of radiusd -X:

#radiusd -X
FreeRADIUS Version 2.0.3, for host i686-pc-linux-gnu, built on Apr  3 2008 
at 13:33:47
Copyright (C) 1999-2008 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License.
Starting - reading configuration files ...

[...]

   files {
         usersfile = "/usr/local/etc/raddb/users"
         acctusersfile = "/usr/local/etc/raddb/acct_users"
         preproxy_usersfile = "/usr/local/etc/raddb/preproxy_users"
         compat = "cistron"
   }
[/usr/local/etc/raddb/users]:1 Cistron compatibility checks for entry odsl ...
         Changing 'Password =' to 'Password =='
         Changing 'Huntgroup-Name =' to 'Huntgroup-Name =='
         Changing 'Simultaneous-Use =' to 'Simultaneous-Use +='

[...]

Ready to process requests.

[...]

Going to the next request
Ready to process requests.
         User-Password = "XYZ8AB"
         User-Name = "odsl"
         Acct-Session-Id = "erx GigabitEthernet 6/0.44:44:0004269184"
         Service-Type = Framed-User
         Framed-Protocol = PPP
         ERX-Pppoe-Description = "pppoe 00:a0:c5:53:c9:40"
         Calling-Station-Id = "#erx705#E60#44"
         NAS-Port-Type = Ethernet
         NAS-Port = 1610612780
         NAS-Port-Id = "GigabitEthernet 6/0.44:44"
         NAS-IP-Address = XX.XX.XX.XX
         NAS-Identifier = "erx705"
+- entering group authorize
++[preprocess] returns ok
WARNING: Found User-Password == "...".
WARNING: Are you sure you don't mean Cleartext-Password?
WARNING: See "man rlm_pap" for more information.
     users: Matched entry odsl at line 1
++[files] returns ok
auth: No authenticate method (Auth-Type) configuration found for the 
request: Rejecting the user
auth: Failed to validate the user.
Login incorrect: [odsl/XYZ8AB] (from client testerx port 1610612780 cli 
#erx705#E60#44)
Delaying reject of request 0 for 1 seconds
Going to the next request


I have nothing special in my authorize and authenticate sections, because 
there was no need for it in 1.1.7 (no pap-settings for example). In short 
these entries:

/etc/raddb/radiusd.conf:
[...]
         files {
                 usersfile = ${confdir}/users
                 acctusersfile = ${confdir}/acct_users
                 preproxy_usersfile = ${confdir}/preproxy_users
                 compat = cistron
         }
[...]
$INCLUDE sites-enabled/


/etc/raddb/sites-available/default:
authorize {
	preprocess
}

authenticate {
}
[...]

Do I need rlm_pap now in 2.0.3 for using "files"-authentication?
Any ideas, how I can make users/files authentication work again?

Greetings,
oz

More information about the Freeradius-Users mailing list