newbie - authentication error

pkc_mls pkc_mls at yahoo.fr
Wed May 28 12:31:29 CEST 2008


Ivan Kalik a écrit :
> Post the output from radiusd -X.
>
>   
here it is :
FreeRADIUS Version 2.0.4, for host i486-pc-linux-gnu, built on May 11 
2008 at 18:46:28
Copyright (C) 1999-2008 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License.
Starting - reading configuration files ...
including configuration file /etc/freeradius/radiusd.conf
including configuration file /etc/freeradius/proxy.conf
including configuration file /etc/freeradius/clients.conf
including configuration file /etc/freeradius/snmp.conf
including configuration file /etc/freeradius/eap.conf
including configuration file /etc/freeradius/policy.conf
including files in directory /etc/freeradius/sites-enabled/
including dictionary file /etc/freeradius/dictionary
main {
prefix = "/usr"
localstatedir = "/var"
logdir = "/var/log/freeradius"
libdir = "/usr/lib/freeradius"
radacctdir = "/var/log/freeradius/radacct"
hostname_lookups = no
max_request_time = 30
cleanup_delay = 5
max_requests = 1024
allow_core_dumps = no
pidfile = "/var/run/freeradius/freeradius.pid"
user = "freerad"
group = "freerad"
checkrad = "/usr/sbin/checkrad"
debug_level = 0
proxy_requests = yes
 security {
max_attributes = 200
reject_delay = 1
status_server = yes
 }
}
 client localhost {
ipaddr = 127.0.0.1
require_message_authenticator = no
secret = "testing123"
nastype = "other"
 }

radiusd: #### Loading Realms and Home Servers ####
 proxy server {
retry_delay = 5
retry_count = 3
default_fallback = no
dead_time = 120
wake_all_if_all_dead = no
 }
 home_server localhost {
ipaddr = 127.0.0.1
port = 1812
type = "auth"
secret = "testing123"
response_window = 20
max_outstanding = 65536
zombie_period = 40
status_check = "status-server"
ping_check = "none"
ping_interval = 30
check_interval = 30
num_answers_to_alive = 3
num_pings_to_alive = 3
revive_interval = 120
status_check_timeout = 4
 }
 home_server_pool my_auth_failover {
type = fail-over
home_server = localhost
 }
 realm example.com {
auth_pool = my_auth_failover
 }
 realm LOCAL {
 }
radiusd: #### Instantiating modules ####
 instantiate {
 Module: Linked to module rlm_exec
 Module: Instantiating exec
  exec {
wait = yes
input_pairs = "request"
shell_escape = yes
  }
 Module: Linked to module rlm_expr
 Module: Instantiating expr
 Module: Linked to module rlm_expiration
 Module: Instantiating expiration
  expiration {
reply-message = "Password Has Expired  "
  }
 Module: Linked to module rlm_logintime
 Module: Instantiating logintime
  logintime {
reply-message = "You are calling outside your allowed timespan  "
minimum-timeout = 60
  }
 }
radiusd: #### Loading Virtual Servers ####
server {
 modules {
 }
}
radiusd: #### Opening IP addresses and Ports ####
listen {
type = "auth"
ipaddr = *
port = 0
}
listen {
type = "acct"
ipaddr = *
port = 0
}
main {
snmp = no
smux_password = ""
snmp_write_access = no
}
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Listening on proxy address * port 1814
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 57784, id=236, 
length=59
User-Name = "testuser"
User-Password = "testpasswd"
NAS-IP-Address = x.x.x.x
NAS-Port = 1812
auth: No authenticate method (Auth-Type) configuration found for the 
request: Rejecting the user
auth: Failed to validate the user.
Login incorrect: [testuser/testpasswd] (from client localhost port 1812)
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 236 to 127.0.0.1 port 57784
Waking up in 4.9 seconds.

N F
> Ivan Kalik
> Kalik informatika ISP
>
>
> Dana 28/5/2008, "pkc_mls" <pkc_mls at yahoo.fr> piše:
>
>   
>> Hi all,
>>
>> I'd like to tetst my radius conf with a basic setting.
>> I'm running freeradius-2.0.4-2 on linux debian.
>>
>> my client.conf contains the following :
>> client localhost {
>>                   ipaddr = 127.0.0.1
>>                   secret = testing123
>>                   nastype=other
>> }
>>
>> I still don't know which kind of parametre I have to set in my
>> /etc/freeradius/users file
>> to allow my radtest to work.
>>
>> all my tests with cleartext-password, user-password, aht-type, and := =,
>> ==, leads to the same
>> error message :
>> rad_recv: Access-Request packet from host 127.0.0.1 port 57756, id=178,
>> length=59
>>        User-Name = "testuser"
>>        User-Password = "testpasswd"
>>        NAS-IP-Address = x.x.x.x
>>        NAS-Port = 1812
>> Wed May 28 11:41:06 2008 : Debug: auth: No authenticate method
>> (Auth-Type) configuration found for the request: Rejecting the user
>>
>> next step, how to set up the users file so my local unix users can also
>> be authenticated via radius ?
>>
>> thanks
>>
>>
>> -
>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>>
>>
>>     
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>   





More information about the Freeradius-Users mailing list