authentication failed because sqlcounter...
Nizar Zulmi
siapa_bilang_emailku_panjang at yahoo.com
Fri May 8 21:12:46 CEST 2009
mm confusing..i just enable the sqlcounter in radiusd.conf. i just let it as default no change i made in noresetcounter module. then i adding noresetcounter in authorize and instantiate section.
i have defined 1user named tes and password tes has loged in normally before i add attribut max-all-session in the table radcheck just like this.
+----+----------+-----------------+----+--------+
| id | UserName | Attribute | op | Value |
+----+----------+-----------------+----+--------+
| 1 | nizar | Password | == | nizar |
| 2 | nizar1 | Password | == | nizar1 |
| 6 | tes | Max-All-Session | == | 90 |
| 4 | tes | Password | == | tes |
+----+----------+-----------------+----+--------+
after i adding the attribut max-all-session the user tes cannot login anymore. i do running freeradius in debug mode and the following si the result..
somebody help me please...
================freeradius debug result=======
rad_recv: Access-Request packet from host 192.168.0.1:56614, id=0, length=194
User-Name = "tes"
User-Password = "tes"
NAS-IP-Address = 0.0.0.0
Service-Type = Login-User
Framed-IP-Address = 192.168.182.3
Calling-Station-Id = "00-1E-68-23-E9-C8"
Called-Station-Id = "00-00-E2-78-FF-39"
NAS-Identifier = "nas01"
Acct-Session-Id = "4a04816800000000"
NAS-Port-Type = Wireless-802.11
NAS-Port = 0
Message-Authenticator = 0x1c3a148590ef0762aed6069cc9ac0715
WISPr-Logoff-URL = "http://192.168.182.1:3990/logoff"
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 3
modcall[authorize]: module "preprocess" returns ok for request 3
modcall[authorize]: module "chap" returns noop for request 3
modcall[authorize]: module "mschap" returns noop for request 3
rlm_realm: No '@' in User-Name = "tes", looking up realm NULL
rlm_realm: No such realm "NULL"
modcall[authorize]: module "suffix" returns noop for request 3
rlm_eap: No EAP-Message, not doing EAP
modcall[authorize]: module "eap" returns noop for request 3
radius_xlat: 'tes'
rlm_sql (sql): sql_set_user escaped user --> 'tes'
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE Username = 'tes' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 0
radius_xlat: 'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op FROM radgroupcheck,usergroup WHERE usergroup.Username = 'tes' AND usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM radreply WHERE Username = 'tes' ORDER BY id'
radius_xlat: 'SELECT radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op FROM radgroupreply,usergroup WHERE usergroup.Username = 'tes' AND usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 0
rlm_sql (sql): No matching entry in the database for request from user [tes]
modcall[authorize]: module "sql" returns notfound for request 3
rlm_sqlcounter: Entering module authorize code
rlm_sqlcounter: Could not find Check item value pair
modcall[authorize]: module "noresetcounter" returns noop for request 3
rlm_pap: WARNING! No "known good" password found for the user. Authentication may fail because of this.
modcall[authorize]: module "pap" returns noop for request 3
modcall: leaving group authorize (returns ok) for request 3
auth: No authenticate method (Auth-Type) configuration found for the request: Rejecting the user
auth: Failed to validate the user.
Delaying request 3 for 1 seconds
Finished request 3
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 1 seconds...
rad_recv: Access-Request packet from host 192.168.0.1:56614, id=0, length=194
Sending Access-Reject of id 0 to 192.168.0.1 port 56614
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 3 ID 0 with timestamp 4a048180
Nothing to do. Sleeping until we see a request.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20090508/0436f087/attachment.html>
More information about the Freeradius-Users
mailing list