pam_auth_radius - fallback with localifdown?

Alan DeKok aland at deployingradius.com
Wed Jun 23 10:13:29 CEST 2010


Martin Richard wrote:
>   First off - if you think this doesnt belong here, just don't reply
> instead of being caustic.

  There is no need to start a message off with that.

>   Thing is, it doesn't work... If I mess up /etc/raddb/server to change
> the key, the host entry or whatever to make sure I can't reach the
> radius server, I don't seem to be going down the stack.. I just get
> denied access and have no trace at all in the logs.
> 
>   I do not think pam_radius_auth is behaving wrongly - looking at the
> code is simple enough, I do get "All RADIUS servers failed to respond"
> in the SYSLOG, so it should clearly be returning PAM_IGNORE as documented.

  Double-check that it's returning PAM_IGNORE.  Maybe source code mods
to syslog "RETURNING PAM_IGNORE".

  If it is returning PAM_IGNORE, then it's a PAM problem.  Ask the
question again on the PAM list.

  Alan DeKok.



More information about the Freeradius-Users mailing list