pam_auth_radius - fallback with localifdown?
Alan DeKok
aland at deployingradius.com
Wed Jun 23 10:13:29 CEST 2010
Martin Richard wrote:
> First off - if you think this doesnt belong here, just don't reply
> instead of being caustic.
There is no need to start a message off with that.
> Thing is, it doesn't work... If I mess up /etc/raddb/server to change
> the key, the host entry or whatever to make sure I can't reach the
> radius server, I don't seem to be going down the stack.. I just get
> denied access and have no trace at all in the logs.
>
> I do not think pam_radius_auth is behaving wrongly - looking at the
> code is simple enough, I do get "All RADIUS servers failed to respond"
> in the SYSLOG, so it should clearly be returning PAM_IGNORE as documented.
Double-check that it's returning PAM_IGNORE. Maybe source code mods
to syslog "RETURNING PAM_IGNORE".
If it is returning PAM_IGNORE, then it's a PAM problem. Ask the
question again on the PAM list.
Alan DeKok.
More information about the Freeradius-Users
mailing list