Doubt - Freeradius + Ldap

Peter Lambrechtsen plambrechtsen at gmail.com
Mon Nov 1 19:30:23 CET 2010


It's probably since you didn't compile OpenLDAP and FreeRadius with OpenSSL
support.

So you will need to recompile OpenLDAP, Cyrus SASL, OpenLDAP and FreeRadius.

On Tue, Nov 2, 2010 at 6:14 AM, eduardo moreira
<eduardomoreirars at gmail.com>wrote:

> Hello list,
>
> Im new with freeradius, but read many about this and dont solve my problem.
> I have this problem with my implemention.
>
> Only appears this message with freeradius -X -x
> Mon Nov  1 15:04:23 2010 : Debug: rlm_eap: Ignoring EAP-Type/tls because we
> do not have OpenSSL support.
> Mon Nov  1 15:04:23 2010 : Debug: rlm_eap: Ignoring EAP-Type/ttls because
> we do not have OpenSSL support.
> Mon Nov  1 15:04:23 2010 : Debug: rlm_eap: Ignoring EAP-Type/peap because
> we do not have OpenSSL support.
>
> Remaind: i using debian 5.0
>
> And when try to connect, appears this message:
>
> Mon Nov  1 15:06:10 2010 : Debug: rlm_ldap: LDAP attribute cn as RADIUS
> attribute Group == "eduardo"
> Mon Nov  1 15:06:10 2010 : Debug: rlm_ldap: looking for reply items in
> directory...
> Mon Nov  1 15:06:10 2010 : Debug: rlm_ldap: user eduardo authorized to use
> remote access
> Mon Nov  1 15:06:10 2010 : Debug: rlm_ldap: ldap_release_conn: Release Id:
> 0
> Mon Nov  1 15:06:10 2010 : Debug:   modsingle[authorize]: returned from
> ldap (rlm_ldap) for request 0
> Mon Nov  1 15:06:10 2010 : Debug: ++[ldap] returns ok
> Mon Nov  1 15:06:10 2010 : Debug:   modsingle[authorize]: calling eap
> (rlm_eap) for request 0
> Mon Nov  1 15:06:10 2010 : Debug:   rlm_eap: No EAP-Message, not doing EAP
> Mon Nov  1 15:06:10 2010 : Debug:   modsingle[authorize]: returned from eap
> (rlm_eap) for request 0
> Mon Nov  1 15:06:10 2010 : Debug: ++[eap] returns noop
> Mon Nov  1 15:06:10 2010 : Debug:   modsingle[authorize]: calling chap
> (rlm_chap) for request 0
> Mon Nov  1 15:06:10 2010 : Debug:   modsingle[authorize]: returned from
> chap (rlm_chap) for request 0
> Mon Nov  1 15:06:10 2010 : Debug: ++[chap] returns noop
> Mon Nov  1 15:06:10 2010 : Debug:
> !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
> Mon Nov  1 15:06:10 2010 : Debug: !!!    Replacing User-Password in config
> items with Cleartext-Password.     !!!
> Mon Nov  1 15:06:10 2010 : Debug:
> !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
> Mon Nov  1 15:06:10 2010 : Debug: !!! Please update your configuration so
> that the "known good"               !!!
> Mon Nov  1 15:06:10 2010 : Debug: !!! clear text password is in
> Cleartext-Password, and not in User-Password. !!!
> Mon Nov  1 15:06:10 2010 : Debug:
> !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
> Mon Nov  1 15:06:10 2010 : Debug: auth: type Local
> Mon Nov  1 15:06:10 2010 : Debug: auth: user supplied User-Password does
> NOT match local User-Password
> Mon Nov  1 15:06:10 2010 : Debug: auth: Failed to validate the user.
> Mon Nov  1 15:06:10 2010 : Auth: Login incorrect:
> [eduardo/1\320\026\305\020B)\323I\211�?\001\nx\204] (from client
> BrasilTelecom port 1812)
> Mon Nov  1 15:06:10 2010 : Debug:   WARNING: Unprintable characters in the
> password.    Double-check the shared secret on the server and the NAS!
> Mon Nov  1 15:06:10 2010 : Debug: Delaying reject of request 0 for 1
> seconds
>
> I try to reinstall but no sucess.
>
> I need help for advanced.
>
> If anyone have this solution or whatever, please help me.
>
> And sorry for my bad english.
>
> Regards,
> Eduardo
>
>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20101102/b29e1649/attachment.html>


More information about the Freeradius-Users mailing list