Failed (re-)authentification after some time...
Alan DeKok
aland at deployingradius.com
Wed Sep 1 15:46:41 CEST 2010
Jan Zacharias wrote:
> To speed up the debugging, I introduced a sleep of varying duration in
> the ntlm_auth_wrapper.
>
> I found that freeradius kills the ntlm stuff if it takes longer than ten
> seconds to complete.
Yes. Any child script which takes that long is broken.
> My suggestion is that we introduce a configuration variable
> ntlm_auth_retries so that freerad kills the process,
No. You can write a shell script wrapper around ntlm_auth that does:
- fork ntlm_auth
- wait 1s for it to return
- if it doesn't return, kill it
- try to fork it again
> What do you think, Alan? Anyone else?
This isn't a server problem, and changing the server isn't necessary.
Alan DeKok.
More information about the Freeradius-Users
mailing list