Problem with Cache and Reject Users
Alan DeKok
aland at deployingradius.com
Fri May 27 16:41:59 CEST 2011
Rafal Kaminski wrote:
> I have problem with users which type 2-3 times bad password.
>
> In debug mode i have something like this:
>
> Fri May 27 16:11:01 2011 : Info: [peap] The users session was previously rejected: returning reject (again.)
> Fri May 27 16:11:01 2011 : Info: [peap] *** This means you need to read the PREVIOUS messages in the debug output
> Fri May 27 16:11:01 2011 : Info: [peap] *** to find out the reason why the user was rejected.
> Fri May 27 16:11:01 2011 : Info: [peap] *** Look for "reject" or "fail". Those earlier messages will tell you.
> Fri May 27 16:11:01 2011 : Info: [peap] *** what went wrong, and how to fix the problem.
>
> All is fine if users put good password and auth. with LDAP. But some times they made some typo :(
>
> I tried read all line in debug mode, how is write here, but I have one question:
>
> - Is there any possible to remove/clean this cache?
There is no cache. That message means you need to READ THE DEBUG OUTPUT.
The reason for rejecting the user is IN THE DEBUG OUTPUT.
> I set in eap.conf - cache enable=on and lifetime = 1 hours, but nothing.
Because that does nothing to solve this problem.
Alan DeKok.
More information about the Freeradius-Users
mailing list