CentOS 6.3 and FreeRadius - can't authenticate to Unix
Alan DeKok
aland at deployingradius.com
Tue Oct 30 08:04:06 CET 2012
Jacobs, Joseph wrote:
> I’m trying to set up Freeradius to authenticate against the local Linux
> user accounts.
..
> joe2 Auth-Type := System (I’ve tried this with both := and =)
Don't do that.
> bob Cleartext-Password := "hello"
OK.
Then:
> [files] users: Matched entry bob at line 8
That makes sense.
> Sending Access-Accept of id 124 to 127.0.0.1 port 54241
So that works.
> When I run “radtest joe2 secret localhost 0 testing1234”
...
> ++[unix] returns notfound
That's pretty definitive. The user isn't in /etc/passwd, or
/etc/shadow. Or, the server can't read it.
> [files] users: Matched entry joe2 at line 6
That entry is wrong, delete it.
> One of the steps involved putting the group for freeradius to be
> “shadow” but there is no “shadow” group in the group file in CentOS 6.3.
That's fine. If you're running the server as root, that isn't necessary.
> I also did confirm that I can log into my server using joe2 / secret
> password.
Well, FreeRADIUS asks the system for "joe2"s password. It says "not
found".
Alan DeKok.
More information about the Freeradius-Users
mailing list