Troubleshoot Error
Angelo C. De Guzman
ghie1009 at yahoo.com
Tue Jun 24 07:27:07 CEST 2014
Hi,
I'm basically new to freeradius. Please help to isolate this problem. Shown below are the logs for radiusd -X.
I'm getting the warning below. It looks like I'm having config issues and cannot find where to start.
I just did a local check if Authentciation will be accepted.
echo "User-Name=testing,User-Password=testing,Framed-Protocol=PPP " | /usr/local/bin/radclient localhost:1812 auth testing123
Radiusd -X debug
Received Access-Request Id 252 from 127.0.0.1:60268 to 127.0.0.1:1812 length 53
User-Name = 'testing'
User-Password = 'testing'
Framed-Protocol = PPP
(1) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default
(1) authorize {
(1) filter_username filter_username {
(1) if (User-Name != "%{tolower:%{User-Name}}")
(1) EXPAND %{tolower:%{User-Name}}
(1) --> testing
(1) if (User-Name != "%{tolower:%{User-Name}}") -> FALSE
(1) if (User-Name =~ / /)
(1) if (User-Name =~ / /) -> FALSE
(1) if (User-Name =~ /@.*@/ )
(1) if (User-Name =~ /@.*@/ ) -> FALSE
(1) if (User-Name =~ /\\.\\./ )
(1) if (User-Name =~ /\\.\\./ ) -> FALSE
(1) if ((User-Name =~ /@/) && (User-Name !~ /@(.+)\\.(.+)$/))
(1) if ((User-Name =~ /@/) && (User-Name !~ /@(.+)\\.(.+)$/)) -> FALSE
(1) if (User-Name =~ /\\.$/)
(1) if (User-Name =~ /\\.$/) -> FALSE
(1) if (User-Name =~ /@\\./)
(1) if (User-Name =~ /@\\./) -> FALSE
(1) } # filter_username filter_username = notfound
(1) [preprocess] = ok
(1) [chap] = noop
(1) [mschap] = noop
(1) [digest] = noop
(1) suffix : No '@' in User-Name = "testing", looking up realm NULL
(1) suffix : No such realm "NULL"
(1) [suffix] = noop
(1) eap : No EAP-Message, not doing EAP
(1) [eap] = noop
(1) files : users: Matched entry DEFAULT at line 181
(1) [files] = ok
(1) [expiration] = noop
(1) [logintime] = noop
(1) WARNING: pap : No "known good" password found for the user. Not setting Auth-Type.
(1) WARNING: pap : Authentication will fail unless a "known good" password is available.
(1) [pap] = noop
(1) } # authorize = ok
(1) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject
(1) Failed to authenticate the user.
(1) Using Post-Auth-Type Reject
(1) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(1) Post-Auth-Type REJECT {
(1) attr_filter.access_reject : EXPAND %{User-Name}
(1) attr_filter.access_reject : --> testing
(1) attr_filter.access_reject : Matched entry DEFAULT at line 11
(1) [attr_filter.access_reject] = updated
(1) eap : Request didn't contain an EAP-Message, not inserting EAP-Failure
(1) [eap] = noop
(1) remove_reply_message_if_eap remove_reply_message_if_eap {
(1) if (reply:EAP-Message && reply:Reply-Message)
(1) if (reply:EAP-Message && reply:Reply-Message) -> FALSE
(1) else else {
(1) [noop] = noop
(1) } # else else = noop
(1) } # remove_reply_message_if_eap remove_reply_message_if_eap = noop
(1) } # Post-Auth-Type REJECT = updated
(1) Delaying response for 1 seconds
Waking up in 0.3 seconds.
Waking up in 0.6 seconds.
(1) Sending delayed response
Sending Access-Reject Id 252 from 127.0.0.1:1812 to 127.0.0.1:60268
Waking up in 3.9 seconds.
(1) Cleaning up request packet ID 252 with timestamp +1643
Ready to process requests.
Thanks,
Gie
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140623/8ed0bed3/attachment.html>
More information about the Freeradius-Users
mailing list