Troubleshoot Error

Angelo C. De Guzman ghie1009 at yahoo.com
Tue Jun 24 07:27:07 CEST 2014


Hi,

I'm basically new to freeradius. Please help to isolate this problem. Shown below are the logs for radiusd -X.

I'm getting the warning below. It looks like I'm having config issues and cannot find where to start.


I just did a local check if Authentciation will be accepted.

 
echo "User-Name=testing,User-Password=testing,Framed-Protocol=PPP " | /usr/local/bin/radclient localhost:1812 auth testing123
Radiusd -X debug

Received Access-Request Id 252 from 127.0.0.1:60268 to 127.0.0.1:1812 length 53
    User-Name = 'testing'
    User-Password = 'testing'
    Framed-Protocol = PPP
(1) # Executing section authorize from file /usr/local/etc/raddb/sites-enabled/default
(1)   authorize {
(1)   filter_username filter_username {
(1)     if (User-Name != "%{tolower:%{User-Name}}") 
(1) EXPAND %{tolower:%{User-Name}}
(1)    --> testing
(1)     if (User-Name != "%{tolower:%{User-Name}}")  -> FALSE
(1)     if (User-Name =~ / /) 
(1)     if (User-Name =~ / /)  -> FALSE
(1)     if (User-Name =~ /@.*@/ ) 
(1)     if (User-Name =~ /@.*@/ )  -> FALSE
(1)     if (User-Name =~ /\\.\\./ ) 
(1)     if (User-Name =~ /\\.\\./ )  -> FALSE
(1)     if ((User-Name =~ /@/) && (User-Name !~ /@(.+)\\.(.+)$/))  
(1)     if ((User-Name =~ /@/) && (User-Name !~ /@(.+)\\.(.+)$/))   -> FALSE
(1)     if (User-Name =~ /\\.$/)  
(1)     if (User-Name =~ /\\.$/)   -> FALSE
(1)     if (User-Name =~ /@\\./)  
(1)     if (User-Name =~ /@\\./)   -> FALSE
(1)   } # filter_username filter_username = notfound
(1)   [preprocess] = ok
(1)   [chap] = noop
(1)   [mschap] = noop
(1)   [digest] = noop
(1) suffix : No '@' in User-Name = "testing", looking up realm NULL
(1) suffix : No such realm "NULL"
(1)   [suffix] = noop
(1) eap : No EAP-Message, not doing EAP
(1)   [eap] = noop
(1) files : users: Matched entry DEFAULT at line 181
(1)   [files] = ok
(1)   [expiration] = noop
(1)   [logintime] = noop
(1) WARNING: pap : No "known good" password found for the user.  Not setting Auth-Type.
(1) WARNING: pap : Authentication will fail unless a "known good" password is available.
(1)   [pap] = noop
(1)  } #  authorize = ok
(1) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject
(1) Failed to authenticate the user.
(1) Using Post-Auth-Type Reject
(1) # Executing group from file /usr/local/etc/raddb/sites-enabled/default
(1)  Post-Auth-Type REJECT {
(1) attr_filter.access_reject : EXPAND %{User-Name}
(1) attr_filter.access_reject :    --> testing
(1) attr_filter.access_reject : Matched entry DEFAULT at line 11
(1)   [attr_filter.access_reject] = updated
(1) eap : Request didn't contain an EAP-Message, not inserting EAP-Failure
(1)   [eap] = noop
(1)   remove_reply_message_if_eap remove_reply_message_if_eap {
(1)     if (reply:EAP-Message && reply:Reply-Message) 
(1)     if (reply:EAP-Message && reply:Reply-Message)  -> FALSE
(1)    else else {
(1)     [noop] = noop
(1)    } # else else = noop
(1)   } # remove_reply_message_if_eap remove_reply_message_if_eap = noop
(1)  } # Post-Auth-Type REJECT = updated
(1) Delaying response for 1 seconds
Waking up in 0.3 seconds.
Waking up in 0.6 seconds.
(1) Sending delayed response
Sending Access-Reject Id 252 from 127.0.0.1:1812 to 127.0.0.1:60268
Waking up in 3.9 seconds.
(1) Cleaning up request packet ID 252 with timestamp +1643
Ready to process requests.

Thanks,
Gie
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140623/8ed0bed3/attachment.html>


More information about the Freeradius-Users mailing list