Freeradius + Ldap - Authorise OK but NO dynamic VLANs

Matthew Newton mcn4 at leicester.ac.uk
Wed Aug 17 16:17:21 CEST 2016


On Wed, Aug 17, 2016 at 04:06:40PM +0200, Matthew Pulis wrote:
> I did not comment files on purporse (as in it's not listed in the tutorial
> so I didn't do it) Can you please pinpoint which config file you are
> referring to as I have gone through all the config files and 'files' is
> un-commented everywhere (at least where I saw).

There is no call to "files" in your debug output:

On Tue, Aug 16, 2016 at 11:14:35AM +0200, Matthew Pulis wrote:
> Ready to process requests.
> rad_recv: Access-Request packet from host 127.0.0.1 port 38281, id=59,
> length=77
>         User-Name = "ttester"
>         User-Password = "openldap"
>         NAS-IP-Address = 127.0.1.1
>         NAS-Port = 1812
>         Message-Authenticator = 0xbe303901f2b855fb146f2f1fda9cd3fd
> # Executing section authorize from file
> /etc/freeradius/sites-enabled/default
> +- entering group authorize {...}
> ++[preprocess] returns ok
> ++[chap] returns noop
> ++[mschap] returns noop
> ++[digest] returns noop
> [suffix] No '@' in User-Name = "ttester", looking up realm NULL
> [suffix] No such realm "NULL"
> ++[suffix] returns noop
> [eap] No EAP-Message, not doing EAP
> ++[eap] returns noop

[files] would normally be here.

> [ldap] performing user authorization for ttester
> [ldap]  expand: %{Stripped-User-Name} ->
> [ldap]  ... expanding second conditional
> [ldap]  expand: %{User-Name} -> ttester
> [ldap]  expand: (uid=%{%{Stripped-User-Name}:-%{User-Name}}) ->
> (uid=ttester)
> [ldap]  expand: ou=SeminaryOU,dc=seminary,dc=local ->
...



Look in sites-enabled/default in the authorize section.

> My config files:
> 
...
> /etc/freeradius/sites-available/default : http://paste.ubuntu.com/23060931/

See line 170. That's not commented out in the default config.

Matthew


-- 
Matthew Newton, Ph.D. <mcn4 at leicester.ac.uk>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>


More information about the Freeradius-Users mailing list