Freeradius 3.0.14 - Enable SQLite
Stabla, Daniel
dstabla at materna.de
Thu Jun 8 15:06:59 CEST 2017
Okay, the hole situation in one mail, debugmode is at the end.
If we try to start radiusd , we get this error:
--------------------------------------------------------------------------------------
/etc/radiusd-acct/mods-enabled/sql[26]: Failed to link to module
'rlm_sqlite': /usr/local/lib64/rlm_sqlite.so: cannot open shared object
file: No such file or directory /usr/local/lib/rlm_sqlite.so: cannot
open shared object file: No such file or directory
--------------------------------------------------------------------------------------
Which is true, because the module had been installed as
/usr/local/lib64/rlm_sql_sqlite.so .
An installation with these steps leads us to this error:
- ./configure --without-rlm_rediswho --with-rlm_sql_sqlite=yes
- make
- make install
The value of libdir:
libdir = "/usr/local/lib64:/usr/local/lib"
The content of /usr/local/lib64:
--------------------------------------------------------------------------------------
testsystem:~ # ls -l /usr/local/lib64
-rwxr-xr-x 1 root root 86936 Jun 8 10:02 libfreeradius-dhcp.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 libfreeradius-dhcp.la
-rwxr-xr-x 1 root root 69328 Jun 8 10:02 libfreeradius-dhcp.so
-rwxr-xr-x 1 root root 558930 Jun 8 10:02 libfreeradius-eap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 libfreeradius-eap.la
-rwxr-xr-x 1 root root 268656 Jun 8 10:02 libfreeradius-eap.so
-rwxr-xr-x 1 root root 1577750 Jun 8 10:02 libfreeradius-radius.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 libfreeradius-radius.la
-rwxr-xr-x 1 root root 957200 Jun 8 10:02 libfreeradius-radius.so
-rwxr-xr-x 1 root root 1867662 Jun 8 10:02 libfreeradius-server.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 libfreeradius-server.la
-rwxr-xr-x 1 root root 924680 Jun 8 10:02 libfreeradius-server.so
-rwxr-xr-x 1 root root 127628 Jun 8 10:02 proto_dhcp.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 proto_dhcp.la
-rwxr-xr-x 1 root root 84096 Jun 8 10:02 proto_dhcp.so
-rwxr-xr-x 1 root root 140424 Jun 8 10:02 proto_vmps.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 proto_vmps.la
-rwxr-xr-x 1 root root 87800 Jun 8 10:02 proto_vmps.so
-rwxr-xr-x 1 root root 95228 Jun 8 10:02 rlm_always.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_always.la
-rwxr-xr-x 1 root root 61248 Jun 8 10:02 rlm_always.so
-rwxr-xr-x 1 root root 112584 Jun 8 10:02 rlm_attr_filter.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_attr_filter.la
-rwxr-xr-x 1 root root 74328 Jun 8 10:02 rlm_attr_filter.so
-rwxr-xr-x 1 root root 142538 Jun 8 10:02 rlm_cache.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_cache.la
-rwxr-xr-x 1 root root 96800 Jun 8 10:02 rlm_cache.so
-rwxr-xr-x 1 root root 113962 Jun 8 10:02 rlm_cache_rbtree.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_cache_rbtree.la
-rwxr-xr-x 1 root root 75344 Jun 8 10:02 rlm_cache_rbtree.so
-rwxr-xr-x 1 root root 100210 Jun 8 10:02 rlm_chap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_chap.la
-rwxr-xr-x 1 root root 62360 Jun 8 10:02 rlm_chap.so
-rwxr-xr-x 1 root root 140700 Jun 8 10:02 rlm_counter.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_counter.la
-rwxr-xr-x 1 root root 91904 Jun 8 10:02 rlm_counter.so
-rwxr-xr-x 1 root root 103778 Jun 8 10:02 rlm_cram.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_cram.la
-rwxr-xr-x 1 root root 65528 Jun 8 10:02 rlm_cram.so
-rwxr-xr-x 1 root root 97522 Jun 8 10:02 rlm_date.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_date.la
-rwxr-xr-x 1 root root 62808 Jun 8 10:02 rlm_date.so
-rwxr-xr-x 1 root root 125236 Jun 8 10:02 rlm_detail.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_detail.la
-rwxr-xr-x 1 root root 84552 Jun 8 10:02 rlm_detail.so
-rwxr-xr-x 1 root root 107682 Jun 8 10:02 rlm_dhcp.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_dhcp.la
-rwxr-xr-x 1 root root 71672 Jun 8 10:02 rlm_dhcp.so
-rwxr-xr-x 1 root root 115468 Jun 8 10:02 rlm_digest.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_digest.la
-rwxr-xr-x 1 root root 72960 Jun 8 10:02 rlm_digest.so
-rwxr-xr-x 1 root root 93784 Jun 8 10:02 rlm_dynamic_clients.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_dynamic_clients.la
-rwxr-xr-x 1 root root 60696 Jun 8 10:02 rlm_dynamic_clients.so
-rwxr-xr-x 1 root root 407566 Jun 8 10:02 rlm_eap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap.la
-rwxr-xr-x 1 root root 205200 Jun 8 10:02 rlm_eap.so
-rwxr-xr-x 1 root root 336842 Jun 8 10:02 rlm_eap_fast.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_fast.la
-rwxr-xr-x 1 root root 185120 Jun 8 10:02 rlm_eap_fast.so
-rwxr-xr-x 1 root root 103380 Jun 8 10:02 rlm_eap_gtc.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_gtc.la
-rwxr-xr-x 1 root root 65264 Jun 8 10:02 rlm_eap_gtc.so
-rwxr-xr-x 1 root root 245596 Jun 8 10:02 rlm_eap_leap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_leap.la
-rwxr-xr-x 1 root root 126904 Jun 8 10:02 rlm_eap_leap.so
-rwxr-xr-x 1 root root 131352 Jun 8 10:02 rlm_eap_md5.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_md5.la
-rwxr-xr-x 1 root root 76864 Jun 8 10:02 rlm_eap_md5.so
-rwxr-xr-x 1 root root 128330 Jun 8 10:02 rlm_eap_mschapv2.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_mschapv2.la
-rwxr-xr-x 1 root root 83960 Jun 8 10:02 rlm_eap_mschapv2.so
-rwxr-xr-x 1 root root 279094 Jun 8 10:02 rlm_eap_peap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_peap.la
-rwxr-xr-x 1 root root 150152 Jun 8 10:02 rlm_eap_peap.so
-rwxr-xr-x 1 root root 223726 Jun 8 10:02 rlm_eap_pwd.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_pwd.la
-rwxr-xr-x 1 root root 139712 Jun 8 10:02 rlm_eap_pwd.so
-rwxr-xr-x 1 root root 126932 Jun 8 10:02 rlm_eap_sim.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_sim.la
-rwxr-xr-x 1 root root 81016 Jun 8 10:02 rlm_eap_sim.so
-rwxr-xr-x 1 root root 111236 Jun 8 10:02 rlm_eap_tls.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_tls.la
-rwxr-xr-x 1 root root 69216 Jun 8 10:02 rlm_eap_tls.so
-rwxr-xr-x 1 root root 264774 Jun 8 10:02 rlm_eap_ttls.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_eap_ttls.la
-rwxr-xr-x 1 root root 142056 Jun 8 10:02 rlm_eap_ttls.so
-rwxr-xr-x 1 root root 114554 Jun 8 10:02 rlm_exec.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_exec.la
-rwxr-xr-x 1 root root 75616 Jun 8 10:02 rlm_exec.so
-rwxr-xr-x 1 root root 94726 Jun 8 10:02 rlm_expiration.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_expiration.la
-rwxr-xr-x 1 root root 61584 Jun 8 10:02 rlm_expiration.so
-rwxr-xr-x 1 root root 295066 Jun 8 10:02 rlm_expr.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_expr.la
-rwxr-xr-x 1 root root 171200 Jun 8 10:02 rlm_expr.so
-rwxr-xr-x 1 root root 115258 Jun 8 10:02 rlm_files.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_files.la
-rwxr-xr-x 1 root root 74928 Jun 8 10:02 rlm_files.so
-rwxr-xr-x 1 root root 131708 Jun 8 10:02 rlm_ippool.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_ippool.la
-rwxr-xr-x 1 root root 85864 Jun 8 10:02 rlm_ippool.so
-rwxr-xr-x 1 root root 144484 Jun 8 10:02 rlm_krb5.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_krb5.la
-rwxr-xr-x 1 root root 88840 Jun 8 10:02 rlm_krb5.so
-rwxr-xr-x 1 root root 793630 Jun 8 10:02 rlm_ldap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_ldap.la
-rwxr-xr-x 1 root root 390472 Jun 8 10:02 rlm_ldap.so
-rwxr-xr-x 1 root root 105612 Jun 8 10:02 rlm_linelog.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_linelog.la
-rwxr-xr-x 1 root root 70256 Jun 8 10:02 rlm_linelog.so
-rwxr-xr-x 1 root root 129060 Jun 8 10:02 rlm_logintime.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_logintime.la
-rwxr-xr-x 1 root root 80304 Jun 8 10:02 rlm_logintime.so
-rwxr-xr-x 1 root root 295300 Jun 8 10:02 rlm_mschap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_mschap.la
-rwxr-xr-x 1 root root 158864 Jun 8 10:02 rlm_mschap.so
-rwxr-xr-x 1 root root 461756 Jun 8 10:02 rlm_otp.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_otp.la
-rwxr-xr-x 1 root root 209232 Jun 8 10:02 rlm_otp.so
-rwxr-xr-x 1 root root 100880 Jun 8 10:02 rlm_pam.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_pam.la
-rwxr-xr-x 1 root root 64160 Jun 8 10:02 rlm_pam.so
-rwxr-xr-x 1 root root 154256 Jun 8 10:02 rlm_pap.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_pap.la
-rwxr-xr-x 1 root root 102760 Jun 8 10:02 rlm_pap.so
-rwxr-xr-x 1 root root 124596 Jun 8 10:02 rlm_passwd.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_passwd.la
-rwxr-xr-x 1 root root 84536 Jun 8 10:02 rlm_passwd.so
-rwxr-xr-x 1 root root 273394 Jun 8 10:02 rlm_perl.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_perl.la
-rwxr-xr-x 1 root root 164352 Jun 8 10:02 rlm_perl.so
-rwxr-xr-x 1 root root 118582 Jun 8 10:02 rlm_preprocess.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_preprocess.la
-rwxr-xr-x 1 root root 76992 Jun 8 10:02 rlm_preprocess.so
-rwxr-xr-x 1 root root 189492 Jun 8 10:02 rlm_python.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_python.la
-rwxr-xr-x 1 root root 128632 Jun 8 10:02 rlm_python.so
-rwxr-xr-x 1 root root 122732 Jun 8 10:02 rlm_radutmp.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_radutmp.la
-rwxr-xr-x 1 root root 80880 Jun 8 10:02 rlm_radutmp.so
-rwxr-xr-x 1 root root 112666 Jun 8 10:02 rlm_realm.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_realm.la
-rwxr-xr-x 1 root root 72768 Jun 8 10:02 rlm_realm.so
-rwxr-xr-x 1 root root 104862 Jun 8 10:02 rlm_replicate.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_replicate.la
-rwxr-xr-x 1 root root 66200 Jun 8 10:02 rlm_replicate.so
-rwxr-xr-x 1 root root 102680 Jun 8 10:02 rlm_soh.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_soh.la
-rwxr-xr-x 1 root root 65528 Jun 8 10:02 rlm_soh.so
-rwxr-xr-x 1 root root 97742 Jun 8 10:02 rlm_sometimes.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_sometimes.la
-rwxr-xr-x 1 root root 62656 Jun 8 10:02 rlm_sometimes.so
-rwxr-xr-x 1 root root 311762 Jun 8 10:02 rlm_sql.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_sql.la
-rwxr-xr-x 1 root root 180096 Jun 8 10:02 rlm_sql.so
-rwxr-xr-x 1 root root 148086 Jun 8 10:02 rlm_sql_mysql.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_sql_mysql.la
-rwxr-xr-x 1 root root 96240 Jun 8 10:02 rlm_sql_mysql.so
-rwxr-xr-x 1 root root 96366 Jun 8 10:02 rlm_sql_null.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_sql_null.la
-rwxr-xr-x 1 root root 61608 Jun 8 10:02 rlm_sql_null.so
-rwxr-xr-x 1 root root 151614 Jun 8 10:02 rlm_sql_sqlite.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_sql_sqlite.la
-rwxr-xr-x 1 root root 100416 Jun 8 10:02 rlm_sql_sqlite.so
-rwxr-xr-x 1 root root 125814 Jun 8 10:02 rlm_sqlcounter.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_sqlcounter.la
-rwxr-xr-x 1 root root 82344 Jun 8 10:02 rlm_sqlcounter.so
-rwxr-xr-x 1 root root 138222 Jun 27 2016 rlm_sqlhpwippool.a
-rwxr-xr-x 1 root root 17 Jun 27 2016 rlm_sqlhpwippool.la
-rwxr-xr-x 1 root root 88416 Jun 27 2016 rlm_sqlhpwippool.so
-rwxr-xr-x 1 root root 132998 Jun 8 10:02 rlm_sqlippool.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_sqlippool.la
-rwxr-xr-x 1 root root 88104 Jun 8 10:02 rlm_sqlippool.so
-rwxr-xr-x 1 root root 102282 Jun 8 10:02 rlm_test.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_test.la
-rwxr-xr-x 1 root root 63272 Jun 8 10:02 rlm_test.so
-rwxr-xr-x 1 root root 115418 Jun 8 10:02 rlm_unix.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_unix.la
-rwxr-xr-x 1 root root 74688 Jun 8 10:02 rlm_unix.so
-rwxr-xr-x 1 root root 101092 Jun 8 10:02 rlm_unpack.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_unpack.la
-rwxr-xr-x 1 root root 64104 Jun 8 10:02 rlm_unpack.so
-rwxr-xr-x 1 root root 90770 Jun 8 10:02 rlm_utf8.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_utf8.la
-rwxr-xr-x 1 root root 59296 Jun 8 10:02 rlm_utf8.so
-rwxr-xr-x 1 root root 112242 Jun 8 10:02 rlm_wimax.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_wimax.la
-rwxr-xr-x 1 root root 71896 Jun 8 10:02 rlm_wimax.so
-rwxr-xr-x 1 root root 136580 Jun 8 10:02 rlm_yubikey.a
-rwxr-xr-x 1 root root 17 Jun 8 10:02 rlm_yubikey.la
-rwxr-xr-x 1 root root 84464 Jun 8 10:02 rlm_yubikey.so
--------------------------------------------------------------------------------------
Content of mods-enabled/sql:
--------------------------------------------------------------------------------------
# -*- text -*-
##
## sql.conf -- SQL modules
##
## $Id: 4997a802dfd8660f622d06f577a787bf30895e3e $
######################################################################
#
# Configuration for the SQL module
#
# The database schemas and queries are located in subdirectories:
#
# sql/<DB>/main/schema.sql Schema
# sql/<DB>/main/queries.conf Authorisation and Accounting queries
#
# Where "DB" is mysql, mssql, oracle, or postgresql.
#
#
#
# Several drivers accept specific options, to set them a config section
# matching the name of the driver should be added to the sql instance.
#
# Driver specific options are:
#
sqlite {
# Path to the sqlite database
filename = "/tmp/database.db"
# If the file above does not exist and bootstrap is set
# a new database file will be created, and the SQL statements
# contained within the file will be executed.
bootstrap = "/etc/radiusd-acct/sql/main/sqlite/schema.sql"
}
#
# mysql {
# # If any of the below files are set tls encryption is enabled
# tls {
# ca_file = "/etc/ssl/certs/my_ca.crt"
# ca_path = "/etc/ssl/certs/"
# certificate_file = "/etc/ssl/certs/private/client.crt"
# private_key_file = "/etc/ssl/certs/private/client.key"
# cipher = "DHE-RSA-AES256-SHA:AES128-SHA"
# }
# }
sql {
# The sub-module to use to execute queries. This should match
# the database you're attempting to connect to.
#
# * rlm_sql_mysql
# * rlm_sql_mssql
# * rlm_sql_oracle
# * rlm_sql_postgresql
# * rlm_sql_sqlite
# * rlm_sql_null (log queries to disk)
#
driver = "rlm_sql_sqlite"
# The dialect of SQL you want to use, this should usually match
# the driver you selected above.
#
# If you're using rlm_sql_null, then it should be the type of
# database the logged queries are going to be executed against.
dialect = "sqlite"
# Database table configuration for everything except Oracle
radius_db = "radius"
# If you want both stop and start records logged to the
# same SQL table, leave this as is. If you want them in
# different tables, put the start table in acct_table1
# and stop table in acct_table2
acct_table1 = "radacct"
acct_table2 = "radacct"
# Allow for storing data after authentication
postauth_table = "radpostauth"
# Tables containing 'check' items
authcheck_table = "radcheck"
groupcheck_table = "radgroupcheck"
# Tables containing 'reply' items
authreply_table = "radreply"
groupreply_table = "radgroupreply"
# Table to keep group info
usergroup_table = "radusergroup"
# If set to 'yes' (default) we read the group tables
# If set to 'no' the user MUST have Fall-Through = Yes in the
radreply table
read_groups = yes
# Remove stale session if checkrad does not see a double login
delete_stale_sessions = yes
# Write SQL queries to a logfile. This is potentially useful
for tracing
# issues with authorization queries.
# logfile = ${logdir}/sqllog.sql
# As of version 3.0, the "pool" section has replaced the
# following configuration items:
#
# num_sql_socks
# connect_failure_retry_delay
# lifetime
# max_queries
#
# The connection pool is new for 3.0, and will be used in many
# modules, for all kinds of connection-related activity.
#
pool {
# Number of connections to start
start = 5
# Minimum number of connections to keep open
min = 4
# Maximum number of connections
#
# If these connections are all in use and a new one
# is requested, the request will NOT get a connection.
max = 10
# Spare connections to be left idle
#
# NOTE: Idle connections WILL be closed if "idle_timeout"
# is set.
spare = 3
# Number of uses before the connection is closed
#
# 0 means "infinite"
uses = 0
# The lifetime (in seconds) of the connection
lifetime = 0
# idle timeout (in seconds). A connection which is
# unused for this length of time will be closed.
idle_timeout = 60
# NOTE: All configuration settings are enforced. If a
# connection is closed because of "idle_timeout",
# "uses", or "lifetime", then the total number of
# connections MAY fall below "min". When that
# happens, it will open a new connection. It will
# also log a WARNING message.
#
# The solution is to either lower the "min" connections,
# or increase lifetime/idle_timeout.
}
# Set to 'yes' to read radius clients from the database ('nas'
table)
# Clients will ONLY be read on server startup.
# read_clients = yes
# Table to keep radius client info
client_table = "nas"
# Read database-specific queries
$INCLUDE ${modconfdir}/${.:name}/main/${dialect}/queries.conf
}
--------------------------------------------------------------------------------------
testsystem:~ # /usr/local/sbin/radiusd -d /etc/radiusd-acct -fxx -l stdout
FreeRADIUS Version 3.0.14
Copyright (C) 1999-2017 The FreeRADIUS server project and contributors
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License
For more information about these matters, see the file named COPYRIGHT
Starting - reading configuration files ...
including dictionary file /usr/local/share/freeradius/dictionary
including dictionary file /usr/local/share/freeradius/dictionary.dhcp
including dictionary file /usr/local/share/freeradius/dictionary.vqp
including dictionary file /etc/radiusd-acct/dictionary
including configuration file /etc/radiusd-acct/radiusd.conf
including configuration file /etc/radiusd-acct/clients.conf
including configuration file /etc/radiusd-acct/proxy.conf
including files in directory /etc/radiusd-acct/mods-enabled/
including configuration file /etc/radiusd-acct/mods-enabled/detail
including configuration file /etc/radiusd-acct/mods-enabled/files
including configuration file /etc/radiusd-acct/mods-enabled/exec
including configuration file /etc/radiusd-acct/mods-enabled/counter
including configuration file /etc/radiusd-acct/mods-enabled/radutmp
including configuration file /etc/radiusd-acct/mods-enabled/linelog
including configuration file /etc/radiusd-acct/mods-enabled/always
including configuration file /etc/radiusd-acct/mods-enabled/expiration
including configuration file /etc/radiusd-acct/mods-enabled/attr_filter
including configuration file /etc/radiusd-acct/mods-enabled/realm
including configuration file /etc/radiusd-acct/mods-enabled/logintime
including configuration file /etc/radiusd-acct/mods-enabled/pap
including configuration file /etc/radiusd-acct/mods-enabled/sql
including configuration file
/etc/radiusd-acct/mods-config/sql/main/sqlite/queries.conf
including configuration file /etc/radiusd-acct/mods-enabled/detail.log
including configuration file /etc/radiusd-acct/mods-enabled/preprocess
including configuration file /etc/radiusd-acct/mods-enabled/expr
including configuration file /etc/radiusd-acct/mods-enabled/mschap
including configuration file /etc/radiusd-acct/mods-enabled/echo
including files in directory /etc/radiusd-acct/policy.d/
including configuration file /etc/radiusd-acct/policy.d/filter
including configuration file /etc/radiusd-acct/policy.d/control
including configuration file /etc/radiusd-acct/policy.d/canonicalization
including configuration file /etc/radiusd-acct/policy.d/abfab-tr
including configuration file /etc/radiusd-acct/policy.d/eap
including configuration file /etc/radiusd-acct/policy.d/debug
including configuration file /etc/radiusd-acct/policy.d/dhcp
including configuration file /etc/radiusd-acct/policy.d/operator-name
including configuration file /etc/radiusd-acct/policy.d/accounting
including configuration file /etc/radiusd-acct/policy.d/cui
including configuration file
/etc/radiusd-acct/policy.d/accounting.bak.2014-11-13.orig
including files in directory /etc/radiusd-acct/sites-enabled/
including configuration file /etc/radiusd-acct/sites-enabled/control-socket
including configuration file /etc/radiusd-acct/sites-enabled/default
main {
security {
allow_core_dumps = no
}
name = "radiusd-acct"
prefix = "/etc/radiusd-acct"
localstatedir = "/etc/radiusd-acct/var"
logdir = "/var/log"
run_dir = "/etc/radiusd-acct/radiusd-acct"
}
main {
name = "radiusd-acct"
prefix = "/etc/radiusd-acct"
localstatedir = "/etc/radiusd-acct/var"
sbindir = "/etc/radiusd-acct/sbin"
logdir = "/var/log"
run_dir = "/etc/radiusd-acct/radiusd-acct"
libdir = "/usr/local/lib64:/usr/local/lib"
radacctdir = "/var/log/radacct"
hostname_lookups = no
max_request_time = 30
cleanup_delay = 5
max_requests = 1024
pidfile = "/etc/radiusd-acct/radiusd-acct/radiusd-acct.pid"
checkrad = "/etc/radiusd-acct/sbin/checkrad"
debug_level = 0
proxy_requests = yes
log {
stripped_names = no
auth = yes
auth_badpass = no
auth_goodpass = yes
colourise = yes
msg_denied = "You are already logged in - access denied"
}
resources {
}
security {
max_attributes = 200
reject_delay = 1.000000
status_server = yes
allow_vulnerable_openssl = "no"
}
}
radiusd: #### Loading Realms and Home Servers ####
proxy server {
retry_delay = 5
retry_count = 3
default_fallback = no
dead_time = 120
wake_all_if_all_dead = no
}
realm default {
nostrip
authhost = 127.0.0.1:18120
secret = <<< secret >>>
}
radiusd: #### Loading Clients ####
client localhost {
ipaddr = 127.0.0.1
require_message_authenticator = no
secret = <<< secret >>>
shortname = "localhost"
nas_type = "other"
limit {
max_connections = 16
lifetime = 0
idle_timeout = 30
}
}
Debugger not attached
radiusd: #### Instantiating modules ####
modules {
# Loaded module rlm_detail
# Loading module "detail" from file /etc/radiusd-acct/mods-enabled/detail
detail {
filename =
"/var/log/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d"
header = "%t"
permissions = 384
locking = no
escape_filenames = no
log_packet_header = no
}
# Loaded module rlm_files
# Loading module "files" from file /etc/radiusd-acct/mods-enabled/files
files {
usersfile = "/etc/raddb/radius-guest-user"
acctusersfile = "/etc/raddb/accounting"
key = "%{User-Name}"
}
# Loaded module rlm_exec
# Loading module "exec" from file /etc/radiusd-acct/mods-enabled/exec
exec {
wait = no
input_pairs = "request"
shell_escape = yes
timeout = 10
}
# Loaded module rlm_counter
# Loading module "daily" from file /etc/radiusd-acct/mods-enabled/counter
counter daily {
filename = "/etc/raddb/db.daily"
key = "User-Name"
reset = "daily"
count_attribute = "Acct-Session-Time"
counter_name = "Daily-Session-Time"
check_name = "Max-Daily-Session"
reply_name = "Session-Timeout"
allowed_service_type = "Framed-User"
cache_size = 5000
}
# Loaded module rlm_radutmp
# Loading module "radutmp" from file
/etc/radiusd-acct/mods-enabled/radutmp
radutmp {
filename = "/var/log/radutmp"
username = "%{User-Name}"
case_sensitive = yes
check_with_nas = yes
permissions = 384
caller_id = yes
}
# Loaded module rlm_linelog
# Loading module "linelog" from file
/etc/radiusd-acct/mods-enabled/linelog
linelog {
filename = "syslog"
escape_filenames = no
syslog_severity = "info"
permissions = 384
format = "test.post"
reference = "%{%{control:Tmp-String-0}:-format}"
}
# Loaded module rlm_always
# Loading module "fail" from file /etc/radiusd-acct/mods-enabled/always
always fail {
rcode = "fail"
simulcount = 0
mpp = no
}
# Loading module "reject" from file /etc/radiusd-acct/mods-enabled/always
always reject {
rcode = "reject"
simulcount = 0
mpp = no
}
# Loading module "noop" from file /etc/radiusd-acct/mods-enabled/always
always noop {
rcode = "noop"
simulcount = 0
mpp = no
}
# Loading module "handled" from file
/etc/radiusd-acct/mods-enabled/always
always handled {
rcode = "handled"
simulcount = 0
mpp = no
}
# Loading module "updated" from file
/etc/radiusd-acct/mods-enabled/always
always updated {
rcode = "updated"
simulcount = 0
mpp = no
}
# Loading module "notfound" from file
/etc/radiusd-acct/mods-enabled/always
always notfound {
rcode = "notfound"
simulcount = 0
mpp = no
}
# Loading module "ok" from file /etc/radiusd-acct/mods-enabled/always
always ok {
rcode = "ok"
simulcount = 0
mpp = no
}
# Loaded module rlm_expiration
# Loading module "expiration" from file
/etc/radiusd-acct/mods-enabled/expiration
# Loaded module rlm_attr_filter
# Loading module "attr_filter.post-proxy" from file
/etc/radiusd-acct/mods-enabled/attr_filter
attr_filter attr_filter.post-proxy {
filename = "/etc/radiusd-acct/mods-config/attr_filter/post-proxy"
key = "%{Realm}"
relaxed = no
}
# Loading module "attr_filter.pre-proxy" from file
/etc/radiusd-acct/mods-enabled/attr_filter
attr_filter attr_filter.pre-proxy {
filename = "/etc/radiusd-acct/mods-config/attr_filter/pre-proxy"
key = "%{Realm}"
relaxed = no
}
# Loading module "attr_filter.access_reject" from file
/etc/radiusd-acct/mods-enabled/attr_filter
attr_filter attr_filter.access_reject {
filename =
"/etc/radiusd-acct/mods-config/attr_filter/access_reject"
key = "%{User-Name}"
relaxed = no
}
# Loading module "attr_filter.access_challenge" from file
/etc/radiusd-acct/mods-enabled/attr_filter
attr_filter attr_filter.access_challenge {
filename =
"/etc/radiusd-acct/mods-config/attr_filter/access_challenge"
key = "%{User-Name}"
relaxed = no
}
# Loading module "attr_filter.accounting_response" from file
/etc/radiusd-acct/mods-enabled/attr_filter
attr_filter attr_filter.accounting_response {
filename =
"/etc/radiusd-acct/mods-config/attr_filter/accounting_response"
key = "%{User-Name}"
relaxed = no
}
# Loaded module rlm_realm
# Loading module "IPASS" from file /etc/radiusd-acct/mods-enabled/realm
realm IPASS {
format = "prefix"
delimiter = "/"
ignore_default = no
ignore_null = no
}
# Loading module "suffix" from file /etc/radiusd-acct/mods-enabled/realm
realm suffix {
format = "suffix"
delimiter = "@"
ignore_default = no
ignore_null = no
}
# Loading module "realmpercent" from file
/etc/radiusd-acct/mods-enabled/realm
realm realmpercent {
format = "suffix"
delimiter = "%"
ignore_default = no
ignore_null = no
}
# Loading module "ntdomain" from file
/etc/radiusd-acct/mods-enabled/realm
realm ntdomain {
format = "prefix"
delimiter = "\"
ignore_default = no
ignore_null = no
}
# Loaded module rlm_logintime
# Loading module "logintime" from file
/etc/radiusd-acct/mods-enabled/logintime
logintime {
minimum_timeout = 60
}
# Loaded module rlm_pap
# Loading module "pap" from file /etc/radiusd-acct/mods-enabled/pap
pap {
normalise = yes
}
/etc/radiusd-acct/mods-enabled/sql[26]: Failed to link to module
'rlm_sqlite': /usr/local/lib64/rlm_sqlite.so: cannot open shared object
file: No such file or directory /usr/local/lib/rlm_sqlite.so: cannot
open shared object file: No such file or directory
More information about the Freeradius-Users
mailing list