new install needs detail logging

chuck beck cpsonl at yahoo.com
Thu Jan 4 20:12:22 CET 2018


Hello list, I am new to administering free radius. I have completed the install of freeradius version 3.013 on 3.10.0-693.11.1.el7.x86_64. It is working and authenticating a test user. I see the authentication messages in the main log: 
Thu Jan  4 10:09:05 2018 : Warning: [/etc/raddb/mods-config/attr_filter/access_reject]:11 Check item "FreeRADIUS-Response-Delay-USec"   found in fi
lter list for realm "DEFAULT". 
Thu Jan  4 10:09:05 2018 : Info: Loaded virtual server <default>
Thu Jan  4 10:09:05 2018 : Warning: Ignoring "sql" (see raddb/mods-available/README.rst)
Thu Jan  4 10:09:05 2018 : Warning: Ignoring "ldap" (see raddb/mods-available/README.rst)
Thu Jan  4 10:09:05 2018 : Info: Loaded virtual server default
Thu Jan  4 10:09:05 2018 : Info:  # Skipping contents of 'if' as it is always 'false' -- /etc/raddb/sites-enabled/inner-tunnel:330
Thu Jan  4 10:09:05 2018 : Info: Loaded virtual server inner-tunnel
Thu Jan  4 10:09:05 2018 : Info: Ready to process requests
Thu Jan  4 10:09:41 2018 : Auth: (0) Login incorrect (pap: MD5 digest does not match "known good" digest): [chuck] (from client Geneva port 0 
cli 10.xx.2x.4) 
Thu Jan  4 10:09:49 2018 : Auth: (1) Login OK: [chuck] (from client Geneva port 0 cli 10.xx.2x.4) 
Thu Jan  4 10:11:53 2018 : Auth: (2) Login OK: [chuck] (from client Geneva port 0 cli 10.xx.2x.4) 
Thu Jan  4 10:12:07 2018 : Auth: (3) Login OK: [chuck] (from client Geneva port 0 cli 10.xx.2x.4) 
Thu Jan  4 10:12:47 2018 : Info: Signalled to terminate
Thu Jan  4 10:12:47 2018 : Info: Exiting normally
I modified very little so far on the configuration. The last thing I tried is modifying:   
   -    
>From the authorize section in /etc/raddb/sites-enabled/default file:
   #
#  If you want to have a log of authentication requests,
#  un-comment the following line, and the 'detail auth_log'
#  section, above.
#      auth_log

   -    
>From the post-auth section in /etc/raddb/sites-enabled/default file:
       #
    #  If you want to have a log of authentication replies,
    #  un-comment the following line, and the 'detail reply_log'
    #  section, above.
#      reply_log

and restarting. Still no logs created in:    
   - chuck at njs-radius-01 raddb]$ sudo -u radiusd ls -lr /var/log/radius   
total 16   
drwxr-xr-x 2 radiusd radiusd    6 Jan  3 10:12 radwtmp   
drwxr-xr-x 2 radiusd radiusd    6 Jan  3 10:12 radutmp   
-rw-r----- 1 radiusd radiusd  561 Dec 29 13:44 radius.log-20180101.gz   
-rw-r----- 1 radiusd radiusd 9895 Jan  4 10:14 radius.log   
drwx------ 3 radiusd radiusd   26 Jan  4 10:09 radacct   
[chuck at njs-radius-01 raddb]
directories are empty. 
I don't see anything relevant in the debug output when I run with -X so I did not post that here. I can if it would help. Pretty sure I'm missing something simple, any ideas?thanks !-Chuck


More information about the Freeradius-Users mailing list