A strange problem with NAS and pfsense with freeradius.
Alan DeKok
aland at deployingradius.com
Mon Jan 29 19:31:54 CET 2018
> On Jan 29, 2018, at 1:26 PM, Mery Saint via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
>
> If insert username and password in:
> /usr/local/etc/raddb/users"test" Cleartext-Password := "test"is possible to authenticate the client.If use mysql to store username and password:MariaDB [radius]> select * from radcheck;+----+----------+--------------------+----+-------+| id | username | attribute | op | value |+----+----------+--------------------+----+-------+| 1 | test | Cleartext-Password | := | test |+----+----------+--------------------+----+-------+I receive this error:Info: Loaded virtual server
Please post plain text to the mailing list.
And, text which isn't mangled.
> <default>Info: Loaded virtual server defaultWarning: Ignoring "sql" (see raddb/mods-available/README.rst)Warning: Ignoring "ldap" (see raddb/mods-available/README.rst)Info: Loaded virtual server inner-tunnel-ttlsInfo: Loaded virtual server inner-tunnel-peapInfo: Ready to process requestsAuth: (8) Login incorrect (mschap: FAILED: No NT/LM-Password. Cannot perform authentication): [test] (from client radius port 0 via TLS tunnel)Info: (9) eap_peap: This means you need to read the PREVIOUS messages in the debug outputInfo
Did you read the PREVIOUS messages?
> This is the output of radiusd –X
> ...Listening on auth address 127.0.0.1 port 18128 bound to server inner-tunnel-peapReady to process requests
<sigh>
How do you debug packet processing, unless you show the server processing packets?
Please post the FULL debug log, WHERE IT RECEIVES PACKETS.
Alan DeKok.
More information about the Freeradius-Users
mailing list