A strange problem with NAS and pfsense with freeradius.

Alan DeKok aland at deployingradius.com
Mon Jan 29 19:31:54 CET 2018

> On Jan 29, 2018, at 1:26 PM, Mery Saint via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
> If insert username and password in:
> /usr/local/etc/raddb/users"test" Cleartext-Password := "test"is possible to authenticate the client.If use mysql to store username and password:MariaDB [radius]> select * from  radcheck;+----+----------+--------------------+----+-------+| id | username | attribute          | op | value |+----+----------+--------------------+----+-------+|  1 | test     | Cleartext-Password | := | test  |+----+----------+--------------------+----+-------+I receive this error:Info: Loaded virtual server 

  Please post plain text to the mailing list.

  And, text which isn't mangled.

> <default>Info: Loaded virtual server defaultWarning: Ignoring "sql" (see raddb/mods-available/README.rst)Warning: Ignoring "ldap" (see raddb/mods-available/README.rst)Info: Loaded virtual server inner-tunnel-ttlsInfo: Loaded virtual server inner-tunnel-peapInfo: Ready to process requestsAuth: (8)   Login incorrect (mschap: FAILED: No NT/LM-Password.  Cannot perform authentication): [test] (from client radius port 0 via TLS tunnel)Info: (9) eap_peap:   This means you need to read the PREVIOUS messages in the debug outputInfo

  Did you read the PREVIOUS messages?

> This is the output of radiusd –X
> ...Listening on auth address port 18128 bound to server inner-tunnel-peapReady to process requests


  How do you debug packet processing, unless you show the server processing packets?

  Please post the FULL debug log, WHERE IT RECEIVES PACKETS.

  Alan DeKok.

More information about the Freeradius-Users mailing list