installtion of freeradius

Stefan Winter stefan.winter at restena.lu
Thu Jun 21 12:08:21 CEST 2018 

Hi,

> Based on this tutorial: https://wiki.freeradius.org/guide/SQL-HOWTO#Populating_SQ I should add the line  $INCLUDE  sql.conf on /etc/freeradius/3.0/default.conf, but this file does not exist. 
> 
> Can anybody tell me where to find it?

You need to read more attentively. I'm quoting that page:

"In /etc/raddb/radiusd.conf ensure that the line saying:

 $INCLUDE  sql.conf

is uncommented. "

That's radiusd.conf, not default.conf. You didn't find default.conf
because there is no such thing.

Stefan

> 
> Thanks in advance
> 
> BR
> 
> Javier Escalante
> Business Development Manager
> Javier.escalante at bwireless.eu 
> 00 34 626 785 675
> 00 34 93 141 56 36
> 00 41 78 689 85 69
> Skype: fruiz002
> Do you know our IoT solutions? Have a look here: www.bsmart.global
> http://www.bwireless.eu
> Le informamos que, de conformidad con la Ley Orgánica 15/1999, de 13 de diciembre, de Protección de Datos de Carácter  Personal, se informa que todos los datos personales que nos ha facilitado serán incorporados y tratados en los ficheros de B’W & TAKACS TELECOM, S.L. para las finalidades de su e-mail. 
> Puede ejercer sus derechos de acceso, rectificación, cancelación y oposición mediante una comunicación a B’W & TAKACS TELECOM, S.L. con domicilio en Camil Oliveras, 26, 08032 Barcelona (España), o bien mediante una comunicación a la dirección de correo electrónico info at bwireless.eu. En ambos casos, deberá  acompañar una copia de su documento nacional de identidad o documento válido que lo identifique. 
> 
> 
> -----Original Message-----
> From: Javier Escalante [mailto:Javier.Escalante at bwireless.eu] Sent: jueves, 21 de junio de 2018 11:38
> To: 'FreeRadius users mailing list'
> Subject: RE: installtion of freeradius
> 
> Hello,
> 
> Freeradius (3.0.16) authenticates correctly with files, but gives the following error when I use a user from the DB.
> 
> (2)     [logintime] = noop
> (2) pap: WARNING: No "known good" password found for the user.  Not setting Auth                                                                                        -Type
> (2) pap: WARNING: Authentication will fail unless a "known good" password is ava                                                                                        ilable
> (2)     [pap] = noop
> (2)   } # authorize = ok
> (2) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject
> (2) Failed to authenticate the user
> (2) Using Post-Auth-Type Reject
> (2) # Executing group from file /etc/freeradius/3.0/sites-enabled/default
> (2)   Post-Auth-Type REJECT {
> (2) sql: EXPAND .query
> (2) sql:    --> .query
> (2) sql: Using query template 'query'
> rlm_sql (sql): Reserved connection (9)
> (2) sql: EXPAND %{User-Name}
> (2) sql:    --> test
> (2) sql: SQL-User-Name set to 'test'
> (2) sql: EXPAND INSERT INTO radpostauth (username, pass, reply, authdate) VALUES                                                                                         ( '%{SQL-User-Name}', '%{%{User-Password}:-%{Chap-Password}}', '%{reply:Packet-                                                                                        Type}', '%S')
> (2) sql:    --> INSERT INTO radpostauth (username, pass, reply, authdate) VALUES                                                                                         ( 'test', 'test', 'Access-Reject', '2018-06-21 09:23:06')
> (2) sql: Executing query: INSERT INTO radpostauth (username, pass, reply, authda                                                                                        te) VALUES ( 'test', 'test', 'Access-Reject', '2018-06-21 09:23:06')
> (2) sql: SQL query returned: success
> (2) sql: 1 record(s) updated
> rlm_sql (sql): Released connection (9)
> (2)     [sql] = ok
> (2) attr_filter.access_reject: EXPAND %{User-Name}
> (2) attr_filter.access_reject:    --> test
> (2) attr_filter.access_reject: Matched entry DEFAULT at line 11
> (2)     [attr_filter.access_reject] = updated
> (2)     [eap] = noop
> (2)     policy remove_reply_message_if_eap {
> (2)       if (&reply:EAP-Message && &reply:Reply-Message) {
> (2)       if (&reply:EAP-Message && &reply:Reply-Message)  -> FALSE
> (2)       else {
> (2)         [noop] = noop
> (2)       } # else = noop
> (2)     } # policy remove_reply_message_if_eap = noop
> (2)   } # Post-Auth-Type REJECT = updated
> (2) Delaying response for 1.000000 seconds Waking up in 0.3 seconds.
> Waking up in 0.6 seconds.
> (2) Sending delayed response
> (2) Sent Access-Reject Id 200 from 127.0.0.1:1812 to 127.0.0.1:42877 length 20 Waking up in 3.9 seconds.
> (2) Cleaning up request packet ID 200 with timestamp +2764 Ready to process requests
> (2) pap: WARNING: No "known good" password found for the user.  Not setting Auth                                                                                        -Type
> (2) pap: WARNING: Authentication will fail unless a "known good" password is ava                                                                                        ilable
> (2) pap: WARNING: Authentication will fail unless a "known good" password is ava                                                                                        ilable
> 
> 
> The user in radcheck below:
> 
> Full texts 	id 	username 	attribute 	op 	value
> Edit Edit 	Copy Copy 	Delete Delete 	1173544 	test 	Cleartext-Password 	:= 	test
> 
> 
> 
> Could somebody give me a clue of what is going on?
> 
> Thanks in advance
> 
> BR
> 
> Javier Escalante
> Business Development Manager
> Javier.escalante at bwireless.eu
> 00 34 626 785 675
> 00 34 93 141 56 36
> 00 41 78 689 85 69
> Skype: fruiz002
> Do you know our IoT solutions? Have a look here: www.bsmart.global http://www.bwireless.eu Le informamos que, de conformidad con la Ley Orgánica 15/1999, de 13 de diciembre, de Protección de Datos de Carácter  Personal, se informa que todos los datos personales que nos ha facilitado serán incorporados y tratados en los ficheros de B’W & TAKACS TELECOM, S.L. para las finalidades de su e-mail. 
> Puede ejercer sus derechos de acceso, rectificación, cancelación y oposición mediante una comunicación a B’W & TAKACS TELECOM, S.L. con domicilio en Camil Oliveras, 26, 08032 Barcelona (España), o bien mediante una comunicación a la dirección de correo electrónico info at bwireless.eu. En ambos casos, deberá  acompañar una copia de su documento nacional de identidad o documento válido que lo identifique. 
> 
> 
> 
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> 


-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et
de la Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the
recipient's key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20180621/95fbd709/attachment.sig>

More information about the Freeradius-Users mailing list