Unable to start radiusd, permission issues, and minimal configuration

James Prestwood prestwoj at gmail.com
Thu Dec 1 23:51:42 UTC 2022

On Thu, 2022-12-01 at 23:36 +0000, Matthew Newton via Freeradius-Users
> On 01/12/2022 23:24, James Prestwood wrote:
> > Running as a regular user I get some permission errors since it
> > needs
> > files in /etc but neither sudo nor logging in as root allow me to
> > run
> > it either. Its still got permission issues with server.pem
> > 
> > tls: Failed reading certificate file "/etc/raddb/certs/server.pem"
> > tls: error:0200100D:system library:fopen:Permission denied
> Check what the file ownership is for that certificate - and also
> check 
> radiusd.conf to see what user FreeRADIUS is running as. Once it drops
> privileges it may no longer have access to read.

Ah the user/group in radiusd.conf was the problem. root/root seems to

> > I've also got some additional questions as to how difficult it
> > would be
> > to strip down the configuration, hopefully to a few files?
> Possible (and fairly easy) when you know what you are doing. If
> you're 
> just getting started then really not recommended.
> Stick with the full default config, check it into git or some other 
> version control, and work your want forward. When things break you
> can 
> then easily go back to previous working versions.

Cool, that was my plan.


More information about the Freeradius-Users mailing list