I encountered the problem that there is an account in the database, but the authentication process feedback does not exist. Please help.
娶你苟命
qunigouming at gmail.com
Fri Dec 15 04:04:57 UTC 2023
Hi,Matthew
/usr/local/etc/raddb/mods-config/files/authorize[170]: Parse error (reply)
for entry testuser: Unknown or invalid value *"Stelnet"* for attribute
Login-Service
Failed reading /usr/local/etc/raddb/mods-config/files/authorize
/usr/local/etc/raddb/mods-enabled/files[9]: Instantiation failed for module
"files"
RADIUS/7/ERROR: *The login-service type that server assigned does not match
with the access type.*
[root at localhost ~]# egrep -v "*#|^$" /usr/local/etc/raddb/users
testuser Cleartext-Password := "testpass"
Service-Type = Framed-User,
*Login-Service = Telnet,*
*I would like to ask how to define Login-Service as ssh? *
Matthew Newton via Freeradius-Users <freeradius-users at lists.freeradius.org>
于2023年12月13日周三 20:01写道:
>
>
> On 13/12/2023 10:33, 娶你苟命 wrote:
> > But I encountered a new problem: the switch authentication log showed
> > that the authentication had passed, but after passing the authentication,
> > the switch automatically closed the ssh session. I didn't find out the
> > specific problem from the radius debugging information and wireshark
> packet
> > capture, so I ask for your advice.
>
> As I said previously, this is not a FreeRADIUS problem, which is sending
> an Access-Accept. The switch doesn't like the reply, so you need to work
> out what attributes the switch is expecting. None of the examples you
> have sent have any extra attributes in the reply.
>
> Ask the switch vendor what configuration you need on the switch or what
> attributes are needed, then configure FreeRADIUS to send that.
>
> --
> Matthew
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
More information about the Freeradius-Users
mailing list