Start FreeRadius 4.0 with rlm_tacacs failed due to segV error
Alan DeKok
aland at deployingradius.com
Fri Apr 25 00:31:43 UTC 2025
On Apr 24, 2025, at 11:32 AM, bryan xiang <bryanxiang82 at gmail.com> wrote:
>
> Thank you Alan for the explanation
> that make sense to provide the attributes to TACACS+ when change protocol
> from Radius to TACACS+
> so beside the username/password, I need below attribute right?
Yes... those are the attributes included with the server, in the TACACS dictionary files. I'm aware of them.
> I can't assign the Packet-Type, even I use "Authentication" and 1, it will
> init the packet-type to 0
> for the namespace issue, I firstly type namespace as tacacs in the virtual
> server, but seems it can't receive Radius request from port 1812, so I
> changed namespace from tacacs to radius, then the FreeRadius begin to
> listen the port 1812
> do you mean in the modules/tacacs, I still need to specify the namespace as
> tacacs?
What I said was to use the following configuration:
>> recv Access-Request {
>> subrequest @tacacs::Authentication-Start {
>> User-Name := parent.request.User-Name
>> User-Name := parent.request.User-Password
>> ... fill in other attributes here, from dictionary/tacacs/*
>>
>> tacacs
>>
>> }
>>
>>
>> You will have to edit this and double-check it, but the basic concepts
>> are there.
Instead of doing that, you're doing something else. Why?
Alan DeKok.
More information about the Freeradius-Users
mailing list