not 100% sure I had the test correct though):
authorize {
// ...
// Policy checks and things
// ...
if (rcode == reject) {
refusal_log
}
}
Adam Bishop
Systems Development Specialist
gpg: 0x6609D460
t: +44 (0) 1235 822 245
xmpp: ad...@jabber.dev.ja.net
Janet, the UK’s
https://github.com/FreeRADIUS/freeradius-server/blob/v2.x.x/raddb/policy.conf#L140
I think that the test for this block should be =~, not !~ (otherwise it rejects
realms that do not start with a dot).
There is also an errant space on line 142 in the middle of the += operator.
Thanks,
Adam
than guess.
Adam Bishop
gpg: 0x6609D460
Janet, the UK's research and education network.
Janet(UK) is a trading name of Jisc Collections and Janet Limited, a
not-for-profit company which is registered in England under No. 2881024
and whose Registered Office is at Lumen House, Library Avenue
= 127.0.1.1
NAS-Port = 0
PPPD isn't sending a password.
The hash is being found by LDAP fine, but there is no password in the radius
request for it to validate.
You need to fix PPPD, then it should work.
Thanks,
Adam Bishop
gpg: 0x6609D460
Janet, the UK's research and education network
the home_server type to auth+acct makes the config parser happy
again.
Debug log follows; I'm building debug symbols at the moment to see if I can get
GDB to give anything more useful.
Adam Bishop
gpg: 0x6609D460
Janet, the UK's research and education network
is screwed up (check
the local firewall, SELinux, AppArmor...)
Regards,
Adam Bishop
gpg: 0x6609D460
Janet, the UK's research and education network.
Janet(UK) is a trading name of Jisc Collections and Janet Limited, a
not-for-profit company which is registered in England under No. 2881024
the latter one, as it
runs a config check on restart (which bails out due to the error above).
Regards,
Adam Bishop
gpg: 0x6609D460
Janet, the UK's research and education network.
Janet(UK) is a trading name of Jisc Collections and Janet Limited, a
not-for-profit company which is registered
7 matches
Mail list logo