Hi,
I've set up freeradius 0.3 debian build on a debian woody box with
shadow password.
It works with Local usernames.
It will not work for any normal users, using system authentication.
Here is some debug text for a user that doesn't work. (passwords
modified for this email)
rad_recv: Access-Request packet from host 203.16.135.45:1525, id=7,
length=54
User-Name = "suet"
Password = ";\253`\251\xxx\xxx\xxx\345Reg\371\352=\356\026"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "10"
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
modcall[authorize]: module "suffix" returns ok
users: Matched DEFAULT at 47
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix" returns reject
modcall: group authenticate returns reject
auth: Failed to validate the user.
Login incorrect: [suet/xxxxxxx] (from nas cnltest port 0)
Sending Access-Reject of id 7 to 203.16.135.45:1525
The users file is this simple..
* while I'm at it, is it supposed to be Auth-Type := System or Auth-Type
+= System, the docs differ*
DEFAULT Auth-Type += System
Service-Type = Framed-User,
Framed-IP-Netmask = 255.255.255.254
The only thing on this box that is might affect the operation, is the
passwd, shadow and group files have been copied over from an older
debian linux box.
But then I also added a user to this box and tested radius but it still
wouldn't authenticate.
I'm lost now. can someone suggest something please.
thanks
Mervyn
--
Mervyn Jack, Technical Director, Country Netlink Pty Ltd.
PO Box 529, Cobram, Vic. Australia, 3644
Ph +61 3 5871 1000 Fax +61 3 5871 1874 Mobile 0409 960 520
mailto:[EMAIL PROTECTED] http://www.cnl.com.au ICQ 354419
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
