Joe Modjeski wrote:

>This brings up another point though,  the attribute row that stores the 
>password in the radcheck table.  You are using the 'Crypt-Password' 
>attribute instead of the 'Password' attribute?  I got stung by this when I 
>did my initial import from my MySQL patched Cistron.
>
I tried Crypt-Password too, to no avail. Let me make a (not so) quick 
summary of my situation:

1) I used the default configuration created by "make install", only 
editing the clients and naslist files so my Cisco could reach it.

2) Configured the Cisco accordingly. Now I can telnet the Cisco using my 
Unix username & password, and the accounting records show up just 
peachy. (I'm not trying dial-in yet)

3) I install MySQL (from stock Red Hat RPMs), create users, create the 
Radius tables from the script found in CVS.

4) I edit sql.conf for the usernaqme/password I created in MySQL.

5) I change the following part of radiusd.conf (previously only the 
"unix" line was uncommented):
authenticate {
#       pam
#       unix
        authtype SQL {
                sql
#               sql2
        }
#       ldap
}

6) I can see that FreeRadius connects to MySQL, because when I kill 
radiusd, I get a "connection broken" message in the MySQL logs.

7) I populate the SQL tables. Right now, only radcheck, usergroup and 
radgroupreply have content:

mysql> select * from usergroup;
+----+----------+-----------+
| id | UserName | GroupName |
+----+----------+-----------+
|  1 | jcastro  | vialink   |
|  2 | cabreu   | vialink   |
+----+----------+-----------+
2 rows in set (0.00 sec)

mysql> select * from radcheck;
+----+----------+-----------+---------------+
| id | UserName | Attribute | Value         |
+----+----------+-----------+---------------+
|  1 | jcastro  | Password  | JAEyCQtZ6viPc |
|  2 | cabreu   | Password  | JAEyCQtZ6viPc |
+----+----------+-----------+---------------+
2 rows in set (0.00 sec)

mysql> select * from radgroupreply;
+----+-----------+-------------------+-----------------+
| id | GroupName | Attribute         | Value           |
+----+-----------+-------------------+-----------------+
|  1 | vialink   | Framed-IP-Address | 255.255.255.254 |
|  2 | vialink   | Framed-MTU        | 576             |
|  3 | vialink   | Service-Type      | Framed-User     |
|  4 | vialink   | Framed-Protocol   | PPP             |
+----+-----------+-------------------+-----------------+
4 rows in set (0.00 sec)

Maybe there's some other table I had to populate? Some other 
configuration I missed?

-- 
Juan Carlos Castro y Castro | "Standing up to an evil system is
[EMAIL PROTECTED]      | exhilarating." -Richard Stallman
Rio de Janeiro - Brazil     | http://www.vialink.com.br/~jcastro
DC4DC #25                   | chmod a+x /bin/laden




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to