Hello!
I've got a freeRadius-0.5 server installed here under my Debian Linux
2.2.19. I would like it to log the authentication information to the
radutmp (and sradutmp) files. The server runs as nobody.nogroup.
In order to do so, I created the entries (in fact, as proposed in
radiusd.conf) for the radutmp module and activated this module for the
accounting purposes (in the same file).
The files exist as following (created manually):
radius:/usr/local/var/log/radius# ls -al
total 28
drwxr-xr-x 3 nobody nogroup 4096 Mar 28 12:21 .
drwxr-sr-x 3 root staff 4096 Mar 6 18:50 ..
drwxr-xr-x 3 nobody nogroup 4096 Mar 27 19:10 radacct
-rw------- 1 nobody nogroup 14427 Mar 28 14:56 radius.log
-rw------- 1 nobody nogroup 0 Mar 28 12:19 radutmp
-rw------- 1 nobody nogroup 0 Mar 28 12:21 radwtmp
-rw-r--r-- 1 nobody nogroup 0 Mar 28 12:19 sradutmp
In order to simulate accounting requests (if I understand right, the
usual auth-requests are never logged in into these files), I use the
NTRadPing free software (still don't have the access points :-( ). So I
generate an "Accounting ON" packet (with or w/o user information inside)
and the server does react (running in debug mode it says somthing like
this - an example for the Accounting Off packet):
Thread 4 handling request 10, (2 handled so far)
User-Name = "testuser"
Acct-Status-Type = Accounting-Off
Acct-Session-Id = "3108"
modcall: entering group preacct
modcall[preacct]: module "suffix" returns ok
modcall[preacct]: module "files" returns noop
modcall[preacct]: module "preprocess" returns noop
modcall: group preacct returns ok
modcall: entering group accounting
radius_xlat: '/usr/local/var/log/radius/radacct/xxx.xxx.xxx.xxx/detail'
rlm_detail:
/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail expands
to /usr/local/var/log/radius/radacct/xxx.xxx.xxx.xxx/detail
modcall[accounting]: module "detail" returns ok
modcall[accounting]: module "unix" returns noop
radius_xlat: 'testuser'
NAS UNKNOWN-NAS rebooted (Accounting-Off packet seen)
modcall[accounting]: module "radutmp" returns ok
radius_xlat: 'testuser'
NAS UNKNOWN-NAS rebooted (Accounting-Off packet seen)
modcall[accounting]: module "sradutmp" returns ok
modcall: group accounting returns ok
Sending Accounting-Response of id 109 to xxx.xxx.xxx.xxx:1234
Finished request 10
The client (ntradping) receives the Accounting Response. After this
procedure (which looks good for me :)) a have entries in the "detail"
file, but my radutmp and thus "radwho" output still remains as empty as
my fridge...
Did I miss something, do I have to put the Accounting packets in some
special order? I've been playing around with this, trying to send
Authentication Packets before Accounting packets and vice versa,
Accounting Starts, Stops, Updates and whatever else, but it just doesn't
log anything, always saying that the module reported "ok" or "noop" in
some cases.
What's wrong? Please help!
Artur
--
Artur Hecker Groupe Acc�s et Mobilit�
[EMAIL PROTECTED] D�partement Informatique et R�seaux
+33 1 45 81 7507 46, rue Barrault 75634 Paris cedex 13
http://www.infres.enst.fr ENST Paris
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
