Strange problem with pam_radius_auth

Tue, 30 Jul 2002 05:26:08 -0700 

Greetings,
I have spent the last four hours on this problem without any success. I 
have searched the whole Internet, and done everything conceivable 
(imaginable) but all else have failed.

I am trying to use pam_radius_auth with squid. The authentication 
program I am using  (pam_auth) for squid works perfectly when I use 
system authentication. But when I switch to pam_radius_auth, messages 
from radius says the user is being authenticated perfectly, while squid 
thinks otherwise.

My squid file in pam.d (as was suggested in INSTALL)

 auth       required     /lib/security/pam_securetty.so
auth       sufficient   /lib/security/pam_radius_auth.so debug
auth       required     /lib/security/pam_unix_auth.so


There is no indication of a mishap in var/log/messages, (the last lines 
are shown here),

Jul 30 18:13:40 iictss squid[4786]: Squid Parent: child process 4788 started

See, there is nothing after squid has started.


radiusd is being run is debug mode, and the relevant last lines are,

rad_recv: Access-Request packet from host 127.0.0.1:5814, id=182, length=78
        User-Name = "radtest"
        User-Password = "\342\031$\227<\002G\202\364\263fSK\003\305~"
        NAS-IP-Address = 127.0.0.1
        NAS-Identifier = "squid"
        NAS-Port = 4789
        NAS-Port-Type = Virtual
        Service-Type = Authenticate-Only
modcall: entering group authorize
  modcall[authorize]: module "preprocess" returns ok
    rlm_realm: Looking up realm NULL for User-Name = "radtest"
    rlm_realm: No such realm NULL
  modcall[authorize]: module "suffix" returns noop
    users: Matched DEFAULT at 152
  modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
  rad_check_password:  Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
  HASH:  user radtest found in hashtable bucket 16015
  modcall[authenticate]: module "unix" returns ok
modcall: group authenticate returns ok
Sending Access-Accept of id 182 to 127.0.0.1:5814
Finished request 10
Going to the next request


See that line with Access-Accept!!!


I have even tried running squid in debug mode, but nothing is said there.


Other relevant informations,

RH 7.3,
Squid 2.4.STABLE6
freeradius-0.7
pam_radius-1.3.15


Any help will be highly appreciated.


Masroor



- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to