I don't think that system based auth will work in OSX as it uses netinfo for most of its internal AAA, however LDAP, xSQL and flat/db files should work. Sorry I cant provide more but I'm still correcting a number of problems caused by the move to 10.2.
Snip from /etc/passwd ( OS 10.2 ) ## # User Database # # Note that this file is consulted when the system is running in single-user # mode. At other times this information is handled by lookupd. By default, # lookupd gets information from NetInfo, so this file will not be consulted # unless you have changed lookupd's configuration. ## At 01:57 -0700 09/17/2002, Philip Kearney wrote: >On 9/16/02 1:38 PM, "Alan DeKok" <[EMAIL PROTECTED]> wrote: > >> Philip Kearney <[EMAIL PROTECTED]> wrote: >>> Okay...I managed to get FreeRADIUS 0.7.1 to compile under MacOS X. >> >> That's just made my day. >> >>> With these changes, the make succeeded so I ran make install and everything >>> installed into /usr/local/. >> >> We'll try to get these changes in before the release of 0.8. >> >>> I now have radiusd made and installed at /usr/local/radiusd, but >>>it seems to >>> have real problems with some of the MacOS X configuration files like >>> /etc/passwd, /etc/groups, etc. >> >> Then don't cache them. Just comment out the lines, like it says to >> do for FreeBSD. It should then work. > >Alan, > >I set cache = no in radiusd.conf and then did radiusd -X > >And I see at the end of all the output... > >Listening on IP address *, ports 1812/udp and 1813/udp, with proxy on >1814/udp. >Ready to process requests. > >"Looks promising", I think to myself. So I do "radtest test test localhost 0 >testing123" > >And then I see... > >rad_recv: Access-Request packet from host 127.0.0.1:49805, id=77, length=53 > User-Name = "test" > User-Password = "%\334\277\033r3\321.\3658w|\276\307\221\210" > NAS-IP-Address = 255.255.255.255 > NAS-Port-Id = "0" >modcall: entering group authorize > modcall[authorize]: module "preprocess" returns ok > rlm_realm: Looking up realm NULL for User-Name = "test" > rlm_realm: No such realm NULL > modcall[authorize]: module "suffix" returns noop > users: Matched DEFAULT at 152 > modcall[authorize]: module "files" returns ok >modcall: group authorize returns ok > rad_check_password: Found Auth-Type System >auth: type "System" >modcall: entering group authenticate > modcall[authenticate]: module "unix" returns notfound >modcall: group authenticate returns notfound >auth: Failed to validate the user. >Delaying request 0 for 1 seconds >Finished request 0 >Going to the next request >--- Walking the entire request list --- >Waking up in 1 seconds... >Segmentation fault >[pktibook:/usr/local/sbin] root% > > >So radiusd receives the request, fails to validate the user, finishes the >request and then eventually seg faults. Don't know why that is yet, >probably because I haven't really configured radiusd yet other than turning >caching off like you suggested. But it compiles and runs (once) right now >under MacOS X with those tweaks I mentioned in my last message to the list. > >It's progress! :-) > >PK > > >- >List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Scott Silzer [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
