At 09:47 AM 9/15/02 -0400, you wrote: > Commenting out the 'passwd' and 'shadow' lines in the servers >configuration file means that it will use the standard Unix 'getpwent' >calls, to get the users password. BSDI may have *more* capabilities >than that, but it should have at least that function. > > Alan DeKok.
You're right, of course. I found the problem thanks to Spike Ilacqua and the MAC/OS discussion. I was running the RADIUS server as user radius and only root has access to the shadow password file. Once I ran the server as root, it worked fine. Thanks for the help! >And, if you aren't already, you may need to run radiusd as "root". >BSD based systems use an automatic password shadowing setup. If >getpwent() is call as root, the shadow file is read and the password >is returned in the passwd struct. If a normal user calls getpwent(), >"*" is always retruned for the password. >->Spike - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
