All help here is greatly appreciated.
I posted yesterday -- THANK YOU to those who responded -- but I'm still
stuck in a rut.
I have a dialup RAS with Win 95 98 XP clients dialing in etc. When I
dial and attempt to authenticate, it says it can't use CHAP and to read
the FAQ. OK I read the FAQ.
THE RESPONSE IS:
*/
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: No '@' in User-Name = "ryan", looking up realm NULL
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 171
users: Matched DEFAULT at 183
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
auth: No authenticate method (Auth-Type) configuration found for the
request: Rejecting the user
auth: Failed to validate the user.
Login incorrect: [ryan/<CHAP-Password>] (from client
prattusa-dialup-rack port 276 cli )
*/
In the "users" file, what should this value be set to:
DEFAULT Auth-Type := ??????? Pam or System?
In the "radiusd.conf" file, how do I force "pap" instead of "chap?"
I have gone over things 1000 times and can't seem to make it fly. Using
radclient, I can authenticate with FreeRADIUS.
= )
Here's my wishlist. My question is:
Can it be done? If so, some examples please?
[--- I DO want to authenticate against local Linux user files. (passwd
shadow etc.)
Because it's simple to manage.
[--- I don't want to make user entries to the "users" file.
Because it's a nightmare to add/remove/manage folks.
[--- I don't want to use LDAP.
[--- I don't want to use MySQL.
Because this is just a small deal.
I don't have 1200 users or anything massive.
We're talking about a couple dozen users.
Thanks again -- in advance.
-Ryan Beisner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
