I don't mean to double post (well, I do..), nobody has any insight as to
why freeradius is misbehaving in the manner below?
I have a script that does some very simple if statements in the sh shell.
My script exits 0 or 1 for good auth/bad auth; but FR (current cvs)
authenticates my user regardless.
I have "files" in the authorize and preacct stanzas of radiusd.conf.
Here's a snippet of my radius in debug mode:
rlm_ldap: user [EMAIL PROTECTED] authorized to use remote access
ldap_release_conn: Release Id: 0
modcall[authorize]: module "LDAP2" returns ok
modcall: group redundant returns ok
rlm_chap: Could not find proper Chap-Password attribute in request
modcall[authorize]: module "chap" returns noop
users: Matched DEFAULT at 54
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type Local
auth: type Local
auth: user supplied User-Password matches local User-Password
radius_xlat: '/usr/local/bin/radchecksignup.sh'
Exec-Program: /usr/local/bin/radchecksignup.sh
Exec-Program output:
Exec-Program: returned: 1
Login OK: [[EMAIL PROTECTED]] (from client localhost port 0)
Sending Access-Accept of id 78 to 127.0.0.1:4644
Is there something I am missing? Documentation suggests that users will
not authenticate if Exec-Program-Wait exits non-zero.
--JST
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
