I have installed free radius 0.8.1 on my server redhat linux 7.2.
I am not able to get AAA thing working.
I can use authentication with System or LDAP without problems
and when I check accounting using something like
cat acctcheck2 | radclient 192.168.2.212 acct abc
where acctcheck2 contains accnt packet I am able to see the accounting
packets processed too
but I am not able to get radius do the simple job of sending accounting
packets to itself
I have done the following
In proxy.conf I have put authost LOCAL for the particular realm ( NULL )
In clients.conf
I have put
client 192.168.2.0/24 {
secret = abc
shortname = localnet
nastype = portslave
}
in acct_users i have put
DEFAULT NAS-IP-Address == 192.168.2.212, Replicate-To-Realm := NULL
I start radiusd in the debug mode
When I run radtest this way
"radtest lab1 lab1 192.168.2.212 0 abc "
I get this
Mon Feb 17 18:47:16 2003 : Info: Listening on IP address *, ports
1812/udp and 1813/udp, with proxy on 1814/udp.
Mon Feb 17 18:47:16 2003 : Info: Ready to process requests.
rad_recv: Access-Request packet from host 192.168.2.212:4512, id=36,
length=56
User-Name = "lab1"
User-Password = "lab1"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
Mon Feb 17 18:47:19 2003 : Debug: modcall: entering group authorize
Mon Feb 17 18:47:19 2003 : Debug: modcall[authorize]: module
"preprocess" returns ok
Mon Feb 17 18:47:19 2003 : Debug: rlm_chap: Could not find proper
Chap-Password attribute in request
Mon Feb 17 18:47:19 2003 : Debug: modcall[authorize]: module "chap"
returns noop
Mon Feb 17 18:47:19 2003 : Debug: modcall[authorize]: module "mschap"
returns notfound
Mon Feb 17 18:47:19 2003 : Debug: rlm_realm: No '@' in User-Name =
"lab1", looking up realm NULL
Mon Feb 17 18:47:19 2003 : Debug: rlm_realm: Found realm NULL
Mon Feb 17 18:47:19 2003 : Debug: rlm_realm: Adding
Stripped-User-Name = "lab1"
Mon Feb 17 18:47:19 2003 : Debug: rlm_realm: Proxying request from
user lab1 to realm NULL
Mon Feb 17 18:47:19 2003 : Debug: rlm_realm: Adding Realm = "NULL"
Mon Feb 17 18:47:19 2003 : Debug: rlm_realm: Authentication realm is LOCAL.
Mon Feb 17 18:47:19 2003 : Debug: rlm_realm: auth_port is not set.
proxy cancelled
Mon Feb 17 18:47:19 2003 : Debug: modcall[authorize]: module "suffix"
returns noop
Mon Feb 17 18:47:19 2003 : Debug: users: Matched DEFAULT at 157
Mon Feb 17 18:47:19 2003 : Debug: modcall[authorize]: module "files"
returns ok
Mon Feb 17 18:47:19 2003 : Debug: modcall: group authorize returns ok
Mon Feb 17 18:47:19 2003 : Debug: rad_check_password: Found Auth-Type
LDAP
Mon Feb 17 18:47:19 2003 : Debug: auth: type "LDAP"
Mon Feb 17 18:47:19 2003 : Debug: modcall: entering group authtype
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: - authenticate
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: login attempt by "lab1" with
password "lab1"
Mon Feb 17 18:47:19 2003 : Debug: radius_xlat: '(uid=lab1)'
Mon Feb 17 18:47:19 2003 : Debug: radius_xlat: 'o=netserv_ldap'
Mon Feb 17 18:47:19 2003 : Debug: ldap_get_conn: Got Id: 0
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: attempting LDAP reconnection
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: (re)connect to
192.168.2.1:389, authentication 0
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: bind as
cn=Manager,o=netserv_ldap/XAXAXA to 192.168.2.1:389
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: waiting for bind result ...
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: performing search in
o=netserv_ldap, with filter (uid=lab1)
Mon Feb 17 18:47:19 2003 : Debug: ldap_release_conn: Release Id: 0
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: user DN: uid=lab1,o=netserv_ldap
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: (re)connect to
192.168.2.1:389, authentication 1
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: bind as
uid=lab1,o=netserv_ldap/lab1 to 192.168.2.1:389
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: waiting for bind result ...
Mon Feb 17 18:47:19 2003 : Debug: rlm_ldap: user lab1 authenticated
succesfully
Mon Feb 17 18:47:19 2003 : Debug: modcall[authenticate]: module "ldap"
returns ok
Mon Feb 17 18:47:19 2003 : Debug: modcall: group authtype returns ok
Mon Feb 17 18:47:19 2003 : Auth: Login OK: [lab1/lab1] (from client
192.168.2.212 port 0)
Sending Access-Accept of id 36 to 192.168.2.212:4512
Mon Feb 17 18:47:19 2003 : Debug: Finished request 0
Mon Feb 17 18:47:19 2003 : Debug: Going to the next request
Mon Feb 17 18:47:19 2003 : Debug: SMUX connect try 2
Mon Feb 17 18:47:19 2003 : Debug: Can't connect to SNMP agent with SMUX:
Connection refused
Mon Feb 17 18:47:19 2003 : Debug: --- Walking the entire request list ---
Mon Feb 17 18:47:19 2003 : Debug: Waking up in 6 seconds...
But this entry does not figure in any accounting.
I am checking with radlast
Please do not give me the same "read the docs" , I swear I have done
that and I admit I havent understood much. This is my first attempt at
radius ...
Thanks for being patient and reading upto here
Ram
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- Re: Beginner problem Using the same radius server ... Ramprasad A Padmanabhan
- Re: Beginner problem Using the same radius se... Alan DeKok
- Re: Beginner problem Using the same radiu... Ramprasad A Padmanabhan
- Re: Beginner problem Using the same r... K. Bestvater
- Re: Beginner problem Using the sa... Ramprasad A Padmanabhan
- Re: Beginner problem Using t... K. Bestvater
- Can't connect to the database server SQL ... betux
