On Fri, 2003-08-22 at 12:43, 3APA3A wrote:
> Dear Eric Leblond,
>
> Nothing can be said more without seeing your configuration and logs.
here it is :
radiusd.conf :
passwd file_groups {
filename = /etc/raddb/groups
format = "*Stripped-User-Name:Group-Name"
hashsize = 100
delimiter = ":"
ignorenislike = no
allowmultiplekeys = no
}
authorize {
suffix
file_groups
files
}
Users :
test Auth-Type :=Local, User-Password == "test"
Framed-IP-Address = 217.15.82.127,
Fall-Through = Yes
DEFAULT Huntgroup-Name == "ADSL", Group-Name == "ADSLParis"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Tunnel-Type = L2TP,
Tunnel-Medium-Type = IP,
RB-Tunnel-Local-Name = LACLD,
Tunnel-Client-Auth-Id = LNSAlphalink,
Tunnel-Server-Auth-Id = LNSAlphalink,
Tunnel-Server-Endpoint = 217.15.80.33,
Tunnel-Assignment-Id = 217.15.80.33
logs (radiusd -X) :
rad_recv: Access-Request packet from host 212.30.97.74:1085, id=21, length=167
User-Name = "[EMAIL PROTECTED]"
User-Password = "test"
NAS-Identifier = "9massy1-1-SMS-10k"
NAS-IP-Address = 172.20.1.218
Calling-Station-Id = "#9massy1-1-SMS-10k#L2TP pseudo port#1165"
Service-Type = Framed-User
Framed-Protocol = PPP
NAS-Port = 3841983629
Acct-Session-Id = "E500048D-3F461183"
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm "alphl.telco.ipadsl" for User-Name = "[EMAIL
PROTECTED]"
rlm_realm: Found realm "alphl.telco.ipadsl"
rlm_realm: Adding Stripped-User-Name = "test"
rlm_realm: Proxying request from user test to realm alphl.telco.ipadsl
rlm_realm: Adding Realm = "alphl.telco.ipadsl"
rlm_realm: Authentication realm is LOCAL.
modcall[authorize]: module "suffix" returns noop
rlm_passwd: Added Group-Name: 'ADSLParis' to config_items
modcall[authorize]: module "file_groups" returns ok
users: Matched test at 1
huntgroups: Matched ADSL at 10
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type Local
auth: type Local
auth: user supplied User-Password matches local User-Password
Sending Access-Accept of id 21 to 212.30.97.74:1085
Framed-IP-Address = 217.15.82.127
So Group-Name is set but the test seems not to work ....
BR,
> --Friday, August 22, 2003, 12:48:42 AM, you wrote to [EMAIL PROTECTED]:
>
> EL> Le jeu 21/08/2003 � 21:05, 3APA3A a �crit :
> >> Dear Eric Leblond,
> >>
> >> Probably you call passwd after file module. Make sure passwd is called
> >> prior to file module to assume you can use results of rlm_passwd in
> >> users file.
>
> EL> I did not miss that point (at least this one) I've put passwd file
> EL> before users in radiusd.conf. Logs show that the var is defined.
>
> EL> BR,
--
Eric Leblond <[EMAIL PROTECTED]>
Alphalink
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
