Hallo,
I have problem with hints.
When user is logging and system is checking users file hints ("USERS") are
not matched. Checking is ended at users line.
Below is some config and debug.
from users file :
DEFAULT Auth-Type = System (there is line 11)
Fall-Through = Yes
user-2 Auth-Type := Accept, User-Password == "aaa", Service-Type ==
Framed-User (line 17)
user-1 NAS-IP-Address == 1.2.3.4, Hint == "USERS" (line 177)
DEFAULT Hint == "USERS" (line 249)
Cisco-AVPair = "ip:inacl#1=permit icmp 1.1.1.4 255.255.255.0 host 2.3.4.5",
Cisco-AVPair += "ip:inacl#2=deny ip any any"
from hints file :
DEFAULT Suffix == ".uso", Strip-User-Name = Yes
Hint = "USERS"
DEFAULT Suffix == ".USO", Strip-User-Name = Yes
Hint = "USERS"
and debug :
Fri Apr 30 12:08:35 2004 : Debug: Nothing to do. Sleeping until we see a
request.
Fri Apr 30 12:08:35 2004 : Debug: Thread 1 handling request 0, (1 handled so
far)
User-Name = "user-1.uso"
NAS-IP-Address = 1.2.3.4
Calling-Station-Id = "217.99.108.217"
User-Password = "password"
NAS-Port = 150
Cisco-AVPair = "ip:source-ip=217.99.108.217"
Fri Apr 30 12:08:35 2004 : Debug: modcall: entering group authorize for
request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: calling preprocess
(rlm_preprocess) for request 0
Fri Apr 30 12:08:35 2004 : Debug: hints: Matched DEFAULT at 17
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: returned from
preprocess (rlm_preprocess) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authorize]: module "preprocess"
returns ok for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: calling chap
(rlm_chap) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: returned from chap
(rlm_chap) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authorize]: module "chap"
returns noop for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: calling eap
(rlm_eap) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: returned from eap
(rlm_eap) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authorize]: module "eap" returns
noop for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: calling suffix
(rlm_realm) for request 0
Fri Apr 30 12:08:35 2004 : Debug: rlm_realm: No '@' in User-Name =
"user-1", looking up realm NULL
Fri Apr 30 12:08:35 2004 : Debug: rlm_realm: No such realm "NULL"
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: returned from
suffix (rlm_realm) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authorize]: module "suffix"
returns noop for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: calling files
(rlm_files) for request 0
Fri Apr 30 12:08:35 2004 : Debug: users: Matched DEFAULT at 11
Fri Apr 30 12:08:35 2004 : Debug: users: Checking user-1 at 177
Fri Apr 30 12:08:35 2004 : Debug: rad_check_password: Found Auth-Type
System
Fri Apr 30 12:08:35 2004 : Debug: auth: type "System"
Fri Apr 30 12:08:35 2004 : Debug: modcall: entering group authenticate for
request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authenticate]: calling unix
(rlm_unix) for request 0
Fri Apr 30 12:08:35 2004 : Debug: HASH: user user-1 found in hashtable
bucket 54429
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authenticate]: returned from
unix (rlm_unix) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authenticate]: module "unix"
returns ok for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall: group authenticate returns ok for
request 0
Fri Apr 30 12:08:35 2004 : Debug: users: Matched user-1 at 177
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: returned from
files (rlm_files) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authorize]: module "files"
returns ok for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: calling mschap
(rlm_mschap) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authorize]: returned from
mschap (rlm_mschap) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authorize]: module "mschap"
returns noop for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall: group authorize returns ok for
request 0
Fri Apr 30 12:08:35 2004 : Debug: rad_check_password: Found Auth-Type
System
Fri Apr 30 12:08:35 2004 : Debug: auth: type "System"
Fri Apr 30 12:08:35 2004 : Debug: modcall: entering group authenticate for
request 0
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authenticate]: calling unix
(rlm_unix) for request 0
Fri Apr 30 12:08:35 2004 : Debug: HASH: user user-1 found in hashtable
bucket 54429
Fri Apr 30 12:08:35 2004 : Debug: modsingle[authenticate]: returned from
unix (rlm_unix) for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall[authenticate]: module "unix"
returns ok for request 0
Fri Apr 30 12:08:35 2004 : Debug: modcall: group authenticate returns ok for
request 0
Fri Apr 30 12:08:35 2004 : Auth: Login OK: [user-1.uso/password] (from
client F-PIX port 150 cli 217.99.108.217)
Sending Access-Accept of id 150 to 1.2.3.4:1812
Fri Apr 30 12:08:35 2004 : Debug: Finished request 0
Fri Apr 30 12:08:35 2004 : Debug: Going to the next request
I use version freeradius-0.9.3.
Thank You for help
Zbyszko
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
