freeradius no longer accepts Crypt-Password after upgrade

Tue, 14 Jun 2005 03:14:37 -0700 

Hello group,

        Due to a recent catastrophic hardware failure on one of our
radius servers I've had to install a new machine. In the process we also
upgraded freeradius from 0.9.3 to 1.0.2-4, and somehow the radius server
now refuses to accept anything other than a User-Password attribute --
it keeps failing to log in users that have a Crypt-Password set.

I've attached a -xxx debug log below, minus passwords and usernames.

The literal same configuration works fine on another machine running
0.9.3 and retrieving its data from the same database server. Can anyone
suggest what I might be missing?

-- 
Rens Houben                           |    opinions are mine
Resident linux guru and sysadmin      | if my employers have one
Systemec Internet Services.           |they'll tell you themselves
PGP key at http://swordbreaker.systemec.nl/~shadur/shadur.key.asc

Tue Jun 14 11:52:19 2005 : Debug: Thread 1 handling request 5, (2 handled so 
far)
        User-Name = "-----------"
        User-Password = "-------"
        Service-Type = Framed-User
        Framed-Protocol = PPP
        NAS-IP-Address = ------
        NAS-Port = 14
        NAS-Port-Type = ISDN
Tue Jun 14 11:52:19 2005 : Debug:   Processing the authorize section of 
radiusd.conf
Tue Jun 14 11:52:19 2005 : Debug: modcall: entering group authorize for request 
5
Tue Jun 14 11:52:19 2005 : Debug:   modsingle[authorize]: calling preprocess 
(rlm_preprocess) for request 5Tue Jun 14 11:52:19 2005 : Debug:   
modsingle[authorize]: returned from preprocess (rlm_preprocess) for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modcall[authorize]: module "preprocess" 
returns ok for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modsingle[authorize]: calling chap 
(rlm_chap) for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modsingle[authorize]: returned from chap 
(rlm_chap) for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modcall[authorize]: module "chap" returns 
noop for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modsingle[authorize]: calling suffix 
(rlm_realm) for request 5
Tue Jun 14 11:52:19 2005 : Debug:     rlm_realm: No '@' in User-Name = 
"-----------", looking up realm NULL
Tue Jun 14 11:52:19 2005 : Debug:     rlm_realm: No such realm "NULL"
Tue Jun 14 11:52:19 2005 : Debug:   modsingle[authorize]: returned from suffix 
(rlm_realm) for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modcall[authorize]: module "suffix" returns 
noop for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modsingle[authorize]: calling sql (rlm_sql) 
for request 5
Tue Jun 14 11:52:19 2005 : Debug: radius_xlat:  '-----------'
Tue Jun 14 11:52:19 2005 : Debug: rlm_sql (sql): sql_set_user escaped user --> 
'-----------'
Tue Jun 14 11:52:19 2005 : Debug: radius_xlat:  'SELECT 
id,UserName,Attribute,Value,op FROM radcheck WHERE Username = '-----------' 
ORDER BY id'
Tue Jun 14 11:52:19 2005 : Debug: rlm_sql (sql): Reserving sql socket id: 4
Tue Jun 14 11:52:19 2005 : Debug: radius_xlat:  'SELECT 
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op
  FROM radgroupcheck,usergroup WHERE usergroup.Username = '-----------' AND 
usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id'
Tue Jun 14 11:52:19 2005 : Debug: radius_xlat:  'SELECT 
id,UserName,Attribute,Value,op FROM radreply WHERE Username = '-----------' 
ORDER BY id'
Tue Jun 14 11:52:19 2005 : Debug: radius_xlat:  'SELECT 
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op
  FROM radgroupreply,usergroup WHERE usergroup.Username = '-----------' AND 
usergroup.GroupName = radgroupreply.GroupName ORDER BY radgroupreply.id'
Tue Jun 14 11:52:19 2005 : Debug: rlm_sql (sql): Released sql socket id: 4
Tue Jun 14 11:52:19 2005 : Debug:   modsingle[authorize]: returned from sql 
(rlm_sql) for request 5
Tue Jun 14 11:52:19 2005 : Debug:   modcall[authorize]: module "sql" returns ok 
for request 5
Tue Jun 14 11:52:19 2005 : Debug: modcall: group authorize returns ok for 
request 5
Tue Jun 14 11:52:19 2005 : Debug:   rad_check_password:  Found Auth-Type Local
Tue Jun 14 11:52:19 2005 : Debug: auth: type Local
Tue Jun 14 11:52:19 2005 : Debug: auth: user supplied User-Password does NOT 
match local User-Password
Tue Jun 14 11:52:19 2005 : Debug: auth: Failed to validate the user.
Tue Jun 14 11:52:19 2005 : Auth: Login incorrect: [-----------/------] (from 
client sisr port 14)

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to