Hi, Two options: - Remove 127.0.0.1 from the clients.conf - Do not set the global radiusSecret in switches.conf, set it only for the switch you want to enable.
On 12-05-11 9:38 AM, Maxime Pioc wrote: > Hi , > my sql.conf is correctly configured > If i don't populate the client.conf and if i add the radiusSecret the > radius server can't start > > _radiusd -X result :_ > > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Attempting to connect to > pf@localhost:3306/pf > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): starting 0 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Attempting to connect > rlm_sql_mysql #0 > Fri May 11 15:24:11 2012 : Info: rlm_sql_mysql: Starting connect to > MySQL server for #0 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Connected new DB handle, #0 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): starting 1 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Attempting to connect > rlm_sql_mysql #1 > Fri May 11 15:24:11 2012 : Info: rlm_sql_mysql: Starting connect to > MySQL server for #1 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Connected new DB handle, #1 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): starting 2 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Attempting to connect > rlm_sql_mysql #2 > Fri May 11 15:24:11 2012 : Info: rlm_sql_mysql: Starting connect to > MySQL server for #2 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Connected new DB handle, #2 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): starting 3 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Attempting to connect > rlm_sql_mysql #3 > Fri May 11 15:24:11 2012 : Info: rlm_sql_mysql: Starting connect to > MySQL server for #3 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Connected new DB handle, #3 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): starting 4 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Attempting to connect > rlm_sql_mysql #4 > Fri May 11 15:24:11 2012 : Info: rlm_sql_mysql: Starting connect to > MySQL server for #4 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Connected new DB handle, #4 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): Processing > generate_sql_clients > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql) in generate_sql_clients: > query is SELECT id, nasname, shortname, type, secret FROM radius_nas > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): Reserving sql socket id: 4 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): Read entry > nasname=127.0.0.1,shortname=127.0.0.1,secret=vivalto > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): Adding client 127.0.0.1 > (127.0.0.1, server=<none>) to clients list > Fri May 11 15:24:11 2012 : Error: Failed to add duplicate client 127.0.0.1 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): Released sql socket id: 4 > Fri May 11 15:24:11 2012 : Debug: rlm_sql (sql): Failed to add client > 127.0.0.1 (127.0.0.1) to clients list. Maybe there's a duplicate? > Fri May 11 15:24:11 2012 : Error: Failed to load clients from SQL. > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Closing sqlsocket 4 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Closing sqlsocket 3 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Closing sqlsocket 2 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Closing sqlsocket 1 > Fri May 11 15:24:11 2012 : Info: rlm_sql (sql): Closing sqlsocket 0 > Fri May 11 15:24:11 2012 : Error: /etc/raddb/sql.conf[1]: Instantiation > failed for module "sql" > Fri May 11 15:24:11 2012 : Error: > /etc/raddb/sites-enabled/packetfence[32]: Failed to load module "sql". > Fri May 11 15:24:11 2012 : Error: > /etc/raddb/sites-enabled/packetfence[29]: Errors parsing accounting section. > > > Regards, > > > 2012/5/11 Francois Gaudreault <[email protected] > <mailto:[email protected]>> > > You also need to configure your sql.conf properly in /etc/raddb. DO NOT > populate the clients.conf, PF will populate a MySQL table with the > information. > > It's all explained in the admin guide by the way.. > > On 12-05-11 4:31 AM, Maxime Pioc wrote: > > Hi, > > Thanks for your reply > > > > i do that, but radiusd can't start after that > > => Error : Failed to load client from SQL > > So, i add this lines in clients.conf > > client 192.168.3.10{ > > ipaddr = 192.168.3.10 > > shortname = Switch1 > > secret = mysecret > > require_message_authenticator = no > > nastype = cisco > > } > > > > and i remove the general radiusSecret in my switches.conf. > > > > With mab authentication the client can connect and register > > and with 802.1X it is placed in the normal vlan but i can't > manage it. > > > > I appolagize /if my english/ is bad. > > > > Regards, > > > > > > 2012/5/10 Francois Gaudreault <[email protected] > <mailto:[email protected]> > > <mailto:[email protected] <mailto:[email protected]>>> > > > > Hi, > > > > Make sure to set radiusSecret under your switch configuration > > (switches.conf). > > > > On 12-05-10 10:25 AM, Maxime Pioc wrote: > > > Hi all, > > > > > > I'm student, and i have to test packetfence. > > > I use PF 3.3.2 on centOS 6.2 with Cisco 2960s > > > > > > So, i have one client (windows 7 with PEAP) and i want to > manage it. > > > But i have nothing in node->accounting on the Web admin. > > > > > > did you have this problem before? > > > Regards, > > > > > > -- > > > Pioc Maxime > > > > > > > > > > > > > > > > ------------------------------------------------------------------------------ > > > Live Security Virtual Conference > > > Exclusive live event will cover all the ways today's security and > > > threat landscape has changed and how IT managers can respond. > > Discussions > > > will include endpoint security, mobile security and the latest in > > malware > > > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > > > > > > > > > _______________________________________________ > > > PacketFence-users mailing list > > > [email protected] > <mailto:[email protected]> > > <mailto:[email protected] > <mailto:[email protected]>> > > > https://lists.sourceforge.net/lists/listinfo/packetfence-users > > > > > > -- > > Francois Gaudreault, ing. jr > > [email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>> :: > > +1.514.447.4918 <tel:%2B1.514.447.4918> <tel:%2B1.514.447.4918> > (x130) :: www.inverse.ca <http://www.inverse.ca> > > <http://www.inverse.ca/> > > Inverse inc. :: Leaders behind SOGo (www.sogo.nu > <http://www.sogo.nu> > > <http://www.sogo.nu/>) and PacketFence > > (www.packetfence.org <http://www.packetfence.org> > <http://www.packetfence.org/>) > > > > > > ------------------------------------------------------------------------------ > > Live Security Virtual Conference > > Exclusive live event will cover all the ways today's security and > > threat landscape has changed and how IT managers can respond. > > Discussions > > will include endpoint security, mobile security and the latest in > > malware > > threats. > http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > _______________________________________________ > > PacketFence-users mailing list > > [email protected] > <mailto:[email protected]> > > <mailto:[email protected] > <mailto:[email protected]>> > > https://lists.sourceforge.net/lists/listinfo/packetfence-users > > > > > > > > > > -- > > Pioc Maxime > > > > > > > > > > ------------------------------------------------------------------------------ > > Live Security Virtual Conference > > Exclusive live event will cover all the ways today's security and > > threat landscape has changed and how IT managers can respond. > Discussions > > will include endpoint security, mobile security and the latest in > malware > > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > > > > > _______________________________________________ > > PacketFence-users mailing list > > [email protected] > <mailto:[email protected]> > > https://lists.sourceforge.net/lists/listinfo/packetfence-users > > > -- > Francois Gaudreault, ing. jr > [email protected] <mailto:[email protected]> :: > +1.514.447.4918 <tel:%2B1.514.447.4918> (x130) :: www.inverse.ca > <http://www.inverse.ca> > Inverse inc. :: Leaders behind SOGo (www.sogo.nu > <http://www.sogo.nu>) and PacketFence > (www.packetfence.org <http://www.packetfence.org>) > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. > Discussions > will include endpoint security, mobile security and the latest in > malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > PacketFence-users mailing list > [email protected] > <mailto:[email protected]> > https://lists.sourceforge.net/lists/listinfo/packetfence-users > > > > > -- > Pioc Maxime > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > > > > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users -- Francois Gaudreault, ing. jr [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
