Hello Holger, There seems to be a bogus codepath (which I just filled): https://github.com/inverse-inc/packetfence/issues/981 <https://github.com/inverse-inc/packetfence/issues/981>
The best way to resolve it quickly in your case is, if you don’t have any external webservices, change that part in you pf.conf file. [webservices] proto=http Once done, please make sure to reload configs and restart RADIUS / httpd.aaa services /usr/local/pf/bin/pfcmd configreload hard /usr/local/pf/bin/pfcmd service httpd.aaa restart /usr/local/pf/bin/pfcmd service radiusd restart Cheers! dw. — Derek Wuelfrath dwuelfr...@inverse.ca :: +1.514.447.4918 (x110) :: +1.866.353.6153 (x110) Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) > On Oct 22, 2015, at 11:28 AM, Louis Munro <lmu...@inverse.ca> wrote: > > Hi Holger, > > What you are seeing in the radius logs is a connection error from the radiusd > process to the httpd.aaa service (over HTTP). > > We can see that the process is running and listening on your system. > But radius returns an SSL error when trying to connect to the httpd.aaa: > > rlm_perl: An error occurred while processing the authorize RPC request: An > error occured while sending a MessagePack request: 35 SSL connect error SSL > connect error at /usr/local/pf/lib//pf/radius/rpc.pm line 51. > > So it comes down to troubleshooting that connection. > Look at raddb/radiusd.conf. > > Are the rpc_* variables correct? > Right host, port, protocol? > > Regards, > -- > Louis Munro > lmu...@inverse.ca <mailto:lmu...@inverse.ca> :: www.inverse.ca > <http://www.inverse.ca/> > +1.514.447.4918 x125 :: +1 (866) 353-6153 x125 > Inverse inc. :: Leaders behind SOGo (www.sogo.nu <http://www.sogo.nu/>) and > PacketFence (www.packetfence.org <http://www.packetfence.org/>) > >> On Oct 22, 2015, at 8:44 , <holger.patz...@t-systems.com >> <mailto:holger.patz...@t-systems.com>> <holger.patz...@t-systems.com >> <mailto:holger.patz...@t-systems.com>> wrote: >> >> Hi there, >> >> anyone, any thoughts? >> >> -- >> DEUTSCHE TELEKOM HEALTHCARE AND SECURITY SOLUTIONS GMBH >> >> Holger Patzelt >> Pascalstr. 11, 10587 Berlin >> Telefon: +49 30 8353 84591 Telefax: +49 30 8353 84429 (Tel) >> E-Mail: holger.patz...@t-systems.com <mailto:holger.patz...@t-systems.com> >> >> Die gesetzlichen Pflichtangaben finden Sie unter: >> http://www.telekom-healthcare.com/pflichtangaben >> <http://www.telekom-healthcare.com/pflichtangaben> >> >> Hinweis: Diese E-Mail und/oder die Anhänge sind vertraulich und >> ausschließlich für den bezeichneten Adressaten bestimmt. Die Weitergabe oder >> Kopieren dieser E-Mail ist strengstens verboten. Wenn Sie diese E-Mail >> irrtümlich erhalten haben, informieren Sie bitte unverzüglich den Absender >> und vernichten Sie die Nachricht und alle Anhänge. Vielen Dank. >> >> -----Original Message----- >> From: Patzelt, Holger >> Sent: Wednesday, October 21, 2015 5:16 PM >> To: packetfence-users@lists.sourceforge.net >> <mailto:packetfence-users@lists.sourceforge.net> >> Subject: Re: [PacketFence-users] AD auth fails >> >> Hi Louis, >> >> Here you are: >> >> (don’t be irritated, due to a restart, i changed the PID…) # lsof -nPp 15000 >> | grep IPv4 tells: >> >> httpd 15000 root 7u IPv4 139071 0t0 TCP >> 127.0.0.1:7070 (LISTEN) >> httpd 15000 root 8u IPv4 139073 0t0 TCP >> 172.20.1.20:7070 (LISTEN) > > ------------------------------------------------------------------------------ > _______________________________________________ > PacketFence-users mailing list > PacketFence-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
