Hello Lakmin -
On Tue, 12 Oct 1999, S.K.D. Lakmin Premnath wrote:
> hi mikem
>
> I'm running Radiator 2.14.1(single CPU Licence) on bsdi 4.0 machine. I need
> to authenticate users from UNIX password file. when I try to do this it
> says following
>
> lakmin is my user & abc123 is my password.
>
> radiator: {2} % perl radpwtst -user lakmin -password abc123
> sending Access-Request...
> Rejected
> sending Accounting-Request Start...
> OK
> sending Accounting-Request Stop...
> OK
> radiator: {3} %
>
> following is output of password log file
> Mon Oct 11 18:05:17 1999:939643517:lakmin:abc123:ENCRYPTED:FAIL
>
> In radius.cfg file
> <Realm DEFAULT>
> <AuthBy UNIX>
> Identifier System
> Filename /etc/passwd
> GroupFilename /etc/group
> </AuthBy UNIX>
> <Realm>
>
> In users file
> #DEFAULT Auth-Type = System, Group = group1, Auth-Type=Radius
> DEFAULT Auth-Type = System, Group = wheel
> # Reply-Message = you are in group 1
>
There are a couple of issues here.
1. I think BSDI uses a shadow password - if this is the case you will have to
point your AuthBy UNIX at the shadow password file instead of /etc/password.
2. Your configuration file does not reference a users file, so the information
in the users file is never accessed.
Try something like this:
# Set up AuthBy UNIX with Identifier System
<AuthBy UNIX>
Identifier System
Filename ....shadow....
GroupFilename ....group....
<AuthBy>
# Set up DEFAULT realm with AuthBy FILE
<Realm DEFAULT>
<AuthBy FILE>
Filename ....users....
</AuthBy>
</Realm>
# Users file contains the following
DEFAULT Auth-Type = System, Group = ....group....
hth
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
NT, Rhapsody
===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
