Hello Ivo -
I suspect that the environment in which you are running Radiator does not include the environment variables you have configured. I suggest you run "radiusd" by hand first, in a shell that has the correct environment:
perl radiusd -foreground -log_stdout -trace 4 -config_file .....
You should then incorporate the same environment variables into your startup script (we suggest you use the "restartWrapper" utility included in the "goodies" directory.
There is a FAQ item here:
http://www.open.com.au/radiator/faq.html#127
regards
Hugh
ps - there are some recent patches for Radiator that deal with these problems
On Thursday, Sep 18, 2003, at 13:02 Australia/Melbourne, Ivo Tzvetkov wrote:
Hello,
I am having a problem setting up Radiator at work and I'm hoping you can
help me.
We are setting up a RADIUS server on a machine running RedHat 9.0 with Perl 5.8.0 using Radiator-Demo-3.6-1 (config and log extracts listed at the bottom).
The server is used to authenticate a Cisco NAS. Authentication succeeds
for the default user mikem/fred, and we are currently trying to set up
handler clauses so that we can have different authentication methods based
on the IP of the incoming NAS.
However, setting up handlers as per the configuration below results in the
first handler always being picked irrespective of the accepted IP (ie. NASes
with non-matching IPs still get handled by it). The reason for this,
according to the logs, seems to be that there is an error in the given
"attribute=value" pair, but it is set up as specified in the documentation
(as well as many examples on google), and the dictionary seems load fine.
The same error occurs with all attributes, not just IPs, and it would appear
to be some sort of parse error of the configuration. We are aware of some
RedHat9 / Perl issues with UTF-8, but the environment variables have been
reconfigured accordingly and these issues are resolved, so that would lead
us to believe that it's an error with radiator itself.
I would appreciate your comments or help.
Regards, -Ivo
running radius.cfg config: ----------------------------------------------------------------------- LogDir /var/log/radius DbDir /etc/radiator DictionaryFile /etc/radiator/dictionary AuthPort 1812 AcctPort 1813 Trace 5
<Client DEFAULT> Secret mysecret </Client>
<Handler NAS-IP-Address=123.123.123.123> <AuthBy FILE> Filename %D/users </AuthBy> </Handler>
<Handler> #Empty handler to reject non-matching cases </Handler> -----------------------------------------------------------------------
logfile after radiator server restart:
-----------------------------------------------------------------------
Wed Sep 17 17:02:41 2003: NOTICE: SIGTERM received: stopping
Wed Sep 17 17:02:42 2003: ERR: Bad attribute=value pair: NAS-IP-Address=123.123.123.123
Wed Sep 17 17:02:42 2003: DEBUG: Finished reading configuration file '/etc/radiator/radius.cfg'
Wed Sep 17 17:02:42 2003: DEBUG: Reading dictionary file '/etc/radiator/dictionary'
Wed Sep 17 17:02:43 2003: DEBUG: Creating authentication port 0.0.0.0:1812
Wed Sep 17 17:02:43 2003: DEBUG: Creating accounting port 0.0.0.0:1813
Wed Sep 17 17:02:43 2003: NOTICE: Server started: Radiator 3.6 on promien (EVALUATION)
-----------------------------------------------------------------------
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
NB: have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening?
-- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence.
=== Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
