[RADIATOR] Log File
I am trying to troubleshoot a why particular machine can not authenticate. Is there a log file where I could search by its MAC address? Thanks, Adam -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] ERR: Attribute number 101
They sent me: # Bluesocket vendor specific VENDOR BLUESOCKET 9967 ATTRIBUTE BlueSocketRole 100 string BLUESOCKET ATTRIBUTE Bluesocketap101 string BLUESOCK I see from the examples VENDORATTR, should it be changed to: # Bluesocket vendor specific VENDOR BLUESOCKET 9967 VENDORATTR BlueSocketRole 100 string BLUESOCKET VENDORATTR Bluesocketap101 string BLUESOCK -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org On 6/25/10 4:42 PM, Hugh Irvine wrote: Hello Adam - The dictionary is the file that contains all of the RADIUS attribute definitions for the standard set plus all the vendor specifics. The error you show is due to a missing vendor-specific for vendor 9967 which is listed as Bluesocket. You should ask Bluesocket for their vendor-specific attribute definitions and add them to your dictionary. The Radiator dictionary is a simple text file called dictionary in the main distribution directory. In the meantime you can add the following to your dictionary to stop the error messages: # # Bluesocket # VENDOR Bluesocket 9967 VENDORATTR 9967Bluesocket-101 101 string You will need to restart radiusd to have the dictionary re-read. When you do find out from Bluesocket what attributes they use, please send us a copy so we can add them to the standard Radiator dictionary. regards Hugh On 26 Jun 2010, at 02:59, Adam Gerson wrote: Bluesocket is what we use. What is a radius dictionary and whats it used for? What would I do with it once I got it? Adam -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org On 6/25/10 11:31 AM, Kurt Jaeger wrote: Hi! I see this a lot in my logs. Is that a problem? Fri Jun 25 00:07:45 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary What kind of device do you have ? http://www.iana.org/assignments/enterprise-numbers says that 9967 was assigned to Bluesocket, Inc. Suresh Gandhi sgan...@bluesocket.com Hmm, the webpage says: 802.11n virtual WLAN stuff. Is this what you use ? Can you ask them for their radius dictionary ? ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator NB: Have you read the reference manual (doc/ref.html)? Have you searched the mailing list archive (www.open.com.au/archives/radiator)? Have you had a quick look on Google (www.google.com)? Have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening? ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] AuthBy SQL result: IGNORE, User database access error
That worked. Thank you. What did -i do? Adam -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org On 6/24/10 5:10 AM, Hugh Irvine wrote: Hello Adam - Try this: /opt/local/bin/perl -I /usr/local/src/Radiator/Radiator-Locked-4.6 /usr/local/src/Radiator/Radiator-Locked-4.6/radiusd -config_file /etc/radiator/radius.cfg -pid_file /var/run/radiusd.pid regards Hugh On 24 Jun 2010, at 03:46, Adam Gerson wrote: I have figured out that MacPorts installs its own copy of perl into /opt/local/bin I need to use that perl, which includes the mysql packages. When I call that perl explicitly I get this error: sidekick:~ sadmin$ /opt/local/bin/perl /usr/local/src/Radiator/Radiator-Locked-4.6/radiusd -config_file /etc/radiator/radius.cfg -pid_file /var/run/radiusd.pid Can't locate Radius/ServerConfig.pm in @INC (@INC contains: . /opt/local/lib/perl5/site_perl/5.8.9/darwin-2level /opt/local/lib/perl5/site_perl/5.8.9 /opt/local/lib/perl5/site_perl /opt/local/lib/perl5/vendor_perl/5.8.9/darwin-2level /opt/local/lib/perl5/vendor_perl/5.8.9 /opt/local/lib/perl5/vendor_perl /opt/local/lib/perl5/5.8.9/darwin-2level /opt/local/lib/perl5/5.8.9 .) at (eval 8) line 20,_ line 575. BEGIN failed--compilation aborted at (eval 8) line 20,_ line 575. ...caught at /usr/local/src/Radiator/Radiator-Locked-4.6/radiusd line 2,_ line 575. -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org On 6/22/10 3:21 PM, Hugh Irvine wrote: Hello Adam - The error message you show below indicates your database is not running (or is unreachable for some reason). regards Hugh On 22 Jun 2010, at 15:03, Adam Gerson wrote: Well, nothing has changed in my config file and my database is still up and working. I have not used Radiator for a week or two. I started it today to test it and now it cannot contact the database. I got an email saying my trail had experienced, but at startup Radiator reports its good until 2011 or 1000 connections. Tue Jun 22 14:59:47 2010: DEBUG: Finished reading configuration file '/etc/radiator/radius.cfg' This Radiator license will expire on 2011-02-01 This Radiator license will stop operating after 1000 requests To purchase an unlimited full source version of Radiator, see http://www.open.com.au/ordering.html To extend your license period, contact ad...@open.com.au Tue Jun 22 14:59:47 2010: DEBUG: Reading dictionary file '/etc/radiator/dictionary' Tue Jun 22 14:59:47 2010: DEBUG: Creating authentication port 0.0.0.0:1645 Tue Jun 22 14:59:47 2010: DEBUG: Creating accounting port 0.0.0.0:1646 Tue Jun 22 14:59:47 2010: NOTICE: Server started: Radiator 4.6 on sidekick.cgps.org (LOCKED) Tue Jun 22 14:59:54 2010: DEBUG: Packet dump: *** Received from 192.168.1.92 port 52380 Code: Access-Request Identifier: 144 Authentic: -e2040155W174163g227181149134sP148 Attributes: User-Name = adam User-Password =175244t214bP025+6c?237196137K NAS-IP-Address = 192.168.1.92 Service-Type = Login-User Framed-IP-Address = 10.93.3.23 Called-Station-Id = 00:19:92:02:B4:3A Calling-Station-Id = NAS-Identifier = Bluesocket Acct-Session-Id = 00:19:92:02:B4:3A:1277233194 NAS-Port-Type = Wireless-IEEE-802-11 Tue Jun 22 14:59:54 2010: DEBUG: Handling request with Handler 'Realm=DEFAULT' Tue Jun 22 14:59:54 2010: DEBUG: Deleting session for adam, 192.168.1.92, Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: ERR: Could not connect to SQL database with DBI-connect dbi:mysql:jamfsoftware:127.0.0.1, jamfsoftware, ***: Tue Jun 22 14:59:54 2010: ERR: Could not connect to any SQL database. Request is ignored. Backing off for 600 seconds Tue Jun 22 14:59:54 2010: DEBUG: AuthBy SQL result: IGNORE, User database access error Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: ERR: Could not connect to SQL database with DBI-connect dbi:mysql:jamfsoftware:127.0.0.1, jamfsoftware, ***: Tue Jun 22 14:59:54 2010: ERR: Could not connect to any SQL database. Request is ignored. Backing off for 600 seconds Tue Jun 22 14:59:54 2010: DEBUG: AuthBy SQL result: IGNORE, User database access error ^C -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator NB: Have you read the reference manual (doc/ref.html
[RADIATOR] ERR: Attribute number 101
I see this a lot in my logs. Is that a problem? Fri Jun 25 00:07:45 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 00:34:45 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 01:00:46 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 01:02:16 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 03:42:21 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 08:10:12 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 08:24:12 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 08:33:17 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 08:35:17 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 08:52:54 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:04:07 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:06:15 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:06:21 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:28:29 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:35:06 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:41:32 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:42:39 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:51:12 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary Fri Jun 25 09:57:42 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] ERR: Attribute number 101
Bluesocket is what we use. What is a radius dictionary and whats it used for? What would I do with it once I got it? Adam -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org On 6/25/10 11:31 AM, Kurt Jaeger wrote: Hi! I see this a lot in my logs. Is that a problem? Fri Jun 25 00:07:45 2010: ERR: Attribute number 101 (vendor 9967) is not defined in your dictionary What kind of device do you have ? http://www.iana.org/assignments/enterprise-numbers says that 9967 was assigned to Bluesocket, Inc. Suresh Gandhi sgan...@bluesocket.com Hmm, the webpage says: 802.11n virtual WLAN stuff. Is this what you use ? Can you ask them for their radius dictionary ? ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] AuthBy SQL result: IGNORE, User database access error
I have figured out that MacPorts installs its own copy of perl into /opt/local/bin I need to use that perl, which includes the mysql packages. When I call that perl explicitly I get this error: sidekick:~ sadmin$ /opt/local/bin/perl /usr/local/src/Radiator/Radiator-Locked-4.6/radiusd -config_file /etc/radiator/radius.cfg -pid_file /var/run/radiusd.pid Can't locate Radius/ServerConfig.pm in @INC (@INC contains: . /opt/local/lib/perl5/site_perl/5.8.9/darwin-2level /opt/local/lib/perl5/site_perl/5.8.9 /opt/local/lib/perl5/site_perl /opt/local/lib/perl5/vendor_perl/5.8.9/darwin-2level /opt/local/lib/perl5/vendor_perl/5.8.9 /opt/local/lib/perl5/vendor_perl /opt/local/lib/perl5/5.8.9/darwin-2level /opt/local/lib/perl5/5.8.9 .) at (eval 8) line 20, _ line 575. BEGIN failed--compilation aborted at (eval 8) line 20, _ line 575. ...caught at /usr/local/src/Radiator/Radiator-Locked-4.6/radiusd line 2, _ line 575. -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org On 6/22/10 3:21 PM, Hugh Irvine wrote: Hello Adam - The error message you show below indicates your database is not running (or is unreachable for some reason). regards Hugh On 22 Jun 2010, at 15:03, Adam Gerson wrote: Well, nothing has changed in my config file and my database is still up and working. I have not used Radiator for a week or two. I started it today to test it and now it cannot contact the database. I got an email saying my trail had experienced, but at startup Radiator reports its good until 2011 or 1000 connections. Tue Jun 22 14:59:47 2010: DEBUG: Finished reading configuration file '/etc/radiator/radius.cfg' This Radiator license will expire on 2011-02-01 This Radiator license will stop operating after 1000 requests To purchase an unlimited full source version of Radiator, see http://www.open.com.au/ordering.html To extend your license period, contact ad...@open.com.au Tue Jun 22 14:59:47 2010: DEBUG: Reading dictionary file '/etc/radiator/dictionary' Tue Jun 22 14:59:47 2010: DEBUG: Creating authentication port 0.0.0.0:1645 Tue Jun 22 14:59:47 2010: DEBUG: Creating accounting port 0.0.0.0:1646 Tue Jun 22 14:59:47 2010: NOTICE: Server started: Radiator 4.6 on sidekick.cgps.org (LOCKED) Tue Jun 22 14:59:54 2010: DEBUG: Packet dump: *** Received from 192.168.1.92 port 52380 Code: Access-Request Identifier: 144 Authentic: -e2040155W174163g227181149134sP148 Attributes: User-Name = adam User-Password =175244t214bP025+6c?237196137K NAS-IP-Address = 192.168.1.92 Service-Type = Login-User Framed-IP-Address = 10.93.3.23 Called-Station-Id = 00:19:92:02:B4:3A Calling-Station-Id = NAS-Identifier = Bluesocket Acct-Session-Id = 00:19:92:02:B4:3A:1277233194 NAS-Port-Type = Wireless-IEEE-802-11 Tue Jun 22 14:59:54 2010: DEBUG: Handling request with Handler 'Realm=DEFAULT' Tue Jun 22 14:59:54 2010: DEBUG: Deleting session for adam, 192.168.1.92, Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: ERR: Could not connect to SQL database with DBI-connect dbi:mysql:jamfsoftware:127.0.0.1, jamfsoftware, ***: Tue Jun 22 14:59:54 2010: ERR: Could not connect to any SQL database. Request is ignored. Backing off for 600 seconds Tue Jun 22 14:59:54 2010: DEBUG: AuthBy SQL result: IGNORE, User database access error Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: ERR: Could not connect to SQL database with DBI-connect dbi:mysql:jamfsoftware:127.0.0.1, jamfsoftware, ***: Tue Jun 22 14:59:54 2010: ERR: Could not connect to any SQL database. Request is ignored. Backing off for 600 seconds Tue Jun 22 14:59:54 2010: DEBUG: AuthBy SQL result: IGNORE, User database access error ^C -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator NB: Have you read the reference manual (doc/ref.html)? Have you searched the mailing list archive (www.open.com.au/archives/radiator)? Have you had a quick look on Google (www.google.com)? Have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening? ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] Mac Startup
I am following the instructions in INSTALL.MacOSX. That startup item uses /usr/bin/radiusd which I believe conflicts with the default installation of FreeRadius on Mac Server 10.4.6. sidekick:~ sadmin$ /Library/StartupItems/Radiator/Radiator start Starting Radiator RADIUS server /Library/StartupItems/Radiator/Radiator: line 15: /usr/bin/radiusd: No such file or directory To get arround this during testing you had me start the process manually with: sudo perl radiusd -foreground -log_stdout -trace 4 -config_file /etc/radiator/radius.cfg How should I modify StartService to give it the right command to start in my environment? StartService () { if [ ${RADIUS:=-NO-} = -YES- ]; then if ! pid=$(GetPID radiusd); then ConsoleMessage Starting Radiator RADIUS server /usr/bin/radiusd -config_file /etc/radiator/radius.cfg \ -pid_file /var/run/radiusd.pid fi fi } -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] AuthBy SQL result: IGNORE, User database access error
Well, nothing has changed in my config file and my database is still up and working. I have not used Radiator for a week or two. I started it today to test it and now it cannot contact the database. I got an email saying my trail had experienced, but at startup Radiator reports its good until 2011 or 1000 connections. Tue Jun 22 14:59:47 2010: DEBUG: Finished reading configuration file '/etc/radiator/radius.cfg' This Radiator license will expire on 2011-02-01 This Radiator license will stop operating after 1000 requests To purchase an unlimited full source version of Radiator, see http://www.open.com.au/ordering.html To extend your license period, contact ad...@open.com.au Tue Jun 22 14:59:47 2010: DEBUG: Reading dictionary file '/etc/radiator/dictionary' Tue Jun 22 14:59:47 2010: DEBUG: Creating authentication port 0.0.0.0:1645 Tue Jun 22 14:59:47 2010: DEBUG: Creating accounting port 0.0.0.0:1646 Tue Jun 22 14:59:47 2010: NOTICE: Server started: Radiator 4.6 on sidekick.cgps.org (LOCKED) Tue Jun 22 14:59:54 2010: DEBUG: Packet dump: *** Received from 192.168.1.92 port 52380 Code: Access-Request Identifier: 144 Authentic: -e2040155W174163g227181149134sP148 Attributes: User-Name = adam User-Password = 175244t214bP025+6c?237196137K NAS-IP-Address = 192.168.1.92 Service-Type = Login-User Framed-IP-Address = 10.93.3.23 Called-Station-Id = 00:19:92:02:B4:3A Calling-Station-Id = NAS-Identifier = Bluesocket Acct-Session-Id = 00:19:92:02:B4:3A:1277233194 NAS-Port-Type = Wireless-IEEE-802-11 Tue Jun 22 14:59:54 2010: DEBUG: Handling request with Handler 'Realm=DEFAULT' Tue Jun 22 14:59:54 2010: DEBUG: Deleting session for adam, 192.168.1.92, Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: ERR: Could not connect to SQL database with DBI-connect dbi:mysql:jamfsoftware:127.0.0.1, jamfsoftware, ***: Tue Jun 22 14:59:54 2010: ERR: Could not connect to any SQL database. Request is ignored. Backing off for 600 seconds Tue Jun 22 14:59:54 2010: DEBUG: AuthBy SQL result: IGNORE, User database access error Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: DEBUG: Handling with Radius::AuthSQL: Tue Jun 22 14:59:54 2010: ERR: Could not connect to SQL database with DBI-connect dbi:mysql:jamfsoftware:127.0.0.1, jamfsoftware, ***: Tue Jun 22 14:59:54 2010: ERR: Could not connect to any SQL database. Request is ignored. Backing off for 600 seconds Tue Jun 22 14:59:54 2010: DEBUG: AuthBy SQL result: IGNORE, User database access error ^C -- Adam Gerson Assistant Director of Technology Columbia Grammar and Prep School phone. 212-749-6200 ex. 321 fax. 212-428-6806 ager...@cgps.org http://www.cgps.org ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator