Thanks Alan, I have discovered that if a user has /bin/false specified as a shell in the passwd file, they can't login with freeradius. All of our normal users do have /bin/false set.
If I change any user to /bib/bash or /bin/sh etc. then freeradius will authenticate them. Yes /bin/false exists. login will only work if the user has a valid shell, of course. Um, what next? On the matter of += System vs := System. The sample users files says to use += System. that would need fixing. Thanks for clarifying it. Thanks Mervyn [EMAIL PROTECTED] wrote: > Mervyn Jack <[EMAIL PROTECTED]> wrote: > > The users file is this simple.. > > * while I'm at it, is it supposed to be Auth-Type := System or Auth-Type > > += System, the docs differ* > > Auth-Type := System > > > The only thing on this box that is might affect the operation, is the > > passwd, shadow and group files have been copied over from an older > > debian linux box. > > Then you should verify that they work via 'login', etc. > -- Mervyn Jack, Technical Director, Country Netlink Pty Ltd. PO Box 529, Cobram, Vic. Australia, 3644 Ph +61 3 5871 1000 Fax +61 3 5871 1874 Mobile 0409 960 520 mailto:[EMAIL PROTECTED] http://www.cnl.com.au ICQ 354419 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html