Version 0.7.1 I am using default radius.config file and i experience problem with denying access to group of users. Normally I use realm, hunt-group work fine port limit also work but ....
Wen i send request to server with realm the server responds OK for user in reject group but wen i send same request to same server without realm the request is getting reject as should be. realms file is setup to LOCAL for my realm. I include debug from auth. rad_recv: Access-Request packet from host 127.0.0.1:1025, id=2, length=57 User-Name = "marcin" User-Password = "f\326\031*\223\356\232\241\350\201\n\004\257g#\006" NAS-IP-Address = 255.255.255.255 NAS-Port-Id = "100" modcall: entering group authorize modcall[authorize]: module "preprocess" returns ok rlm_realm: Looking up realm NULL for User-Name = "marcin" rlm_realm: No such realm NULL modcall[authorize]: module "suffix" returns noop HASH: user marcin found in hashtable bucket 68338 HASH: matched user marcin in group users users: Matched DEFAULT at 71 modcall[authorize]: module "files" returns ok modcall: group authorize returns ok rad_check_password: Found Auth-Type Reject rad_check_password: Auth-Type = Reject, rejecting user auth: Failed to validate the user. Login incorrect: [marcin] (from client localhost port 0) Delaying request 0 for 1 seconds Finished request 0 Going to the next request --- Walking the entire request list --- Waking up in 1 seconds... --- Walking the entire request list --- Waking up in 1 seconds... --- Walking the entire request list --- Sending Access-Reject of id 2 to 127.0.0.1:1025 rad_recv: Access-Request packet from host 127.0.0.1:1025, id=6, length=70 User-Name = "[EMAIL PROTECTED]" User-Password = "S\377s.k\034\310\270\006\207\003V\027\335\335\370" NAS-IP-Address = 255.255.255.255 NAS-Port-Id = "100" modcall: entering group authorize modcall[authorize]: module "preprocess" returns ok rlm_realm: Looking up realm hostplus.net for User-Name = "[EMAIL PROTECTED]" rlm_realm: Found realm hostplus.net rlm_realm: Adding Stripped-User-Name = "marcin" rlm_realm: Proxying request from user marcin to realm hostplus.net rlm_realm: Adding Realm = "hostplus.net" rlm_realm: Authentication realm is LOCAL. rlm_realm: auth_port is not set. proxy cancelled modcall[authorize]: module "suffix" returns noop users: Matched DEFAULT at 152 modcall[authorize]: module "files" returns ok modcall: group authorize returns ok rad_check_password: Found Auth-Type System auth: type "System" modcall: entering group authenticate HASH: user marcin found in hashtable bucket 68338 modcall[authenticate]: module "unix" returns ok modcall: group authenticate returns ok Login OK: [[EMAIL PROTECTED]] (from client localhost port 0) Sending Access-Accept of id 6 to 127.0.0.1:1025 -- Best Regards: Marcin Groszek Http://www.hostplus.net Where we offer: Server Co-location, Web Site Hosting and Internet Access. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html