I have got FR 0.8 & MySQL up and running on
LINUX 8, but I cannot authenticate. Where am
I going wrong?
Mike Paneth
I issue the following test message
[root@Psyche root]# radtest root emptar1
localhost 0 testing123
and get the following response
Sending Access-Request of id 197 to
127.0.0.1:1812
User-Name = "root"
User-Password =
"\303\343W\035W\376\372\016\277\315\311x\220\341\255-"
NAS-IP-Address = Psyche
NAS-Port = 0
rad_recv: Access-Accept packet from host
127.0.0.1:1812, id=197, length=20
[root@Psyche root]# radtest bob bobbob
localhost 0 testing123
Sending Access-Request of id 201 to
127.0.0.1:1812
User-Name = "bob"
User-Password =
"\272-\207W\306\206\372\316\200\214\202q\002WeQ"
NAS-IP-Address = Psyche
NAS-Port = 0
rad_recv: Access-Reject packet from host
127.0.0.1:1812, id=201, length=20
The user bob has been set up on MySQL
mysql> select * from radcheck;
+----+----------+-----------+--------+------+
| id | UserName | Attribute | Value | op |
+----+----------+-----------+--------+------+
| 1 | bob | password | bobbob | NULL |
+----+----------+-----------+--------+------+
1 row in set (0.00 sec)
mysql> select * from radacct;
Empty set (0.00 sec)
mysql> select * from usergroup;
+----+----------+-----------+
| id | UserName | GroupName |
+----+----------+-----------+
| 1 | bob | dynamic |
+----+----------+-----------+
1 row in set (0.00 sec)
Looking at the FR dialog I get the following.
rad_recv: Access-Request packet from host
127.0.0.1:32769, id=201, length=55
User-Name = "bob"
User-Password = "bobbob"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
modcall: entering group authorize
modcall[authorize]: module "preprocess"
returns ok
rlm_realm: No '@' in User-Name = "bob",
looking up realm NULL
rlm_realm: No such realm NULL
modcall[authorize]: module "suffix" returns
noop
radius_xlat: 'bob'
rlm_sql (sql): sql_set_user escaped user -->
'bob'
radius_xlat: 'SELECT
id,UserName,Attribute,Value,op FROM radcheck
WHERE Username = 'bob' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 0
rlm_sql: The 'op' field for attribute
'password = bobbob' is NULL, or non-existent.
rlm_sql: You MUST FIX THIS if you want the
configuration to behave as you expect.
radius_xlat: 'SELECT
radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op
FROM radgroupcheck,usergroup WHERE
usergroup.Username = 'bob' AND
usergroup.GroupName = radgroupcheck.GroupName
ORDER BY radgroupcheck.id'
radius_xlat: 'SELECT
id,UserName,Attribute,Value,op FROM radreply
WHERE Username = 'bob' ORDER BY id'
radius_xlat: 'SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op
FROM radgroupreply,usergroup WHERE
usergroup.Username = 'bob' AND
usergroup.GroupName = radgroupreply.GroupName
ORDER BY radgroupreply.id'
rlm_sql (sql): Released sql socket id: 0
modcall[authorize]: module "sql" returns ok
users: Matched DEFAULT at 152
modcall[authorize]: module "files" returns ok
modcall: group authorize returns ok
rad_check_password: Found Auth-Type System
auth: type "System"
modcall: entering group authenticate
modcall[authenticate]: module "unix"
returns notfound
modcall: group authenticate returns notfound
auth: Failed to validate the user.
Delaying request 4 for 1 seconds
Finished request 4
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
