I am trying to set up both FreeRadius server and client to run on RH Linux 8.0 (two machines) with MySQL as the backend DB. I have some questions I hope someone can answer. It's a big list but I think it is better than to post a lot of small questions and create too much mail traffic. If you know the answer to a particular question, you can just reply with that portion.
Any help is greatly appreciated.
1. The Linux box itself will handle users login requests through Web
interface,
the Linux box itself is acting as a NAS.
What kind of NAS type should I use? Can I use 'other' or do I have to
create my own dictionary?
What will happen if I do not specify a NAS type in the clients.conf file?
I assume I can send access requests to the server with 'radclient' as the
client side interface, right?
( I want to avoid digging down to the protocol level to write my own
client API. )
2. Is the user's password stored (encrypted) directly under etc/raddb/users
or is it stored in the DB?
The DB schema src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql has
the 'radacct' table,
but there does not seem to be a column for password.
There are some scripts under the scripts subdirectory in the source code,
but it is not clear how
they can be used since there is no README file there. Questions:
3. check-radiusd-config - It indicates that the server is running properly
and the startup.log seems to be fine.
But, contrary to what FAQ 4.14 says in the
message, I do not see any message of
"Module: Loaded SQL", how do I know if it has
loaded rlm_sql_mysql or not?
sql.conf has the following entry ( comes with the
source ):
sql {
driver = "rlm_sql_mysql"
server = "localhost"
login = "root"
...
}
startup.log has the following entries ( simplified ):
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy.conf
Config: including file: /usr/local/etc/raddb/clients.conf
Config: including file: /usr/local/etc/raddb/snmp.conf
Config: including file: /usr/local/etc/raddb/sql.conf
....
read_config_files: reading dictionary
read_config_files: reading naslist
read_config_files: reading clients
read_config_files: reading realms
radiusd: entering modules setup
Module: Library search path is /usr/local/lib
Module: Loaded expr
Module: Instantiated expr (expr)
Module: Loaded PAP
Module: Instantiated pap (pap)
Module: Loaded CHAP
Module: Instantiated chap (chap)
Module: Loaded MS-CHAP
Module: Instantiated mschap (mschap)
Module: Loaded System
Module: Instantiated unix (unix)
Module: Loaded preprocess
Module: Loaded preprocess
Module: Instantiated preprocess (preprocess)
Module: Loaded realm
Module: Instantiated realm (suffix)
Module: Loaded files
Module: Instantiated files (files)
Module: Loaded Acct-Unique-Session-Id
Module: Instantiated acct_unique (acct_unique)
Module: Loaded detail
Module: Instantiated detail (detail)
Module: Loaded radutmp
Module: Instantiated radutmp (radutmp)
Ready to process requests.
4. create-users.pl - There is no README.testing under doc directory as
indicated in the script. It creates
passwd, passwd.nocrypt, shadow, radius.test and
radius.user.
How are these file being used?
<<attachment: winmail.dat>>
