On Oct 3, 2004, at 7:16 PM, Alan DeKok wrote:
Philip Ershler <[EMAIL PROTECTED]> wrote:OK, so here is where I'm confused.Andreas Wolf put together a binary distribution of freeradius with a module for osxauth.it seems that rlm_unix is getting called rather than rlm_osxauth. I'm not smart enough to know how to fix this one.
There is no osxauth included with the server.
There is a patch, see bugs.freeradius.org, I forget which bug number.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[EMAIL PROTECTED]:rlm_osxauth> pwd
/usr/local/freeradius/sources/freeradius-snapshot-20040607/src/modules/ rlm_osxauth
[EMAIL PROTECTED]:rlm_osxauth> ls
CVS Makefile README eapolclient.log out rlm_osxauth.c
[EMAIL PROTECTED]:rlm_osxauth>
He made the statement that if one sets auth_type to system, the server would figure out which module to call.
But here's the debug output from
sudo radtest ershler myTestPassword 127.0.0.1:1812 123 testing123
I've been staring at code all day long, but I'm not sharp enough to figure out what's going on. I even tried putting standard unix /etc/passwd and /etc/group files on the system and spec'ing them in the conf file, but it can't see to authenticate against them either.
I'd appreciate any further suggestions, and I certainly appreciate all the work you have put into the freeRadius project.
Thanks, Phil
rad_recv: Access-Request packet from host 127.0.0.1:56784, id=216, length=59
User-Name = "ershler"
User-Password = "myTestPassword"
NAS-IP-Address = 255.255.255.255
NAS-Port = 123
Sun Oct 3 20:07:10 2004 : Debug: Processing the authorize section of radiusd.conf
Sun Oct 3 20:07:10 2004 : Debug: modcall: entering group authorize for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: calling preprocess (rlm_preprocess) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: returned from preprocess (rlm_preprocess) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall[authorize]: module "preprocess" returns ok for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: calling chap (rlm_chap) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: returned from chap (rlm_chap) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall[authorize]: module "chap" returns noop for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: calling mschap (rlm_mschap) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: returned from mschap (rlm_mschap) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall[authorize]: module "mschap" returns noop for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: calling suffix (rlm_realm) for request 1
Sun Oct 3 20:07:10 2004 : Debug: rlm_realm: No '@' in User-Name = "ershler", looking up realm NULL
Sun Oct 3 20:07:10 2004 : Debug: rlm_realm: No such realm "NULL"
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: returned from suffix (rlm_realm) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall[authorize]: module "suffix" returns noop for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: calling eap (rlm_eap) for request 1
Sun Oct 3 20:07:10 2004 : Debug: rlm_eap: No EAP-Message, not doing EAP
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: returned from eap (rlm_eap) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall[authorize]: module "eap" returns noop for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: calling files (rlm_files) for request 1
Sun Oct 3 20:07:10 2004 : Debug: users: Matched DEFAULT at 152
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authorize]: returned from files (rlm_files) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall[authorize]: module "files" returns ok for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall: group authorize returns ok for request 1
Sun Oct 3 20:07:10 2004 : Debug: rad_check_password: Found Auth-Type System
Sun Oct 3 20:07:10 2004 : Debug: auth: type "System"
Sun Oct 3 20:07:10 2004 : Debug: Processing the authenticate section of radiusd.conf
Sun Oct 3 20:07:10 2004 : Debug: modcall: entering group authenticate for request 1
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authenticate]: calling unix (rlm_unix) for request 1
Sun Oct 3 20:07:10 2004 : Auth: rlm_unix: [ershler]: invalid shell [/usr/local/bin/bash]
Sun Oct 3 20:07:10 2004 : Debug: modsingle[authenticate]: returned from unix (rlm_unix) for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall[authenticate]: module "unix" returns reject for request 1
Sun Oct 3 20:07:10 2004 : Debug: modcall: group authenticate returns reject for request 1
Sun Oct 3 20:07:10 2004 : Debug: auth: Failed to validate the user.
Sun Oct 3 20:07:10 2004 : Debug: Delaying request 1 for 1 seconds
Sun Oct 3 20:07:10 2004 : Debug: Finished request 1
Sun Oct 3 20:07:10 2004 : Debug: Going to the next request
Sun Oct 3 20:07:10 2004 : Debug: --- Walking the entire request list ---
Sun Oct 3 20:07:10 2004 : Debug: Waking up in 1 seconds...
Sun Oct 3 20:07:11 2004 : Debug: --- Walking the entire request list ---
Sun Oct 3 20:07:11 2004 : Debug: Waking up in 1 seconds...
Sun Oct 3 20:07:12 2004 : Debug: --- Walking the entire request list ---
Sending Access-Reject of id 216 to 127.0.0.1:56784
Sun Oct 3 20:07:12 2004 : Debug: Waking up in 4 seconds...
Sun Oct 3 20:07:16 2004 : Debug: --- Walking the entire request list ---
Sun Oct 3 20:07:16 2004 : Debug: Cleaning up request 1 ID 216 with timestamp 4160b04e
Sun Oct 3 20:07:16 2004 : Debug: Nothing to do. Sleeping until we see a request.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
