Hi Alan, First off, I'd like to apologize for my outburst, it's simply getting to be a little too frustrating to me. I've used FreeRadius in the past in conjunction with GnuGK and rlm_sql, which was working flawlessly for over 3 years time.
Now, I'm basically re-learning everything, as the world of OpenSER + FreeRadius is a little new to me, and sometimes frustrates me. The amount of documentation in the configuration files is great, but the lack of updated examples is somewhat annoying. Even Asterisk, which is one of the most undocumented environments in the world, has more configuration examples available. In any case, lets go back to what we were discussing. If I understand you correctly, on the FreeRadius side, I only need to enable digest based authentication and authorization, define the user in the users file - and that should be working just fine? I will follow this and will retry. z2l ----- Original Message ----- From: "Alan DeKok" <[EMAIL PROTECTED]> To: [EMAIL PROTECTED], "FreeRadius users mailing list" <freeradius-users@lists.freeradius.org> Sent: Wednesday, July 18, 2007 9:12:07 AM (GMT+0200) Asia/Jerusalem Subject: Re: RLM_PERL Integration Issue FreeRadius-ML wrote: > I can understand now that authorize is working nicely, but the > Authentication section is wrong. > I know there's alot of shit in radiusd.conf, however, it shouldn't prevent > from the basics to work > correctly, no? The default configuration works. The "shit" that's there exists precisely for people like you, who try to do 3 things at the same time, without understanding what they're doing. All of the hard work is done by the developers, who understand the server. They then write things called "examples" and "documentation" that instruct you how to get things to work. From the default install, do: 1) uncomment "digest" in authorize and authenticate 2) At the TOP of the "users" file, put: bob Cleartext-Password := "bob", User-Password := "bob" 3) do SIP with that username and password. If it works, say so, and say how wonderful FreeRADIUS is, and how easy it was to get digest authentication working. As for your debug log: > users: Matched entry DEFAULT at line 153 > users: Matched entry DEFAULT at line 236 > modcall[authorize]: module "files" returns ok for request 18 Did you look at those lines in the "users" file? Perhaps, maybe, it's possible that one of them has an "Auth-Type := Reject"? I note that the default "users" file is LESS than 236 lines long. So, the only conclusion is that *you* edited something which broke authentication. Then, you posted a complaint here about how much "shit" there is in the server. When it's clear you didn't even bother to read or understand the debug output. Your frustration with the server is due in large part due to the work you put in to break the configuration. If, instead, you put that much effort into *understanding* it, your progress would have been much better. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html