I am not sure what I have messed up. I am trying to setup the radius
server and got to the radtest step on page 33 and it is failing. The
ntlm_auth test passed. I upgraded to 3.0.1 before I started trying to
setup the Radius.
I ran the debug mode and got this output that says there is no such
virtual server "packetfence" although it looks like the packetfence
server is in thre radiusd.conf file.
... adding new socket proxy address * port 59587
Listening on authentication address * port 1812 as server
packetfence
Listening on accounting address * port 1813 as server
packetfence
Listening on command file /var/run/radiusd/radiusd.sock
Listening on authentication address 127.0.0.1 port 18120 as
server inner-tunnel
Listening on proxy address * port 1814
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 51373,
id=100, length=58
User-Name = "dd9999"
User-Password = "Abcd1234"
NAS-IP-Address = 127.0.0.1
NAS-Port = 12
server packetfence {
No such virtual server "packetfence"
} # server packetfence
Using Post-Auth-Type Reject
No such virtual server "packetfence"
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 100 to 127.0.0.1 port 51373
Waking up in 4.9 seconds.
Cleaning up request 0 ID 100 with timestamp +145
Ready to process requests.
No such virtual server "packetfence"
This is the radiusd.conf
prefix = /usr
exec_prefix = /usr
sysconfdir = /etc
localstatedir = /var
sbindir = /usr/sbin
logdir = ${localstatedir}/log/radius
raddbdir = ${sysconfdir}/raddb
radacctdir = ${logdir}/radacct
name = radiusd
confdir = ${raddbdir}
run_dir = ${localstatedir}/run/${name}
db_dir = ${raddbdir}
libdir = /usr/lib64/freeradius
pidfile = ${run_dir}/${name}.pid
user = radiusd
group = radiusd
max_request_time = 30
cleanup_delay = 5
max_requests = 1024
listen {
type = auth
ipaddr = *
port = 0
virtual_server = packetfence
}
listen {
ipaddr = *
port = 0
type = acct
virtual_server = packetfence
}
hostname_lookups = no
allow_core_dumps = no
regular_expressions = yes
extended_expressions = yes
log {
destination = files
file = ${logdir}/radius.log
syslog_facility = daemon
stripped_names = no
auth = no
auth_badpass = no
auth_goodpass = no
}
checkrad = ${sbindir}/checkrad
security {
max_attributes = 200
reject_delay = 1
status_server = yes
}
proxy_requests = yes
$INCLUDE proxy.conf
$INCLUDE clients.conf
thread pool {
start_servers = 5
max_servers = 32
min_spare_servers = 3
max_spare_servers = 10
max_requests_per_server = 0
}
modules {
$INCLUDE ${confdir}/modules/
$INCLUDE eap.conf
}
instantiate {
exec
expr
expiration
logintime
}
$INCLUDE policy.conf
$INCLUDE sites-enabled/
[root@sksd47 raddb]#
Thank You,
Kerry Melcher
Supervisor of Network Services
South Kitsap School District
(360)874-7031
------------------------------------------------------------------------------
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, security
threats, fraudulent activity, and more. Splunk takes this data and makes
sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-d2dcopy2
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
