So sorry to display my ignorance, but I am having difficulty diagnosing why we cannot authenticate with RADIUS. I wonder if these clues might ring a bell with anyone with more experience. Thank you very much in advance for any clues.
We are using Redhat Enterprise Linux 6.6, and the PAM module, pam_radius, version 1.4.0 from FreeRADIUS.org (http://freeradius.org/pam_radius_auth/). It was compiled by itself, apart from the FreeRADIUS server. Our PAM configuration (/etc/pam.d/sshd): #%PAM-1.0 auth required pam_sepermit.so auth sufficient /usr/local/lib64/security/pam_radius_auth.so debug client_id=sshsv auth include password-auth Our pam_radius module configuration (/etc/raddb/server): xxx.xxx.xxx.150:1645 $3cr3t 3 xxx.xxx.xxx.151:1645 $3cr3t 3 Yet, invariably we receive the following from /var/log/secure: Feb 11 13:34:41 client-host sshd[16967]: Invalid user testuser from xxx.xxx.xxx.7 Feb 11 13:34:41 client-host sshd[16970]: input_userauth_request: invalid user testuser Feb 11 13:34:50 client-host sshd[16967]: pam_radius_auth: Got user name testuser Feb 11 13:34:50 client-host sshd[16967]: pam_radius_auth: ignore last_pass, force_prompt set Feb 11 13:34:50 client-host sshd[16967]: pam_radius_auth: Sending RADIUS request code 1 Feb 11 13:34:53 client-host sshd[16967]: pam_radius_auth: RADIUS server xxx.xxx.xxx.150 failed to respond Feb 11 13:34:56 client-host sshd[16967]: pam_radius_auth: RADIUS server xxx.xxx.xxx.151 failed to respond Feb 11 13:34:56 client-host sshd[16967]: pam_radius_auth: All RADIUS servers failed to respond. Feb 11 13:34:56 client-host sshd[16967]: pam_radius_auth: authentication failed Feb 11 13:34:56 client-host sshd[16967]: pam_unix(sshd:auth): check pass; user unknown Feb 11 13:34:56 client-host sshd[16967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser=rhost=remote-host Have we missed something obvious?
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator