Could not find Pool-Name attribute.
Dear Freeradius-user, I have faceing some problemCould not find Pool-Name attribute. have any solution. Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /etc/raddb/proxy.conf Config: including file: /etc/raddb/clients.conf Config: including file: /etc/raddb/snmp.conf Config: including file: /etc/raddb/eap.conf Config: including file: /etc/raddb/sql.conf main: prefix = /usr main: localstatedir = /var main: logdir = /var/log/radius main: libdir = /usr/lib/freeradius main: radacctdir = /var/log/radius/radacct main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = /var/log/radius/radius.log main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = /var/run/radiusd/radiusd.pid main: user = radiusd main: group = radiusd main: usercollide = no main: lower_user = no main: lower_pass = no main: nospace_user = no main: nospace_pass = no main: checkrad = /usr/sbin/checkrad main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = yes proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib/freeradius Module: Loaded exec exec: wait = yes exec: program = (null) exec: input_pairs = request exec: output_pairs = (null) exec: packet_type = (null) rlm_exec: Wait=yes but no output defined. Did you mean output=none? Module: Instantiated exec (exec) Module: Loaded expr Module: Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme = crypt Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = no mschap: require_strong = no mschap: with_ntdomain_hack = no mschap: passwd = (null) mschap: authtype = MS-CHAP mschap: ntlm_auth = (null) Module: Instantiated mschap (mschap) Module: Loaded System unix: cache = no unix: passwd = (null) unix: shadow = (null) unix: group = (null) unix: radwtmp = /var/log/radius/radwtmp unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = ttls eap: timer_expire = 60 eap: ignore_unknown_eap_types = no eap: cisco_accounting_username_bug = no rlm_eap: Loaded and initialized type md5 rlm_eap: Loaded and initialized type leap gtc: challenge = Password: gtc: auth_type = System rlm_eap: Loaded and initialized type gtc rlm_eap: Unable to load EAP-Type/ttls, as EAP-Type/TLS is required first. radiusd.conf[9]: eap: Module instantiation failed. hotradius:~ # radiusd -X Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /etc/raddb/proxy.conf Config: including file: /etc/raddb/clients.conf Config: including file: /etc/raddb/snmp.conf Config: including file: /etc/raddb/eap.conf Config: including file: /etc/raddb/sql.conf main: prefix = /usr main: localstatedir = /var main: logdir = /var/log/radius main: libdir = /usr/lib/freeradius main: radacctdir = /var/log/radius/radacct main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = /var/log/radius/radius.log main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = /var/run/radiusd/radiusd.pid main: user = radiusd main: group = radiusd main: usercollide = no main: lower_user = no main: lower_pass = no main: nospace_user = no main: nospace_pass = no main: checkrad = /usr/sbin/checkrad main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = yes proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib/freeradius Module: Loaded exec exec: wait = yes exec: program = (null) exec: input_pairs = request exec: output_pairs = (null) exec: packet_type = (null
Re: Could not find Pool-Name attribute.
Dear Freeradius-user, I have faceing some problemCould not find Pool-Name attribute. have any solution. ... users: Matched entry amritap at line 100 ... How does your users file entry look like? Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Could not find Pool-Name attribute.
# # If the user logs in as 'username.shell', then authenticate them # against the system database, give them shell access, and stop processing # the rest of the file. # #DEFAULTSuffix == .shell, Auth-Type := System # Service-Type = Login-User, # Login-Service = Telnet, # Login-IP-Host = your.shell.machine # # The rest of this file contains the several DEFAULT entries. # DEFAULT entries match with all login names. # Note that DEFAULT entries can also Fall-Through (see first entry). # A name-value pair from a DEFAULT entry will _NEVER_ override # an already existing name-value pair. # # # First setup all accounts to be checked against the UNIX /etc/passwd. # (Unless a password was already given earlier in this file). # #DEFAULTAuth-Type = System # Fall-Through = 1 # # Set up different IP address pools for the terminal servers. # Note that the + behind the IP address means that this is the base # IP address. The Port-Id (S0, S1 etc) will be added to it. # #DEFAULTService-Type == Framed-User, Huntgroup-Name == alphen # Framed-IP-Address = 192.168.1.32+, # Fall-Through = Yes #DEFAULTService-Type == Framed-User, Huntgroup-Name == delft # Framed-IP-Address = 192.168.2.32+, # Fall-Through = Yes # # Defaults for all framed connections. # DEFAULT Service-Type == Framed-User Framed-IP-Address = 255.255.255.254, Framed-MTU = 576, Service-Type = Framed-User, Fall-Through = Yes # # Default for PPP: dynamic IP address, PPP mode, VJ-compression. # NOTE: we do not use Hint = PPP, since PPP might also be auto-detected # by the terminal server in which case there may not be a P suffix. # The terminal server sends Framed-Protocol = PPP for auto PPP. # DEFAULT Framed-Protocol == PPP Framed-Protocol = PPP, Framed-Compression = Van-Jacobson-TCP-IP # # Default for CSLIP: dynamic IP address, SLIP mode, VJ-compression. # DEFAULT Hint == CSLIP Framed-Protocol = SLIP, Framed-Compression = Van-Jacobson-TCP-IP # # Default for SLIP: dynamic IP address, SLIP mode. # DEFAULT Hint == SLIP Framed-Protocol = SLIP # # Last default: rlogin to our main server. # #DEFAULT # Service-Type = Login-User, # Login-Service = Rlogin, # Login-IP-Host = shellbox.ispdomain.com # # # # Last default: shell on the local terminal server. # # # DEFAULT # Service-Type = Shell-User # On no match, the user is denied access. On 9/3/09, Ivan Kalik t...@kalik.net wrote: Dear Freeradius-user, I have faceing some problemCould not find Pool-Name attribute. have any solution. ... users: Matched entry amritap at line 100 ... How does your users file entry look like? Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: [main_pool] Could not find Pool-Name attribute
What I want is that my wlan clients gets ip's from different ippools depending on which user/group is logging in! So I have no chance to realize that with freeradius? That would be sad. Robbe tnt-4 wrote: You have not enabled the module which is supposed to provide Pool-Name from the configuration in inner-tunnel. But forget that. AP is going to use DHCP to assign IP address and will ignore Framed-IP-Address. Ivan Kalik Kalik Informatika ISP Dana 14/11/2008, robbe [EMAIL PROTECTED] piše: Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20535092.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: [main_pool] Could not find Pool-Name attribute
This is absolutely nothing to do with freeradius. There is no point of asking about your AP options on this list. Find it in your AP documentation. Does it support Framed-IP-Address attribute (youcan create pools on freeradius then)? Is there some VSA (or Framed-Pool) that you can return to select the (local) pool? Ivan Kalik Kalik Informatika ISP Dana 17/11/2008, robbe [EMAIL PROTECTED] piše: What I want is that my wlan clients gets ip's from different ippools depending on which user/group is logging in! So I have no chance to realize that with freeradius? That would be sad. Robbe tnt-4 wrote: You have not enabled the module which is supposed to provide Pool-Name from the configuration in inner-tunnel. But forget that. AP is going to use DHCP to assign IP address and will ignore Framed-IP-Address. Ivan Kalik Kalik Informatika ISP Dana 14/11/2008, robbe [EMAIL PROTECTED] piĹĄe: Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20535092.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[main_pool] Could not find Pool-Name attribute
Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: [main_pool] Could not find Pool-Name attribute
You have not enabled the module which is supposed to provide Pool-Name from the configuration in inner-tunnel. But forget that. AP is going to use DHCP to assign IP address and will ignore Framed-IP-Address. Ivan Kalik Kalik Informatika ISP Dana 14/11/2008, robbe [EMAIL PROTECTED] piše: Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: rlm_ippool: Could not find Pool-Name attribute
How about you post the rest of the debug. Most likely you need SQL-Group and not Group. And delete those first two entries in users file as you certainly don't need them. Ivan Kalik Kalik Informatika ISP Dana 19/10/2007, hyunok [EMAIL PROTECTED] piše: Hello, I have a freeradius 1.1.7 server setup with ppp and pptp using a mysql DB for user authentication. radiusd -xx . rlm_ippool: Could not find Pool-Name attribute ... ... modcall[accounting]: module radutmp returns ok for request 1 rlm_ippool: This is not an Accounting-Stop. Return NOOP. modcall[accounting]: module dialup returns noop for request 1 rlm_ippool: This is not an Accounting-Stop. Return NOOP. modcall[accounting]: module sp_pool returns noop for request 1 - radiusd.conf ippool dialup { range-start = 172.16.0.1 range-stop = 172.16.0.125 netmask = 255.255.255.0 cache-size = 800 session-db = ${raddbdir}/db.ippool ip-index = ${raddbdir}/db.ipindex override = no maximum-timeout = 0 } ippool sp_pool { range-start = 172.16.1.1 range-stop = 172.16.1.125 netmask = 255.255.255.0 cache-size = 800 session-db = ${raddbdir}/db.ippoolsp ip-index = ${raddbdir}/db.ipindexsp override = no maximum-timeout = 0 } post-auth { # main_pool dialup sp_pool # sqlippool # sql # ldap } --- accounting { detail # daily radutmp # sradutmp # main_pool dialup sp_pool # sqlippool sql } users file --- DEFAULT Pool-Name := dialup Fall-Through = Yes DEFAULT Pool-Name := sp_pool Fall-Through = Yes DEFAULT Group == dialup, Pool-Name := dialup DEFAULT Group == sp_pool, Pool-Name := sp_pool - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rlm_ippool: Could not find Pool-Name attribute
Hello, I have a freeradius 1.1.7 server setup with ppp and pptp using a mysql DB for user authentication. radiusd -xx . rlm_ippool: Could not find Pool-Name attribute ... ... modcall[accounting]: module radutmp returns ok for request 1 rlm_ippool: This is not an Accounting-Stop. Return NOOP. modcall[accounting]: module dialup returns noop for request 1 rlm_ippool: This is not an Accounting-Stop. Return NOOP. modcall[accounting]: module sp_pool returns noop for request 1 - radiusd.conf ippool dialup { range-start = 172.16.0.1 range-stop = 172.16.0.125 netmask = 255.255.255.0 cache-size = 800 session-db = ${raddbdir}/db.ippool ip-index = ${raddbdir}/db.ipindex override = no maximum-timeout = 0 } ippool sp_pool { range-start = 172.16.1.1 range-stop = 172.16.1.125 netmask = 255.255.255.0 cache-size = 800 session-db = ${raddbdir}/db.ippoolsp ip-index = ${raddbdir}/db.ipindexsp override = no maximum-timeout = 0 } post-auth { # main_pool dialup sp_pool # sqlippool # sql # ldap } --- accounting { detail # daily radutmp # sradutmp # main_pool dialup sp_pool # sqlippool sql } users file --- DEFAULT Pool-Name := dialup Fall-Through = Yes DEFAULT Pool-Name := sp_pool Fall-Through = Yes DEFAULT Group == dialup, Pool-Name := dialup DEFAULT Group == sp_pool, Pool-Name := sp_pool - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
On Fri, 2004-06-04 at 19:13, Alan DeKok wrote: Zdenek Pizl [EMAIL PROTECTED] wrote: I am trying to connect our SMC2804WBR wireless routes to the freeradius 1.0.0pre1 (RedHat 9 Linux) and to get connected from WinXP station throuhg 802.1x EAP TLS connection. That will work. Hallo Alan, that was quite quick response. I am glad it will work :) anyway it still does not work, so I cannot be satisfied with it. DEFAULT Pool-Name := systinetpool Fall-Through = yes That won't. You can't assign IP addresses for systems which authenticate via EAP. OK, why radius server shows that error message and how can the station (supplicant?) get an IP address for its work in this usecase? Oh, does exist a howto about freeradius configuration and 802.1x wireless communication? I dont mind the generally known articles, because it do not describe CONFIGURATION of freeradius in that case. Thanks a lot, z.p. Alan DeKok. -- Zdenek Pizl Systinet Corporation Vinohradska 190 130 00 Praha 3 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
Zdenek Pizl [EMAIL PROTECTED] wrote: OK, why radius server shows that error message Because you told the server to use the ippool module, but didn't tell it *which* ippool module to use. Since the ippool module doesn't do EAP, it doesn't know that assigning an IP will be pointless. and how can the station (supplicant?) get an IP address for its work in this usecase? DHCP, or a static IP. You have NO other options. Oh, does exist a howto about freeradius configuration and 802.1x wireless communication? I dont mind the generally known articles, because it do not describe CONFIGURATION of freeradius in that case. They describe how to configure the server. Some even give sample configurations. They don't describe how to configure the server to do what *you* want, because every site is different. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
On Sat, 2004-06-05 at 17:26, Alan DeKok wrote: Zdenek Pizl [EMAIL PROTECTED] wrote: OK, why radius server shows that error message Because you told the server to use the ippool module, but didn't tell it *which* ippool module to use. Since the ippool module doesn't do EAP, it doesn't know that assigning an IP will be pointless. ok, i understand it. thx. and how can the station (supplicant?) get an IP address for its work in this usecase? DHCP, or a static IP. You have NO other options. just to clarify my mind - The SMC Barricade does DHCP server (i think inside is some type of BSD OS :) but the supplicant does not get an address. There is something misconfigured, because RADIUS is printing Login OK, but station shows message Cannot log in the network ... I can't figure where the error is. Thank you anyway, Alan, for yout help. z.p. Oh, does exist a howto about freeradius configuration and 802.1x wireless communication? I dont mind the generally known articles, because it do not describe CONFIGURATION of freeradius in that case. They describe how to configure the server. Some even give sample configurations. They don't describe how to configure the server to do what *you* want, because every site is different. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Zdenek Pizl Systinet Corporation Vinohradska 190 130 00 Praha 3 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
Hi all, I am trying to connect our SMC2804WBR wireless routes to the freeradius 1.0.0pre1 (RedHat 9 Linux) and to get connected from WinXP station throuhg 802.1x EAP TLS connection. The result of my tries is in the subject ... I've defined the in the config files following: file users: --- DEFAULT Pool-Name := systinetpool Fall-Through = yes file radiusd.conf: -- ippool systinetpool { range-start = 192.168.3.1 range-stop = 192.168.3.254 netmask=255.255.255.0 cache-size = 800 session-db = ${raddbdir}/db.ippool ip-index = ${raddbdir}/db.ipindex override = yes maximum-timeout = 60 } post-auth { systinetpool } file clients.conf: -- client 10.0.0.202/32 { secret = test shortname = SMC nastype = other } The result is bellow, shortly - it sent Access-Accept to 10.0.0.202 (the SMC wireless router/AP) but did not find Pool-Name attribute. Where and how can i define it instead of in users file ? What did I configure wrong? Processing the authenticate section of radiusd.conf modcall: entering group authenticate for request 5 rlm_eap: Request found, released from the list rlm_eap: EAP/tls rlm_eap: processing type tls rlm_eap_tls: Authenticate rlm_eap_tls: processing TLS rlm_eap_tls: Received EAP-TLS ACK message eaptls_verify returned 3 eaptls_process returned 3 rlm_eap: Freeing handler modcall[authenticate]: module eap returns ok for request 5 modcall: group authenticate returns ok for request 5 Login OK: [Zdenek Pizl/no User-Password attribute] (from client SMC port 29) Processing the post-auth section of radiusd.conf modcall: entering group post-auth for request 5 rlm_ippool: Could not find Pool-Name attribute. modcall[post-auth]: module systinetpool returns noop for request 5 modcall: group post-auth returns noop for request 5 Sending Access-Accept of id 47 to 10.0.0.202:1066 MS-MPPE-Recv-Key = 0x8c0fd0aef8f64035c63eed70234116753d74356dcd8cadc084c21bfb4ccac2f7 MS-MPPE-Send-Key = 0x6cf0a5279334ce2b09ee9e5f1380103297f6691dca1c46c1857715e3237c960c EAP-Message = 0x032f0004 Message-Authenticator = 0x User-Name = Zdenek Pizl Finished request 5 -- Zdenek Pizl Systinet Corporation Vinohradska 190 130 00 Praha 3 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rlm_ippool: could not find Pool-Name attribute
Hello, I find this message always, even when its sending an accept message to the NAS Ive found several help messages, but they are oriented to files, not to sql How do i fix it in mysql HELP Rogelio Alvarado Anchisi Ing. de Sistemas Galaxy Communications Corp. Tel. +507-2633021 Cel. +507-6744093