Could not find Pool-Name attribute.
Dear Freeradius-user, I have faceing some problemCould not find Pool-Name attribute. have any solution. Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /etc/raddb/proxy.conf Config: including file: /etc/raddb/clients.conf Config: including file: /etc/raddb/snmp.conf Config: including file: /etc/raddb/eap.conf Config: including file: /etc/raddb/sql.conf main: prefix = /usr main: localstatedir = /var main: logdir = /var/log/radius main: libdir = /usr/lib/freeradius main: radacctdir = /var/log/radius/radacct main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = /var/log/radius/radius.log main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = /var/run/radiusd/radiusd.pid main: user = radiusd main: group = radiusd main: usercollide = no main: lower_user = no main: lower_pass = no main: nospace_user = no main: nospace_pass = no main: checkrad = /usr/sbin/checkrad main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = yes proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib/freeradius Module: Loaded exec exec: wait = yes exec: program = (null) exec: input_pairs = request exec: output_pairs = (null) exec: packet_type = (null) rlm_exec: Wait=yes but no output defined. Did you mean output=none? Module: Instantiated exec (exec) Module: Loaded expr Module: Instantiated expr (expr) Module: Loaded PAP pap: encryption_scheme = crypt Module: Instantiated pap (pap) Module: Loaded CHAP Module: Instantiated chap (chap) Module: Loaded MS-CHAP mschap: use_mppe = yes mschap: require_encryption = no mschap: require_strong = no mschap: with_ntdomain_hack = no mschap: passwd = (null) mschap: authtype = MS-CHAP mschap: ntlm_auth = (null) Module: Instantiated mschap (mschap) Module: Loaded System unix: cache = no unix: passwd = (null) unix: shadow = (null) unix: group = (null) unix: radwtmp = /var/log/radius/radwtmp unix: usegroup = no unix: cache_reload = 600 Module: Instantiated unix (unix) Module: Loaded eap eap: default_eap_type = ttls eap: timer_expire = 60 eap: ignore_unknown_eap_types = no eap: cisco_accounting_username_bug = no rlm_eap: Loaded and initialized type md5 rlm_eap: Loaded and initialized type leap gtc: challenge = Password: gtc: auth_type = System rlm_eap: Loaded and initialized type gtc rlm_eap: Unable to load EAP-Type/ttls, as EAP-Type/TLS is required first. radiusd.conf[9]: eap: Module instantiation failed. hotradius:~ # radiusd -X Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /etc/raddb/proxy.conf Config: including file: /etc/raddb/clients.conf Config: including file: /etc/raddb/snmp.conf Config: including file: /etc/raddb/eap.conf Config: including file: /etc/raddb/sql.conf main: prefix = /usr main: localstatedir = /var main: logdir = /var/log/radius main: libdir = /usr/lib/freeradius main: radacctdir = /var/log/radius/radacct main: hostname_lookups = no main: max_request_time = 30 main: cleanup_delay = 5 main: max_requests = 1024 main: delete_blocked_requests = 0 main: port = 0 main: allow_core_dumps = no main: log_stripped_names = no main: log_file = /var/log/radius/radius.log main: log_auth = no main: log_auth_badpass = no main: log_auth_goodpass = no main: pidfile = /var/run/radiusd/radiusd.pid main: user = radiusd main: group = radiusd main: usercollide = no main: lower_user = no main: lower_pass = no main: nospace_user = no main: nospace_pass = no main: checkrad = /usr/sbin/checkrad main: proxy_requests = yes proxy: retry_delay = 5 proxy: retry_count = 3 proxy: synchronous = no proxy: default_fallback = yes proxy: dead_time = 120 proxy: post_proxy_authorize = yes proxy: wake_all_if_all_dead = no security: max_attributes = 200 security: reject_delay = 1 security: status_server = no main: debug_level = 0 read_config_files: reading dictionary read_config_files: reading naslist read_config_files: reading clients read_config_files: reading realms radiusd: entering modules setup Module: Library search path is /usr/lib/freeradius Module: Loaded exec exec: wait = yes exec: program = (null) exec: input_pairs = request exec: output_pairs = (null) exec: packet_type = (null
Re: Could not find Pool-Name attribute.
Dear Freeradius-user, I have faceing some problemCould not find Pool-Name attribute. have any solution. ... users: Matched entry amritap at line 100 ... How does your users file entry look like? Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Could not find Pool-Name attribute.
# # If the user logs in as 'username.shell', then authenticate them # against the system database, give them shell access, and stop processing # the rest of the file. # #DEFAULTSuffix == .shell, Auth-Type := System # Service-Type = Login-User, # Login-Service = Telnet, # Login-IP-Host = your.shell.machine # # The rest of this file contains the several DEFAULT entries. # DEFAULT entries match with all login names. # Note that DEFAULT entries can also Fall-Through (see first entry). # A name-value pair from a DEFAULT entry will _NEVER_ override # an already existing name-value pair. # # # First setup all accounts to be checked against the UNIX /etc/passwd. # (Unless a password was already given earlier in this file). # #DEFAULTAuth-Type = System # Fall-Through = 1 # # Set up different IP address pools for the terminal servers. # Note that the + behind the IP address means that this is the base # IP address. The Port-Id (S0, S1 etc) will be added to it. # #DEFAULTService-Type == Framed-User, Huntgroup-Name == alphen # Framed-IP-Address = 192.168.1.32+, # Fall-Through = Yes #DEFAULTService-Type == Framed-User, Huntgroup-Name == delft # Framed-IP-Address = 192.168.2.32+, # Fall-Through = Yes # # Defaults for all framed connections. # DEFAULT Service-Type == Framed-User Framed-IP-Address = 255.255.255.254, Framed-MTU = 576, Service-Type = Framed-User, Fall-Through = Yes # # Default for PPP: dynamic IP address, PPP mode, VJ-compression. # NOTE: we do not use Hint = PPP, since PPP might also be auto-detected # by the terminal server in which case there may not be a P suffix. # The terminal server sends Framed-Protocol = PPP for auto PPP. # DEFAULT Framed-Protocol == PPP Framed-Protocol = PPP, Framed-Compression = Van-Jacobson-TCP-IP # # Default for CSLIP: dynamic IP address, SLIP mode, VJ-compression. # DEFAULT Hint == CSLIP Framed-Protocol = SLIP, Framed-Compression = Van-Jacobson-TCP-IP # # Default for SLIP: dynamic IP address, SLIP mode. # DEFAULT Hint == SLIP Framed-Protocol = SLIP # # Last default: rlogin to our main server. # #DEFAULT # Service-Type = Login-User, # Login-Service = Rlogin, # Login-IP-Host = shellbox.ispdomain.com # # # # Last default: shell on the local terminal server. # # # DEFAULT # Service-Type = Shell-User # On no match, the user is denied access. On 9/3/09, Ivan Kalik t...@kalik.net wrote: Dear Freeradius-user, I have faceing some problemCould not find Pool-Name attribute. have any solution. ... users: Matched entry amritap at line 100 ... How does your users file entry look like? Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: [main_pool] Could not find Pool-Name attribute
What I want is that my wlan clients gets ip's from different ippools depending on which user/group is logging in! So I have no chance to realize that with freeradius? That would be sad. Robbe tnt-4 wrote: You have not enabled the module which is supposed to provide Pool-Name from the configuration in inner-tunnel. But forget that. AP is going to use DHCP to assign IP address and will ignore Framed-IP-Address. Ivan Kalik Kalik Informatika ISP Dana 14/11/2008, robbe [EMAIL PROTECTED] piše: Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20535092.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: [main_pool] Could not find Pool-Name attribute
This is absolutely nothing to do with freeradius. There is no point of asking about your AP options on this list. Find it in your AP documentation. Does it support Framed-IP-Address attribute (youcan create pools on freeradius then)? Is there some VSA (or Framed-Pool) that you can return to select the (local) pool? Ivan Kalik Kalik Informatika ISP Dana 17/11/2008, robbe [EMAIL PROTECTED] piše: What I want is that my wlan clients gets ip's from different ippools depending on which user/group is logging in! So I have no chance to realize that with freeradius? That would be sad. Robbe tnt-4 wrote: You have not enabled the module which is supposed to provide Pool-Name from the configuration in inner-tunnel. But forget that. AP is going to use DHCP to assign IP address and will ignore Framed-IP-Address. Ivan Kalik Kalik Informatika ISP Dana 14/11/2008, robbe [EMAIL PROTECTED] piĹĄe: Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20535092.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[main_pool] Could not find Pool-Name attribute
Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: [main_pool] Could not find Pool-Name attribute
You have not enabled the module which is supposed to provide Pool-Name from the configuration in inner-tunnel. But forget that. AP is going to use DHCP to assign IP address and will ignore Framed-IP-Address. Ivan Kalik Kalik Informatika ISP Dana 14/11/2008, robbe [EMAIL PROTECTED] piše: Hello I'm trying to use the ippool for wlan users. But without success. I now get tis error: [main_pool] Could not find Pool-Name attribute . And I have no idea why. The logile can be read at: http://pastebin.com/m50a78a30 Thanks for every help. robbe -- View this message in context: http://www.nabble.com/-main_pool--Could-not-find-Pool-Name-attribute-tp20481663p20481663.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: rlm_ippool: Could not find Pool-Name attribute
How about you post the rest of the debug. Most likely you need SQL-Group
and not Group. And delete those first two entries in users file as you
certainly don't need them.
Ivan Kalik
Kalik Informatika ISP
Dana 19/10/2007, hyunok [EMAIL PROTECTED] piše:
Hello,
I have a freeradius 1.1.7 server setup with ppp and pptp using a mysql
DB for user authentication.
radiusd -xx
.
rlm_ippool: Could not find Pool-Name attribute
...
...
modcall[accounting]: module radutmp returns ok for request 1
rlm_ippool: This is not an Accounting-Stop. Return NOOP.
modcall[accounting]: module dialup returns noop for request 1
rlm_ippool: This is not an Accounting-Stop. Return NOOP.
modcall[accounting]: module sp_pool returns noop for request 1
-
radiusd.conf
ippool dialup {
range-start = 172.16.0.1
range-stop = 172.16.0.125
netmask = 255.255.255.0
cache-size = 800
session-db = ${raddbdir}/db.ippool
ip-index = ${raddbdir}/db.ipindex
override = no
maximum-timeout = 0
}
ippool sp_pool {
range-start = 172.16.1.1
range-stop = 172.16.1.125
netmask = 255.255.255.0
cache-size = 800
session-db = ${raddbdir}/db.ippoolsp
ip-index = ${raddbdir}/db.ipindexsp
override = no
maximum-timeout = 0
}
post-auth {
# main_pool
dialup
sp_pool
# sqlippool
# sql
# ldap
}
---
accounting {
detail
# daily
radutmp
# sradutmp
# main_pool
dialup
sp_pool
# sqlippool
sql
}
users file ---
DEFAULT Pool-Name := dialup
Fall-Through = Yes
DEFAULT Pool-Name := sp_pool
Fall-Through = Yes
DEFAULT Group == dialup, Pool-Name := dialup
DEFAULT Group == sp_pool, Pool-Name := sp_pool
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rlm_ippool: Could not find Pool-Name attribute
Hello,
I have a freeradius 1.1.7 server setup with ppp and pptp using a mysql
DB for user authentication.
radiusd -xx
.
rlm_ippool: Could not find Pool-Name attribute
...
...
modcall[accounting]: module radutmp returns ok for request 1
rlm_ippool: This is not an Accounting-Stop. Return NOOP.
modcall[accounting]: module dialup returns noop for request 1
rlm_ippool: This is not an Accounting-Stop. Return NOOP.
modcall[accounting]: module sp_pool returns noop for request 1
-
radiusd.conf
ippool dialup {
range-start = 172.16.0.1
range-stop = 172.16.0.125
netmask = 255.255.255.0
cache-size = 800
session-db = ${raddbdir}/db.ippool
ip-index = ${raddbdir}/db.ipindex
override = no
maximum-timeout = 0
}
ippool sp_pool {
range-start = 172.16.1.1
range-stop = 172.16.1.125
netmask = 255.255.255.0
cache-size = 800
session-db = ${raddbdir}/db.ippoolsp
ip-index = ${raddbdir}/db.ipindexsp
override = no
maximum-timeout = 0
}
post-auth {
# main_pool
dialup
sp_pool
# sqlippool
# sql
# ldap
}
---
accounting {
detail
# daily
radutmp
# sradutmp
# main_pool
dialup
sp_pool
# sqlippool
sql
}
users file ---
DEFAULT Pool-Name := dialup
Fall-Through = Yes
DEFAULT Pool-Name := sp_pool
Fall-Through = Yes
DEFAULT Group == dialup, Pool-Name := dialup
DEFAULT Group == sp_pool, Pool-Name := sp_pool
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
On Fri, 2004-06-04 at 19:13, Alan DeKok wrote: Zdenek Pizl [EMAIL PROTECTED] wrote: I am trying to connect our SMC2804WBR wireless routes to the freeradius 1.0.0pre1 (RedHat 9 Linux) and to get connected from WinXP station throuhg 802.1x EAP TLS connection. That will work. Hallo Alan, that was quite quick response. I am glad it will work :) anyway it still does not work, so I cannot be satisfied with it. DEFAULT Pool-Name := systinetpool Fall-Through = yes That won't. You can't assign IP addresses for systems which authenticate via EAP. OK, why radius server shows that error message and how can the station (supplicant?) get an IP address for its work in this usecase? Oh, does exist a howto about freeradius configuration and 802.1x wireless communication? I dont mind the generally known articles, because it do not describe CONFIGURATION of freeradius in that case. Thanks a lot, z.p. Alan DeKok. -- Zdenek Pizl Systinet Corporation Vinohradska 190 130 00 Praha 3 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
Zdenek Pizl [EMAIL PROTECTED] wrote: OK, why radius server shows that error message Because you told the server to use the ippool module, but didn't tell it *which* ippool module to use. Since the ippool module doesn't do EAP, it doesn't know that assigning an IP will be pointless. and how can the station (supplicant?) get an IP address for its work in this usecase? DHCP, or a static IP. You have NO other options. Oh, does exist a howto about freeradius configuration and 802.1x wireless communication? I dont mind the generally known articles, because it do not describe CONFIGURATION of freeradius in that case. They describe how to configure the server. Some even give sample configurations. They don't describe how to configure the server to do what *you* want, because every site is different. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
On Sat, 2004-06-05 at 17:26, Alan DeKok wrote: Zdenek Pizl [EMAIL PROTECTED] wrote: OK, why radius server shows that error message Because you told the server to use the ippool module, but didn't tell it *which* ippool module to use. Since the ippool module doesn't do EAP, it doesn't know that assigning an IP will be pointless. ok, i understand it. thx. and how can the station (supplicant?) get an IP address for its work in this usecase? DHCP, or a static IP. You have NO other options. just to clarify my mind - The SMC Barricade does DHCP server (i think inside is some type of BSD OS :) but the supplicant does not get an address. There is something misconfigured, because RADIUS is printing Login OK, but station shows message Cannot log in the network ... I can't figure where the error is. Thank you anyway, Alan, for yout help. z.p. Oh, does exist a howto about freeradius configuration and 802.1x wireless communication? I dont mind the generally known articles, because it do not describe CONFIGURATION of freeradius in that case. They describe how to configure the server. Some even give sample configurations. They don't describe how to configure the server to do what *you* want, because every site is different. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Zdenek Pizl Systinet Corporation Vinohradska 190 130 00 Praha 3 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
EAP/TLS - rlm_ippool: Could not find Pool-Name attribute.
Hi all,
I am trying to connect our SMC2804WBR wireless routes to the freeradius
1.0.0pre1 (RedHat 9 Linux) and to get connected from WinXP station
throuhg 802.1x EAP TLS connection.
The result of my tries is in the subject ...
I've defined the in the config files following:
file users:
---
DEFAULT Pool-Name := systinetpool
Fall-Through = yes
file radiusd.conf:
--
ippool systinetpool {
range-start = 192.168.3.1
range-stop = 192.168.3.254
netmask=255.255.255.0
cache-size = 800
session-db = ${raddbdir}/db.ippool
ip-index = ${raddbdir}/db.ipindex
override = yes
maximum-timeout = 60
}
post-auth {
systinetpool
}
file clients.conf:
--
client 10.0.0.202/32 {
secret = test
shortname = SMC
nastype = other
}
The result is bellow, shortly - it sent Access-Accept to 10.0.0.202 (the
SMC wireless router/AP) but did not find Pool-Name attribute. Where and
how can i define it instead of in users file ? What did I configure
wrong?
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 5
rlm_eap: Request found, released from the list
rlm_eap: EAP/tls
rlm_eap: processing type tls
rlm_eap_tls: Authenticate
rlm_eap_tls: processing TLS
rlm_eap_tls: Received EAP-TLS ACK message
eaptls_verify returned 3
eaptls_process returned 3
rlm_eap: Freeing handler
modcall[authenticate]: module eap returns ok for request 5
modcall: group authenticate returns ok for request 5
Login OK: [Zdenek Pizl/no User-Password attribute] (from client SMC
port 29)
Processing the post-auth section of radiusd.conf
modcall: entering group post-auth for request 5
rlm_ippool: Could not find Pool-Name attribute.
modcall[post-auth]: module systinetpool returns noop for request 5
modcall: group post-auth returns noop for request 5
Sending Access-Accept of id 47 to 10.0.0.202:1066
MS-MPPE-Recv-Key =
0x8c0fd0aef8f64035c63eed70234116753d74356dcd8cadc084c21bfb4ccac2f7
MS-MPPE-Send-Key =
0x6cf0a5279334ce2b09ee9e5f1380103297f6691dca1c46c1857715e3237c960c
EAP-Message = 0x032f0004
Message-Authenticator = 0x
User-Name = Zdenek Pizl
Finished request 5
--
Zdenek Pizl
Systinet Corporation
Vinohradska 190
130 00 Praha 3
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rlm_ippool: could not find Pool-Name attribute
Hello, I find this message always, even when its sending an accept message to the NAS Ive found several help messages, but they are oriented to files, not to sql How do i fix it in mysql HELP Rogelio Alvarado Anchisi Ing. de Sistemas Galaxy Communications Corp. Tel. +507-2633021 Cel. +507-6744093
