Freeradius Help

jrmontg · 03-01-2005, 11:51 AM

I have installed free radius on my server at 192.198.5.8 and trying to connect to it with NTRadping on 192.168.5.6. I am getting the following error:
response: Access-Reject

in the log I see this:
Tue Mar 1 11:01:42 2005 : Auth: rlm_unix: [root]: invalid password

my clients.conf
client 192.168.5.6 {
secret = testsecret
shortname = home
login = !root
password = testtest
}

Another wierd entry in the log is:
Tue Mar 1 10:39:24 2005 : Info: Using deprecated naslist file. Support for this will go away soon.
Tue Mar 1 10:39:24 2005 : Info: rlm_exec: Wait=yes but no output defined. Did you mean output=none?
Tue Mar 1 10:39:25 2005 : Info: Ready to process requests.

can anyone help me?

jrmontg · 03-02-2005, 08:08 AM

What file do I put a username and password? It seems like there are three different places to do this?

twsnnva · 03-02-2005, 10:40 AM

Quote:

What file do I put a username and password? It seems like there are three different places to do this?

This depends on how you configured freeradius. I use LDAP to store username and passwords, you can also use system accounts from /etc/passwd and /etc/shadow, or you can use a file.

Quote:

Tue Mar 1 11:01:42 2005 : Auth: rlm_unix: [root]: invalid password

It looks like you are using the unix module, so the usernames and password should be your system username and password. Remove these lines from clients.conf, you shouldn't need them.

Code:

login = !root
password = testtest

I would add localhost to clients.conf and use radtest, to make sure everything is configured properly first. For example, add the following to clients.conf

Code:

client 127.0.0.1 {
secret = testsecret
shortname = localhost
}

Now test the connection with radtest.

Code:

radtest username password 127.0.0.1:1812 2 testsecret

If everything is setup correctly you should get and Access-Accept reply.

Thomas