Date: Thu, 19 Oct 2000 20:46:41 -0400 From: Mike Tancsa <mike@sentex.net> To: durham@w2xo.pgh.pa.us (Jim Durham) Cc: questions@freebsd.org Subject: Re: Radiusd with Portmaster2 on FreeBSD4.1 Message-ID: <nc5vus474304u546up6k3qctgcgrte6i86@4ax.com> In-Reply-To: <SEN.971924764.962929327@news.sentex.net> References: <SEN.971924764.962929327@news.sentex.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 18 Oct 2000 23:06:04 -0400, in sentex.lists.freebsd.questions you = wrote: >I'm using the cistron radiusd on FreeBSD 4.1 with an old Portmaster >2E to authenticate a user base of around 100 users. It does work, as we have several such boxes still in a few pops. What = does /var/log/radius show for the error ? ie. why is RADIUS rejected them ? Also, is your radius server running on a machine that has multiple interfaces ? If so, specify the address to bind to explicitly. ---Mike > >The portmaster had been running on its internal user list, and worked, > >I am using the default user config file and using AuthType =3D System so >I can use the Unix password file. > >The only way that the Radius server will authenticate a user is >if they are also in the Portmaster user table. If I take the >user out of the user table on the Portmaster, radiusd rejects the >authentication. I see this running radiusd in the "-x -x" mode. > >Yes, I have the authentication server and accounting server >values on the Portmaster pointing to the IP of the radius box. >I have CHAP and PAP off. One clue is that radiusd reports >that it is handed a CHAP password by the Portmaster, even >though CHAP is off. This does not happen when the user is >in the portmaster user table and is authenticated. > >I have read all the docs and the manuals on the Livingston site. > >Anyone know what's going on here? > >-Jim Durham > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message Mike Tancsa (mdtancsa@sentex.net) =09 Sentex Communications Corp, =09 Waterloo, Ontario, Canada "Given enough time, 100 monkeys on 100 routers=20 could setup a national IP network." (KDW2) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?nc5vus474304u546up6k3qctgcgrte6i86>