Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 23 Jun 2000 11:57:43 +0300
From:      Alexander Prohorenko <white@extra.dp.ua>
To:        freebsd-hackers@freebsd.org, freebsd-questions@freebsd.org
Cc:        ingo@blank.pages.de
Subject:   Apache with PAM/RADIUS authentication
Message-ID:  <20000623115743.A5030@extra.dp.ua>
next in thread | raw e-mail | index | archive | help 
Hello guys,

I hope to get some help here.  I've got in troubles trying to run
Apache PAM authentication module on FreeBSD.

white@nwlynx:/var/home/white>uname -a
FreeBSD nwlynx.xxx.com 3.4-STABLE FreeBSD 3.4-STABLE #11: Tue May 16 10:43:05 MDT 2000     white@nwlynx.xxx.com:/usr/src/sys/compile/NWLYNX  i386

/etc/pam.conf has:

httpd   auth    required        pam_radius.so   try_first_pass
httpd   account required        pam_unix.so

I'm running RADIUS server on localhost. 

/etc/radius.conf has:

auth	localhost	thatsakey

I've used PAM module from http://blank.pages.de/pam/ - mod_auth_pam.c
and added it as DSO module using apxs.

/usr/local/apache/conf/httpd.conf has:

LoadModule pam_auth_module    libexec/mod_auth_pam.so
AddModule mod_auth_pam.c

...

<Directory /root>
	Options FollowSymLinks
	AllowOverride None
	AuthPAM_Enabled on
	AuthName    "Security forever!"
	AuthType    Basic
	require     valid-user
</Directory>

But when Apache tries to authorize I'm getting in /var/log/messages:

Jun 22 13:50:15 nwlynx dev-httpd: unable to dlopen(/usr/lib/pam_radius.so)
Jun 22 13:50:15 nwlynx dev-httpd: [dlerror: /usr/lib/pam_radius.so: Undefined symbol "pam_get_item"]
Jun 22 13:50:15 nwlynx dev-httpd: adding faulty module: /usr/lib/pam_radius.so
Jun 22 13:50:15 nwlynx dev-httpd: unable to dlopen(/usr/lib/pam_unix.so)
Jun 22 13:50:15 nwlynx dev-httpd: [dlerror: /usr/lib/pam_unix.so: Undefined symbol "pam_get_item"]
Jun 22 13:50:15 nwlynx dev-httpd: adding faulty module: /usr/lib/pam_unix.so

It goes without saying that no RADIUS requests is being sent and authorisation
generates a failure message.

How can I solve this problem??  Thank you so much for your input,

-- 
Alexander Prohorenko, Extra Solutions [ http://extra.com.ua ]

  "Those who do not understand UNIX are condemned to reinvent it, poorly."
							-- H. Spencer


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000623115743.A5030>