Senhores
boa tarde
estou começando a estudar o FreeRadius, mas estou tendo um problema bem
simples que nao estou conseguindo resolver. Para fins de teste, estou
tentando fazer o freeradius autenticar com os usuários do linux.
A configuração está a seguinte:
/etc/raddb/radiusd.conf
===
unix {
cache = no
cache_reload = 600
passwd = /etc/passwd
shadow = /etc/shadow
group = /etc/group
radwtmp = ${logdir}/radwtmp
}
authenticate {
unix
}
===
/etc/raddb/clients.conf
===
client 127.0.0.1 {
secret = testing123
shortname = localhost
nastype = other # localhost isn't usually a NAS...
}
===
Quando tento dar o comando de teste:
===
# radtest root abc123 localhost 1 testing123
===
No servidor aparece a seguinte mensagem:
===
rad_recv: Access-Request packet from host 127.0.0.1:1024, id=6, length=56
User-Name = "root"
User-Password = "abc123"
NAS-IP-Address = 255.255.255.255
NAS-Port = 1
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
modcall[authorize]: module "preprocess" returns ok for request 0
modcall[authorize]: module "chap" returns noop for request 0
modcall[authorize]: module "mschap" returns noop for request 0
rlm_realm: No '@' in User-Name = "root", looking up realm NULL
rlm_realm: No such realm "NULL"
modcall[authorize]: module "suffix" returns noop for request 0
rlm_eap: No EAP-Message, not doing EAP
modcall[authorize]: module "eap" returns noop for request 0
users: Matched entry DEFAULT at line 152
modcall[authorize]: module "files" returns ok for request 0
modcall: leaving group authorize (returns ok) for request 0
rad_check_password: Found Auth-Type System
auth: type "System"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 0
rlm_unix: [root]: invalid password
modcall[authenticate]: module "unix" returns reject for request 0
modcall: leaving group authenticate (returns reject) for request 0
auth: Failed to validate the user.
Delaying request 0 for 1 seconds
Finished request 0
===
E no terminal cliente aparece:
===
Sending Access-Request of id 6 to 127.0.0.1 port 1812
User-Name = "root"
User-Password = "abc123"
NAS-IP-Address = 255.255.255.255
NAS-Port = 1
rad_recv: Access-Reject packet from host 127.0.0.1:1812, id=6, length=20
===
Alguém pode me ajudar?
[]s
________________________________________________
Renato de Oliveira Diogo
Bacharel em Ciência da Computação
UNESP - Bauru
LPIC1 - Linux Professional Institute Certification - Nível 1
renato.diogo(a)gmail.com
renato.diogo(a)yahoo.com.br