Re: [PacketFence-users] Radtest Fail

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Just to clarify what I wrote, the command to start radiusd in debugging mode is 

# radiusd -d /usr/local/pf/raddb -X

My previous message assumed a CWD of /usr/local/pf. 

--
Louis Munro
lm...@in...  ::  www.inverse.ca 
+1.514.447.4918 *125  :: +1 (866) 353-6153 
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org)

On 2014-06-02, at 10:56 , Louis Munro <lm...@in...> wrote:

> Hi Carla,
> 
> There are a number of things that may be going wrong with what you are doing. 
> 
> AD authentication is not usually done through LDAP. The recommended way is using samba and ntlm_auth.
> Have a look at pages 28-31 of the PacketFence Administration guide for that (http://www.packetfence.org/downloads/PacketFence/doc/PacketFence_Administration_Guide-4.2.2.pdf ).
> 
> Make sure you have ntlm_auth working before you attempt RADIUS authentication.
> 
> 
> 
> 
> On 2014-06-02, at 10:25 , Carla Nurse <pac...@gm...> wrote:
> 
>> I am trying to setup the RADIUS server using Active Directory and got to the radtest test. The LDAP connect, bind and search is successful but the radtest is failing. I keep getting the error message:
>> 
>> [root@pf-zen-esx ~]# radtest dd9999 Abcd1234 localhost:18120 12 testing123
>> radclient:: Failed to find IP address for pf-zen-esx
>> radclient: Nothing to send.
> 
> The database probably has nothing to do with this.  It looks more like a name resolution issue. Try setting the hostname to IP in /etc/hosts.
> 
>> 
>> 2. Created a symbolic link ln -s ../sites-available/packetfence|ln -s ../sites-available/packetfence-tunnel
> 
> If you installed from the packages, you should not have to do this. 
> 
> Please show us the output of 
> 
> ls -l /usr/local/pf/raddb/sites-enabled/
> 
> 
>> 3. And based on another thread on this page, I checked my radiusd.conf file to see if $INCLUDE sql.conf was located. It was there. I have attached the radiusd.conf file.
> 
> Again, the default radiusd.conf should work out of the box with no editing. The sql section should not be modified. 
> 
> 
> 
> 
> Whenever you are testing FreeRADIUS, please do it this way and show us the output if you want us to be able to help you.
> 
> Kill the existing radiusd process: 
> 
> # pkill radiusd
> 
> Start FreeRADIUS in debugging mode while pointing to the PacketFence specific directory:
> 
> # radiusd -d raddb -X
> 
> 
> Then look at the output for any test that you are running with radtest.
> 
> 
> Regards,
> 
> --
> Louis Munro
> lm...@in...  ::  www.inverse.ca 
> +1.514.447.4918 *125  :: +1 (866) 353-6153 
> Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org)
> ------------------------------------------------------------------------------
> Learn Graph Databases - Download FREE O'Reilly Book
> "Graph Databases" is the definitive new guide to graph databases and their 
> applications. Written by three acclaimed leaders in the field, 
> this first edition is now available. Download your free book today!
> http://p.sf.net/sfu/NeoTech_______________________________________________
> PacketFence-users mailing list
> Pac...@li...
> https://lists.sourceforge.net/lists/listinfo/packetfence-users