linux - 访问被freeradius中的本地主机拒绝
问题描述
我无法执行 radtest 命令,我无法弄清楚我不断收到错误的问题:
rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=82, length=20
这是执行:
rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=75, length=20
root@localhost:/etc/freeradius# radtest testing password 127.0.0.1 0 testing123
Sending Access-Request of id 82 to 127.0.0.1 port 1812
User-Name = "testing"
User-Password = "password"
NAS-IP-Address = 127.0.0.1
NAS-Port = 0
Message-Authenticator = 0x00000000000000000000000000000000
rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=82, length=20
这是调试输出:
+group authorize {
++[preprocess] = ok
++policy rewrite_calling_station_id {
+++? if (Calling-Station-Id =~ /([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})/i)
(Attribute Calling-Station-Id was not found)
? Evaluating (Calling-Station-Id =~ /([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})/i) -> FALSE
+++? if (Calling-Station-Id =~ /([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})[-:.]?([0-9a-f]{2})[-:]?([0-9a-f]{2})/i) -> FALSE
+++else else {
++++[noop] = noop
+++} # else else = noop
++} # policy rewrite_calling_station_id = noop
[authorized_macs] expand: %{Calling-Station-ID} ->
++[authorized_macs] = noop
++? if (!ok)
? Evaluating !(ok) -> TRUE
++? if (!ok) -> TRUE
++if (!ok) {
+++[reject] = reject
++} # if (!ok) = reject
+} # group authorize = reject
Using Post-Auth-Type Reject
# Executing group from file /etc/freeradius/sites-enabled/default
+group REJECT {
[eap] Request didn't contain an EAP-Message, not inserting EAP-Failure
++[eap] = noop
[attr_filter.access_reject] expand: %{User-Name} -> testing
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] = updated
+} # group REJECT = updated
Delaying reject of request 2 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 2
Sending Access-Reject of id 82 to 127.0.0.1 port 55664
Waking up in 4.9 seconds.
Cleaning up request 2 ID 82 with timestamp +269
Ready to process requests.
这是我的用户:
testing Cleartext-Password := "password"
解决方案
推荐阅读
- php - Group by if two column in different row has the same value?
- google-distancematrix-api - 谷歌距离矩阵中应该如何使用多个起点/目的地?
- python-3.x - 写一个函数接受一个两个单词的字符串,如果两个单词都以相同的字母开头,则返回 True
- windows - 将 MingW 提示窗口嵌入到 ConEmu
- mingw - Building libevhtp using Mingw
- excel - 将特定列中的所有活动单元格设为其绝对值
- jquery - I cannot remove the class "arrow-open" when clicked on the opened arrow again
- matplotlib - Facing weird problem when trying to plot simple lat/ lon points
- sql - 如何用单个字符替换字符串值
- php - 如果所有状态都已完成,如何从不同的个人检索状态并将其设置为已完成