LDAP_PAP_auth

1. 1) Received Access-Request Id 93 from 127.0.0.1:39547 to 127.0.0.1:1812 via lo length 76
2. (1) User-Name = "user"
3. (1) User-Password = "testing123"
4. (1) NAS-IP-Address = 127.0.53.53
5. (1) NAS-Port = 0
6. (1) Message-Authenticator = 0xrandomnumber
7. (1) Running section authorize from file /usr/local/etc/raddb/sites-enabled/default
8. (1) authorize {
9. (1) ldap - Reserved connection (1)
10. (1) ldap - EXPAND (uid=%{%{Stripped-User-Name}:-%{User-Name}})
11. (1) ldap - --> (uid=user)
12. (1) ldap - Performing search in "ou=Users,dc=myhost,dc=com" with filter "(uid=user)", scope "sub"
13. (1) ldap - Waiting for search result...
14. (1) ldap - User object found at DN "uid=user,ou=Users,dc=myhost,dc=com"
15. (1) ldap - Processing user attributes
16. (1) ldap - WARNING: No "known good" password added. Set 'identity' to the dn of an account that has permission to read the user's password attribute
17. (1) ldap - Released connection (1)
18. rlm_ldap (ldap) - Need 4 more connections to reach 10 spares
19. rlm_ldap (ldap) - Opening additional connection (6), 1 of 26 pending slots used
20. rlm_ldap (ldap) - Connecting to ldaps://ldap.myhost.com:636
21. TLS: error: the certificate '/usr/local/etc/raddb/certs/current/radius.crt' could not be found in the database - error -5939:No more entries in the directory.
22. TLS: certificate '/usr/local/etc/raddb/certs/current/radius.crt' successfully loaded from PEM file.
23. TLS: no unlocked certificate for certificate 'E=noname@nonam.com,CN=radius,OU=fail,O=company,L=city,ST=CA,C=US'.
24. TLS: certificate [OU=Go Daddy Class 2 Certification Authority,O="The Go Daddy Group, Inc.",C=US] is not valid - error -8172:Peer's certificate issuer has been marked as not trusted by the user..
25. rlm_ldap (ldap) - Waiting for bind result...
26. rlm_ldap (ldap) - Bind successful
27. (1) ldap (ok)
28. (1) pap - WARNING: No "known good" password found for the user. Not setting Auth-Type
29. (1) pap - WARNING: Authentication will fail unless a "known good" password is available
30. (1) pap (noop)
31. (1) } # authorize (ok)
32. (1) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject
33. (1) Failed to authenticate the user
34. (1) Using Post-Auth-Type Reject
35. (1) Running Post-Auth-Type Reject from file /usr/local/etc/raddb/sites-enabled/default
36. (1) Post-Auth-Type REJECT {
37. (1) attr_filter.access_reject - EXPAND %{User-Name}
38. (1) attr_filter.access_reject - --> user
39. (1) attr_filter.access_reject - Matched entry DEFAULT at line 11
40. (1) attr_filter.access_reject (updated)
41. (1) eap (noop)
42. (1) remove_reply_message_if_eap {
43. (1) if (&reply:EAP-Message && &reply:Reply-Message) {
44. (1) ...
45. (1) }
46. (1) else {
47. (1) noop (noop)
48. (1) } # else (noop)
49. (1) } # remove_reply_message_if_eap (noop)
50. (1) } # Post-Auth-Type REJECT (updated)
51. (1) Delaying response for 1.000000 seconds
52. Waking up in 0.9 seconds.
53. (1) - Sending delayed response
54. (1) - Sent Access-Reject Id 93 from 127.0.0.1:1812 to 127.0.0.1:39547 via lo length 20
55. Waking up in 3.9 seconds.
56. (1) Cleaning up request packet ID 93 with timestamp +13
57. Ready to process requests