API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 27th, 2017
419
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.71 KB | None | 0 0
raw download clone embed print report
  1. (8) Received Access-Request Id 186 from 10.100.0.254:25983 to 10.100.0.32:1812 length 115
  2. (8) NAS-IP-Address = 192.168.1.25
  3. (8) NAS-Identifier = "openVPN"
  4. (8) NAS-Port-Type = Virtual
  5. (8) NAS-Port = 1194
  6. (8) Called-Station-Id = "192.168.1.25:1194"
  7. (8) User-Name = "user@samdom.example.com"
  8. (8) User-Password = "XXXXXX"
  9. (8) # Executing section authorize from file /etc/freeradius/3.0/sites-enabled/default
  10. (8) authorize {
  11. (8) policy filter_username {
  12. (8) if (&User-Name) {
  13. (8) if (&User-Name) -> TRUE
  14. (8) if (&User-Name) {
  15. (8) if (&User-Name =~ / /) {
  16. (8) if (&User-Name =~ / /) -> FALSE
  17. (8) if (&User-Name =~ /@[^@]*@/ ) {
  18. (8) if (&User-Name =~ /@[^@]*@/ ) -> FALSE
  19. (8) if (&User-Name =~ /../ ) {
  20. (8) if (&User-Name =~ /../ ) -> FALSE
  21. (8) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) {
  22. (8) if ((&User-Name =~ /@/) && (&User-Name !~ /@(.+).(.+)$/)) -> FALSE
  23. (8) if (&User-Name =~ /.$/) {
  24. (8) if (&User-Name =~ /.$/) -> FALSE
  25. (8) if (&User-Name =~ /@./) {
  26. (8) if (&User-Name =~ /@./) -> FALSE
  27. (8) } # if (&User-Name) = notfound
  28. (8) } # policy filter_username = notfound
  29. (8) [preprocess] = ok
  30. (8) [chap] = noop
  31. (8) [mschap] = noop
  32. (8) [digest] = noop
  33. (8) suffix: Checking for suffix after "@"
  34. (8) suffix: Looking up realm "samdom.example.com" for User-Name = "user@samdom.example.com"
  35. (8) suffix: No such realm "samdom.example.com"
  36. (8) [suffix] = noop
  37. (8) eap: No EAP-Message, not doing EAP
  38. (8) [eap] = noop
  39. (8) [files] = noop
  40. (8) [expiration] = noop
  41. (8) [logintime] = noop
  42. (8) pap: WARNING: No "known good" password found for the user. Not setting Auth-Type
  43. (8) pap: WARNING: Authentication will fail unless a "known good" password is available
  44. (8) [pap] = noop
  45. (8) } # authorize = ok
  46. (8) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject
  47. (8) Failed to authenticate the user
  48. (8) Using Post-Auth-Type Reject
  49. (8) # Executing group from file /etc/freeradius/3.0/sites-enabled/default
  50. (8) Post-Auth-Type REJECT {
  51. (8) attr_filter.access_reject: EXPAND %{User-Name}
  52. (8) attr_filter.access_reject: --> user@samdom.example.com
  53. (8) attr_filter.access_reject: Matched entry DEFAULT at line 11
  54. (8) [attr_filter.access_reject] = updated
  55. (8) [eap] = noop
  56. (8) policy remove_reply_message_if_eap {
  57. (8) if (&reply:EAP-Message && &reply:Reply-Message) {
  58. (8) if (&reply:EAP-Message && &reply:Reply-Message) -> FALSE
  59. (8) else {
  60. (8) [noop] = noop
  61. (8) } # else = noop
  62. (8) } # policy remove_reply_message_if_eap = noop
  63. (8) } # Post-Auth-Type REJECT = updated
  64. (8) Delaying response for 1.000000 seconds
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!