You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Due to issues with .local domains I am migrating to a corp.domain.com domain. I started with a working copy of my old totpcgi implementation and have even rebuilt it from scratch. I am getting stuck with the error below. I am testing on the local box to make sure everythign is right before I turn back on pincodes and deploy.
# Executing section authorize from file /etc/raddb/sites-enabled/default
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] Looking up realm "corp.domain.com" for User-Name = "[email protected]"
[suffix] No such realm "corp.domain.com"
++[suffix] returns noop
[files] users: Matched entry DEFAULT at line 157
++[files] returns ok
rlm_perl: Added pair User-Name = [email protected]
rlm_perl: Added pair User-Password = 395921
rlm_perl: Added pair NAS-Port = 18120
rlm_perl: Added pair NAS-IP-Address = 127.0.0.1
rlm_perl: Added pair Message-Authenticator = 0x4d3ebccf5135572f7a7947f0251c3fc1
rlm_perl: Added pair Auth-Type = Perl
++[perl] returns ok
[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.
++[pap] returns noop
Found Auth-Type = Perl
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group Perl {...}
rlm_perl: Added pair User-Name = [email protected]
rlm_perl: Added pair User-Password = 395921
rlm_perl: Added pair NAS-IP-Address = 127.0.0.1
rlm_perl: Added pair NAS-Port = 18120
rlm_perl: Added pair Message-Authenticator = 0x4d3ebccf5135572f7a7947f0251c3fc1
rlm_perl: Added pair Reply-Message = Denied access by rlm_perl authenticate function. ERROR: 500 Can't connect to auth.corp.domain.com:8443 ()
rlm_perl: Added pair Auth-Type = Perl
++[perl] returns reject
Failed to authenticate the user.
Using Post-Auth-Type Reject
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group REJECT {...}
[attr_filter.access_reject] expand: %{User-Name} -> [email protected]
attr_filter: Matched entry DEFAULT at line 11
++[attr_filter.access_reject] returns updated
Delaying reject of request 0 for 1 seconds
Going to the next request
Waking up in 0.9 seconds.
Sending delayed reject for request 0
Sending Access-Reject of id 5 to 127.0.0.1 port 46003
Reply-Message = "Denied access by rlm_perl authenticate function. ERROR: 500 Can't connect to auth.corp.domain.com:8443 ()"
Waking up in 4.9 seconds.
Cleaning up request 0 ID 5 with timestamp +4
Ready to process requests.
I've tested my client (user) cert against the website running on 8443 and it works. I can't find any more detail in the logs as to what is failing. I've checked my config files against my currently working one also. The only thing that is different is the domain name and search scopes due to change directory structure.
The text was updated successfully, but these errors were encountered:
I've created one server using these instructions (http://vcdxorbust.com/totpcgi-and-freeradius-with-vmware-view/) and a domain of domain.local.
Due to issues with .local domains I am migrating to a corp.domain.com domain. I started with a working copy of my old totpcgi implementation and have even rebuilt it from scratch. I am getting stuck with the error below. I am testing on the local box to make sure everythign is right before I turn back on pincodes and deploy.
I've tested my client (user) cert against the website running on 8443 and it works. I can't find any more detail in the logs as to what is failing. I've checked my config files against my currently working one also. The only thing that is different is the domain name and search scopes due to change directory structure.
The text was updated successfully, but these errors were encountered: