We have been using UbiRadius 3.5.1 , now are trying to migrate to 3.5.3. I have followed the migration directions. The 3.5.3 server works fine for a day , the NeXT day it fails to authenticate the users. We import users from our Windows domain.
I look in the freeradius.log file I can see this beeing loged when the server is working :
[<thread>] # Executing section authorize from file /etc/freeradius/sites-enabled/default
[<thread>] +- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
++[digest] returns noop
++[files] returns noop
[ldap] Setting Auth-Type = LDAP
++[ldap] returns ok
++[expiration] returns noop
The next day I try with the same user and Yubikey and without any configuration on the server touched , I get this in the radius.log :
[<thread>] # Executing section authorize from file /etc/freeradius/sites-enabled/default
[<thread>] +- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
++[digest] returns noop
++[files] returns noop
[ldap] performing user authorization for tat
[ldap] expand: %{Stripped-User-Name} ->
[ldap] ... expanding second conditional
[ldap] expand: %{User-Name} -> tat
[ldap] expand: (uid=%{%{Stripped-User-Name}:-%{User-Name}}) -> (uid=tat)
[ldap] expand: dc=example,dc=com -> dc=example,dc=com
[ldap] ldap_get_conn: Checking Id: 0
[ldap] ldap_get_conn: Got Id: 0
[ldap] performing search in dc=example,dc=com, with filter (uid=tat)
[ldap] object not found
[ldap] search failed
[ldap] ldap_release_conn: Release Id: 0
++[ldap] returns notfound
++[expiration] returns noop
If I try to restart the server it behaves the same way. The only way to get it working again is to cleare the server and re run the migration script.
Any help would be appreciated, I'm fairly new to YubiRadius and don't really know where to start looking.
br
Trond T.Statistics: Posted by trondat — Mon Dec 10, 2012 2:05 pm
]]>