radtest issue with user authnetication

Owned by Jean-luc KRIKER
Last updated: Dec 01, 2020
2 min read



radtest -x -t pap testuser2 password1 localhost 10 testing123

(9) sql: WARNING: User not found in radcheck table.

user
(9) suffix: Checking for suffix after "@"
(9) suffix: No '@' in User-Name = "testuser2", looking up realm NULL
(9) suffix: No such realm "NULL"
(9)     [suffix] = noop
(9) eap: No EAP-Message, not doing EAP
(9)     [eap] = noop
(9)     [files] = noop
(9) sql: EXPAND %{User-Name}
(9) sql:    --> testuser2
(9) sql: SQL-User-Name set to 'testuser2'
rlm_sql (sql): Reserved connection (26)
(9) sql: EXPAND SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id
(9) sql:    --> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'testuser2' ORDER BY id
(9) sql: Executing select query: SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'testuser2' ORDER BY id
(9) sql: WARNING: User not found in radcheck table.
############################# JLK
### why it did not find anything? using the wrong database????
#############################
rlm_sql (sql): Reserved connection (27)
rlm_sql (sql): Released connection (27)
Need 8 more connections to reach 10 spares
rlm_sql (sql): Opening additional connection (28), 1 of 29 pending slots used
rlm_sql_sqlite: Opening SQLite database "/tmp/freeradius.db"
(9) sql: EXPAND SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority
(9) sql:    --> SELECT groupname FROM radusergroup WHERE username = 'testuser2' ORDER BY priority
(9) sql: Executing select query: SELECT groupname FROM radusergroup WHERE username = 'testuser2' ORDER BY priority
(9) sql: User not found in any groups
############################# JLK
### why it did not find anything? using the wrong database????
############################# 
rlm_sql (sql): Released connection (26)
(9)     [sql] = notfound
(9)     [expiration] = noop
(9)     [logintime] = noop
(9) pap: WARNING: No "known good" password found for the user.  Not setting Auth-Type
(9) pap: WARNING: Authentication will fail unless a "known good" password is available
(9)     [pap] = noop
(9)   } # authorize = ok
(9) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject
(9) Failed to authenticate the user
(9) Using Post-Auth-Type Reject
(9) # Executing group from file /etc/freeradius/3.0/sites-enabled/default
(9)   Post-Auth-Type REJECT {