[Serusers] Radius authentication problem

Jan Janak jan at iptel.org
Sun Feb 13 18:19:52 CET 2005 

On 03-02 05:53, M.V. Jaga Mohan wrote:
> HI All
> I am trying to configure SER with Freeradius. I have
> downloaded SER-0.8.14 source and compiled with
> radius_auth, Freeradius 0.9.1 and radiusclient library
> 0.4.2. Radius server is working fine. when i am trying
> to run SER i am getting the following error :
> 
> 0(7517) DEBUG: init_mod: auth_radius
>  0(7517) auth_radius - Initializing
>  0(7517) auth_radius: Error opening configuration file

  This means the configuration file of radiusclient library, the default
  is /usr/local/etc/radiusclient/radiusclient.conf

    Jan.


>  0(7517) init_mod(): Error while initializing module
> auth_radius
> ERROR: error while initializing modules
> 
> Just see the configuration file :
> 
> 
> 
> # ----------- global configuration parameters
> ------------------------
> 
> #debug=3         # debug level (cmd line: -dddddddddd)
> #fork=yes
> #log_stderror=no	# (cmd line: -E)
> 
> #Uncomment these lines to enter debugging mode 
> debug=9
> fork=no
> log_stderror=yes
> 
> 
> check_via=no	# (cmd. line: -v)
> dns=no           # (cmd. line: -r)
> rev_dns=no      # (cmd. line: -R)
> #port=5060
> #children=4
> fifo="/tmp/ser_fifo"
> 
> # ------------------ module loading
> ----------------------------------
> 
> # Uncomment this if you want to use SQL database
> #loadmodule "/usr/local/lib/ser/modules/mysql.so"
> 
> loadmodule "/usr/local/lib/ser/modules/sl.so"
> loadmodule "/usr/local/lib/ser/modules/tm.so"
> loadmodule "/usr/local/lib/ser/modules/rr.so"
> loadmodule "/usr/local/lib/ser/modules/maxfwd.so"
> loadmodule "/usr/local/lib/ser/modules/usrloc.so"
> loadmodule "/usr/local/lib/ser/modules/registrar.so"
> 
> # Uncomment this if you want digest authentication
> # mysql.so must be loaded !
> loadmodule "/usr/local/lib/ser/modules/auth.so"
> #loadmodule "/usr/local/lib/ser/modules/auth_db.so"
> loadmodule "/usr/local/lib/ser/modules/auth_radius.so"
> # ----------------- setting module-specific parameters
> ---------------
> 
> # -- usrloc params --
> 
> #modparam("usrloc", "db_mode",   0)
> 
> # Uncomment this if you want to use SQL database 
> # for persistent storage and comment the previous line
> #modparam("usrloc", "db_mode", 2)
> 
> # -- auth params --
> # Uncomment if you are using auth module
> #
> #modparam("auth_db", "calculate_ha1", yes)
> #
> # If you set "calculate_ha1" parameter to yes (which
> true in this config), 
> # uncomment also the following parameter)
> #
> #modparam("auth_db", "password_column", "password")
> 
> modparam("auth_radius", "radius_config",
> "/usr/local/etc/radiusclient/radiusclient.conf")
> 
> #modparam("auth_radius", "service_type", 15);
> 
> # -- rr params --
> # add value to ;lr param to make some broken UAs happy
> modparam("rr", "enable_full_lr", 1)
> 
> # -------------------------  request routing logic
> -------------------
> 
> # main routing logic
> 
> route{
> 
> 	# initial sanity checks -- messages with
> 	# max_forwards==0, or excessively long requests
> 	if (!mf_process_maxfwd_header("10")) {
> 		sl_send_reply("483","Too Many Hops");
> 		break;
> 	};
> 	if ( msg:len > max_len ) {
> 		sl_send_reply("513", "Message too big");
> 		break;
> 	};
> 
> 	# we record-route all messages -- to make sure that
> 	# subsequent messages will go through our proxy;
> that's
> 	# particularly good if upstream and downstream
> entities
> 	# use different transport protocol
> 	record_route();	
> 	# loose-route processing
> 	if (loose_route()) {
> 		t_relay();
> 		break;
> 	};
> 
> 	# if the request is for other domain use UsrLoc
> 	# (in case, it does not work, use the following
> command
> 	# with proper names and addresses in it)
> #	if (uri==myself) {
> 
> 		if (method=="REGISTER") {
> 
> # Uncomment this if you want to use digest
> authentication
> 			if (!radius_www_authorize("192.168.5.1")) {
> 				www_challenge("192.168.5.1","0");
> 				break;
> 			};
> 
> 			save("location");
> 			break;
> #		};
> 
> 		# native SIP destinations are handled using our
> USRLOC DB
> 		if (!lookup("location")) {
> 			sl_send_reply("404", "Not Found");
> 			break;
> 		};
> 	};
> 	# forward to current uri now; use stateful
> forwarding; that
> 	# works reliably even if we forward from TCP to UDP
> 	if (!t_relay()) {
> 		sl_reply_error();
> 	};
> 
> }
> 
> 
> 
> 
> Please tell me what could be the problem.
> 
> Thanks in advance
> 
> Jagan
> 
> 
> =====
> 
> _______________________________________________
> Serusers mailing list
> serusers at lists.iptel.org
> http://lists.iptel.org/mailman/listinfo/serusers

More information about the sr-users mailing list