Project

General

Profile

Bug #11388

Captive Portal authentication error with MySQL backend

Added by Viktor Gurov 2 months ago. Updated 2 months ago.

Status:
Feedback
Priority:
Normal
Assignee:
Category:
FreeRADIUS
Target version:
-
Start date:
02/09/2021
Due date:
% Done:

0%

Estimated time:
Affected Version:
Affected Architecture:

Description

https://forum.netgate.com/topic/160549/captive-portal-error:
has anyone encountered this particular issue with Freeradius3 0.15.7_27 with MySQL when a user tries to authenticate using username/password
"(0) Login incorrect (Failed retrieving values required to evaluate condition): [myuser/mypassword] (from client Firewall.pfsense port 0)"

I have other deployments of pfsense with freeradius and mysql authentication using the exact same config. which are working fine. The only difference i see is the freeradius package version in pfsense which is 0.15.7_20.

radiusd -X output:

...
(0) eap: No EAP-Message, not doing EAP
(0)     [eap] = noop
(0)     [files] = noop
(0)     if ((notfound || noop) && (&control:Auth-Type != Accept)) {
(0)     ERROR: Failed retrieving values required to evaluate condition
(0) dailycounter: WARNING: Couldn't find check attribute, control:Max-Daily-Session, doing nothing...
(0)     [dailycounter] = noop
(0) monthlycounter: WARNING: Couldn't find check attribute, control:Max-Monthly-Session, doing nothing...
(0)     [monthlycounter] = noop
(0) noresetcounter: WARNING: Couldn't find check attribute, control:Max-All-Session, doing nothing...
(0)     [noresetcounter] = noop
(0) expire_on_login: WARNING: Couldn't find check attribute, control:Expire-After, doing nothing...
(0)     [expire_on_login] = noop
(0)     if (&request:Calling-Station-Id == &control:Calling-Station-Id) {
(0)     ERROR: Failed retrieving values required to evaluate condition
(0)     [expiration] = noop
(0)     [logintime] = noop
(0) pap: WARNING: No "known good" password found for the user.  Not setting Auth-Type
(0) pap: WARNING: Authentication will fail unless a "known good" password is available
(0)     [pap] = noop
(0)   } # authorize = ok
(0) ERROR: No Auth-Type found: rejecting the user via Post-Auth-Type = Reject
(0) Failed to authenticate the user

History

#2 Updated by Renato Botelho 2 months ago

  • Status changed from New to Feedback
  • Assignee set to Viktor Gurov

merged

Also available in: Atom PDF