I'm trying to configure proftpd to use mod_radius. It's not working for
me. I'm sure I'm doing something wrong. Here's the lines I added into
my proftpd.conf file:

RadiusAcctServer mothra.int.ctc.net:1813 foobar
RadiusAuthServer mothra.int.ctc.net:1812 foobar
RadiusEngine on
RadiusLog file /var/log/ftpradius.log

When I try to connect using my ftp client, I get this from proftpd
(running with debug 9):

mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'USER ggtest103' to mod_core
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'USER ggtest103' to mod_core
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'USER ggtest103' to mod_delay
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'USER ggtest103' to mod_auth
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endpwent" to module mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endpwent" to module mod_auth_file
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endpwent" to module mod_auth_unix
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endgrent" to module mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endgrent" to module mod_auth_file
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endgrent" to module mod_auth_unix
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching CMD command
'USER ggtest103' to mod_auth
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getgroups" to module mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getgroups" to module mod_auth_file
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getgroups" to module mod_auth_unix
mothra.int.ctc.net (localhost[127.0.0.1]) - no supplemental groups found
for user 'ggtest103'
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching POST_CMD command
'USER ggtest103' to mod_delay
mothra.int.ctc.net (localhost[127.0.0.1]) - mod_delay/0.4: selecting
median interval from 14 values
mothra.int.ctc.net (localhost[127.0.0.1]) - mod_delay/0.4: delaying for
1396 usecs
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching LOG_CMD command
'USER ggtest103' to mod_log
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'PASS (hidden)' to mod_core
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'PASS (hidden)' to mod_core
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'PASS (hidden)' to mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'PASS (hidden)' to mod_delay
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching PRE_CMD command
'PASS (hidden)' to mod_auth
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endpwent" to module mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endpwent" to module mod_auth_file
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endpwent" to module mod_auth_unix
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endgrent" to module mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endgrent" to module mod_auth_file
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"endgrent" to module mod_auth_unix
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching CMD command
'PASS (hidden)' to mod_auth
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getgroups" to module mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getgroups" to module mod_auth_file
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getgroups" to module mod_auth_unix
mothra.int.ctc.net (localhost[127.0.0.1]) - no supplemental groups found
for user 'ggtest103'
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getpwnam" to module mod_radius
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getpwnam" to module mod_auth_file
mothra.int.ctc.net (localhost[127.0.0.1]) - dispatching auth request
"getpwnam" to module mod_auth_unix
mothra.int.ctc.net (localhost[127.0.0.1]) - no such user 'ggtest103'
mothra.int.ctc.net (localhost[127.0.0.1]) - USER ggtest103: no such user
found from localhost [127.0.0.1] to 127.0.0.1:21
mothra.int.ctc.net (localhost[127.0.0.1]) - Maximum login attempts (3)
exceeded
mothra.int.ctc.net - dispatching auth request "endpwent" to module
mod_radius
mothra.int.ctc.net - dispatching auth request "endpwent" to module
mod_auth_file
mothra.int.ctc.net - dispatching auth request "endpwent" to module
mod_auth_unix
mothra.int.ctc.net - dispatching auth request "endgrent" to module
mod_radius
mothra.int.ctc.net - dispatching auth request "endgrent" to module
mod_auth_file
mothra.int.ctc.net - dispatching auth request "endgrent" to module
mod_auth_unix
mothra.int.ctc.net - FTP session closed.
mothra.int.ctc.net - FS: using system lstat()

The strange part is that radius reports this:

May 25 13:31:57 Auth.notice: (Access-Request local 71 "ggtest103"
CLID=127.0.0.1): Login OK [ggtest103]

So what am I missing?

Also, does anyone have a sample of how to set this up to have radius
provide the uid,gid,home directory and shell? I couldn't find any docs
that had anything beyond the config file stuff.

Thanks.

-Greg G




-------------------------------------------------------
SF.Net email is sponsored by: GoToMeeting - the easiest way to collaborate
online with coworkers and clients while avoiding the high cost of travel and
communications. There is no equipment to buy and you can meet as often as
you want. Try it free.http://ads.osdn.com/?ad_id=7402&alloc_id=16135&op=click
_______________________________________________
ProFTPD Users List
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html