Dear All,
which file or Policy to be added to get this resolved.
using freeradius
user sent to privacyidea: MYDOMAIN\user.name
Wed Jan 13 19:34:18 2021 : Info: rlm_perl: ERR904: The user can not be found in any resolver in this realm!
Thanks in advance for your help
how to remove "MYDOMAIN" from MYDOMAIN\user.name it seems if this remove then issue will be resolved.
can anyone please help on this.
Thanks
Hi All, Now i am getting this, not sure where is wrong. can anyone please help me on this.
any request coming as user name : USER.PRO is workign fine but request coming like MYDOMAIN\USER.PRO is not working .
looking for your help
root@2fa:/etc/freeradius/3.0# cat /var/log/freeradius/radius.log
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Config File /etc/privacyidea/rlm_perl.ini found!
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Debugging config:
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Default URL https://localhost/validate/check
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Looking for config for auth-type Perl
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Auth-Type: Perl
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: url: https://localhost/validate/check
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: user sent to privacyidea: USER.PRO
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: realm sent to privacyidea: mydomain
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: resolver sent to privacyidea:
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: client sent to privacyidea:
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: state sent to privacyidea:
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: urlparam realm
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: urlparam user
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: urlparam pass
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Request timeout: 10
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Not verifying SSL certificate!
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: elapsed time for privacyidea call: 0.136442
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: privacyIDEA request failed: 400 BAD REQUEST
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: privacyIDEA Result status is false!
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: ERR904: The user can not be found in any resolver in this realm!
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: privacyIDEA failed to handle the request
Thu Jan 14 10:04:47 2021 : Info: rlm_perl: return RLM_MODULE_NOTFOUND
This worked for me, after multiple try. thanks
what i had to do is, add bellow line in # /etc/freeradius/3.0/proxy.conf .
realm mydomain {
format = prefix
delimiter = “\” ## this is double slash, not sure why single slash is being appeared here.
}
and after this, i had to create realm in Privacy idea with name of --mydomain-- and started working.
not sure if this is right way to do.
Thanks for posting your solution.
The FreeRADIUS server has some knowledge of realms and you could use it just as mentioned in your last post.
There would be other possibilities. You could use the FreeRADIUS ulang language to modify the username and simply strip the leading realm.
This would be interesting, if the users in freeradius had several different realms, but in your privacyIDEA you have all users in one realm.
Another possibility would be to use the mangle policy or the RequestManglerHandler to modify the username and strip the unused leading realm.
Thank you so much for you input, not sure if you remember, i am planning to connect you over 1-1 session as service 
will connect you most probably next week.
BTW- what we have to write in mangle policy if my incoming user is as MYDOMAIN\USER.NAME
could you please help me to write the exact sentence in that box, is there anything else we have to apart from this ?
Thanks
Please have a look here: