ERR904: The user can not be found in any

Dear All,

which file or Policy to be added to get this resolved.
using freeradius

user sent to privacyidea: MYDOMAIN\user.name
Wed Jan 13 19:34:18 2021 : Info: rlm_perl: ERR904: The user can not be found in any resolver in this realm!

Thanks in advance for your help

how to remove “MYDOMAIN” from MYDOMAIN\user.name it seems if this remove then issue will be resolved.

can anyone please help on this.

Thanks

Hi All, Now i am getting this, not sure where is wrong. can anyone please help me on this.

any request coming as user name : USER.PRO is workign fine but request coming like MYDOMAIN\USER.PRO is not working .

looking for your help

root@2fa:/etc/freeradius/3.0# cat /var/log/freeradius/radius.log

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Config File /etc/privacyidea/rlm_perl.ini found!

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Debugging config:

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Default URL https://localhost/validate/check

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Looking for config for auth-type Perl

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Auth-Type: Perl

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: url: https://localhost/validate/check

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: user sent to privacyidea: USER.PRO

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: realm sent to privacyidea: mydomain

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: resolver sent to privacyidea:

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: client sent to privacyidea:

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: state sent to privacyidea:

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: urlparam realm

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: urlparam user

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: urlparam pass

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Request timeout: 10

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: Not verifying SSL certificate!

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: elapsed time for privacyidea call: 0.136442

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: privacyIDEA request failed: 400 BAD REQUEST

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: privacyIDEA Result status is false!

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: ERR904: The user can not be found in any resolver in this realm!

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: privacyIDEA failed to handle the request

Thu Jan 14 10:04:47 2021 : Info: rlm_perl: return RLM_MODULE_NOTFOUND

This worked for me, after multiple try. thanks

what i had to do is, add bellow line in # /etc/freeradius/3.0/proxy.conf .

realm mydomain {
format = prefix
delimiter = “\” ## this is double slash, not sure why single slash is being appeared here.
}

and after this, i had to create realm in Privacy idea with name of --mydomain-- and started working.
not sure if this is right way to do.

1 Like

Thanks for posting your solution.

The FreeRADIUS server has some knowledge of realms and you could use it just as mentioned in your last post.

There would be other possibilities. You could use the FreeRADIUS ulang language to modify the username and simply strip the leading realm.
This would be interesting, if the users in freeradius had several different realms, but in your privacyIDEA you have all users in one realm.

Another possibility would be to use the mangle policy or the RequestManglerHandler to modify the username and strip the unused leading realm.

Thank you so much for you input, not sure if you remember, i am planning to connect you over 1-1 session as service :slight_smile: will connect you most probably next week.

BTW- what we have to write in mangle policy if my incoming user is as MYDOMAIN\USER.NAME
could you please help me to write the exact sentence in that box, is there anything else we have to apart from this ?

Thanks

Please have a look here:


and check Your configuration thoroughly.