Author Topic: [SOLVED] Radius startet nicht: "Error restarting service RADIUS."  (Read 5460 times)

darius

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Liebe Community,

ich bin neu hier und habe gerade einen frischen Zentyal-Server (3.5) aufgesetzt. Bis jetzt läuft alles super, bis auf das Radius-Modul.
Auf der Startseite unter Status der Module steht: "RADIUS  Gestoppt". Sobald ich auf neustarten klicke, bekomme ich die Meldung: "Error restarting service RADIUS. See /var/log/zentyal/zentyal.log for more information."

Hier das Log-File:

---

2014/07/23 20:34:04 INFO> Service.pm:997 EBox::Module::Service::restartService - Restarting service for module: radius
2014/07/23 20:34:04 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - set -e
/bin/mv /var/lib/zentyal/tmp/RKOo45JVms '/etc/freeradius/radiusd.conf'
/bin/chmod 640 '/etc/freeradius/radiusd.conf'
/bin/chown root.freerad '/etc/freeradius/radiusd.conf'
2014/07/23 20:34:04 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - set -e
/bin/mv /var/lib/zentyal/tmp/ApjsXW5fb_ '/etc/freeradius/sites-available/default'
/bin/chmod 640 '/etc/freeradius/sites-available/default'
/bin/chown root.freerad '/etc/freeradius/sites-available/default'
2014/07/23 20:34:04 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - set -e
/bin/mv /var/lib/zentyal/tmp/XKLW_moJ2b '/etc/freeradius/sites-available/inner-tunnel'
/bin/chmod 640 '/etc/freeradius/sites-available/inner-tunnel'
/bin/chown root.freerad '/etc/freeradius/sites-available/inner-tunnel'
2014/07/23 20:34:05 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - set -e
/bin/mv /var/lib/zentyal/tmp/4RRKkDggtS '/etc/freeradius/users'
/bin/chmod 640 '/etc/freeradius/users'
/bin/chown root.freerad '/etc/freeradius/users'
2014/07/23 20:34:05 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - set -e
/bin/mv /var/lib/zentyal/tmp/LEDP1YCdR6 '/etc/freeradius/eap.conf'
/bin/chmod 640 '/etc/freeradius/eap.conf'
/bin/chown root.freerad '/etc/freeradius/eap.conf'
2014/07/23 20:34:05 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - set -e
/bin/mv /var/lib/zentyal/tmp/4ebaHBW74I '/etc/freeradius/modules/ldap'
/bin/chmod 640 '/etc/freeradius/modules/ldap'
/bin/chown root.freerad '/etc/freeradius/modules/ldap'
2014/07/23 20:34:05 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - set -e
/bin/mv /var/lib/zentyal/tmp/NczTG86_L7 '/etc/freeradius/clients.conf'
/bin/chmod 640 '/etc/freeradius/clients.conf'
/bin/chown root.freerad '/etc/freeradius/clients.conf'
2014/07/23 20:34:05 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - cat /var/run/freeradius/freeradius.pid
2014/07/23 20:34:05 DEBUG> Sudo.pm:189 EBox::Sudo::_root - /usr/share/zentyal/psgi/zentyal.psgi (pid: 19554) - service freeradius start
2014/07/23 20:34:05 ERROR> Sudo.pm:240 EBox::Sudo::_rootError - root command service freeradius start failed.
2014/07/23 20:34:05 ERROR> Service.pm:1001 EBox::Module::Service::restartService - Error restarting service: root command service freeradius start failed.
Error output: start: Job is already running: freeradius

Command output: .
Exit value: 1
2014/07/23 20:34:05 ERROR> Service.pm:1003 EBox::Module::Service::restartService - root command service freeradius start failed.
2014/07/23 20:34:05 ERROR> RestartService.pm:61 EBox::SysInfo::CGI::RestartService::_process - Restart of RADIUS from dashboard failed: root command service freeradius start failed.
Error output: start: Job is already running: freeradius


---

Habt ihr da vielleicht eine Idee, was das sein kann?? Ich habe Zentyal nun schon zum dritten Mal neu aufgesetzt, habe aber immer wieder das gleiche Problem. Was mache ich falsch?

Viele Grüße,
Darius
« Last Edit: August 01, 2014, 10:34:48 pm by darius »

weißnix

  • Zen Monk
  • **
  • Posts: 76
  • Karma: +1/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #1 on: July 28, 2014, 10:44:15 am »
Ich hatte vor einiger Zeit auch mit Radius rumgespielt, aber es wieder aufgegeben, weil noch nich alle meine AP's die Radiusauthentifizierung unterstützen.

Dessen ungeachtet kommt mir Dein Problem bekannt vor. Schau mal in die Radius-Logs. Bei mir waren die Zertifikate nicht korrekt erstellt worden und Radius verweigerte den Start.
Zentyal 7 auf Atom D525; 4GB RAM, 240 GB SSD,

File- und Mailserver
Remotezugriff via VPN

darius

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #2 on: July 28, 2014, 10:59:37 am »
Danke für den Hinweis. Im Radius-Log steht folgendes:

root@***:~# cat /var/log/freeradius/radius.log
Sun Jul 27 15:39:00 2014 : Info: Loaded virtual server <default>
Sun Jul 27 15:39:00 2014 : Info: Loaded virtual server inner-tunnel
Sun Jul 27 15:39:00 2014 : Info:  ... adding new socket proxy address * port 42833
Sun Jul 27 15:39:00 2014 : Info: Ready to process requests.


Ich verstehe es einfach nicht :(

weißnix

  • Zen Monk
  • **
  • Posts: 76
  • Karma: +1/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #3 on: July 28, 2014, 11:18:16 am »
Wenn ich das richtig sehe, kann Zentyal Radius nicht starten, weil Radius schon läuft. Also ist beim restart schon das runterfahren von radius gescheitert.
Starte Radius mal manuell neu. Ich bin nicht der Linux-Crack und nutze für sowas noch parallel webmin, um auf der systemebene zu agieren.
Beim manuellen restart kannst Du evtl. anhand der Meldungen Dein Problem weiter eingrenzen.
Zentyal 7 auf Atom D525; 4GB RAM, 240 GB SSD,

File- und Mailserver
Remotezugriff via VPN

darius

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #4 on: July 28, 2014, 11:28:29 am »
Nach einem manuellen Restart bekomme ich nun folgende Meldung:

root@***:~# /etc/init.d/freeradius restart
 * Stopping FreeRADIUS daemon freeradius                                         * /var/run/freeradius/freeradius.pid not found...                       [ OK ]
 * Starting FreeRADIUS daemon freeradius                                 [ OK ]

root@***:~# cat /var/log/freeradius/radius.log
Sun Jul 27 15:39:00 2014 : Info: Loaded virtual server <default>
Sun Jul 27 15:39:00 2014 : Info: Loaded virtual server inner-tunnel
Sun Jul 27 15:39:00 2014 : Info:  ... adding new socket proxy address * port 42833
Sun Jul 27 15:39:00 2014 : Info: Ready to process requests.
Mon Jul 28 11:23:04 2014 : Info: Loaded virtual server <default>
Mon Jul 28 11:23:04 2014 : Info: Loaded virtual server inner-tunnel
Mon Jul 28 11:23:04 2014 : Error: Failed binding to authentication address * port 1812: Address already in use
Mon Jul 28 11:23:04 2014 : Error: /etc/freeradius/radiusd.conf[240]: Error binding to port for 0.0.0.0 port 1812


Könnt ihr damit etwas anfangen? :/

StuartNaylor

  • Guest
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #5 on: July 28, 2014, 02:07:46 pm »
Run top (sudo top)

* /var/run/freeradius/freeradius.pid not found...

It looks like its not finding the previous process and it must still be running I guess

Actually ps -A (might not list in top)
« Last Edit: July 28, 2014, 02:10:07 pm by StuartNaylor »

darius

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #6 on: July 28, 2014, 03:20:23 pm »
Hi,


sudo top

  PID USER      PR  NI    VIRT    RES    SHR S  %CPU %MEM     TIME+ COMMAND
  937 freerad   20   0  176196   7284   3440 S   0,0  0,1   0:00.13 freeradius



ps -A

root@***:~# ps -A
  PID TTY          TIME CMD
    1 ?        00:00:19 init
    2 ?        00:00:00 kthreadd
    3 ?        00:00:00 ksoftirqd/0
    5 ?        00:00:00 kworker/0:0H
    7 ?        00:00:14 rcu_sched
    8 ?        00:00:16 rcuos/0
    9 ?        00:00:07 rcuos/1
   10 ?        00:00:06 rcuos/2
   11 ?        00:00:06 rcuos/3
   12 ?        00:00:00 rcu_bh
   13 ?        00:00:00 rcuob/0
   14 ?        00:00:00 rcuob/1
   15 ?        00:00:00 rcuob/2
   16 ?        00:00:00 rcuob/3
   17 ?        00:00:00 migration/0
   18 ?        00:00:00 watchdog/0
   19 ?        00:00:00 watchdog/1
   20 ?        00:00:00 migration/1
   21 ?        00:00:00 ksoftirqd/1
   22 ?        00:00:05 kworker/1:0
   23 ?        00:00:00 kworker/1:0H
   24 ?        00:00:00 watchdog/2
   25 ?        00:00:00 migration/2
   26 ?        00:00:00 ksoftirqd/2
   27 ?        00:00:00 kworker/2:0
   28 ?        00:00:00 kworker/2:0H
   29 ?        00:00:00 watchdog/3
   30 ?        00:00:00 migration/3
   31 ?        00:00:00 ksoftirqd/3
   33 ?        00:00:00 kworker/3:0H
   34 ?        00:00:00 khelper
   35 ?        00:00:00 kdevtmpfs
   36 ?        00:00:00 netns
   37 ?        00:00:00 writeback
   38 ?        00:00:00 kintegrityd
   39 ?        00:00:00 bioset
   40 ?        00:00:00 kworker/u9:0
   41 ?        00:00:00 kblockd
   42 ?        00:00:00 ata_sff
   43 ?        00:00:00 khubd
   44 ?        00:00:00 md
   45 ?        00:00:00 devfreq_wq
   46 ?        00:00:16 kworker/0:1
   48 ?        00:00:00 khungtaskd
   49 ?        00:00:00 kswapd0
   50 ?        00:00:00 ksmd
   51 ?        00:00:00 khugepaged
   52 ?        00:00:00 fsnotify_mark
   53 ?        00:00:00 ecryptfs-kthrea
   54 ?        00:00:00 crypto
   66 ?        00:00:00 kthrotld
   86 ?        00:00:00 deferwq
   87 ?        00:00:00 charger_manager
   99 ?        00:00:02 kworker/3:1
  139 ?        00:00:02 kworker/2:1
  140 ?        00:00:00 kpsmoused
  141 ?        00:00:00 kworker/1:1
  142 ?        00:00:00 kworker/0:2
  143 ?        00:00:00 scsi_eh_0
  144 ?        00:00:00 scsi_eh_1
  145 ?        00:00:00 scsi_eh_2
  146 ?        00:00:00 scsi_eh_3
  147 ?        00:00:00 scsi_eh_4
  148 ?        00:00:00 scsi_eh_5
  167 ?        00:00:02 jbd2/sda1-8
  168 ?        00:00:00 ext4-rsv-conver
  324 ?        00:00:00 kworker/u9:1
  371 ?        00:00:00 upstart-udev-br
  399 ?        00:00:00 upstart-file-br
  405 ?        00:00:00 systemd-udevd
  427 ?        00:00:09 rsyslogd
  432 ?        00:00:00 dbus-daemon
  457 ?        00:00:00 systemd-logind
  473 ?        00:00:00 irq/44-mei_me
  475 ?        00:00:00 hd-audio0
  486 ?        00:00:00 hd-audio1
  623 ?        00:00:00 upstart-socket-
  686 ?        00:00:00 ttm_swap
  891 tty4     00:00:00 getty
  893 tty5     00:00:00 getty
  901 tty2     00:00:00 getty
  902 tty3     00:00:00 getty
  905 tty6     00:00:00 getty
  925 ?        00:00:00 acpid
  930 ?        00:00:00 sh
  935 ?        00:00:00 sshd
  937 ?        00:00:00 freeradius
 1051 ?        00:00:00 lxdm-binary
 1069 ?        00:00:00 cron
 1103 tty7     00:00:44 Xorg
 1111 ?        00:00:03 mysqld
 1122 ?        00:00:46 freshclam
 1143 ?        00:00:17 redis-server
 1180 ?        00:00:00 kauditd
 1201 ?        00:00:00 sudo
 1204 ?        00:00:23 redis-server
 1327 ?        00:05:26 lxdm-greeter-gt
 1805 ?        00:00:00 dhcpd
 1928 ?        00:01:10 named
 2000 ?        00:02:40 perl
 2042 ?        00:00:02 haproxy
 2058 ?        00:00:02 perl
 2189 ?        00:01:13 collectd
 2267 ?        00:00:02 ntpd
 2364 ?        00:00:00 samba
 2366 ?        00:00:00 samba
 2367 ?        00:00:00 samba
 2368 ?        00:00:02 smbd
 2369 ?        00:00:01 samba
 2370 ?        00:00:00 samba
 2371 ?        00:00:09 samba
 2372 ?        00:00:00 samba
 2373 ?        00:00:01 samba
 2374 ?        00:00:28 samba
 2375 ?        00:00:00 samba
 2376 ?        00:00:00 samba
 2377 ?        00:00:10 samba
 2378 ?        00:00:01 samba
 2396 ?        00:00:02 sssd
 2416 ?        00:00:05 sssd_be
 2417 ?        00:00:22 sssd_nss
 2418 ?        00:00:00 sssd_pam
 2546 ?        00:01:02 squid3
 2569 ?        00:01:13 squid3
 2585 ?        00:00:00 unlinkd
 2737 ?        00:00:00 nginx
 2739 ?        00:00:03 nginx
 2740 ?        00:00:01 nginx
 2741 ?        00:00:03 nginx
 2742 ?        00:00:03 nginx
 2869 tty1     00:00:00 getty
 3315 ?        00:01:19 uwsgi
 5161 ?        00:00:00 kworker/u8:1
15762 ?        00:00:00 basic_ldap_auth
15800 ?        00:00:02 loggerd
23635 ?        00:00:00 sshd
23706 ?        00:00:00 kworker/3:2
23748 ?        00:00:00 sshd
23749 pts/4    00:00:00 bash
23751 ?        00:00:00 console-kit-dae
23816 ?        00:00:00 polkitd
23832 pts/4    00:00:00 sudo
23833 pts/4    00:00:00 bash
24388 ?        00:00:00 kworker/u8:0
26445 pts/4    00:00:00 ps

StuartNaylor

  • Guest
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #7 on: July 28, 2014, 04:05:35 pm »
netstat -patun | grep 1812

The previous shows you that freeradius is running.

Dunno why the restart is not finding it.

The above should show what is running on that port.


darius

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #8 on: July 28, 2014, 04:11:13 pm »
So netstat says that freeradius is running on that port...

root@***:~# netstat -patun | grep 1812
udp        0      0 0.0.0.0:1812            0.0.0.0:*                           937/freeradius

StuartNaylor

  • Guest
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #9 on: July 28, 2014, 04:41:07 pm »
Would seem so !?

It would look to be running. Maybe someone else from the community.

Who runs RADIUS? Any help anybody?
« Last Edit: July 28, 2014, 04:42:45 pm by StuartNaylor »

darius

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #10 on: July 30, 2014, 12:14:16 am »
Leider bekomme ich Radius immernoch nicht zum Laufen. Sonst keiner 'ne Idee? :/


bastolino

  • Zen Apprentice
  • *
  • Posts: 39
  • Karma: +0/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #12 on: July 30, 2014, 07:07:50 pm »
Zugegebenermaßen - die Radius-Implementation von Zentyal ist nicht wirklich fehlerfrei - insbesondere was die Verbindung zum LDAP angeht.
mach doch mal:
Code: [Select]
sudo killall freeradiuswiederholen, bis er dir sagt, dass er keinen Prozess mit dem Namen mehr gefunden hat. Danach:
Code: [Select]
sudo freeradius -X
Das -X ist für den Debug-Modus - er schreibt dir alles incl. Logfiles auf die Konsole. Wenn alles läuft und keine Fehlermeldungen mehr kommen mit Ctrl-C abbrechen und mit
Code: [Select]
sudo /etc/init.d/freeradius startstarten. Ich hatte im Übrigen Probleme mit Dateiberechtigungen unter /etc/samba/smb.conf und /etc/samba/openchange.conf - steht aber im Debugging welche Files genau. Hier die Rechte entsprechend geändert und läuft.
Nachdem ich mich mit Radius am Anfang auch totkonfiguriert habe weil bestimmte Settings bei Zentyal nicht gepasst haben - Kopf hoch und ansonsten einfach nochmal melden  :)

EDIT: @thk - Bugtrackersuche hilft nicht unbedingt immer, lieber mal ein konkretes Ticket verlinken. Und das Thema FreeRadius ist so komplex, dass ich hier viele Fragen erlaube bevor ich grantig werde ;)
« Last Edit: July 30, 2014, 07:09:57 pm by bastolino »

darius

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #13 on: July 30, 2014, 07:37:30 pm »
Suuuper, vielen vielen Dank bastolino, das hat funktioniert! :)

Nur leider kann ich mich nicht authentifizieren...

Wed Jul 30 19:33:01 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:33:01 2014 : Auth: Invalid user: [darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:33:09 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:33:09 2014 : Auth: Invalid user: [darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:33:47 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:33:47 2014 : Auth: Invalid user: [Darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:33:53 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:33:53 2014 : Auth: Invalid user: [Darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:34:09 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:34:09 2014 : Auth: Invalid user: [darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:34:26 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:34:26 2014 : Auth: Invalid user: [darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:34:48 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:34:48 2014 : Auth: Invalid user: [Darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:35:09 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:35:09 2014 : Auth: Invalid user: [Darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:35:19 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:35:19 2014 : Auth: Invalid user: [Darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:35:37 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:35:37 2014 : Auth: Invalid user: [Darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)
Wed Jul 30 19:36:02 2014 : Error:   [ldap] ldap_search() failed: Operations error
Wed Jul 30 19:36:02 2014 : Auth: Invalid user: [Darius] (from client CasaFuRouter port 0 cli 24-DB-ED-1E-22-FD)

StuartNaylor

  • Guest
Re: Radius startet nicht: "Error restarting service RADIUS."
« Reply #14 on: July 30, 2014, 10:41:17 pm »
/etc/freeradius/modules/ldap

Changed line from basedn = "DC=office,DC=zentyal,DC=lan" to basedn = "CN=Users,DC=office,DC=zentyal,DC=lan"

Just don't know how to change the scope.
« Last Edit: July 30, 2014, 10:47:58 pm by StuartNaylor »