Open amazor opened 1 month ago
Hi,
This issue is a duplicate of https://github.com/sonic-net/sonic-buildimage/issues/11352. You can pick the fix for this issue from https://github.com/sonic-net/sonic-buildimage/pull/14466 and that should solve the issue.
Set-up
Sonic_DUT (10.1.1.1) connected to FreeRadius Server (10.1.1.2)
Client Configurations (SONiC 202405)
Server Configurations (FreeRadius 3.0.26)
Edit /etc/freeradius/3.0/users Add a new user at the top of the file:
testuser Cleartext-Password := "testuser"
Edit /etc/freeradius/3.0/client.conf Add a new client with it’s ipaddress and secret key
Steps to Reproduce
Verify "testuser" does not exist in
/etc/passwd
Attempt to login with "testuser" for first time using Console
Can see that the user succeeds, but is immediately booted
testuser:x:1001:1006:testuser:/home/testuser:/usr/bin/sonic-launch-shell
Describe the results you received:
In RADIUS authentication through Console (with non-existent user in DUT), the client is succesfully authenticated using RADIUS, and a user will be created, but the default shell is incorrect. The "/usr/bin/sonic-launch-shell" application does not exist. This results in the user being logged-in and booted immediately.
Describe the results you expected:
The newly created user should have a working shell (such as /usr/bin/bash) with the proper permission. The user will be able to login.