(RADIATOR) how do I fix "Could not AdjustPrivilege SE_TCB_PRIVILEGE"?

Mike McCauley mikem at open.com.au
Sat Sep 24 03:23:23 CDT 2005


Hello Slava,

Have you enabled the 'Act as part of the operating system' security policy for 
the user who runs Radiator (usually administrator)

Cheers.

On Saturday 24 September 2005 09:37, Veaceslav Revutchi wrote:
> Hello Hugh,
>
> I tried it on a Win server 2003 sp1, XP professional
> sp1, and XP professional sp2.
>
> slava.
>
> --- Hugh Irvine <hugh at open.com.au> wrote:
> > Hello Slava -
> >
> > Are you trying to use XP Home by any chance?
> >
> > Only XP Pro supports Radiator for this purpose. This
> > is mentioned in
> > the comment block at the beginning of the example
> > configuration file
> > in "goodies/lsa.cfg".
> >
> > If this is not the problem we would also like to
> > hear from anyone who
> > has found a solution.
> >
> > regards
> >
> > Hugh
> >
> > On 24 Sep 2005, at 03:19, Veaceslav Revutchi wrote:
> > > I'm trying to use AuthBy LSA module to do EAP/PEAP
> > > with AD and I keep getting the same errors when I
> > > start radiator:
> > > ------
> > > "C:\tmp\Radiator-Locked-3.13>perl radiusd -config
> > > goodies\lsa_eap_peap.cfg
> > > Fri Sep 23 10:03:55 2005: ERR: Could not
> > > AdjustPrivilege SE_TCB_PRIVILEGE: A req
> > > uired privilege is not held by the client.
> > >
> > > Fri Sep 23 10:03:55 2005: ERR: Could not load
> >
> > AuthBy
> >
> > > module Radius::AuthLSA:
> > > Fri Sep 23 10:03:55 2005: ERR: Unknown object
> >
> > 'AuthBy'
> >
> > > in goodies\lsa_eap_peap.c
> > > fg line 102
> > > Fri Sep 23 10:03:55 2005: DEBUG: Finished reading
> > > configuration file 'goodies\ls
> > > a_eap_peap.cfg'
> > > This Radiator license will expire on 2006-01-30
> > > This Radiator license will stop operating after
> >
> > 1000
> >
> > > requests"
> > > -----
> > >
> > > I tryed the whole thing on several XP machines
> >
> > with
> >
> > > the same outcome. Each time I was logged in as
> > > Administrator. Here are the steps I went through:
> > > Installed perl from active state, installed
> >
> > Win32-Lsa
> >
> > > and Net::SSLeay modules, installed radiator,
> >
> > patched
> >
> > > radiator, tested the sample radius.cfg ok. As soon
> >
> > as
> >
> > > I stick the AuthBy LSA section in the config I get
> >
> > the
> >
> > > above errors. I have the "access this computer
> >
> > from
> >
> > > the network" in Local Sec.Policy -> User Rights
> > > Assign. Security settings are Everyone,
> > > Administrators,Users.
> > >
> > > I searched the archives and found the same
> >
> > privilege
> >
> > > problem in other people's posts. Can someone who
> >
> > has
> >
> > > had the same problem give me a hint on how to fix
> >
> > it?
> >
> > > Any advice appreciated,
> > > slava.
> > >
> > >
> > >
> > >
> > > __________________________________
> > > Yahoo! Mail - PC Magazine Editors' Choice 2005
> > > http://mail.yahoo.com
> > >
> > > --
> > > Archive at
> >
> > http://www.open.com.au/archives/radiator/
> >
> > > Announcements on radiator-announce at open.com.au
> > > To unsubscribe, email 'majordomo at open.com.au' with
> > > 'unsubscribe radiator' in the body of the message.
> >
> > NB:
> >
> > Have you read the reference manual ("doc/ref.html")?
> > Have you searched the mailing list archive
> > (www.open.com.au/archives/
> > radiator)?
> > Have you had a quick look on Google
> > (www.google.com)?
> > Have you included a copy of your configuration file
> > (no secrets),
> > together with a trace 4 debug showing what is
> > happening?
> >
> > --
> > Radiator: the most portable, flexible and
> > configurable RADIUS server
> > anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> > -
> > Nets: internetwork inventory and management -
> > graphical, extensible,
> > flexible with hardware, software, platform and
> > database independence.
> > -
> > CATool: Private Certificate Authority for Unix and
> > Unix-like systems.
> >
> >
> >
> > --
> > Archive at http://www.open.com.au/archives/radiator/
> > Announcements on radiator-announce at open.com.au
> > To unsubscribe, email 'majordomo at open.com.au' with
> > 'unsubscribe radiator' in the body of the message.
>
> __________________________________
> Yahoo! Mail - PC Magazine Editors' Choice 2005
> http://mail.yahoo.com
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.

-- 
Mike McCauley                               mikem at open.com.au
Open System Consultants Pty. Ltd            Unix, Perl, Motif, C++, WWW
9 Bulbul Place Currumbin Waters QLD 4223 Australia   http://www.open.com.au
Phone +61 7 5598-7474                       Fax   +61 7 5598-7070

Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, 
TTLS, PEAP etc on Unix, Windows, MacOS etc.

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list