The information you are about to copy is INTERNAL!
DO NOT share it with anyone outside Check Point.
RADIUS user cannot log in to Gaia Portal or SSH
Technical Level
Solution ID
sk98874
Technical Level
Product
Quantum Security Gateways
Version
R80.10 (EOL), R80.20, R80.30, R80.40, R81, R81.10
OS
Gaia
Date Created
17-Mar-2014
Last Modified
04-Nov-2021
Symptoms
RADIUS user cannot log in to Gaia Portal or SSH.
The /var/log/messages file shows the following when RADIUS user logs in over SSH: xpand[4174]: admin localhost t +volatile:mrma:users:user:test_user:su t
sshd[26810]: pam_radius_auth: Non local user 'test_user' will be in 'superusr' and have root access
xpand[4174]: test_user localhost t -volatile:set_clish_flag
clish[26812]: user logged from test_user
clish[26812]: User not logged in. He has no configured role.
xpand[4174]: test_user localhost t -volatile:mrma:users:user:test_user
xpand[4174]: test_user localhost t -volatile:mrma:users:user:test_user:access_mechanism:CLI
xpand[4174]: test_user localhost t -volatile:mrma:users:user:test_user:access_mechanism:Web
xpand[4174]: test_user localhost t -volatile:mrma:users:user:test_user:pid
xpand[4174]: test_user localhost t -volatile:mrma:users:user:test_user:role:radius-group-any
xpand[4174]: test_user localhost t -volatile:mrma:users:user:test_user:role:radius-group-any:domainname:default
xpand[4174]: test_user localhost t -volatile:mrma:users:user:test_user:su
clish[26812]: User test_user logged out due to an error from CLI shell
sshd[26810]: Received disconnect from x.x.x.x: 11: disconnected by user
sshd[26765]: pam_unix(sshd:session): session closed for user test_user
The /var/log/messages file shows the following when RADIUS user logs in Gaia Portal: httpauth: pam_radius_auth: Got response from RADIUS server
cp_radius_helper_1: Non-local user 'test_user' given role 'radius-group-any' (if that exists)
cp_radius_helper_1: Non-local user 'test_user' given role 'radius-group-any' (if that exists)
cp_radius_helper_1: Can't handle ':' or '\' in role name 'radius-group-XXX:XXXXX' for user test_user
xpand[4174]: nobody localhost t +volatile:mrma:users:user:test_user:pid 29873
xpand[4174]: nobody localhost t +volatile:pid:29873 test_user
xpand[4174]: nobody localhost t +volatile:ppid:29873 0
xpand[4174]: nobody localhost t +volatile:set_clish_flag t
xpand[4174]: nobody localhost t +volatile:mrma:users:user:test_user:access_mechanism:Web t
xpand[4174]: nobody localhost t +volatile:mrma:users:user:test_user:access_mechanism:CLI t
xpand[4174]: nobody localhost t +volatile:mrma:users:user:test_user t
xpand[4174]: nobody localhost t +volatile:mrma:users:user:test_user:role:radius-group-any t
xpand[4174]: nobody localhost t +volatile:mrma:users:user:test_user:role:radius-group-any:domainname:default t
xpand[4174]: nobody localhost t +volatile:mrma:users:user:test_user:su t
httpauth: pam_radius_auth: Non local user 'test_user' will be in 'superusr' and have root access
httpd2: User not logged in. He has no configured role.
'You are not configured for web access' message in Gaia Portal.
RADIUS user can login via SSH but RADIUS user login to Gaia WebUI does not work: