Thanks a lot for the information! We’re now able to reproduce the problem.
Yes, you are right.
The fix should be:
chown freerad:freerad /var/log/univention/radius_ntlm_auth.logucr set logrotate/radius_ntlm_auth/create="644 freerad freerad"
Would be nice, if you can verify if this fixes the problem. We’re currently preparing an automatic fix via an errata update.
If you have implemented the workaround from Problem: Radius - Since upgrading to 5.2-x login to Radius fails - mschap: Program returned code (1), you have to remove AmbientCapabilities=CAP_DAC_OVERRIDE manually to prevent security problems on the long term.
Greetings,
Sönke