Alan,
I wrote the patch also for radzap. You will find it below. I patched the
man also.
I send you again the radwho patch with the correct path.
Regards,
Andrea
--- src/main/radwho.c.orig 2002-08-16 10:25:24.780004000 +0200
+++ src/main/radwho.c 2002-08-16 14:59:59.210005000 +0200
How to configure Cisco 29xx and freeradius,
to log to the enable level ?
I tried sending:
cisco-avpair = shell:priv-lvl=15
but it doesn't work
how should aaa authorization be set ?
do I have to use cisco_vsa_hack ?
Kuba
-
List info/subscribe/unsubscribe? See
Hello,
if I'm right, command and enable logging is supported only with
TACACS+ protocol. (I have AAA with freeRadius and command logging with
TACACS+)
Thomas
On 19 Aug 2002, Kuba Leszewski wrote:
How to configure Cisco 29xx and freeradius,
to log to the enable level ?
W licie z pon, 19-08-2002, godz. 11:32, Thomas Jalsovsky pisze:
Hello,
if I'm right, command and enable logging is supported only with
TACACS+ protocol. (I have AAA with freeRadius and command logging with
TACACS+)
yes, i think you're right
but that is not what I'm asking about
Does pam_radius_auth send attributes Acct-Output-
Octets, Acct-Input-Octets in accouting requests? If it
doesn't, how can I obtain these values in the table
radacct?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I am using RedHat 7.1 and ppp version 2.4.0 with freeradius. The
current version of portslave supports ppp version 2.4.0 and 2.4.1. RedHat
7.1 includes 2.4.0. I want to install portslave with ppp 2.4.0. The docs
say that for ppp version 2.4.0 use configure with this option.
Dear All
I cannot start the radius process after the
installation and output from debug mode as follows:
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file:
/usr/local/etc/raddb/proxy.conf
Config: including file:
Hi,
On the radiusd.conf file. You have to specify to shadow file. Search
for passwd and below that you will find shadow commented. Uncomment that.
That will take care of.
regards
Krishna
Krishna Shekhar
Network Administrator
Wiplash Wireless
At 08:50 PM 8/19/02 +0800, you wrote:
Dear
hi,
how must i configure my cisco and radius to use session-timeout and
max-month-session.
i use a cisco 5800 with c5800-p4-mz.121-7.bin
and freeradius 0.7
here are my configs:
cisco 5800
==
aaa authentication login dialin group radius
aaa authentication ppp dialin local group radius
Hello all
I have often read from a secret. But what is a secret?
And for what need I a secret?
Greets
Stefan
=
__
Gesendet von Yahoo! Mail - http://mail.yahoo.de
Möchten Sie mit einem Gruß antworten?
Stefan Winterling [EMAIL PROTECTED] wrote:
we managed it: we took the rlm_eap_tls source code of the radius version =
stored on the page of Adam Sulmicki and compile it in the newest radius =
version. -- ??
Uh, why? The latest version of the server includes an rlm_eap_tls
module.
But we
Krishna [EMAIL PROTECTED] wrote:
This works. But when I do make it looks for ppp version 2.4.1 directory.
How can I solve this?
Ask on the PPP list?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
At 03:17 PM 8/19/2002 +0200, [EMAIL PROTECTED] wrote:
hi,
how must i configure my cisco and radius to use session-timeout and
max-month-session.
i use a cisco 5800 with c5800-p4-mz.121-7.bin
and freeradius 0.7
here are my configs:
cisco 5800
==
aaa authentication login dialin group
On Sat, 17 Aug 2002, Kostas Kalevras wrote:
Please try the attached patch. You should then be able to use Login-Time
compares in the users file. Then you can do the following:
DEFAULT Login-Time == Any1400-0200, Max-Monthly-Session := 9
Fall-Through = 1
DEFAULT Login-Time ==
Title: ôä´ä.com club
Hi to all!
I need to configure my freeradius-0.7 in that manner:
1. I need a Max-Daily-Session (72 senconds) for a group by mean of
sqlcounter.
2. I want to force a Session-Timeout (7200 seconds) for the users of that
group.
My sqlcounter configuration is that:
sqlcounter dailycounter {
Title: ôä´ä.com club
Hi to all!
I need to configure my freeradius-0.7 in that manner:
1. I need a Max-Daily-Session (72 senconds) for a group by mean of
sqlcounter.
2. I want to force a Session-Timeout (7200 seconds) for the users of that
group.
My sqlcounter configuration is that:
Yes, there is an implementation of rlm_eap_tls but it doesn't work in my configuration
!?
See the postings of Jason Haar: Cannot get EAP-TLS to work with FreeRADIUS 0.7 :
I have the same problem and tried everything.
But with the source code of the other radius version it seems to work and
Hey All,
I've given this some serious thought and done a bunch of reading, and I'm
stuck. Here's what I want to do:
1. Provider A uses PAP
2. Provider B uses CHAP
3. I have an existing MySQL table (not radcheck) that has
a single unique row for each username; the people that use
PAP
I'm trying to configure authentication and authorization for the Cisco
VPN client out of FreeRadius. Cisco's docs
(http://www.cisco.com/warp/public/707/ipsec_radius_config.html) call for
the following:
ipsec:key-exchange=ike
ipsec:key-exchange=preshared-key
ipsec:addr-pool=ippool
At 01:24 PM 8/19/2002 -0400, Jason Lixfeld wrote:
I'm trying to configure authentication and authorization for the Cisco
VPN client out of FreeRadius. Cisco's docs
(http://www.cisco.com/warp/public/707/ipsec_radius_config.html) call for
the following:
ipsec:key-exchange=ike
David C. Troy [EMAIL PROTECTED] wrote:
How do I configure this so that it does basically this:
- Get auth request
- Is it PAP? If so, run query string A
- Compare crypted password
- Is it CHAP? If so, run query string B
- Compare cleartext password
You don't. You
Ugh.. Forget this thread -- I'm dumb! I know it's supported but what I
should have mentioned was that I was trying to insert them via the
web-interface which isn't supported here..
Sorry! :p
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
Jason
Jason Lixfeld [EMAIL PROTECTED] wrote:
The ipsec: av pairs I found and configured them as groupreply items.
I've found Service-Type but I can't find Tunnel-Type or Tunnel-Password.
Anything special I need to do to get these in there?
grep Tunnel-Type raddb/*
See 'dictionary.tunnel'
I'm trying to set up the following NAS devices
NAS Group=redback
1 Redback SMS 500 (with multiple contexts/global RADIUS authentication
settings for all contexts)
NAS Group=local
1 3Com TotalControl
2 Lucent Portmaster 3's
NAS Group=roaming
and authentication from a remote
This is a log exerp from a server using freeradius 0.7 authenticating
against mysql .. does anyone have a pointer for where I should start digging?
It seems to happen when the database is doing a hot-backup and is
unresponsive/slow for a few (10-15) minutes.
The 'useful' options from sql.conf
On Mon, 19 Aug 2002, Jason Lixfeld wrote:
Ugh.. Forget this thread -- I'm dumb! I know it's supported but what I
should have mentioned was that I was trying to insert them via the
web-interface which isn't supported here..
Sorry! :p
Assuming you are using SQL and by web interface you
Actually no I was talking about the icradius web interface. I'm going
to try dialup_admin though.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
Kostas Kalevras
Sent: Monday, August 19, 2002 2:34 PM
To: [EMAIL PROTECTED]
Subject: RE: IPSec
Todd T. Fries [EMAIL PROTECTED] wrote:
It seems to happen when the database is doing a hot-backup and is
unresponsive/slow for a few (10-15) minutes.
If authorization depends on that database, and it goes down for
10-15 minutes, then there's not much point in running the server
during that
Alexandre Strube [EMAIL PROTECTED] wrote:
Some people had the same trouble some time ago. The only thing
I could do to stop this was setting the Acct_Unique_Id as unique on
radacct table, so mysql server would discard subsequent packets
with the same id. My box keeps sending duplicated
Todd T. Fries [EMAIL PROTECTED] wrote:
It seems to happen when the database is doing a hot-backup and is
unresponsive/slow for a few (10-15) minutes.
Mon Aug 19 00:16:47 2002 : Error: rlm_sql: There are no DB handles to use!
Mon Aug 19 00:17:37 2002 : Error: CHILD: exit on signal (11)
I was wonderning if there was already some way to do
rrdb loggin graphing and graphing with freeradius. I
was surprised that when I went looking for such a
think, I found nothgin. It seams that it would be a
greatly desired function. Am I just looking in the
wrong place? Does anybody do rrdb (or
Andrea Gabellini [EMAIL PROTECTED] wrote:
I wrote the patch also for radzap. You will find it below. I patched the
man also.
I send you again the radwho patch with the correct path.
Ok... can you put it on a web page, or mime attach it? Your mailer
mangled the patch, and I can't commit
Dear Sir/Madam:
I have a problem to setup IP pool. (The free radius server
only assigns one IP address)
Could you please tell me:
whether freeradius-0.3 supports IP
pool or not?
any
document for IP pool?
Thanks
Li Lin
Are you trying to set up a block of IPs to be passed to a subscriber, or
dynamically assign an IP from a pool to a subscriber?
--
Mark P. Hennessy [EMAIL PROTECTED]
On Mon, 19 Aug 2002, Li Lin wrote:
Date: Mon, 19 Aug 2002 17:38:10 -0400
From: Li
Here's an example user named foo:
foo Auth-Type := System
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 192.168.2.21,
Framed-Netmask = 255.255.255.252,
Framed-Route = 192.168.2.20/30 192.168.2.21 1,
Framed-Compression =
Title: ·sºô¶1
ÃöÃh±M½u¡G02-27696687
ÃöÃh¶Ç¯u¡G02-27610817
ºô§}¡Ghttp://www.10fan.org.tw
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thanks Krishna, the problem be fixed
--- Krishna [EMAIL PROTECTED] wrote: Hi,
On the radiusd.conf file. You have to specify
to shadow file. Search
for passwd and below that you will find shadow
commented. Uncomment that.
That will take care of.
regards
Krishna
Krishna
Hi,
All you have to do is read the radiusd.conf file. You have, at the time of
linux installation, have enabled the shadow password option.
Go to the modules section and find the linux modules. There you will see
these lines
passwd = /etc/passwd
# shadow = /etc/shadow
group = /etc/group
Just
Hi,
Secret is a medium of authentication between a radius client and a radius
server by which they can identify and process each other's request. It is
similar to the password we use to check our mails, which is also a medium of
authentication between our email client and email server.
Atanu Das
40 matches
Mail list logo