sql.conf (by default) is where you should specify any query. There are
defaults in there which can be modified so that they work with your local
table structure.
Kevin Bonner
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE/3kAk/9i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Saturday 13 December 2003 05:23, ali hadim wrote:
I dont think it install on a windows
platform?
Read doc/CYGWIN from the FreeRADIUS source. Will hopefully get you on the
right track
Kevin Bonner
-BEGIN PGP SIGNATURE-
Version
of releasing as quick as possible?
Kevin Bonner
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE/vS9J/9i/ml3OBYMRAlY9AJoDBu823UA8HUFGpiq6pPwtW2bUKQCgk9OS
KLCtpkG614JXtAKnbRrkj70=
=VLbK
-END PGP SIGNATURE-
-
List info/subscribe/unsubscribe? See http
any problems related to
them. I can send relevant config settings if necessary, but the docs and
list archives should contain enough info to get started.
Kevin Bonner
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE/JXfw/9i/ml3OBYMRAvKyAJwNIl+zgA9
structures to allow for overlapping usernames and suit other needs.
For authorization, we use a similar table structure to the one posted by
Oliver Graf. At the moment, we use detail files + radrelay for accounting
and a stripped down accounting table mainly for session checks.
Kevin Bonner
-BEGIN
. Check what user your radius server is running as,
and make sure that user can write to that directory.
Kevin Bonner
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE/A1Ac/9i/ml3OBYMRAtINAJ9J+HWK1X/XCKT4YBNvuBwy82cXRwCZAQar
sHJ5hZtBeXdSKj+stiRsr1o=
=RPPc
-END PGP SIGNATURE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
If you haven't figured it out yet, read doc/Autz-Type
Kevin Bonner
On Monday 30 June 2003 09:22, Chad Stalvey wrote:
Has anyone ever used realms to determine which database will be used when
authenticating. I'm trying to separate users out
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
http://www.mail-archive.com/[EMAIL PROTECTED]/msg13199.html
Also searching for partial realm should give you something to work with.
Kevin Bonner
On Tuesday 24 June 2003 16:32, Dave Mason wrote:
I searched for several forms of realm wildcard
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Read doc/Autz-Type. In your users file, test the Client-IP-Address and set
the Autz-Type accordingly.
Kevin Bonner
On Tuesday 24 June 2003 19:50, Naman Latif wrote:
Hi,
Is it possible to configure a separate users list(and authentication
not work.
This should work: searchfor = [EMAIL PROTECTED]
Kevin Bonner
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE+6JbK/9i/ml3OBYMRAkQ8AJwI/i95hFw1/AlMtGyjyOlYn72+CgCffM5e
DqDMHyvqPFrZ8xbnXnxlhN4=
=o7YK
-END PGP SIGNATURE-
-
List info/subscribe/unsubscribe
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thursday 12 June 2003 10:49, [EMAIL PROTECTED] wrote:
Hi again
I really need to know if FREE Radius support IPv6.
Answer me please
AFAIK, it doesn't. As Alan says alot, patches are welcome.
Kevin Bonner
-BEGIN PGP SIGNATURE-
Version
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thursday 12 June 2003 11:08, Kevin Bonner wrote:
On Thursday 12 June 2003 10:49, [EMAIL PROTECTED] wrote:
Hi again
I really need to know if FREE Radius support IPv6.
Answer me please
AFAIK, it doesn't. As Alan says alot, patches
the script which
inserts rows into your database or alter the your table schema.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
/etc/raddb which leads to an error and radiusd not starting.
You should have /etc/raddb/dictionary which includes
/usr/local/share/freeradius/dictionary. Check the raddb/dictionary file from
that snapshot to verify.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http
On Wednesday 12 March 2003 08:31, Bogdan Rosu wrote:
unsubscribe
Open thine eyes and view the bottom of EVERY message sent on this list.
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
in the source for the correct syntax.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
. Also, check your check item operators. When you
startup radiusd, it should complain about having to convert them to the
proper ones. 'man 5 users' should give you a pretty good description of each
operator that is supported, and how/where to use them.
Kevin Bonner
-
List info/subscribe
radius servers, but we are working toward sending
updates to a mysql database.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Accepting from 0/0 is generally a bad idea. But if you really want to know
how to do it, the archives for this list has the answer.
Kevin Bonner
On Sunday 16 February 2003 13:06, Jon Anderson wrote:
Hi guys,
I must be being stupid here, but I'm trying to set up a radius server which
can
or NULL? Did you
modify the query in sql.conf to not grab the op field? If you still can't
see the problem, try submitting all SQL data for one username that is
generating that error.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
| := | Reject |
Why the radius server don't reject the user testuser?
Thanks in advance,
Alessandro Lazzini
Auth-Type is not a reply item, it is a check item. Move it to the respective
check tables and try your tests again.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http
The mailing list archives are your friend. They will show you the answer you
seek
On Thursday 30 January 2003 18:59, Shohab Baig wrote:
Hello folks
If anyone can help with the concept of handling sub-realms in free radius.I
have freeradius 0.8.1 installed on redhat 7.3. My server is
you can do it yourself
http://lists.cistron.nl/mailman/listinfo/freeradius-users
On Friday 24 January 2003 03:28, Jim McGill wrote:
Please opt me in to your mailing list.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Monday 23 December 2002 00:42, Wisam Najim wrote:
Thanks. It really helped. But what I want to know if that fastusers module
uses the -HUP option for every reload.
Regards,
The fastusers
Read doc/rlm_fastusers
Kevin
On Friday 20 December 2002 23:10, Wisam Najim wrote:
Hi All,
I'm authenticating ISDN users from users file while normal dialup users are
authenticated from Oracle database. Every time I add an ISDN user, I need
to stop and start the freeRADIUS instance. I want
clients.conf? It has examples on how you can do this. You can
use 0.0.0.0/0, but if you know the address range of IP's which they will
always come from, I would suggest using that instead.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
want to apply the changes
made to the schema, instead of dropping and rebuilding the table, read about
the 'alter table' syntax in mysql documentation.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
instead. If so, is there a way to change this?
thanx,
Gerald
Right now, it gets the mysql port from the /etc/services file. I'm sure
patches are always welcome.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Move the files line below the Autz-Type's in your authorize section.
Thanks for the help this is working now !
This should be corrected in the Autz-Type file in the doc directory ?
Christophe.
Yes, it should. I shall submit a patch to the devel list.
Kevin Bonner
-
List info/subscribe
module can't be used in the authenticate section.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-robin proxying.
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Friday 15 November 2002 04:15, Gian-Carlo Baldarelli wrote:
| 1 | rexsitt | User-Password | hp3ehp3 | NULL |
Have you searched the mailing list archives for people using NULL in the op
field? Have you also looked at some of the responses those people received?
The answer is there,
We use IOS 12.2(4)T3 currently. Use radtest on your radius box to make sure
all reply items are being sent as expected. That's about all I can think of
to try since the items are never seen by the cisco.
Kevin
On Thursday 14 November 2002 15:19, Dan wrote:
I did that. total debugging on
, but I think that the != will hopefully force people to set the
op field instead of ignoring it.
Kevin Bonner
diff -urN radiusd.orig/src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql
radiusd/src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql
--- radiusd.orig/src/modules/rlm_sql/drivers
Well...here's a patch for mysql. I guess the default op value should be
chosen wisely, but I think that the != will hopefully force people to set
the op field instead of ignoring it.
Kevin Bonner
d'oh! sorry for posting a patch to the users list
Kevin
-
List info/subscribe
On Friday 08 November 2002 16:34, Brian Kolaci wrote:
Well...here's a patch for mysql. I guess the default op value should
be chosen wisely, but I think that the != will hopefully force people
to set the op field instead of ignoring it.
Kevin Bonner
d'oh! sorry
I noticed you re-ordered the 'op' field, too. So long as the query
doesn't change, the code in rlm_sql shouldn't have to be changed,
right?
Alan DeKok.
Correct. The database layout should not affect the queries and shouldn't
affect the way people insert items into those tables.
Kevin
On Friday 08 November 2002 16:56, Chris Parker wrote:
I just committed updates for mysql,postgre,db2,oracle that change the
order ( so op is between Attribute and Value ) and make it NOT NULL.
I did not set a default. I think having the server reject invalid
entries upon an insert is the
believe the Called-Station-Id is sent only in accounting packets,
which is sent after successful authentication.
Have you looked into using realms?
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
if the account balance is negative (if the Realms table works now).
Read about Exec-Program-Wait in doc/README. That would probably be your
easiest solution, just write a script to check the acct balance and exit with
the proper return status.
Kevin Bonner
-
List info/subscribe/unsubscribe? See
If you make few DNS changes for your radius clients, you could put the IP
addresses instead of host names in your clients.conf file.
Kevin
On Monday 28 October 2002 06:18, Helmut Tröbs wrote:
Hello,
i use freeradius 0.7.1 as Proxy-RADIUS.
When i start the deamon, it made a nslookup for
On Thursday 10 October 2002 13:27, User for Free Radius mail list wrote:
On Thu, 10 Oct 2002, 3APA3A wrote:
passwd file doesn't contain any passwords or hashes, so it's useless
without shadow.
If you do not use shadow passwords it does keep encrypted passwords in the
passwd file.
Some suggestions:
1) Setup the sql query so that it inserts into the radacct_MM table, or
something similar. You can do this by using 'radacct_%Y%m' for the table
name. One problem with this would be at the end of the month when a new
table is used, the accounting stop records won't
On Friday 20 September 2002 15:00, [EMAIL PROTECTED] wrote:
radius_xlat: 'SELECT users.ID,username,networks.name as net FROM
users,network WHERE users.network=networks.ID Username = 'test''
Unless something new has been released, I don't think you can use ampersands
in mysql queries. Try
I had a problem with radrelay where it segfaulted when it reached an attribute
of the type 'Attr-X', where X is an integer. I could have played with the
dictionary file(s) to figure out what attribute it was, but the information
contained was not important to me. Creating a patch where it
Nick,
The Makefile is setup so that it won't overwrite your config files. You
should be fine by running 'make install'. If you're nervous of doing this,
just tar up your raddb directory so you have a way to undo what has been
done.
Kevin
On Tuesday 17 September 2002 22:39, Nick Marino
I'm using FR 0.7. I have proxying enabled, and the NULL realm accounting host
set to LOCAL. When I send an accounting packet using radclient, an
Accounting-Response packet is never sent. Everything in accounting returns
ok, but no response is sent back.
More info can be provided if
I've read docs mailing lists, and played with a test server, but I still
cannot figure this out. How can I tell FR to not proxy an accounting packet
if it came from a specific IP?
I have added an entry into proxy.conf where the accthost is LOCAL, and setup
an entry in acct_users to proxy to
I'm trying to get freeradius 0.6 to bypass the proxy settings and handle the
packet locally if an accounting packet comes from a certain IP. Here's what
I've got so far, but it still tries to proxy to the NULL realm accthost when
I send an accounting packet. Any help would be appreciated.
.
Thanks for your time,
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
50 matches
Mail list logo