communication.
You could implement this via a modified 'rlm_counter' module that returns
a 'Session-Timeout' value for the remaining time allocated to the user, if
you really wanted to.
It already does that.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National
to give out IPs.
You could also take a look to the rlm_ippool module to see if it can help in
your situation.
In any case though it would help if you were more specific in what you want to
achieve.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical
, and the other only framed
PPP access.
Any help will be greatly appreciated.
Thanks and regards,
Michael S Fuller
Read doc/rlm_ldap. You should use the Default and Regular profiles.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens
Load-Balancer 1075integer
If anyone is interested I could add it in the source.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
in the authenticate section instead of ldap and avoid sending the bind
request in the first place.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info
configuration directive and yes you
should use that filter.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http
it
works. Remember though to first delete the ip pool databases you may have since
their structure has changed.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow
to get this fixed.
Any ideas/suggestions
Ben
gdb sbin/radiusd core
When sending an email dont just write a one line description of what happened.
Send back debuging output. Remember that the ip pool module is in experimental
state. It is allowed to crash at this stage.
--
Kostas Kalevras
. It deallocates ip
196.12.182.92 and then it reassigns it to another user.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe
initialized once. So if you changed
the ip range afterwards, the changes will not be reflected in the db.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow
).
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
on the crashes? Does it core dump? If yes could you
do a backtrace on it?
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe
)
crash: cannot open kvm - dump file core
# act -d core
act 7.17
(Source code Copyright (c) 1997-2000 Sun Microsystems Inc.)
kvm_open: core is not a kernel core file (bad magic number 7f454c46)
kvm_open failed
gdb radiusd core
bt
--
Kostas Kalevras Network Operations Center
[EMAIL
=0x1bf24
rad_authenticate) at radiusd.c:1526
#10 0x21af4 in request_handler_thread (arg=0x821bd38) at threads.c:172
Ok, do a cvs update and see what happens now.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone
rlm_ippool.c should also be at least revision 1.3. You can find that by
doing something like:
5:23pm /src/cvs/radiusd grep rcsid src/modules/rlm_ippool/rlm_ippool.c
static const char rcsid[] = $Id: rlm_ippool.c,v 1.4 2002/05/03 22:10:54 kkalev
Exp $;
--
Kostas Kalevras Network Operations
own). If yes try
removing it. The unix module has a groupcmp function of it's own which
overrides the one registered by the ldap module.
Alan is it ok if I go on and add an Ldap-Group attribute for ldap group
membership?
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED
attribute will be added in
order to not have each module override the other.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
Well it most probably
Could you please send some debuging output. I would be especially interested in
the debug output of the handling of an accounting-stop packet for one of those
disconnects.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work
?
Thanks
Read http://www.frontios.com/freeradius.html. It explains using mysql for AAA.
In your case you should only enable accounting.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10
On Sat, 4 May 2002, Ben Casado wrote:
Were do you guys keep the accounting information?
Thanks,
Ben
radacct table
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back
in each module instance.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
[...] -- any other authorization modules
}
And in your users file:
DEFAULT Autz-Type := LDAP1, Hunt-Group-Name == Dialin
DEFAULT Autz-Type := LDAP2, Hunt-Group-Name == CAS
DEFAULT Auth-Type := MS-Chap, Autz-Type := LDAP3, Hunt-Group-Name == VPN
--
Kostas Kalevras Network
though:
DEFAULT Called-Station-Id =~ ^123
Reply-Message: Yes it worked
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info
missing? Any idas?
Thanx,
Chris
strace -e open radiusd -xx
That should help you find out what is happening.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow
:= pool2
while your authorize section will look like this:
authorize {
files
pool1
pool2
[...]
}
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back
. But
the customer wants a different layout...
Kind regards,
Chris
You could have one instance of the sql module just for accounting. Then you can
configure it to use another database, another accounting table and change the
accounting sql queries to match your table layout.
--
Kostas Kalevras
On Tue, 30 Apr 2002, Alexandre Strube wrote:
On Mon, 29 Apr 2002 16:31:13 +0300 (EET DST), Kostas Kalevras wrote:
Check out the counter module.
Now I found it! Needed to do using sql, which is not on 0.5 release, but only on
CVS. I just don't know if I have to do something different
Read the comments in radiusd.conf for the ippool module? They are quite
descriptive of what you need to do.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow
Time.
Any ideas?
Check out the counter module.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http
to comment out last 2 lines of least if - condition.
Fixed, thanks. The fix was to add a {} block.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
Region
Metrocall, Inc.
972-687-2074 Desk
[EMAIL PROTECTED]
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See
-snapshots diarectory.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
of the form:
Reply-Message: You are calling outside your allowed timespan
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe
On Sun, 14 Apr 2002, Mike wrote:
I've read the FAQ for Limiting Time logins, but couldn't find how to
do it for a user. Or where can I find some examples of these Login-Time-Limit
attributes?
Thanks.
doc/README
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED
. In general you can edit the user
settings,check user accounting,test users and the radius server, show online
users, do complicated queries on the accounting database and so on.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
/unsubscribe? See http://www.freeradius.org/list/users.html
Could you send the debuging logs (radiusd -X)?
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
On Mon, 8 Apr 2002, Jacobo [iso-8859-1] González Simón wrote:
Thanks for your reply but i don`t undestand you.
I haven´t rlm_ippool module.
Kostas Kalevras escribió:
Try the rlm_ippool module. It will do your job just fine. Check out the
comments in radiusd.conf.
If it does
**
and i start the radius,i can login with the same username many times
still.does there anything remained i didn't config?need your help,so kind of
you
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Read the file doc/Simultaneous-Use.
--
Kostas
if it gives you any results.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
is running 1.2.x.
Thanks, in advance, for any assistance that you can provide.
-rob
Check your server logs, do an ldap bind with the username/password you are
trying to check from the host runing the radius server and see what happens.
--
Kostas Kalevras Network
access server or any other access
server.
any ideas for such type of configuration?
thanks for your time.
Aqeel
Simultaneous-Use. Check out the corresponding file in the doc directory.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University
other than SELECT (UPDATE,INSERT etc) and use that in
rlm_counter when reading/writing/initializing the counter database.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back
not compile copy the Makefile from the
rlm_counter module and do s/counter/ippool.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe
think it can be done. I don't know of any way to set the source ip in
the ldap requests when using the ldap api. I may be wrong though. I believe you
could just use the firewalling facility of freebsd to route the ldap requests
through int B instead of A.
--
Kostas Kalevras Network Operations
.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
in the authenticate section. Use the pap and chap modules.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http
that
Hope this helps.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
authenticate {
# pam
chap
authtype PAP {
pap
file:
DEFAULT Group == group1
Port-Limit = 1
In general take a look at doc/rlm_ldap. It is quite helpfull.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back
request
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
PAP Attempt:
rad_recv: Access-Request packet from host 208.241.20.2:64305, id=17,
length=42
:[EMAIL PROTECTED]]
Sent: Wednesday, March 27, 2002 1:06 PM
To: [EMAIL PROTECTED]
Subject: Re: CHAP-Password LDAP Auth?
Kostas Kalevras [EMAIL PROTECTED] wrote:
Do one of the following:
1.
...
Can you add this to the default 'radiusd.conf.in'? There are enough
questions about CHAP
)
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
:
replyItem X-Ascend-Assign-IP-Pool radiusIP-Pool
ldap entry:
radiusIP-Pool: 2
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
of what you are trying to do?
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
leak that will rot your hard drive and
cause your business to go bankrupt.
- Dan
--
- Dan Perik
Computer Services Department
Lapilo Center
New Tribes Mission - PNG
Bug fixed in cvs. The fix was a little different than your patch but
anyway thanks for the bug note.
--
Kostas Kalevras
are
using mysql AAA you should just configure the mysql server
hostname/user/password and then start creating users in the mysql db from the
'New User' page.
Thanks..
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work
supports
clear,crypt and md5 encryption. Just remember to put the sql module in the
authorize section so that it can extract the user password from the database for
the pap module to use.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens
-52984755-215
email: [EMAIL PROTECTED]
Just change the radiusd.conf and maybe ldap.attrmap to suite your needs. Check
out doc/rlm_ldap to see what you have to change.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone
range-stop: The ip range from which to allocate ips
chache-size:The gdbm cache size. Should be around 1.5 * number of available
ips
the dhcp module should be added to the authorize and accounting sections of
radiusd.conf
--
Kostas Kalevras Network Operations Center
On Wed, 13 Mar 2002, Miquel van Smoorenburg wrote:
In article [EMAIL PROTECTED],
Alan DeKok [EMAIL PROTECTED] wrote:
Kostas Kalevras [EMAIL PROTECTED] wrote:
Here it goes. Try it and tell me how it works.
Here is a sample configuration
dhcp {
Looks good, but I'd call
) and not on the number of available nas
ports. See the comments in the radiusd.conf for the meaning/usage of the thread
pool config diretives.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10
that line supposed to read
$res = @da_sql_query($link,$config, DELETE FROM
$config[sql_user_info_table] WHERE UserName = '$login';);
???
Peter
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Yes you 're right. Bug fixed in cvs
--
Kostas Kalevras
: psinergybbs.com
#
general_snmpfinger_bin: %{general_base_dir}/bin/snmpfinger
general_radclient_bin: %{general_radiusd_base_dir}/bin/radclient
#
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone
radiusd.conf instead of
authorize{
[...]
sql
[...]
}
do
authorize{
[...]
sql{
notfound = return
}
[...]
}
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work
on this functionnality
implemented on freeradius ?
Yes, it's called Login-Time. Check out the README file
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List
Group == group1
Port-Limit = 1
In general take a look at doc/rlm_ldap. It is quite helpfull.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
extension and somehow it didn't change.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
in the dialup_admin for an explanation of the returned
values from user_state.php3.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe
Hello, here is a first draft for a freeradius tuning guide. It is mostly aimed
at those using ldap/sql AAA. Suggestions and comments are welcome.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone
=0x080cc9a4 end=0x080c len=808
Could you try seting ldap_cache_timeout to zero? The openldap ldap caching is
not quite what it should be.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10
instead of extending
radiusd.conf to allow for if/then/else checks.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
diff -ur radiusd.orig/raddb
On Fri, 15 Feb 2002, Alan DeKok wrote:
Kostas Kalevras [EMAIL PROTECTED] wrote:
Try it and tell me how it worked, cause I havent tested the patch heavily.
Alan, maybe we could just use the files module to make authorize/accounting
module selection based on checks on the incoming request
-Session := 14400
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
for ldap group membership in the users file.
Something like:
DEFAULT Group == nodialup, Auth-Type := Reject
DEFAULT Group == goin, Auth-Type := Accept
DEFAULT Group == big-customers, Max-Daily-Session := 36000
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National
the := operator)
and leave the counter in the authorize section.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe
incorrect,double logins etc) in the sql database with a
corresponding terminate cause.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info
and destroying
performance so i don't think it can happen.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See
an Auth-Type LDAP if
it is not already set. So add a correspoding authtype section in your
authenticate section of radiusd.conf. Something like:
authenticate{
authtype LDAP {
ldap
}
}
and it should work
--
Kostas Kalevras Network Operations Center
[EMAIL
Take a look at the rlm_counter module and the Simultaneous-Use attribute.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe
On Tue, 5 Feb 2002, Peter Santiago wrote:
what's the format of the db.counter?
GDBM file. But I don't think you should care about the file format.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone
On Tue, 5 Feb 2002, Peter Santiago wrote:
Well, let me rephrase the question. How do I create one? :)
Simple, you don't. The module will take care of creating and destroying the db
file.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical
? It
should 10-100 Full duplex without any errors.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
Same HDD for /usr and /var
max_request_time = 15
.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
Thanx
@+
--
DouRiX
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
in advance,
@+
--
DouRiX
Are you runing anything else on the machine? From the error message it seems
that defaults.php3 tried to allocate just 11KB which is quite reasonable.
I am not sure if the php memory_limit directive applies to a single page or to
the whole php process.
--
Kostas Kalevras
if the stop packets for those
stale entries have been recorded there.
In any case the server will log whatever the nas sends it.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back
authorize to
read:
authorize {
preprocess
chap
ldap
}
and everything will work just fine.
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow
files
ldap
}
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Wed, 9 Jan 2002, Tabor J. Wells wrote:
On Wed, Jan 09, 2002 at 09:01:50PM -0500,
[EMAIL PROTECTED] [EMAIL PROTECTED] is thought to have said:
Tabor J. Wells [EMAIL PROTECTED] wrote:
Ah. Ok. Then I guess I'm confused about something else in my config because
authenticating against
On Thu, 10 Jan 2002, Jeff Thompson wrote:
I need to know if any radius servers can do realm conversion, such as taking
an auth request coming into it from [EMAIL PROTECTED] and translating that over
to [EMAIL PROTECTED] and then authenticating it against whatever chosen method,
in this case,
On Wed, 9 Jan 2002, Chris Parker wrote:
Not quite, per the RFC, it is possible and allowed for the NAS to send
this in an Access-Request, as a hint. However, I do not know of any NAS
that actually do this, so Alan is correct that there is no way to
determine this during the Authentication
On Mon, 7 Jan 2002, pavesi wrote:
I noticed that there was some earlier posts about getting ldap + chap support
working with freeradius. I currently am using .4 of freeradius and have it
*almost*
working..
Whats weird when running in debug mode is that the rlm_ldap processes the
correct
On Mon, 7 Jan 2002, Chris Parker wrote:
At 11:51 AM 1/5/2002 +0200, Igor Chen wrote:
Seems that radius can't reach sql-user-name when updating session with
Alive record...
---
rlm_sql: Reserving sql socket id: 4
query: UPDATE radacct SET FramedIPAddress = '217.12.196.221' WHERE
On Sun, 30 Dec 2001, Gary Barnden wrote:
Hello all,
Following is the DEFAULT entry for one of my Access Servers and one
MultiLink PPP customer. Now for all non-MultiLink PPP customers this
configuration works like a charm.
However, it does not work for MultiLink PPP customers
mppp1
On Sat, 29 Dec 2001, Keith Pitcher wrote:
I've looked through the archives and so far haven't found anything on the
lists, so I'll ask.
How in the world do I get simultaneous-use working with SQL? I tried putting checks
for the group in radgroupcheck, for the individual user in radcheck,
On Sat, 29 Dec 2001, Ker Ruben Ramos wrote:
And still... no success... logs shows...
[LOG]
rlm_sql: Released sql socket id: 4
modcall[authorize]: module sql returns ok
rlm_counter: Entering module authorize code
rlm_counter: Could not find Check item value pair
modcall[authorize]:
On Wed, 26 Dec 2001, Lance Miller wrote:
Thanks in advance
RADIUS SERVER: freeradius-0.3
OS: Sun Solaris 8
I can do this:
I can authenticate with the LDAP Module loaded
I cannot do this:
Assign certain users who are defined in the LDAP database IP pool address from the
On Wed, 19 Dec 2001, power jessie wrote:
Are there any ways I can do these in freeradius (0.4)?
1. 'Expiration' will be set based on firt login date.
i.e. an account will expired 90 days after
first usage.
Expiration = FirstLoginDate + 90 Days
I don't think
On Tue, 18 Dec 2001, Aleksandr Kuzminsky wrote:
On Tue, 18 Dec 2001, Kostas Kalevras wrote:
No you can't. Why would you want to do something like that?
I want to authorize users that allowed to spent some hours online,
and no more. I'll calculate user's session total time using
counters
On Thu, 13 Dec 2001, Mark Fawcus wrote:
Hi,
I've been playing with freeradius in conjunction with MySQL, and not knowing
a huge amount about either, I hope someone here can offer some comments:
I have a requirement to use more than one database, with one used for
Authentication, and
On Wed, 12 Dec 2001, Michael Cunningham wrote:
Hiya,
I have a Nortel VPN server authenticating off the freeradius server (12/06
snapshot) which uses an ldap server for its user information.
The end users are using pptp. When using PAP to authenticate the client
works fine. When using
501 - 600 of 618 matches
Mail list logo