Arran Cudbard-Bell wrote:
Coincidently started testing the 2.00 pre code in a proper environment
today instead of just using
radclient. All seems to stand up pretty well, no random crashes or
weirdness... apart from of course the dreaded HUP
which results in a segfault.
That's good to
ann kok wrote:
it looks like the first radius issues the ip to the A
DSL client. but seondary radius doesn't know this ip
already allocated and issue this ip to B DSL client.
You've configured two different RADIUS servers to allocate the same IP
to two different people? Why?
How can we
Hi,
I am working on Authentication module in NSIS protocol suite (
http://user.informatik.uni-goettingen.de/~nsis/).
The scenario is as follows:
User A NSIS server-Radius server
User A sends the NSIS request with its keyed hash (generated using User A's
key) appended to it to
Hi,
On Wed, Apr 11, 2007 at 06:17:13PM +0200, Alan DeKok wrote:
For me at the moment it's easier to persuade freeradius
just to ignore such duplicities when reading clients by following simple
patch:
No. Your DB configuration is wrong, and needs to be fixed.
Maybe you need to
Hi,
On Thu, Apr 12, 2007 at 11:45:37AM +0530, Prateek Gupta wrote:
Hi,
I am working on Authentication module in NSIS protocol suite (
http://user.informatik.uni-goettingen.de/~nsis/).
The scenario is as follows:
User A NSIS server-Radius server
User A sends the NSIS
On Wed 11 Apr 2007, ann kok wrote:
Hi all
I am using two radius servers for our DSL clients.
but our client has ip conflict issue.
it looks like the first radius issues the ip to the A
DSL client. but seondary radius doesn't know this ip
already allocated and issue this ip to B DSL
Dear all,
We has the problem regarding the above subject...
mysql select * from radgroupcheck;
++---+--++---+
| id | GroupName | Attribute| op | Value |
++---+--++---+
| 1 | POSTPAID | Simultaneous-Use | == | 1
Hi,
On Thu, Apr 12, 2007 at 07:14:48AM +, PD wrote:
Dear all,
We has the problem regarding the above subject...
mysql select * from radgroupcheck;
++---+--++---+
| id | GroupName | Attribute| op | Value |
On Wed 11 Apr 2007, Murray Hooper wrote:
Are there any open source programs that parse the accounting logs produced
by freeradius? I can find a couple in Google, but they appear to have
been left behind in 1999.
Hi Murray
I have been using some code I wrote called detail2db.pl, which is a
On 4/12/2007, Milan Holub [EMAIL PROTECTED] wrote:
Hi,
On Thu, Apr 12, 2007 at 07:14:48AM +, PD wrote:
Dear all,
We has the problem regarding the above subject...
mysql select * from radgroupcheck;
++---+--++---+
| id | GroupName | Attribute|
On 4/12/2007, Milan Holub [EMAIL PROTECTED] wrote:
.cut...
== I believe you have a typo in the tables:
radgroupcheck: groupname=POSTPAID
usergroup: groupname=POSPAID
I still have another problem...
many of radacct table records are incompleted.
We know the user already disconnected (even by click
On Thu, Apr 12, 2007 at 07:42:16AM +, PD wrote:
I still have another problem...
many of radacct table records are incompleted.
We know the user already disconnected (even by click logout botton or
just shut his/her computer down), but the information did not saved.
At Radacct table,
Operator should be :=. Check first that you have sql checking enabled in
radiusd.conf:
# Session database, used for checking Simultaneous-Use. Either the
radutmp
# or rlm_sql module can handle this.
# The rlm_sql module is *much* faster
session {
# radutmp
#
# See
Dear members,
Thank you so far for your help, but I guess I have do describe my problem a
second time. I try to set up a security solution for a network using
freeradius. I want to port authenticate all Clients on a HP Switch and assign a
vlan to each port dynamically. The WXPSP2 Hosts are
Prateek Gupta wrote:
User A sends the NSIS request with its keyed hash (generated using User
A's key) appended to it to the NSIS server. Now the NSIS server needs to
authenticate that request with a Radius server.
Can you point to a specification saying how this hashing works?
Is there a
Dana 12/4/2007, PD [EMAIL PROTECTED] piše:
snip
+ what cause of this problem ?
snip
Either NAS thinks that users are still connected or your RADIUS server is
not receiving Stop packages. If NAS (NAS not radacct table) shows users
as connected you can add Idle-Timeout of about 5 minutes in user
Hi Alan,
On Wed, Apr 11, 2007 at 05:51:16PM +0200, Alan DeKok wrote:
Milan Holub wrote:
Hi all,
when I've compiled in snmp support (--with-snmp) on current cvs head I got
following segmentation fault(does not matter whether NAS are stored in DB
or in clients.conf):
I just
Hi.
Some problems with
FreeRADIUS Version 2.0.0-pre0, for host i686-pc-linux-gnu, built on Apr
12 2007 at 12:58:32
taken from cvs today:
rad_recv: Access-Request packet from host 127.0.0.1 port 46565, id=8,
length=95
User-Name = carta.skylink.msk.ru
User-Password = cisco
On 4/12/2007, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
+ what cause of this problem ?
Either NAS thinks that users are still connected or your RADIUS server is
not receiving Stop packages. If NAS (NAS not radacct table) shows users
as connected you can add Idle-Timeout of about 5 minutes in
On 4/12/2007, Milan Holub [EMAIL PROTECTED] wrote:
== is Accounting-STOP reaching your radius?
you can find out by running in debug mode: freeradius -X
== is the correct query run on your database? check accounting_ queries in
your sql/mysql-dialup.conf
* check your DB log files: eg. with mysql:
Hi Alan,
although I remember seeing some posts regarding read_groups are in CVS
it's not true. You can setup the config parameter in sql.conf but it's
ignored!
Here is a simple patch which solves the issue:
Index: src/modules/rlm_sql/rlm_sql.c
Alexander Serkin wrote:
...
auth: Failed to validate the user.
Login incorrect: [carta.skylink.msk.ru/cisco] (from client localhost
port 0 cli 250099013297573)
]event.c:1277] Out of memory
It looks like you don't have a Post-Auth Reject {} section in
radiusd.conf. That's OK. I'll fix the
Milan Holub wrote:
- when query the radiusAcc and radiusAuth everything works fine(no
segmentation faults); multiple queries give correct result
Thanks.
- when trying to force reload using snmp:
`snmpset -m /devel/freeradius/cvs/radiusd/mibs/RADIUS-AUTH-SERVER-MIB.txt
-c verysecret
Hi all,
I'm wondering about procedure of precessing radcheckradgroupcheck
database tables. On http://wiki.freeradius.org/Rlm_sql we can read:
Group processing then begins if any of the following conditions are met:
* The user IS NOT found in radcheck
* The user IS found in radcheck, but
Jacob Jarick wrote:
Hi I have recently setup freeradius on fedora 6 and I need it to
authenticate against windows ADS. Currently the requests come through
the AP but are rejected by freeradius.
The reason is in the logs.
[EMAIL PROTECTED] raddb]# radtest Administrator tfxsol 127.0.0.1:1812
Thanks for your prompt reply Alan,
My 1st post so forgive the omission, I will clear the logs then post
radtest and the log info tomorrow once at work.
On 4/12/07, Alan DeKok [EMAIL PROTECTED] wrote:
Jacob Jarick wrote:
Hi I have recently setup freeradius on fedora 6 and I need it to
Gurus,
may be i'm pulling some common mistake with my configuration being
tested against cvs snapshot, but no idea which one.
I've an sql profile telling:
some.dotted.user Cleartext-Password = cisco
NAS-IP-Address =~ xxx.xxx.97.(85|86)
authentication request:
Alexander Serkin wrote:
Gurus,
may be i'm pulling some common mistake with my configuration being
tested against cvs snapshot, but no idea which one.
I've an sql profile telling:
some.dotted.user Cleartext-Password = cisco
NAS-IP-Address =~ xxx.xxx.97.(85|86)
Hmm I don't
Arran Cudbard-Bell wrote:
Alexander Serkin wrote:
Gurus,
may be i'm pulling some common mistake with my configuration being
tested against cvs snapshot, but no idea which one.
I've an sql profile telling:
some.dotted.user Cleartext-Password = cisco
NAS-IP-Address =~
Arran Cudbard-Bell wrote:
Hmm I don't know how Cleartext-Password is mapped, always thought it was
a legacy attribute.
No. It's new in 1.1.4 following. See man rlm_pap.
Try User-Password ? Also it's == not = for check items .
No. Use Cleartext-Password, and :=.
Also check that
Hi Alexander,
On Thu, Apr 12, 2007 at 02:52:49PM +0400, Alexander Serkin wrote:
Doesn't matter, Arran. Tried User-Password and '==' with the same
result: module sqlauth returns ok but then:
rad_check_password: Found Auth-Type Local
auth: type Local
auth: No password configured for the
Alan DeKok wrote:
Arran Cudbard-Bell wrote:
Hmm I don't know how Cleartext-Password is mapped, always thought it was
a legacy attribute.
No. It's new in 1.1.4 following. See man rlm_pap.
Try User-Password ? Also it's == not = for check items .
No. Use Cleartext-Password, and
If you are happy with reliability then fix checkrad and it will clean
these random drops. That is the utility that radiusd calls to check
stale entries and in sql.conf you can enable deletion of such entries.
Just make sure that such users are not listed as active by the hotspot.
If NAS thinks
Milan Holub wrote:
Hi Alexander,
On Thu, Apr 12, 2007 at 02:52:49PM +0400, Alexander Serkin wrote:
Doesn't matter, Arran. Tried User-Password and '==' with the same
result: module sqlauth returns ok but then:
rad_check_password: Found Auth-Type Local
auth: type Local
auth: No
Arran Cudbard-Bell wrote:
What was Cleartext-Password introduced for ?
Because putting User-Password in the users file was wrong.
User-Password is an attribute that goes in an Access-Request.
Cleartext-Password does not go in any packet. Instead, is an internal
server configuration, that
Alexander Serkin wrote:
yes i did. In users file:
users: Matched entry DEFAULT at line 106:
DEFAULTHuntgroup-Name == MSK, Realm == NULL, Auth-Type
:= Local
Don't set Auth-Type. It's wrong, and it's breaking the server.
DO tell the server what the users known
OK,
1st off here is the document I have been following:
http://www.swami.se/swami/space/Categories/EduRoam/Workshop+about+eduroam+implementation/freeRadius_AD_tutorial.pdf
I have managed to get all tests and commands working except for
radtest (which i found out via google) and having an xpro
Alexander Serkin wrote:
Gurus,
may be i'm pulling some common mistake with my configuration being
tested against cvs snapshot, but no idea which one.
I've an sql profile telling:
some.dotted.user Cleartext-Password = cisco
NAS-IP-Address =~ xxx.xxx.97.(85|86)
The problem
Can you point to a specification saying how this hashing works?
A--B(nsis server)-C(radius server)
User A generates a large buffer which contains various Authentication
Attributes, A hash of this string is generated using MD5 algorithm with a
key known to both users A and C,
You could use the same ip pool across two NAS servers if you were only using
one radius server to assign IPs. I recommend you either make one radius
server handle only one NAS, so the ip pools don't collide, or used
rlm_sqlipool across them both as Peter pointed out.
Jan
On 12/04/07, Peter
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The only new features in this release are a few dictionaries. All of
the other changes are bug fixes, including the double-free's that were
in 1.1.5. We also fixed approximately 30 bugs found by Coverity
(http://scan.coverity.com).
One of the
HI all,
We're using FR authenticating against LDAP to implement our wireless
solution. Basically, we are looking at the LDAP field of record type and
determining if it is a staff or a student, and assigning a vlan based on
that. Pretty simple and it works. However, there are two issues with this:
Prateek Gupta wrote:
Can you point to a specification saying how this hashing works?
A--B(nsis server)-C(radius server)
User A generates a large buffer which contains various Authentication
Attributes, A hash of this string is generated using MD5 algorithm with
a key
Alexander Serkin wrote:
The problem is that regular expression check of
NAS-IP-Address =~ xxx.xxx.97.(85|86)
does not work.
In the CVS head?
What has changed since 1.1.5?
The CVS head is massively re-written.
Alan DeKok.
--
http://deployingradius.com - The web site of the
Alan DeKok wrote:
Alexander Serkin wrote:
The problem is that regular expression check of
NAS-IP-Address =~ xxx.xxx.97.(85|86)
does not work.
In the CVS head?
Yes i played with CVS head today.
Checked huge amount of regexp variants - none worked.
--
Sincerely Yours,
Alexander
-
List
I have faceing same problem when some time NAS send ACCT-STOP packet and packet
would be lost then user session would be open and next time whne user try to
login he/she got error multilogin so that i have implement checkrad.pl script
and check simultaneouse users through SNMP and it is working
checkrad work only for simultaneous detection not fix my stop time entry in sql
it is possible to modify checkrad to fix sql stop time in radacct table ?
[EMAIL PROTECTED] wrote: If you are happy with reliability then fix checkrad
and it will clean
these random drops. That is the utility that
hello,
i well try my freeradius with mssql, so i have installed Freeradius 1.3 ,
FreeTDS 0.64 and unixodbc 2.2...
i have mssql.conf,odbc.ini,odbcinst.ini,freetds.conf configured .
so if i run my radiusd with debug mode i see alyaws this error:
that means : failed connection.?
rlm_sql (sql):
On Thursday 12 April 2007 04:40:47 Milan Holub wrote:
- when trying to force reload using snmp:
`snmpset -m /devel/freeradius/cvs/radiusd/mibs/RADIUS-AUTH-SERVER-MIB.txt
-c verysecret localhost radiusAuthServConfigReset.0 i 2`
then 1st reload is OK but after then when trying to either run the
for a temp fix I would make your perl script ping said ip before
checking for idle (perhaps a sleep timer) or you could simply have
each supposed active ip pinged every 1 - 2 minutes by a seperate perl
script.
Would you mind posting your checkrad.pl script, Im a perl hacker myself :)
On 4/12/07,
Hi Alan
Thank you for your mail
We are using a LNS this time
We are using 2 radius servers. When one radius is
down, 2nd radius can help for authenticate
Regarding to separate ip spool
eg: radius 1. ip from x.x.x.2 - x.x.x.127
radius 2. ip from x.x.x.128 to x.x.x.254
if the radius1 is used up
Hello, I am researching my current problem with freeradius not authenticating.
The user is rejected because the name is not found, our AD (w2k3)
sends usernames to freeradius in this format domainname\\username.
I have tried enabling the nt hack under the ldap section with no luck.
reading
I had the same issue on fedora 6, the temporary solution is to roll
back to FreeRADIUS Version 1.1.3. There is an rpm availble if you
google.
It compiles fine on gentoo though.
On 4/12/07, BOQUET Stephanie [EMAIL PROTECTED] wrote:
Hi,
when I execute radiusd, it ends with Abandon : a
I am running both TTLS and PEAP. Everything seems ok but the radius.log is
filling up fast with these error messages. Is the error log configurable?
Thu Apr 12 09:14:51 2007 : Error: TLS_accept:error in SSLv3 read client
certificate A
Thu Apr 12 09:14:51 2007 : Error: rlm_eap: SSL
Hi Alan and all core developpers involved in this release,
first thanks for your great work on freeradius!
I just downloaded the 1.1.6 release via ftp and tried to build debian
packages on Etch and rpms on SLES10, here is the almost successful
story: ;-)
* debian:+
building worked just out
Hi all,
I use freeradius 1.0.1. I did a script that do a kill - HUP of radiusd when
someone add a NAS in the nas Mysql table.
It seems to work. But i see freeradius 1.1.6 correct a bug about HUP.
Can you tell me if i'm impacted by the bug corrected in 1.1.6
Thank you for your help
Thomas-
List
Alexander Serkin wrote:
Alan DeKok wrote:
Alexander Serkin wrote:
The problem is that regular expression check of
NAS-IP-Address =~ xxx.xxx.97.(85|86)
does not work.
In the CVS head?
Yes i played with CVS head today.
Checked huge amount of regexp variants - none worked.
Yep can
Read the last two days on the mailing list archives. It's all they've
been talking about.
It seems to work. But i see freeradius 1.1.6 correct a bug about
HUP.
-
List info/subscribe/unsubscribe? See
No. Idle-Timeout will work if NAS doesn't realize that user is not
online any more. It doesn't help if stop packets are lost. Only
checkrad or such routines that check user status with NAS will help
there.
Ivan Kalik
Kalik Informatika ISP
Dana 12/4/2007, satish patel [EMAIL PROTECTED] piše:
I
There is a line in (my)sql.conf:
# Remove stale session if checkrad does not see a double login
deletestalesessions = yes
that enables it. I don't know if there is such an entry in mssql.conf.
Ivan Kalik
Kalik Informatika ISP
Dana 12/4/2007, satish patel [EMAIL PROTECTED] piše:
Jacob Jarick wrote:
I had the same issue on fedora 6, the temporary solution is to roll
back to FreeRADIUS Version 1.1.3. There is an rpm availble if you
google.
1.1.6 was just released, which fixes this, and other issues.
Alan DeKok.
--
http://deployingradius.com - The web site
I've recently moved to 1.1.5, and went from a system that worked perfectly
with MS LDAP to one that will no longer find the user groups, using the
identical config. Anyone have any ideas? The obvious one is that
1.1.5throws in all kinds of escape characters, but i'm assuming that
is output
I have followed all your steps on how to get freeradius to work with AD, but
still no luck.
How do I go about getting assistance with my configuration?
Donny
On 4/12/07, Alan DeKok [EMAIL PROTECTED] wrote:
Prateek Gupta wrote:
Can you point to a specification saying how this hashing works?
Hi,
* debian:+
building worked just out of the box, but when trying to install
freeradius-dialupadmin_1.1.6-0_all.deb it complains about missing
php4, but actually php5 is installed (and should work as earlier
version of dialupadmin did). the rest of it (i tested right now sql,
ldap
CHui wrote:
I am running both TTLS and PEAP. Everything seems ok but the radius.log
is filling up fast with these error messages. Is the error log
configurable?
No.
Upgrade to 1.1.6. The messages will go away.
Alan DeKok.
--
http://deployingradius.com - The web site of the
Markus Krause wrote:
first thanks for your great work on freeradius!
You're welcome. A lot of the recent developments that make 2.0
realistic are a result of my recent move across 9 time zones. :)
* suse linux enterprise server 10:
the file suse/freeradius.spec contains the line
Jacob Jarick wrote:
Hello, I am researching my current problem with freeradius not authenticating.
The user is rejected because the name is not found, our AD (w2k3)
sends usernames to freeradius in this format domainname\\username.
That's not a 2-character delimiter. It's a backslash,
Alan DeKok wrote:
Markus Krause wrote:
first thanks for your great work on freeradius!
Second that.
You're welcome. A lot of the recent developments that make 2.0
realistic are a result of my recent move across 9 time zones. :)
Yes where are you located in the world
ann kok wrote:
Regarding to separate ip spool
eg: radius 1. ip from x.x.x.2 - x.x.x.127
radius 2. ip from x.x.x.128 to x.x.x.254
if the radius1 is used up the ip, ls the client
automatically asking the radius2 to get the ip?
No.
But you can configure radius1 to proxy the request to
Arran Cudbard-Bell wrote:
Seems only to be broken for ipaddr attributes.
Still works with string attributes
OK, that helps.
I did some profiling a while ago, and noticed that the server was
printing IP addresses to strings all the time... even when they weren't
used. The result was
Arran Cudbard-Bell wrote:
Yes where are you located in the world ?
GMT +1.
I've been quite impressed by your ability to post at all times of the
day/night. :)
I have a day job which permits me to spend a large amount of time on
FreeRADIUS. I have a small child who permits me to not
Alan DeKok wrote:
Arran Cudbard-Bell wrote:
Yes where are you located in the world ?
GMT +1.
Ah GMT here, Though would like to be GMT + 1 well the southern part
anyway :)
Mmm Pizza.
I've been quite impressed by your ability to post at all times of the
day/night. :)
Zitat von [EMAIL PROTECTED]:
Hi,
* debian:
building worked just out of the box, but when trying to install
freeradius-dialupadmin_1.1.6-0_all.deb it complains about missing
php4, but actually php5 is installed (and should work as earlier
version of dialupadmin did). the rest of it (i tested
Ryan Kramer wrote:
I've recently moved to 1.1.5, and went from a system that worked
perfectly with MS LDAP to one that will no longer find the user groups,
using the identical config. Anyone have any ideas? The obvious one is
that 1.1.5 throws in all kinds of escape characters, but i'm
No. It's part of the LDAP query.
In order to avoid external users logging in with names that are valid
LDAP queries, the untrusted user input is escaped before it is passed to
the LDAP module.
Apparently something in the ldap_escape_func is broken when talking to
Microsoft AD. I
On Thursday 12 April 2007 10:32:18 Kevin Bonner wrote:
On Thursday 12 April 2007 04:40:47 Milan Holub wrote:
Radius itself seems to react on radius packets; only snmp is ignored
after the snmp-write query. Completely same behaviour is observed when
doing reload via HUP signal(using my
Hi all!!
We had correctly working freeradius, but it suddenly failed in the authenticate
users. It began to work correctly after we restart the service.
Can we avoid this problem?
I attach the error log.
Thanks in advance
German
__
Correo
How would I then tell radius to remove the domain\\ from domain\\user
On 4/13/07, Alan DeKok [EMAIL PROTECTED] wrote:
Jacob Jarick wrote:
Hello, I am researching my current problem with freeradius not
authenticating.
The user is rejected because the name is not found, our AD (w2k3)
On Thu 12 Apr 2007, Ryan Kramer wrote:
No. It's part of the LDAP query.
In order to avoid external users logging in with names that are valid
LDAP queries, the untrusted user input is escaped before it is passed to
the LDAP module.
Apparently something in the ldap_escape_func is
Ryan Kramer wrote:
Apparently something in the ldap_escape_func is broken when talking to
Microsoft AD.
The code does not distinguish between Microsoft AD and other LDAP servers.
I replaced the code of that function with the much more
lenient code of the 1.0.1 ldap_escape_func, and it
Kevin Bonner wrote:
It surprises me that it still applies cleanly (just offset) with the current
CVS head.
The SMUX code hasn't changed much. It should probably be replaced
with AgentX code, but that can be done later...
Feel free to test the patch and report results in the bug or on
Jacob Jarick wrote:
How would I then tell radius to remove the domain\\ from domain\\user
Configure the ntdomain instance of the realms module, and make
sure it's listed in the authorize section. Then, configure the realm
by name in proxy.conf.
Alan DeKok.
--
http://deployingradius.com
On 4/12/07, Alan DeKok [EMAIL PROTECTED] wrote:
Ryan Kramer wrote:
Apparently something in the ldap_escape_func is broken when talking to
Microsoft AD.
The code does not distinguish between Microsoft AD and other LDAP
servers.
Correct, it is very simple code and doesn't care. My guess
Ryan Kramer wrote:
I SUSPECT something might not be escaped in a manner the MS AD server
likes, or maybe just the fact it has any escape sequences built in at
all is what is causing it to toss it.
No. As I have said already, the problem is that the LDAP queries are
being escaped. Please
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy.conf
Config: including file: /usr/local/etc/raddb/clients.conf
Config: including file: /usr/local/etc/raddb/snmp.conf
Config: including file:
Im having trouble getting rad test and my wireless clients to
authenticate. I have followed FreeRADIUS Tutorial for AD
intergration step by step.
Im using freeradius 1.1.3 to authenticate against a windows 2003 server.
I would use a later version but they all (including 1.1.6) segfault on fedora
Me again guys, I have adjusted my config files etc (see links betow),
but now Im stuck on this new error and it has me a bit baffled.
Freeradius 1.1.3
smb.conf http://pastebin.ca/437671
radius.conf http://pastebin.ca/437670
clients.conf http://pastebin.ca/437668
eap.conf
Freeradius 1.1.3
smb.conf http://pastebin.ca/437671
radius.conf http://pastebin.ca/437670
clients.conf http://pastebin.ca/437668
eap.conf http://pastebin.ca/437667
krb5.conf http://pastebin.ca/437666
A local test using radtest fails but I am unsure why. It looks like
its trying to authenticate
Jacob Jarick wrote:
I start the wireless connection on XP, enter in user and password,
freeradius runs the ntlm_auth command but then it spits out this
hge message. Its so big the terminals buffer isnt big enough, but
I have copied and pasted everything I can.
$ script logfile
$ radiusd
Jacob Jarick wrote:
*** glibc detected *** ./sbin/radiusd: double free or corruption
...
Its pretty much the same issue I had with 1.1.5 on fedora 6
Are you sure you've removed all of the 1.1.5 libraries and binaries?
And the immediate cause of the bug appears to be libltdl, if the
Jacob Jarick wrote:
A local test using radtest fails but I am unsure why. It looks like
its trying to authenticate against the unix passwd file,
Yes. See the users file. It sets authentication to /etc/passwd (or
system) if there's no other method set.
I only need
FR to auth against our
91 matches
Mail list logo