De : a.l.m.bu...@lboro.ac.uk a.l.m.bu...@lboro.ac.uk
À : FreeRadius users mailing list freeradius-users@lists.freeradius.org
Envoyé le : Lundi, 22 Juin 2009, 19h16mn 31s
Objet : Re: Re : Radius+Huwaei switch + auto VLan Assignment issue
The domain
The Switch documentation said:
If set to Integer the Vlan-assignment-mode allow the switch to use VLAN ID to
tag frames.
If set to String it uses VLAN Name instead. We've set the domain as follow :
[uac_quid002]dis dom uacdom
The contents of Domain uacdom:
State =
The Switch documentation said:
If set to Integer the Vlan-assignment-mode allow the switch to use VLAN ID
to tag frames.
If set to String it uses VLAN Name instead.
So the Vlan-assignment-mode in the domain is Integer. But as the
Access-Accept message return
Vlan ID in this
RFC2869 says that Input and Output gigaword shoud be sent from NAS to
radius
server.
Now new versions of freeradius support gigaword. Should NAS supports
gigaword?
Some do, some don't. Most don't have it enabled by default. You will have
to look into NAS documentation to find out.
Ivan
Hi ,
i am getting dynamic ip's but ip is not assigned from the pool i given
.Can you please give me some suggestion i had given
*ippool main_pool {*
*# range-start,range-stop: The start and end ip
# addresses for the ip pool
Here is exactly the part of the documentation relative dynamique
vlan-assignment through radius authentication :
1.3.5 Configuring Dynamic VLAN Assignment
The dynamic VLAN assignment feature enables a switch to dynamically add the
switch ports of successfully authenticated users to different
Try to use configs for 3com
H3C the almost same switch, as 3Com.
Attou eric пишет:
Here is exactly the part of the documentation relative dynamique
vlan-assignment through radius authentication :
1.3.5 Configuring Dynamic VLAN Assignment
The dynamic VLAN assignment feature enables a switch to
i try to do sshd authentication to external radius through a pam. on my
linux i have freeradius client
my packages: pam 1.0, pam_radius-1.3.17, openssh-4.3p2,
freeradius-client-snapshot-20080830
my /etc/pam.d/sshd look like this:
#%PAM-1.0
auth sufficient
I try to do sshd authentication to external radius through a pam. on my
linux i have freeradius client
my packages: pam 1.0, pam_radius-1.3.17, openssh-4.3p2,
freeradius-client-snapshot-20080830
my /etc/pam.d/sshd look like this:
#%PAM-1.0
auth sufficient
when i try to connect to sshd i have log message of wrong password, i
check
it too on side of radius server.
some ideas about?
Do we get to see the debug?
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
You will place use-tunneled-reply=yes in peap config.
This is right config 3Com 4500(V3.03.00):
#
domain default enable company
#
dot1x
dot1x authentication-method eap
undo dot1x handshake enable
#
radius scheme Radius
server-type extended
primary authentication x.x.x.x
primary accounting
The module isn't being included after install (it's not with the other
modules in the usr/lib/freeradius dir)
When I run ./autoconf.sh, it says No Such File or Directory. Right now I'm
trying this from Ubuntu 8.04. I've installed autoconf and autoconf2.13
I found usr/bin/autoconf...so I thought
On Mon, Jun 22, 2009 at 23:08, Ivan Kalik t...@kalik.net wrote:
I installed freeradius 2 but my problem is still there.
To remember it :
I configured Freeradius to look in openldap directory to authenticate and
authorize an user.
The authentication phase is OK
During the authorize
Hi everyone.
I've trying to setup a freeradius 2.1.6 with Ldap and mschapv2 to
authenticate.
when I send test from my console, this works fine.
client:
$ radtest user pass 10.14.56.26 0 secret.
server in debug mode:
Ready to process requests.
rad_recv: Access-Request packet from host
Hi,
OK - so I'm using an proxy setup and need better logging.
Sample messages
Jun 23 13:54:59 localhost radiusd[23703]: Login OK: [rmayberr] (from
client 0.0.0.0/0 port 1812)
Assuming that 0.0.0.0/0 is coming from the clients file. Adding individual
clients isn't an option.
I want this
I've trying to setup a freeradius 2.1.6 with Ldap and mschapv2 to
authenticate.
when I send test from my console, this works fine.
But when I try to connect.
I don't know what I'm missing.
here is my radiusd.conf:
Why did you find it necessary to butcher default configuration? Use
default
OK - so I'm using an proxy setup and need better logging.
Sample messages
Jun 23 13:54:59 localhost radiusd[23703]: Login OK: [rmayberr] (from
client 0.0.0.0/0 port 1812)
Assuming that 0.0.0.0/0 is coming from the clients file. Adding individual
clients isn't an option.
I want this log to
use-tunneled-reply = yes is already set in peap section in eap.conf
The config on our switch look like this:
[uac_quid002]dis cur
sysname uac_quid002
#
radius nas-ip 192.168.100.5
#
domain default enable uacdom
#
dhcp-server 1 ip 192.168.100.2
dhcp-server 2 ip 192.168.5.1
#
dot1x
JR Mayberry wrote:
Ideas how to get this accomplished?
Edit the source code to make the log message configurable.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thanks for your response.
Now I'm using the defaults files and configure the access in modules
(raddb/modules/ldap).
Now seems like the solution is closer,
When I test this appear in my server in debug mode:
[ldap] No default NMAS login sequence
[ldap] looking for check items in directory...
Thanks for your response.
Now I'm using the defaults files and configure the access in modules
(raddb/modules/ldap).
Now seems like the solution is closer,
When I test this appear in my server in debug mode:
...
[eap] EAP NAK
[eap] NAK asked for unsupported type 25
[eap] No common EAP
Hello ;
New to this great mailing list and the whole linux world so please bare with
me. :)
Im using FreeRADIUS Version 1.1.7 with fedora core 10 and my freeradius
frontend is DMA Softlabs Radius Manager.
http://www.dmasoftlab.com/cont/home
My clients are authenticating through distrubuted
Ivan Kalik wrote:
Have you done some strange things to eap.conf or are you using the default
one? Default configuration works.
I replace eap.conf with the Default eap.conf file
and this is my debug:
++[ldap] returns ok
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap]
Let me explain my setup.
I have TWO Servers, with one running PoPtop+Radius plugin / freeradius 2.1.6 /
SQL DaloRadius Setup
Connection is INTERNETPPPFREERADIUSLAN
User X connects to Server A and authenticates against freedradius running on
Server A and is provided with Access use mschap v2
Alan,
Is there a file that I can modify to have a variable for minute?
Regards,
Sajeewa Warnakulasuriya
Systems Development Manager
ispONE is a wholesale ISP built to help internet access resellers and
independent ISPs to compete in the Australian marketplace through
ONE Brand, ONE
Hi Dogus:
In addition to the radiusd.conf and users file config that I assume you've
already figured out, you have to define the pool names in raddb/default if
you're going to use any pool name other than main_pool. ie:
# Return an address to the IP Pool when we see a stop record.
so Vlan-assignment-mode is Integer.
Where?are the tricks?
Make attempt use Vlan-assignment-mode is string in tuning of switch.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
27 matches
Mail list logo