Hello Ramesh,
Capacity depends a lot on how the RADIUS server is accessing
authentication stores. Are you storing these users in a LDAP or a DB?
It is these resources that generally become the bottle-neck first
rather than the RADIUS Server.
Also, are you doing authentication and accounting
Padam J Singh wrote:
Are you storing these users in a LDAP or a DB?
mysql db
Also, are you doing authentication and accounting (RAS) or just
authentication (EAP)?
authentication, accounting. Storing only accounting information.
Hello Ramesh,
Capacity depends a lot on how
Dear list,
after 4 days of work and lots of google searches I?m really in the need
for some help!
My Setup:
A Centos 5.2 x86_64 box, running source installations of postfix 2.5.x
and Dovecot Imap with domain and users stored in mysql, all with tls
enabled. Edimax AccessPoint 7206PDg
My goal:
Am 03.07.2009 um 12:24 schrieb Mike:
Dear list,
after 4 days of work and lots of google searches I?m really in the
need for some help!
My Setup:
A Centos 5.2 x86_64 box, running source installations of postfix
2.5.x and Dovecot Imap with domain and users stored in mysql, all
with tls
Nicolas Goutte schrieb:
Am 03.07.2009 um 12:24 schrieb Mike:
Dear list,
after 4 days of work and lots of google searches I?m really in the
need for some help!
My Setup:
A Centos 5.2 x86_64 box, running source installations of postfix 2.5.x
and Dovecot Imap with domain and users stored in
Can someone please help provide a clue into the problems with using ntlm_auth
in a Freeradius config running on Debian.
The user/password information are held in the LDAP server. I have been able
to authenticate successfully with packets coming from non-EAP clients. But
for EAP
Hello,
We use freeradius as a proxy server successfuly with many home server. But
Today with a new customer we're having an issue with shared key.
Here are some debugs.
srv-orhy# radiusd -v
radiusd: FreeRADIUS Version 2.1.3, for host x86_64-unknown-freebsd6.1,
built on Dec 16 2008 at 23:42:12
My goal:
Allowing User authentication for iPhone and Macs with user/password
My current Setup:
http://www.howtoforge.com/wifi-authentication-accounting-with-freeradius-on-centos5
I?ve followed this as far as possible. Only one difference: I did build
freeradius 1.1.7 from source in the lag
The user/password information are held in the LDAP server. I have been
able
to authenticate successfully with packets coming from non-EAP clients.
But
for EAP authentication clients, I have been receiving the following error
lines. (I am using ntlm_auth = /usr/bin/ntlm_auth
OK. I have done that, But still returned the error below!
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/mschapv2
[eap] processing type mschapv2
[mschapv2] +- entering group MS-CHAP {...}
[mschap] No Cleartext-Password
Am 03.07.2009 um 13:24 schrieb Clement Ogedengbe:
OK. I have done that, But still returned the error below!
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/mschapv2
[eap] processing type mschapv2
[mschapv2] +- entering group
hi,
is the required config in your inner-tunnel? ie is LDAP defined at all?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
No... I don't have any of such definition .. However, I can see the
following when Radius started ..
rlm_ldap: LDAP lmPassword mapped to RADIUS LM-Password
rlm_ldap: LDAP ntPassword mapped to RADIUS NT-Password
rlm_ldap: LDAP sambaLmPassword mapped to RADIUS LM-Password
rlm_ldap: LDAP
Yes... The LDAP authenticates successfully from Non EAP clients!
Clement
-Original Message-
From: freeradius-users-bounces+c.ogedengbe=worc.ac...@lists.freeradius.org
[mailto:freeradius-users-bounces+c.ogedengbe=worc.ac...@lists.freeradius.org]
On Behalf Of a.l.m.bu...@lboro.ac.uk
Clement Ogedengbe wrote:
Yes... The LDAP authenticates successfully from Non EAP clients!
I think you didn't understand the question.
Edit raddb/sites-available/inner-tunnel, and ensure that the LDAP
module is being used there, too.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Yes That was done!
Clement Ogedengbe
01905 54 2258
-Original Message-
From: freeradius-users-bounces+c.ogedengbe=worc.ac...@lists.freeradius.org
[mailto:freeradius-users-bounces+c.ogedengbe=worc.ac...@lists.freeradius.org]
On Behalf Of Alan DeKok
Sent: 03 July 2009 15:27
To:
Clement Ogedengbe wrote:
Yes That was done!
Then you don't have clear-text passwords in your LDAP server.
Post the debug output for an EAP session, and again for a non-EAP session.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi all,
I've decided to move logging on my radius boxes to a pair of syslog
servers, rather than stored locally. I'm using rsyslog to send the logs
over the network.
I follow this guide http://wiki.freeradius.org/Syslog_HOWTO but it seems
to be for an old version of FreeRADIUS. I have
Thanks Ivan. Sorry it was late response. I was out for sometime.
Just want to make sure that the comments in raddb/dictionary says 'If you
want to add entries to the dictionary file, which are NOT going to be placed
in a RADIUS packet, add them here'. So am I right adding it here?
Anyway I tried
Just want to make sure that the comments in raddb/dictionary says 'If you
want to add entries to the dictionary file, which are NOT going to be
placed
in a RADIUS packet, add them here'. So am I right adding it here?
Anyway I tried adding the new attribute in raddb/dictionary. There is no
Jonathan Gazeley wrote:
I've decided to move logging on my radius boxes to a pair of syslog
servers, rather than stored locally. I'm using rsyslog to send the logs
over the network.
It's a good tool.
I follow this guide http://wiki.freeradius.org/Syslog_HOWTO but it seems
to be for an old
le...@aecom.yu.edu wrote:
I'm trying to figure out the necessary steps and configs to make the
following happen. 2 groups of users, one residing in ldap with
samba/ntlm hashes and another in AD, need to authenticate through Radius
servers for 802.1x wireless.
How do you tell the two groups
Anatoly Oreshkin wrote:
...
[files] users: Matched entry DEFAULT at line 159
It isn't matching the users file entry.
++[files] returns ok
++[expiration] returns noop
++[logintime] returns noop
++[pap] returns noop
Found Auth-Type = EAP
+- entering group authenticate {...}
[eap] Request
Nicolas Boullis wrote:
Unfortunately, it does not, freeradius still tries TLS (PEAP?):
Hmm... it seems to work for me. I'd suggest trying 2.1.6.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
le...@aecom.yu.edu wrote:
I run into some difficulties troubleshooting Freeradius.
I turned on tls, with valid certificates and key file and the debug
output stops at this message, not going any further. The permissions on
cert and key files are fine, I even tried setting the radiusd user to
Hello,
I am trying to setup the poptop authentication through freeradius with
mysql backend. Freeradius server as of now will only authenticate
users and do accounting. IP delegation will be done by poptop.
The radtest for a test user is successful.
# radtest myuser testpassword localhost 1812
Hello Ajitabh,
Does PAP work? If it does, then your overall configuration is correct.
Whenever doing a new setup, always begin with PAP Password from PPTP
and Clear-text password in Mysql, and if it works then go ahead and
change the setting on either side to suit your needs.
I think the
27 matches
Mail list logo