Ville Leinonen wrote:
I try to use FR to forwarding access-request to NPS servers, but some
reason FR/NPS gives User password is incorrect message. I have tripple
check that password is correct. When i test IAS to NPS proxy it works. I
have enable in NPS side MS-CHAP-v2, MS-CHAP, CHAP and
Hi,
I have also changed shared secrets and it's not helping.
Br,
Ville
Ville Leinonen wrote:
I try to use FR to forwarding access-request to NPS servers, but some
reason FR/NPS gives User password is incorrect message. I have tripple
check that password is correct. When i test IAS to NPS
Hi,
I have also changed shared secrets and it's not helping.
Br,
Ville
Ville Leinonen wrote:
I try to use FR to forwarding access-request to NPS servers, but some
reason FR/NPS gives User password is incorrect message. I have tripple
check that password is correct. When i test IAS to NPS
Hello,
I use Freeradius on Debian with mac-based authentification along with a
MySQL
database containing the mac addresses (as Login Password). I would like to
open
the network to everyone, so I wonder how to make freeradius to authorize any
mac address to open the network ?
Regards,
Thanks Ivan. How do i examine the packet that caused freeze? Using
detail.work file? please suggest.
Thanks,
Rams.
I installed freeradius with detail, buffered-sql active. How to monitor
the
buffered-sql module. If it stops or sleeps for very long time responding
to
mysql db.?
I saw all
Check out the users file and the DEFAULT directive.
- Original Message -
From: freeradius-users-bounces+ggatten=waddell@lists.freeradius.org
freeradius-users-bounces+ggatten=waddell@lists.freeradius.org
To: freeradius-users@lists.freeradius.org
2009/8/28 Sergio Belkin seb...@gmail.com:
Hi I am using Version 2.1.1 with openldap on Centos 5
I wonder if is feasible dumping to logs when user gets login incorrect
if due to non-existance of that uid on Ldap.
Thanks in advance!
--
--
Shame on me! That's is something that already logs
Hi All,
I'm using freeradius2.1.6 with buffered-sql , detail files for accounting.
In accounting queries i observed acctstoptime = %S.
my db some how freezed and radius stopped updating packets from detail.wotk
file. When restarted it started updating but updating the packets with new
timestamps
I use Freeradius on Debian with mac-based authentification along
with a MySQL
database containing the mac addresses (as Login Password). I would like
to open
the network to everyone, so I wonder how to make freeradius to authorize
any
mac address to open the network ?
Why bother
I'm using freeradius2.1.6 with buffered-sql , detail files for accounting.
In accounting queries i observed acctstoptime = %S.
my db some how freezed and radius stopped updating packets from
detail.wotk
file. When restarted it started updating but updating the packets with new
timestamps
I have too much NAS and it's just temporary.
Regards,
RedVivi
- Mail Original -
De: Ivan Kalik t...@kalik.net
À: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Envoyé: Lundi 31 Août 2009 16h15:33 GMT +01:00 Amsterdam / Berlin / Berne /
Rome / Stockholm / Vienne
Thanks Ivan. How do i examine the packet that caused freeze? Using
detail.work file? please suggest.
Yes, that will be the packet(s) in detail.work file.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I have configured three virtual servers: default, inner (uses
eap-ttls), inner-peap (uses eap-peap). I guess that out of tunnel
attempts go to default server log files.
cron performs a daily task that more or less perform something like that:
grep OK /var/log/radius/radiusd-*-$date.log |
Hi,
I'm looking for some help with proxying requests using free-radius. I
have
a situation where I need to perform a query to an LDAP that contains
both
the back-end authentication server as well as username for a user. For
example, the User-Name in the originating request may be User1.
I'm looking for some help with proxying requests using free-radius. I
have
a situation where I need to perform a query to an LDAP that contains
both
the back-end authentication server as well as username for a user. For
example, the User-Name in the originating request may be User1.
+- entering group accounting {...}
[detail]expand:
/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d -
/var/log/radius/radacct/192.168.1.101/detail-20090831
[detail] /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands
to /var/log/radius/radacct/192.168.1.101/detail
Sending Accounting-Response of id 70 to 192.168.1.101 port 50125
Finished request 0.
Cleaning up request 0 ID 70 with timestamp +1
Going to the next request
Waking up in 0.3 seconds.
You have cut off the debug at the interesting point. Does it poll the
detail file after these 0.3 seconds. It
/radacct/192.168.1.101/detail-20090831
[detail] /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands
to /var/log/radius/radacct/192.168.1.101/detail-20090831
[detail]expand: %t - Mon Aug 31 15:32:59 2009
++[detail] returns ok
++[unix] returns ok
[nameonly] expand
Hello Experts,
Now that I have my 1st. test user working with clear text passwords I am ready
to setup
WPA - Enterprise (PEAP). I noticed in my client (RedHat RHEL Workstation) will
need
a CA.Cert in the connection settings. Can I simply copy the FR ca.pem file to
my
client for this or not?
Hi,
Hi,
I try to use FR to forwarding access-request to NPS servers, but some
reason FR/NPS gives User password is incorrect message. I have tripple
check that password is correct. When i test IAS to NPS proxy it works. I
have enable in NPS side MS-CHAP-v2, MS-CHAP, CHAP and PAP/SPAP
Now that I have my 1st. test user working with clear text passwords I am
ready to setup
WPA - Enterprise (PEAP). I noticed in my client (RedHat RHEL Workstation)
will need
a CA.Cert in the connection settings. Can I simply copy the FR ca.pem file
to my
client for this or not?
Yes.
If I
Is there a way to configure FreeRADIUS to accept authentication requests
from any AP. In other words, I don't want to have to pre-configure
access points in the client.conf.
Thank you,
Bill
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Is there a way to configure FreeRADIUS to accept authentication requests
from any AP. In other words, I don't want to have to pre-configure
access points in the client.conf.
No. You have to configure shared secret for radius to work. ipaddr accepts
subnets as well.
Ivan Kalik
Kalik
Yep - I think you'd need at least a couple lines in Clients.conf, but
you don't have to configure a separate block for EVERY AP.
-Original Message-
From: freeradius-users-bounces+ggatten=waddell@lists.freeradius.org
NAS-Port = 0
+- entering group authorize {...}
++[preprocess] returns ok
[auth_log] expand:
/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d -
/var/log/radius/radacct/NASIPHERE/auth-detail-20090831
[auth_log] /var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d
Ivan,
I copied over the servers ca.pem to my workstation for use in this test.
My first try gave me client errors so I fixed those by creating a
network
-copied this from the example.
client 192.168.0.0/24 {
require_message_authenticator = no
secret = testing123
Hi,
I just compile 2.1.6 from src and it's start to works.
Thanks for everyone that tryed to help me.
Br,
Ville
Hi,
Hi,
I try to use FR to forwarding access-request to NPS servers, but some
reason FR/NPS gives User password is incorrect message. I have tripple
check that password is
excuse me, somebody know if freeradius can see of some way the telephone number
that one remote user is wearing in order to call me with his modem.My line(pair
of copper) give me this information trhough a single telephone ,then can a NAS
with freeradius give me the same information.
if the
Dear freeradius-users,
I have implemented Free Radius Server
SUSE 9.3 Prof and using mysql database with Perle JETSTREAM 4000 RAS
device. My problem is that when I try to connect a user through modem
in windows XP client machine its occure a error 691 but radius
29 matches
Mail list logo
