Hi,
Whilst trawling my logs to see what new interesting ways in which our
userbase has gone and borked their workstations, I noticed that we are
proxying realms upstream (to eduroam) that we should not be.in this
case it seems to be realms with spaces in them.
If anyone reads the guff I
Thank you for your message. I am away until Nov 10th. I will respond to
your message on my return . For urgent matters, please contact
helpd...@stgeorges.bc.ca .
Cheers,
Gilbert Lo
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Sorry to ask again the same, but I don't know if it's OK that Freeradius add
the attribute Realm with the regex value.
Thank you very mutch.
rad_recv: Access-Request packet from host 127.0.0.1 port 60112, id=208,
length=68
User-Name = x...@domain.es
User-Password = YYY
Hi,
What is the best way to limit a user to one EAP(EAP-TLS, TTLS,
PEAP, ...) Type On FR2.1.7?
backend on Mysql?
Thanks.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ana Gallardo wrote:
Sorry to ask again the same, but I don't know if it's OK that Freeradius
add the attribute Realm with the regex value.
It probably should add the matching string, rather than the regex.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Dirty hack:
---
freeradius-server-2.1.6.orig/src/modules/rlm_eap/types/rlm_eap_peap/peap.c
2009-05-18 17:13:55.0 +0600
+++
freeradius-server-2.1.6/src/modules/rlm_eap/types/rlm_eap_peap/peap.c
2009-11-03 17:42:21.0 +0500
@@ -312,26 +312,6 @@ static int
Alexander Clouter wrote:
Okay, maybe my regex is bad...so I tested it:
a...@berk:~$ cat moo
xwfmnc02qnabzlq9wi9...@globalsignrootca.test
xwfmnc02qnabzlq9wi9...@globalsign Root CA
wob...@example.com
wib...@example.co.uk
a...@berk:~$ grep
Hi,
What is the best way to limit a user to one EAP(EAP-TLS, Type On FR2.1.7?
backend on Mysql?
Like this..
User01 is only EAP-TLS
User02 is only EAP-TTLS
Uesr03 is only EAP-PEAP
Uesr04 is Any EAP-Type
help..
by
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
User01 is only EAP-TLS
User02 is only EAP-TTLS
Uesr03 is only EAP-PEAP
Uesr04 is Any EAP-Type
Just an educated guess ... in users file,
User01 EAP-Type != EAP-TLS, Auth-Type := Reject
User02 EAP-Type != EAP-TTLS, Auth-Type := Reject
...
Syntax comes without warranty straight from
2009/10/29 Ivan Kalik t...@kalik.net:
Sergio Belkin wrote:
2009/10/29 Ivan Kalik t...@kalik.net:
Sergio Belkin wrote:
Hi,
Sorry for the stupid question, but I'd want to get how many time every
user is connected, please could you provide some kind of guideliness?
Using Version 2.1.1.
Alan DeKok al...@deployingradius.com wrote:
Alexander Clouter wrote:
Okay, maybe my regex is bad...so I tested it:
a...@berk:~$ cat moo
xwfmnc02qnabzlq9wi9...@globalsignrootca.test
xwfmnc02qnabzlq9wi9...@globalsign Root CA
wob...@example.com
wib...@example.co.uk
a...@berk:~$ grep
Sorry for the stupid question, but I'd want to get how many time
every
user is connected, please could you provide some kind of guideliness?
Using Version 2.1.1.
SELECT Count(*) FROM radacct WHERE UserName='some_username'
I guess that you're using database module, aren't you?
You
Hi,
User01 is only EAP-TLS
User02 is only EAP-TTLS
Uesr03 is only EAP-PEAP
Uesr04 is Any EAP-Type
Just an educated guess ... in users file,
User01 EAP-Type != EAP-TLS, Auth-Type := Reject
User02 EAP-Type != EAP-TTLS, Auth-Type := Reject
...
but, that is not a backend mysql :(
-
List
2009/11/3 Ivan Kalik t...@kalik.net:
Sorry for the stupid question, but I'd want to get how many time
every
user is connected, please could you provide some kind of guideliness?
Using Version 2.1.1.
SELECT Count(*) FROM radacct WHERE UserName='some_username'
I guess that you're using
Hello All,
I am trying to figure out how to do password aging and on next logon change
with freeRadius.
I am using ASA firewall with MS-CHAP2 support. mschap is also enabled in
freeRadius.
Could somebody point to where I can find any documentation about it?
Also, should I use system passwords or
Hi,
User01 is only EAP-TLS
User02 is only EAP-TTLS
Uesr03 is only EAP-PEAP
Uesr04 is Any EAP-Type
Just an educated guess ... in users file,
User01 EAP-Type != EAP-TLS, Auth-Type := Reject
User02 EAP-Type != EAP-TTLS, Auth-Type := Reject
...
but, that is not a backend mysql :(
I am trying to figure out how to do password aging and on next logon
change
with freeRadius.
Custom script on your login. Radius doesn't interact with user interface.
I am using ASA firewall with MS-CHAP2 support. mschap is also enabled in
freeRadius.
Could somebody point to where I can
Am 03.11.2009 um 17:47 schrieb Ivan Kalik:
I am trying to figure out how to do password aging and on next logon
change
with freeRadius.
Custom script on your login. Radius doesn't interact with user
interface.
I am using ASA firewall with MS-CHAP2 support. mschap is also
enabled in
Paul Ryszka wrote:
I recently spotted that freeradius 2.0 can do multiple instances in one
go. I have two raddb directories that works for each server at the
moment is there easy way to make them instances on the same server?
Sort of. The authorize, accounting, etc. sections can be put
I'm sure your WAP or FW/NAC / Some network gear is causing this. I
don't know all of RADIUS protocol abilities, but I can say in any sort
of simple install RADIUS is passive and therefore won't kill / drop /
deactivate anything.
G
From:
Alexander Clouter wrote:
I got those :alpha:-n-chums actually working and tested them with a
bunch of test cases; they definitely seem to be doing what I would
expect...well unless the realm has a space in it :)
Odd...
Ignoring the 'space', the fact that there is not '.' in the
Alexey Ponomarev wrote:
I am trying to figure out how to do password aging and on next logon
change with freeRadius.
Use a database with custom scripts that update the database.
FreeRADIUS isn't a database, and doesn't track status changes for a
user. Those status changes are best tracked
Hi,
Eduroam should really be creating a routing protocol for RADIUS. I
don't think it would be hard: git + ssh + text files. See Section 2.7 of:
http://tools.ietf.org/id/draft-dekok-radext-nai-00.txt
firstly, its 'eduroam', not 'Eduroam' - minor point but none the less :-)
Cory Hill wrote:
We are not employing the idle-timeout attrib, so I am not sure what is
going on. Is this something the radius server is doing, or would the
command be coming from our WiFi controller?
It isn't the RADIUS server. It's either the WiFi controller, or the
customers PC doing
Hello again,
I was wondering if someone knows of a remedy for our customers being dropped
after 10-15 minutes, for what appears to be an inactivity/idle-timeout, but
shows up in our rad accounting as lost-carrier. If a user stays active,
they are not dropped, but if they stop to read a website
Hi,
We bill based on data from radius, using dpkg install of Freeradius2.0.4 with
mysql, however, when a user maintains a connection for say longer than a month,
it throws our accounting out.
What we would like to do, is at the end of each month (Just before date rolls
into next month), the
We bill based on data from radius, using dpkg install of Freeradius2.0.4
with mysql, however, when a user maintains a connection for say longer
than a month, it throws our accounting out.
That's because your billing program can't count.
Youre right, it merely sums totals of
Hi list
Need to know if there's a script that allows users to clean their
session has been connected by a long period in the table raddact.
Thanks
Michel
This message was sent using IMP, the Internet Messaging Program.
-
Jeremy Brooking wrote:
We bill based on data from radius, using dpkg install of Freeradius2.0.4 with
mysql, however, when a user maintains a connection for say longer than a month,
it throws our accounting out.
That's because your billing program can't count.
What we would like to do, is
29 matches
Mail list logo