Am 05.04.2011 07:31, schrieb Stefan Winter:
Hi,
The solution to the problem is simple. The answer is in front of
you.
Alan DeKok.
Looks like i'm blind...please give me a hint ;-)
Dude... supplicants are typically configured to trust only the exact one
certificate that is in the
Hi,
The complete certification path is installed on the client. The client
don't have an extra client certificate, server certificate check is
turned off in wireless settings.
Turned off? Thanks, that's a new piece of info! That would hint towards
a different problem indeed.
Original radius
Jürgen Stader wrote:
OK, once again; i have cloned a radius-server vm, the new radius-server
has a new DNS-Entry, IP and a new certificate.
Well, that's likely the problem. Have you tried using the *working*
certificate in the new machine?
The wlan-ssid is
different from that one wich is
Trey Briggs wrote:
I'm trying to get similar logging in mysql to what you see with:
log {
You can use rsyslog to take syslog messages, and write them to SQL.
I've found how to log accepts and rejects using the sql module in the
post-auth section, but I'm unsure how to insert the client
Hello,
rad_recv: Access-Request packet from host ... port 32769, id=219,
length=159
User-Name = xy
[...]
EAP-Message = 0x0202000b01737461646572
It would also help not to mangle the debug output by hand, if that's
what happened here. The EAP-Message's EAP-Response/Identity
Rtz Poknat wrote:
I deleted an entry in the database , yet it returns,, and session time
is 59000 seconds. i check the openvpn server but no user is connected
and it is continously updating the last update in sql table. also, even
if i turn off the NAS,, the entry still updates by itself.. (a
it still didn't work .
when I seperate command at clients.conf
client localhost {
ipaddr = 127.0.0.1
secret = testing
}
client localhost {
ipv6addr = ::1
secret = testing123
}
result :
radclient: Failed to find ip address for host ::1: success
so I really
Hi,
it still didn't work .
when I seperate command at clients.conf
client localhost {
ipaddr = 127.0.0.1
secret = testing
}
client localhost {
ipv6addr = ::1
secret = testing123
}
result :
radclient: Failed to find ip address for host ::1: success
On Tue, Apr 5, 2011 at 3:54 PM, striderblue strider_b...@hotmail.com wrote:
it still didn't work .
when I seperate command at clients.conf
client localhost {
ipaddr = 127.0.0.1
secret = testing
}
client localhost {
ipv6addr = ::1
secret = testing123
}
Hi,
No, the machines are indetical, only changed IP, hostname and
certificates.
No updates or something.
Okay...
I put the debug output in appendix.
Sorry i had to remove passwords and IPs because of security reasons, i
think you will understand ;-)
That part of mangling is okay :-)
If
Hi,
may be someone can point me into the right direction:
we do have a new wlan - freeradius - ldap setup and want to assign two
main usergroups to two main wlans.
Each wlan has an own vlan.
We use cisco switches and APs and got a wlan controller.
So far we do have different SSIDs and all
On 04/05/2011 07:24 AM, Fajar A. Nugraha wrote:
(1) There's an example on client.conf to specify an ipv6 address, use that
(2) radclient can use ipv6 with -6 option (see radclient -h).
AFAIK no such functionality is available for radtest (yet). So you
might need to use radclient directly.
We are using wlan - freeradius - ldap too.
In the freeradius, you check ldap whether username is in student or
nonstudent group, then you need to send back either
IETF 64 65 81 or some vendor specific attributes
On the WLAN controller, you then either use the IETF 64 65 81 or
vendor specific
Thanks,
may I ask you to send me the config you use in freeradius? That would be
great!
/Götz
Am 05.04.11 16:42, schrieb schilling:
We are using wlan - freeradius - ldap too.
In the freeradius, you check ldap whether username is in student or
nonstudent group, then you need to send
John Dennis wrote:
On 04/05/2011 07:24 AM, Fajar A. Nugraha wrote:
(1) There's an example on client.conf to specify an ipv6 address, use
that
(2) radclient can use ipv6 with -6 option (see radclient -h).
AFAIK no such functionality is available for radtest (yet). So you
might need to use
On 04/05/2011 09:21 PM, Alan DeKok wrote:
John Dennis wrote:
On 04/05/2011 07:24 AM, Fajar A. Nugraha wrote:
(1) There's an example on client.conf to specify an ipv6 address, use
that
(2) radclient can use ipv6 with -6 option (see radclient -h).
AFAIK no such functionality is available for
I've been tinkering with dialup_admin and MySQL with FR 2.1.10.
I have been able to get it to work for doing MAC authentication of Motorola
Canopy SM's.
The problem is that the customer database is hosted on Windows using ACT!
It already contains the user account info, radio type, MAC address,
Option 4.) Dump data from ACT to a real DB, then dump ACT completely? j/k -
sorta... Does ACT support triggers and / or stored procedures? If so it would
be relatively easy to keep a subset of the ACT DB in MySQL (or whatever) and
keep it synchronized.
If ACT is ODBC, I'm sure one could
Hi Gary,
Low volume. Since these are the SM's, they will stay connected once booted.
The only time an SQL query would be needed is when something gets added or
changed.
A handful per day.
That's why it isn't really worth trying to duplicate the entire database and
maintain two copies.
On
On 2011/04/06 12:52 AM, Gary Gatten wrote:
Option 4.) Dump data from ACT to a real DB, then dump ACT completely? j/k -
sorta... Does ACT support triggers and / or stored procedures? If so it would be
relatively easy to keep a subset of the ACT DB in MySQL (or whatever) and keep it
hello, radutmp shows blank...
pls help me-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
21 matches
Mail list logo