On Mon, Nov 19, 2012 at 2:28 PM, Angel L. Mateo ama...@um.es wrote:
accounting {
detail
unix
#radutmp
Well, that won't help.
You're trying to use radwho, but aren't logging accounting
information. That means radwho will NEVER show you anything.
I'm not
Hi!
I've 802.1x (EAP-TLS) on a wired network activated, and it works 99% of the
time ... just some authentications fail, but some minutes later the same client
authenticates without a problem. As it happens only once every few days and
always with a new client I cannot put a sniffer between
El 19/11/12 09:15, Fajar A. Nugraha escribió:
On Mon, Nov 19, 2012 at 2:28 PM, Angel L. Mateo ama...@um.es wrote:
accounting {
detail
unix
#radutmp
Well, that won't help.
You're trying to use radwho, but aren't logging accounting
information. That means radwho
Hello,
I have freeradius (2.2.0) using ldap as backend for user information.
This radius server is used by different applications to authenticate and
authorize users. I want now to use different ldap filters for different
applications.
In LDAP I'm using SCHAC schema and schacUserStatus is
On 11/19/2012 08:23 AM, PENZ Robert wrote:
My first question is, how can I decode a EAP-Message from the debug
Wireshark, or read the EAP RFC and decode it manually (see below)
log to check if the request is itself ok. Here is first packet from
No, this is *not* the first packet, because
On 11/19/2012 09:48 AM, Angel L. Mateo wrote:
ldap {
...
filter = ((mail=%{User-Name})(schacUserStatus=urn prefix:
%{X-Atica-Service}:enabled))
...
}
DEFAULT X-Actica-Service = 'vpn', Auth-Type = LDAP, Realm == um.es
User-Name := `%{User-Name}`,
Fall-Through = No
On Mon, Nov 19, 2012 at 4:25 PM, Angel L. Mateo ama...@um.es wrote:
Same configuration, with freeradius 2.2.0 but using radwho from
2.1.8 works. Instead of revert patching the file, I have copied radwho
command from previous folders, and it works without any problem.
So it
Yes i've been working on this too today as I need debian packages for a
customer, and that's exactly the point where I got to.
I'm going to continue with it on monday. Feel free to pull from master, it
contains a few more fixes.
Hi,
I made a fresh clone this morning, and I've been able
Yes i've been working on this too today as I need debian packages for a
customer, and that's exactly the point where I got to.
I'm going to continue with it on monday. Feel free to pull from master, it
contains a few more fixes.
Hi,
I made a fresh clone this morning, and I've been
El 19/11/12 11:17, Phil Mayers escribió:
On 11/19/2012 09:48 AM, Angel L. Mateo wrote:
ldap {
...
filter = ((mail=%{User-Name})(schacUserStatus=urn prefix:
%{X-Atica-Service}:enabled))
...
}
DEFAULT X-Actica-Service = 'vpn', Auth-Type = LDAP, Realm == um.es
User-Name :=
I have users in database radius, table radcheck:
1. 19A7A770-CC08-B769-1894-6ED795DA2DB70 Cleartext-Password := pass
2. {19A7A770-CC08-B769-1894-6ED795DA2DB70} Cleartext-Password := pass
3. \{19A7A770-CC08-B769-1894-6ED795DA2DB70\} Cleartext-Password := pass
When i try test connection with
Thanks to all. Problem solved.
In file:
/etc/freeradius/sql/mysql/dialup.conf
Uncomment string safe-characters and add to them {}
So, now it looks like:
safe-characters =
{}@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /
Again, thanks!
19.11.2012 15:04, Dmitry
Olivier Beytrison wrote:
BTW I'm far from being a debian package expert (in fact it's the first
time I really dig into the package building process).
Welcome to the club. I do configure scripts, GNU Makefiles, shell
scripts, C, Perl, SQL, ...
Here's a summary of my changes. (the -ok
Hi,
I am still waiting on the freeradius logs from the customer experiencing
this problem, but I was wondering if anyone had ever seen the following
before or have any ideas what may be causing it:
1. EAP-TTLS client sends the EAP-Identity (packet id 2)
2. EAP-TTLS client receives the
l...@securew2.com wrote:
Furthermore this does not happen all the time leading me to believe this
might be a retransmit issue between the access point and freeradius, maybe
during high load.
That's likely. And since it's EAP retransmit after a long time, odds
are that the RADIUS packet
Seth Lampman wrote:
I am trying to take an PEAP/MSCHAPv2 tunnel terminate it at 172.16.0.9
and then proxy it as MSCHAPv2 to an NPS server at 172.16.0.15. This is
for a token server that does not allow PEAP. Everything works (I get an
ACCEPT from 172.16.0.15) but then freeradius crashes. I
It's a VM and my third one I have created so I am not sure it would be the
memory? I am currently using Ubuntu would trying another OS be of any help?
I don't always get the mutex, 99% of the time I get segmentation fault.
Where do I find docs/bugs? Forgive the noob question but I have looked
Hi Alan,
it still seems strange that it would respond with a packet id that was
never sent by the client. I guess this could only happen if the AP somehow
thought it should retransmit the identity request.
I am hoping the radius server logs will help so i can see the missing
packet causing
Hi people, i work at an university, we use Freeradius 2.1.10. We use Hotspot
service on ruckus wireless network, and it works fine with our freeradius, but
we are trying to put it as 802.1x and its not working, i fixed a few things.We
use a sql base to get the info of the users.So i will paste
Seth Lampman wrote:
It's a VM and my third one I have created so I am not sure it would be the
memory? I am currently using Ubuntu would trying another OS be of any help?
I don't always get the mutex, 99% of the time I get segmentation fault.
Where do I find docs/bugs? Forgive the noob
Please use a reasonable subject line.
brekler aaa wrote:
Hi people, i work at an university, we use Freeradius 2.1.10.
Upgrade to 2.2.0
We use
Hotspot service on ruckus wireless network, and it works fine with our
freeradius, but we are trying to put it as 802.1x and its not working, i
l...@securew2.com wrote:
it still seems strange that it would respond with a packet id that was
never sent by the client. I guess this could only happen if the AP somehow
thought it should retransmit the identity request.
Yes, maybe.
I am hoping the radius server logs will help so i can
Hi,
http://dpaste.com/833344/
please send error message to the list...ie the plain text, do not use
such web services if you want support (1 - this is email, text
is easy to read just posted, 2 - I receive an email with some random
link in it. do I trust that link? hell no I dont)
alan
-
Hi,
luckily I still use lynx ;-)
We use a sql base to get the info of the users.
well, thats the problem. you dont.
ensure you call 'sql' in the correct places in the inner-tunnel
virtual server (EAP requests get sent to the inner-tunnel - you probably
only have sql defined in your default
I've been to that site and looked around before as well as countless Google
searches. The only thing remotely close to my issue is the certificate and
windows XP issue. I rebuilt my environment and this time used the sample
certs that according to the readme, are created with the correct
Hi,
I've been to that site and looked around before as well as countless Google
searches. The only thing remotely close to my issue is the certificate and
windows XP issue. I rebuilt my environment and this time used the sample
certs that according to the readme, are created with the
Seth Lampman wrote:
I've been to that site and looked around before as well as countless Google
searches.
You HAVE NOT READ the doc/bugs file. It's easily reachable from the
URL I sent you. Click on the doc directory, and then the bugs file.
Read it.
Follow the instructions in the
On 19/11/12 17:42, Seth Lampman wrote:
I've been to that site and looked around before as well as countless Google
searches. The only thing remotely close to my issue is the certificate and
No, this issue is a crash. Totally different.
doc/bugs basically describes running the server under
On 19 Nov 2012, at 10:47, Olivier Beytrison oliv...@heliosnet.org wrote:
Yes i've been working on this too today as I need debian packages for a
customer, and that's exactly the point where I got to.
I'm going to continue with it on monday. Feel free to pull from master, it
contains a
Sorry guys... I am not a software developer and my Linux experience is
really lacking. I tried following the doc and the first thing I am greeted
with on the freeradius server is ./configure --enable-developer, No such
file or directory. This doc is supposed to be for a user not a developer
but
Seth Lampman wrote:
Sorry guys... I am not a software developer and my Linux experience is
really lacking.
Well, we don't have access to your system, so we can't figure out the
problem, either.
I tried following the doc and the first thing I am greeted
with on the freeradius server is
I made a fresh clone this morning, and I've been able to make the
packages after a few changes to the files in de debian directory. Those
files refer to a lot of element which don't seems to exist any more in FR3
BTW I'm far from being a debian package expert (in fact it's the first
time
There is my problem. I did the pre-installed package. I will do some
research and see if I can do the tar package and then start over
-Original Message-
From: freeradius-users-bounces+sethklampman=gmail@lists.freeradius.org
Hello,
(...)
1. How do I create users that have a specific vlan attached to them
(say user2 will always associate Vlan2 when connected), user1 is untagged
so it's vlan1, user2 is attached to vlan2 and so on and so on.
Normally your assign the VLAN with the attributes
Tunnel-Type =
Hallo Lasse,
I'm struggeling with the implemation of the smsotp, and I came over
this post:
http://readlist.com/lists/lists.freeradius.org/freeradius-users/11/55876.html
Do you have an updated video with this perl implementation you could
send me?
I'll record an e-mail tomorrow, and send
Figured it out sorry for the confusion. I installed a FreeBSD VM an
repeated the same config and it works great. Not sure why the same exact
config crashes and burns on Ubuntu.
Anyway the end result is what counts
Thanks again
-Original Message-
From:
Yeah you have a typo, you have mods.enabled, it should be mods-enabled?
I'm also working on this, there was a bug in the MySQL configure script that
may have been causing issues with the .so not being built correctly.
PostgreSQL and a few others were also missing boilermake files.
make
On 20.11.2012 08:26, Olivier Beytrison wrote:
Yeah you have a typo, you have mods.enabled, it should be mods-enabled?
I'm also working on this, there was a bug in the MySQL configure script
that may have been causing issues with the .so not being built correctly.
PostgreSQL and a few
38 matches
Mail list logo