Hello,
I try to log users if they connect to radius, is it possible to track
that without all other informations from debug mode?
So best would be I only see that: [TIME]: foobar logged in
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
in my enviroment I got three AP's runnning, all with the same essid,
after a while the connection seems lost and a reconnection starts to
another AP and then I get the resumption error but I have no idea why I
lost the connection. No Errors in radius debug and a good reception is
given.
The
Am 30.11.2011 15:53, schrieb Alan DeKok:
Andreas Rudat wrote:
in my enviroment I got three AP's runnning, all with the same essid,
after a while the connection seems lost
WHAT connection?
If it's the connection between the AP and the PC, this isn't a RADIUS
issue.
I only saw that came
Am 27.11.2011 10:17, schrieb Phil Mayers:
On 11/27/2011 12:51 AM, Mr Dash Four wrote:
No, the shared secret is not transmitted over the wire.
For additinal information see RFC2865, §2:
When a password is present, it is hidden using a method based on the
RSA Message Digest Algorithm MD5.
Am 26.11.2011 22:04, schrieb Mr Dash Four:
I ma trying to set up freeRADIUS server implementing (wireless) user
authentication (running wpa_supplicant) via AP (running hostapd).
After reading various howto's and documentation as well as looking at
numerous sources on the Internet, I can't see
Hi,
I'm a little bit confused, I configure radius with self signed cert,
peap+mschap, so if I tried to connect with an android or apple device I
get the question if I want to accept the server cert, thats ok, but with
windows or linux I get the error that there is no cert, but it still
works, why
Am 20.11.2011 13:05, schrieb Alan DeKok:
Andreas Rudat wrote:
thats what I tried, but I get no info from the other client, only if I
them ping each other. Encryption is wpa+aes and what I should see if it
is encrypted? tls infos?
This is a network connectivity problem. It isn't a RADIUS
Hi,
are there any and I don't see them, besides man pages/config files?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 24.11.2011 16:04, schrieb Alan Buxey:
Hi,
Hi,
are there any and I don't see them, besides man pages/config files?
what is it that you are after? what do you define by 'technical' ?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
for example how
Am 24.11.2011 16:33, schrieb Alan DeKok:
Andreas Rudat wrote:
for example how does exactly auth. works or the radius protocol works
We don't document RADIUS. See the RFCs for that.
As for how the server works, see the doc directory. There are a lot
of files there describing how
Am 20.11.2011 12:08, schrieb Alan Buxey:
Hi,
is there any possibility to test if two machines with the same login can
sniff each others traffic?
yes you can test that. though depending on what wireless configuration you
have
and method of encryption you might not get what you think.
get
Hi,
perhaps it is the wrong mailing list but I try it :)
my samba pdc is running in a different subnet than my radius clients.
So, samba ist running x.x.15.x and my Wlan+Radius users using x.x.16.x
I use wins instead of dns. I joined with my client the domain
successfully, but if I try to login I
Hi,
I get the error from time to time, I use one self signed cert for alle
clients and some times I get this error from one ubuntu client, do you
have any idea?
so self+signed cert + mschapv2
TLS Alert read:fatal:bad certificate
Sat Nov 19 18:52:30 2011 : Error: TLS_accept:failed in SSLv3
realy strange the machine where ubuntu AND xp is running both failes and
windows is saying the zertificate is invalid/expired?? both are using
the same one!
Am 19.11.2011 19:17, schrieb Andreas Rudat:
Hi,
I get the error from time to time, I use one self signed cert for alle
clients and some
Am 19.11.2011 19:37, schrieb Andreas Rudat:
realy strange the machine where ubuntu AND xp is running both failes and
windows is saying the zertificate is invalid/expired?? both are using
the same one!
Am 19.11.2011 19:17, schrieb Andreas Rudat:
Hi,
I get the error from time to time, I use
Hi,
is there any possibility to test if two machines with the same login can
sniff each others traffic?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Alan,
much thanks for that info!
Andreas
Am 18.11.2011 23:59, schrieb Alan Buxey:
Hi,
Hi,
hope anyone knows that, if I connect successfully with an xp client, I
have never again to put in my login data, so windows has to save my
login stuff anywhere but where? I would like to delete my
Am 12.11.2011 23:00, schrieb Sven Hartge:
Sven Hartge s...@svenhartge.de wrote:
Andreas Rudat ru...@endstelle.de wrote:
Am 11.11.2011 03:56, schrieb Fajar A. Nugraha:
On Fri, Nov 11, 2011 at 8:29 AM, Gary Gatten ggat...@waddell.com wrote:
I agree with Jake, in that I *think* it would
Am 11.11.2011 03:56, schrieb Fajar A. Nugraha:
On Fri, Nov 11, 2011 at 8:29 AM, Gary Gatten ggat...@waddell.com wrote:
I agree with Jake, in that I *think* it would be possible to have a plugin
or whatever interface with LDAP/AD in the same manner ntlm_auth does. I
don't think one *needs* a
Am 27.10.2011 22:57, schrieb Alan DeKok:
Andreas Rudat wrote:
if I connect to my radius server, I don't need my password anymore, also
if I restart radius or my workstation. But why?
The PC caches the credentials.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http
Am 28.10.2011 08:33, schrieb Fajar A. Nugraha:
On Fri, Oct 28, 2011 at 1:18 PM, Andreas Rudat ru...@endstelle.de wrote:
Am 27.10.2011 22:57, schrieb Alan DeKok:
Andreas Rudat wrote:
if I connect to my radius server, I don't need my password anymore, also
if I restart radius or my workstation
Am 28.10.2011 08:55, schrieb Fajar A. Nugraha:
On Fri, Oct 28, 2011 at 1:46 PM, Andreas Rudat ru...@endstelle.de wrote:
sorry for that. I use 802.1x
802.1 wired? wireless?
and I'm wondering if I connect again
What do you mean by connect again? unplug the cable and plug it
again? Trun off
ah, I see, if I disconnect from wlan, there is also no response from
radius no disconnect response.
Am 28.10.2011 15:49, schrieb Andreas Rudat:
Am 28.10.2011 08:55, schrieb Fajar A. Nugraha:
On Fri, Oct 28, 2011 at 1:46 PM, Andreas Rudat ru...@endstelle.de wrote:
sorry for that. I use 802.1x
Hi,
if I connect to my radius server, I don't need my password anymore, also
if I restart radius or my workstation. But why?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I edit the wrong site... sorry
Am 26.10.2011 15:48, schrieb Andreas Rudat:
Hello,
I work with this tutorial
http://deployingradius.com/documents/configuration/active_directory.html
all works fine, since I try to use ntlm_auth with radius directly
I added a user tester / testen
users
Hello,
I understand it correctly, that I can't use peap + mschapv2 with ldap? Im realy
confused atm, what I can realy use, everytime I think its fine, I found another
unsecure thing :/
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 23.10.2011 17:26, schrieb James J J Hooper:
On 23/10/2011 16:02, Andreas Rudat wrote:
Hello,
I understand it correctly, that I can't use peap + mschapv2 with
ldap? Im realy confused atm, what I can realy use, everytime I think
its fine, I found another unsecure thing :/
To use PEAP/MS
Am 23.10.2011 17:48, schrieb Andreas Rudat:
Am 23.10.2011 17:26, schrieb James J J Hooper:
On 23/10/2011 16:02, Andreas Rudat wrote:
Hello,
I understand it correctly, that I can't use peap + mschapv2 with
ldap? Im realy confused atm, what I can realy use, everytime I think
its fine, I found
Am 23.10.2011 22:04, schrieb Phil Mayers:
On 10/23/2011 06:03 PM, Andreas Rudat wrote:
another problem, I tried to test the connection with
ntlm_auth --request-nt-key --domain=foo.bar --username=test
--password=test
and get the message
NT_STATUS_INVALID_HANDLE: Invalid handle (0xc008
Hi,
I'm using samba as pdc and ldap as user database. That all works fine.
Now I want to use the ldap database for user auth. for radius.
But when I'm looking here
http://deployingradius.com/documents/configuration/active_directory.html
and some other sources, I read everywhere the same.
Am 21.10.2011 18:28, schrieb Phil Mayers:
On 21/10/11 17:03, Andreas Rudat wrote:
Hi,
I'm using samba as pdc and ldap as user database. That all works fine.
Now I want to use the ldap database for user auth. for radius.
But when I'm looking here
http://deployingradius.com/documents
Hello,
I use radius for my wlan auth but I also want it for lan but how? I use
pfsense with radius 2.x It works fine with wlan but how I use it for
lan? If I connect via lan port on my AP I can reach everything without
radius auth.
Thanks
Andreas
-
List info/subscribe/unsubscribe? See
, this is not really a freeradius Issue
Thanks, but I dont want to use captive portal. It would be great if I
could tell radius that user can only connect if it used min. one Radius
Client, for example the AP.
Andreas
Le dimanche 02 octobre 2011 à 17:31 +0200, Andreas Rudat a écrit :
Hello,
I use
Am 25.09.2011 23:07, schrieb Alan DeKok:
Andreas Rudat wrote:
HI Alan,
yes that is what I want, but my ldap doesn't work atm ;-)
See the FAQ for it doesn't work
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
sorry, you miss understood me
Hi,
is that combination possible?
Radius and Samba should use the same sql database for accounting. Are
there any problems or hints?
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi again,
erm it should work if I use mysql for samba accounts and using ntlm_auth
+ ms-chap on radius?
Am 25.09.2011 13:03, schrieb Andreas Rudat:
Hi,
is that combination possible?
Radius and Samba should use the same sql database for accounting. Are
there any problems or hints?
Thanks
Am 25.09.2011 13:43, schrieb Fajar A. Nugraha:
Should work if you have enough knowledge about all three components.
The main problem would be that FR and samba uses different schema
for storing user passwords, but if you're familiar with triggers then
it should be possible. Just try it.
yeah
HI Alan,
yes that is what I want, but my ldap doesn't work atm ;-)
But thanks.
Andreas
Am 25.09.2011 17:02, schrieb Alan DeKok:
Andreas Rudat wrote:
Thats also bad only nt-hash is not good, I tried to set up Ad but got
heavy problems with setting it up.
I have no idea why. See my web
Hello,
I want to use a ssh tunnel between radius and my user database on
another machine, anyone tried that? I think it should work port
forwarding on port 139 of samba or sql port?
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 22.09.2011 03:23, schrieb 2394263740:
Hello,
Here is my freeradius enviroment.
The freeradius is used for WIFI users access authentication.
OS: Linux Enterprise Server 6.1
Radius: free radius server 2.1.11
Database: Mysql
The freeradius server was put on internet.
Sometime, the WIFI router
Hello,
I have two machines. Freeradius + Samba as PDC. I auth. wlan clients
against Radius and I want to store any user data on my Samba. The
client auth, will be realized with PEAP+MSCHAPv2. So the problem is the
bad thing with MSCHAPv2 and NTLMv1. So an other way could be kerberos
and I
Am 21.09.2011 22:09, schrieb Alan DeKok:
Andreas Rudat wrote:
but is it usefull to use kerberos with two machines?
Most of the time: no.
I think it would be
a contradiction of kerberos and would it work without AD/ldap?
I have no idea what that means.
And could
I use a sql database
42 matches
Mail list logo