Hi,
I have freeradius configured to use port 1812 for auth.
# Port on which to listen.
# Allowed values are:
# integer port number (1812)
# 0 means use /etc/services for the proper port
port = 1812
I also have my Cisco Aironet 1230g configured to
Thanks yall.
Brian
-Original Message-
From: freeradius-users-bounces+bsertel=amherst@lists.freeradius.org on
behalf of t...@kalik.net
Sent: Thu 1/22/2009 9:41 AM
To: FreeRadius users mailing list
Subject: Re: Sending Access-Accept of id 14 to 148.85.32.5 port 1645
Listening on
To: FreeRadius users mailing list
Subject: Re: eap/tls freeradius openssl
Brian Ertel wrote:
Ok, I think I've installed everything correctly (according to the faq) but
obviously not. starting radius in debug I still get:
Perhaps you built and installed things correctly, it's hard to tell
:
Brian Ertel wrote:
I have radiusd in /usr/local/sbin. John, you mentioned that None of our
rpm's ever install in /usr/local so I am assuming this is another artifact
of an old install. How would you suggest I go about getting rid of ALL
freeradius install artifacts and start a new? Do I need
-0500, John Dennis wrote:
Brian Ertel wrote:
John,
You are right, but the dir where the old radius was make installed is
gone. That is the original folder that was created after unzipping and
installing the old ver. Of radius is gone. Is there anything else I can do?
You can recreate
Thank you Alan.
Brian
On 1/13/09 1:01 PM, a.l.m.bu...@lboro.ac.uk a.l.m.bu...@lboro.ac.uk
wrote:
hi,
linux admin task:
you can also do 'make -n install' and this will show
you what and where make is going to put the files (its
a test/dummy run) - then you can grep through the
output
:
On Tue, 2009-01-13 at 11:46 -0500, John Dennis wrote:
Brian Ertel wrote:
John,
You are right, but the dir where the old radius was
make installed is
gone
Thanks John, no prob.
Brian
On 1/13/09 4:28 PM, John Dennis jden...@redhat.com wrote:
Brian Ertel wrote:
John,
In the FAQ under the title Install the desired rpm's it reads:
The rpm's under /usr/src/redhat/RPMS are the packages you'll want to install.
% sudo rpm -Uhv /usr/src/redhat
@lists.freeradius.org on
behalf of John Dennis
Sent: Tue 1/13/2009 4:28 PM
To: FreeRadius users mailing list
Subject: Re: eap/tls freeradius openssl
Brian Ertel wrote:
John,
In the FAQ under the title Install the desired rpm's it reads:
The rpm's under /usr/src/redhat/RPMS are the packages you'll
Cool, thanks.
Brian
On 1/13/09 4:58 PM, John Dennis jden...@redhat.com wrote:
Brian Ertel wrote:
Oh, and should I include the /i386 dir and the i386.rpm suffix like:
rpm -Uhv /usr/src/redhat/RPMS/i386/freeradius-2.1.3-1.i386.rpm
/usr/src/redhat/RPMS/i386/freeradius-libs-2.1.3-1.i386.rpm
White
Sent: Fri 1/9/2009 2:41 PM
To: freeradius-users@lists.freeradius.org
Subject: RE: eap/tls freeradius openssl
http://wiki.freeradius.org/Red_Hat_FAQ
nice wiki
On Fri, 2009-01-09 at 14:21 -0500, Brian Ertel wrote:
Alan,
I am running CentOS 5.
Thanks,
Brian
-Original
I installed the openssl and openssl-devel rpms and the freeradius SRPM with
all dependency rpms...
Brian
On 1/12/09 3:39 PM, a.l.m.bu...@lboro.ac.uk a.l.m.bu...@lboro.ac.uk
wrote:
hi,
did you follow the fedora/redhat quid as posted to
this list - or did you just install openssl-devel and
I obeyed the faq's every command and get caught up on this:
[r...@freeradius redhat]# rpmbuild -ba rpmbuild
/usr/src/redhat/SPECS/freeradius.spec
error: failed to stat /usr/src/redhat/rpmbuild: No such file or directory
???
Brian
-Original Message-
From:
Brian Ertel wrote:
I obeyed the faq's every command and get caught up on this:
[r...@freeradius redhat]# rpmbuild -ba rpmbuild
/usr/src/redhat/SPECS/freeradius.spec
error: failed to stat /usr/src/redhat/rpmbuild: No such file or directory
My apologies, there was a typo in the FAQ
Ok,
I am ready to get flamed. I reinstalled the newest ver. of Freeradius and did
not change anything. It started up in debug mode. I am trying to put together
a system that will do eap/tls. Wireless client - WAP - Radius... I also
just installed the newest version of openssl.
Alan,
I am running CentOS 5.
Thanks,
Brian
-Original Message-
From: freeradius-users-bounces+bsertel=amherst@lists.freeradius.org on
behalf of Alan DeKok
Sent: Fri 1/9/2009 2:15 PM
To: FreeRadius users mailing list
Subject: Re: eap/tls freeradius openssl
Brian Ertel wrote:
I
To: freeradius-users@lists.freeradius.org
Subject: RE: eap/tls freeradius openssl
http://wiki.freeradius.org/Red_Hat_FAQ
nice wiki
On Fri, 2009-01-09 at 14:21 -0500, Brian Ertel wrote:
Alan,
I am running CentOS 5.
Thanks,
Brian
-Original Message-
From: freeradius-users-bounces
Hi,
I've modified the eap.conf, clients.conf, and users respectfully but am getting
the below error when started radius:
Module: Loaded eap
eap: default_eap_type = tls
eap: timer_expire = 60
eap: ignore_unknown_eap_types = no
eap: cisco_accounting_username_bug = no
rlm_eap: No EAP type
mailing list
Subject: Re: Freeradius, Cisco WLC, Mac address auth.
Brian Ertel wrote:
I have freeradius working with a Cisco 2000 series controller. A
wireless client attempts to associate with a WAP the controller sends
an
auth request to freeradius who sees the mac address of the user:
00
: Monday, August 27, 2007 8:34 AM
To: FreeRadius users mailing list
Subject: Re: Freeradius, Cisco WLC, Mac address auth.
Brian Ertel wrote:
a correction of what I am using or syntax to accomplish the
unknown/known user issue?
It's a correction of the entry for a known user. See the README and
man
Ok. I will do that.
Thanks,
Brian
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan
DeKok
Sent: Monday, August 27, 2007 9:12 AM
To: FreeRadius users mailing list
Subject: Re: Freeradius, Cisco WLC, Mac address auth.
Brian Ertel wrote:
DEFAULT
.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan
DeKok
Sent: Monday, August 27, 2007 9:12 AM
To: FreeRadius users mailing list
Subject: Re: Freeradius, Cisco WLC, Mac address auth.
Brian Ertel wrote:
DEFAULT User-Name =~ ([0-9a-fA-F]:)5[0-9a-fA-F
takes their mac
address and injects it into freeradius thus making them a known user
and puts them in a normal access vlan...
Thanks,
Brian
_
Brian Ertel
Network Administrator
Amherst College
413-542-8320
[EMAIL PROTECTED]
_
-
List info/subscribe
Hi Alan,
What should I be looking for in the eap.conf file?
Thanks,
Brian
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of [EMAIL PROTECTED]
Sent: Friday, July 13, 2007 5:16 PM
To: FreeRadius users mailing list
Subject: Re: Freeradius 1.1.6 and Cisco
override of default settings on WLAN?
Ivan Kalik
Kalik Informatika ISP
Dana 13/7/2007, Brian Ertel [EMAIL PROTECTED] piše:
Hi,
I've gotten a bit further but am still getting stuck. I have the Cisco
Wireless Controller configured to hit Freeradius for MAC Address
Authentication. Freeradius sees
Alan,
I did not modify this file at all
# Whatever you do, do NOT set 'Auth-Type := EAP'. The server
# is smart enough to figure this out on its own. The most
# common side effect of setting 'Auth-Type := EAP' is that the
# users then cannot use ANY other authentication method.
#
#
- Mac Address Authentication/vlan tagging
Brian Ertel wrote:
I wasn't able to find an answer to this on the archives. Now, here is
the set up: Freeradius Ver. 1.1.6 on centOS V.5. I am testing a Cisco
2000 Series Wireless LAN Controller and am trying to figure out a way
to
put unknown users
Thank you Alan
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Alan DeKok
Sent: Wednesday, June 27, 2007 9:46 AM
To: FreeRadius users mailing list
Subject: Re: Version 1.1.6 - Mac Address Authentication/vlan tagging
Brian Ertel wrote:
Which file do I
.
So here is the kicker, I have to be able to tell radius that users that
fail to authenticate get tagged with a certain vlan tag (ie vlan ID of
our limited access vlan) Can freeradius do that?
Regards,
Brian
_
Brian Ertel
Network Administrator
Amherst College
413-542-8320
Thanks, I found my answer in a posting by Alan Dekok
commented out user radiusd and password radiusd
thanks
__
Brian Ertel
Network Administrator
Amherst College
[EMAIL PROTECTED]
413.542.8320
__
-Original Message-
From: [EMAIL PROTECTED
To make sure I did not break anything I reinstalled it
and am using ALL defaults. I am running it on Core 3
and using the normal useradd and passwd to create
useres!? arg :\
-Original Message-
From: [EMAIL PROTECTED] on behalf of Alan DeKok
Sent: Mon 1/10/2005
Brian Ertel wrote:
Sure, but where do I view the debug output?
http://www.freeradius.org/faq/#4.11
http://www.freeradius.org/faq/#4.12
Ok, if anyone is still willing to help me out here...
Here is my debug info.(BELOW) Yea the NAS IP looks funny, but
I guess a Broadcast could would
Brian Ertel [EMAIL PROTECTED] wrote:
I was under the impressesion that radiusd would
use PAP to recognize the encrypted passwords of the /etc/passswd
file.
Yes. If the password is correct.
Since the module is saying that the password isn't correct, I'm not
sure what else I can
Does anyone know of any known issues with freeradius and Fedora Core ?
__
Brian Ertel
Network Administrator
Amherst College
[EMAIL PROTECTED]
413.542.8320
__
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Alan
Sure, but where do I view the debug output?
Brian
-Original Message-
From: [EMAIL PROTECTED] on behalf of Alan DeKok
Sent: Fri 1/7/2005 3:03 PM
To: freeradius-users@lists.freeradius.org
Cc:
Subject: Re: freeradius 1.0 and unix style
The default configuration of the server *IS* to authenticate against
/etc/passwd.
What about the clients.conf and radiusd.conf?
You have to specify the IP secret of the NAS in clients.conf.
What are the practical implications of your statement
regarding the difference between
Brian Ertel wrote:
users:Also at default with the exception of an added =
DEFAULT Auth-Type == System
Fall-Through = 1
DEFAULT Auth-Type := System
Thanks Thor, unfortunatly I still got Auth: rlm_unix: [radius]: invalid
password :(
-
List
Easiest would be in the users file.
Always keep in mind what's the difference between PAP and
CHAP and how your
passwords are stored (plaintext or encrypted)
Thor,
When you say Easiest would be in the users file.
are you suggesting that the users file is the
only file that needs
Thank you Alan
__
Brian Ertel
Network Administrator
Amherst College
[EMAIL PROTECTED]
413.542.8320
__
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Alan
DeKok
Sent: Thursday, January 06, 2005 3:32 PM
39 matches
Mail list logo