I was trying to follow your suggestions, I was just confused about them. I
wasn't sure what I needed to be adding to inner-tunnel. I did end up adding
a line to proxy.conf, but it was just a blank entry for the
testlab.netrealm. After that, authentication worked when using the
u...@realmformat. I
Ryan Garrett wrote:
There must be something I am not understanding, as I am unclear on what
I need to be adding to proxy.conf.
You need to inform the server that u...@realm should be treated the
same as user.
And from what I can tell,
inner-tunnel doesn't need to be touched with the way I
Alan,
There must be something I am not understanding, as I am unclear on what I
need to be adding to proxy.conf. And from what I can tell, inner-tunnel
doesn't need to be touched with the way I am configuring, or is that
incorrect?
If my realm is testlab.net, do I just need an entry that is:
Ryan Garrett wrote:
I have a test account setup within a test domain.
The username is dadmin. If I authenticate with just dadmin it works
fine, I get an access accept response and I am up and running.
OK.
However, if I try dad...@testlab.net
authentication is rejected.
Because names
Hi - we recently upgraded to version 2.1.8 (freeradius) and my
authentication does not work any more.
This used to work (configured in Radius):
basic-a User-Password == csetestp
User-Name =~ ^([aA-zZ]+)-([aA-zZ]+)$,
Framed-Pool := 21,
Class := 2,
I also noticed that it is failing for PPP users as well:
prkoAuth-Type := Local, User-Password ==
Framed-Pool := 22,
Framed-IP-Netmask := 255.255.0.0,
Fall-Through = No
With this:
rad_recv: Access-Request packet from host 114.0.1.11 port 50633,
I resolved this. Thanks.
On Wed, Sep 22, 2010 at 2:59 PM, Marlon Duksa mdu...@gmail.com wrote:
Hi - we recently upgraded to version 2.1.8 (freeradius) and my
authentication does not work any more.
This used to work (configured in Radius):
basic-a User-Password == csetestp
Can anyone provide any input? I'm really clueless\stuck at this point.
I've run some LDP tool to verify credentials and DN is correct. Any input
would be deeply appreciated.
On Wed, Jan 27, 2010 at 2:14 AM, Edwin Isada eis...@gmail.com wrote:
I commented out rebind and chase_referral, but
Thanks Alan. I upgraded to 2.1.8, but I'm unable to find anything regarding
operations error. Sorry if this is a stupid question, but I can't figure
this one out as I verified my configuration. It must be something really
minor, but any assistance\clue would be deeply appreciated.
On Fri, Jan
I commented out rebind and chase_referral, but this didn't fix the issue.
Can someone explain to me what this change fixes for my curiosity?
On Tue, Jan 26, 2010 at 11:31 PM, Edwin Isada eis...@gmail.com wrote:
Thanks Alan. I upgraded to 2.1.8, but I'm unable to find anything
regarding
Hello everyone,
I recently changed the IP address of our RADIUS server and changed domain
controllers for Windows Authentication. Besides that change we decided to
use LDAP instead of LDAPS on the new domain controller. I didn't think I
would run into a problem with my test lab on the changes
Edwin Isada wrote:
..
rlm_ldap: performing search in dc=eidev,dc=com, with filter
((objectCategory=user)(samaccountname=edwinadmin)(memberOf=cn=MIS-NetworkAdmins-All,OU=Security
Groups,OU=MIS Admin,DC=EIDEV,DC=COM))
rlm_ldap: ldap_search() failed: Operations error
In 2.1.8, read
I'm happy to be wrong about this, but in my experience, this parameter:
-CApath ca.pem
Needs to be an actual path, not a PEM CA file, where you have performed
these steps:
download certificate authority cert in PEM format
run c_rehash . (openssl script)
On Thu, May 15, 2008 at 10:37 AM,
Hi All,
I am trying to use authenticate one embedded WLAN device with using
freeRadius server 2.0.4
I have radiusd.conf,client.conf files as per my configuration.
I have created certificates using bootstrap script.Values in
ca.cnf,client.cnf and server.cnf have been modified accordingly.
I have
On Nov 27, 2007 10:03 PM, Alan DeKok [EMAIL PROTECTED] wrote:
Frank Everitt wrote:
I'm using the UNIX module (see below). Maybe it's a Solaris issue and
not freeradius.
...
What ya think/
Looks like a Solaris issue.
FreeRADIUS just calls getpwent(). If that returns notfound,
I'm running Freeradius 1.1.6 on a Solaris 10 platform and have run
across a strange problem. My password file contains over 80 thousands
entries and it appears that freeradius won't find a user entry beyond
line 76665. Is there a buffer that can be bumped up or have I just
reached a
Frank Everitt wrote:
I'm running Freeradius 1.1.6 on a Solaris 10 platform and have run
across a strange problem. My password file contains over 80 thousands
entries and it appears that freeradius won't find a user entry beyond
line 76665. Is there a buffer that can be bumped up or have I just
Hi Alan...
This is what I'm getting
rad_recv: Access-Request packet from host 10.66.64.41:1645, id=140,
length=78
NAS-IP-Address = 10.66.64.41
NAS-Port = 37
NAS-Port-Type = Async
User-Name = begomez
Calling-Station-Id = 10.66.64.35
Frank Everitt wrote:
Hi Alan...
This is what I'm getting
...
rad_check_password: Found Auth-Type System
auth: type System
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 14
modcall[authenticate]: module unix returns
.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
--
View this message in context:
http://www.nabble.com/intermediate-CA-authentication-failing-tf4433620.html#a12649276
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info
mallika wrote:
Thank you very much for your reply.Which freeradius server version will
support this facility.
What part of my message was unclear? The most recent one. Read the
web page. It's really not that hard.
Because we are implenting it in our product.
Could you explain why you
On 9/13/07, mallika [EMAIL PROTECTED] wrote:
Thank you very much for your reply.Which freeradius server version will
support this facility.Because we are implenting it in our product.We are
using CENT OS -kernel 2.4.20 .Is there any patches are available to upgrade
freeradius.please help
-authentication-failing-tf4433620.html#a12648775
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
mallika wrote:
I am using freeradius 1.0.2.
Why?
...in that case it is not checking for certificate chain
deapth. IT is giving error 22 and unknown CA.please can any body help me .
Because 1.0.2 doesn't have that functionality.
Upgrade to the most recent version of the server.
Alan
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have freeradius configured to do PEAP and EAP-TTLS, searching the user data
in LDAP. All is working well, except one device, a wireless network printer
that refuses to authenticate. The freeradius debug output is attached.
Does anyone have any
Hugo Chasqueira [EMAIL PROTECTED] wrote:
rlm_eap_peap: Session established. Decoding tunneled attributes.
rlm_eap_peap: Got something weird.
The data inside of the PEAP session isn't what it's supposed to be.
The message is in src/modules/rlm_eap/types/rlm_eap_peap/peap.c
You could
26 matches
Mail list logo