As far as I know freeradius uses openssl to handle crls.
openssl also has an option -use_deltas to enable support for delta CRLs.
Is this option available in freeradius?
According to eap.conf it is necessary to restart radiusd if a new version of a
crl is published.
Are there plans to enable
Hi,
Are there plans to enable reading of a new crl without restarting the
server?
without severaly crippling performance, how?
the RADIUS server would have to poll the CRL file all the timeand if
it read a new file it would have to destroy its current array structure to
import the
I'm looking for some help with the implementation of huntgroups.Am using mysql and have followed the following topic through: http://freeradius.1045715.n5.nabble.com/Huntgroup-Checking-td4950385.htmlIn sites-available/default I have this, (just after preprocess: update request {
On 26 Jul 2012, at 09:20, alan buxey wrote:
Hi,
Are there plans to enable reading of a new crl without restarting the
server?
without severaly crippling performance, how?
You could add caching to the OSCP module and use that?
-
List info/subscribe/unsubscribe? See
I forgot to mention that the look up works if I enter the Huntgroup-Name in radcheck.For some reason, it's just failing in radgroupcheckOn Jul 26, 2012, at 09:51 AM, Jenny Blunt jennyshoeh...@me.com wrote:I'm looking for some help with the implementation of huntgroups.Am using mysql and have
On 07/26/2012 09:51 AM, Jenny Blunt wrote:
I'm looking for some help with the implementation of huntgroups.
Am using mysql and have followed the following topic through:
http://freeradius.1045715.n5.nabble.com/Huntgroup-Checking-td4950385.html
In sites-available/default I have this, (just
Hi Phil, thanks for the reply and help. Have been in a pickle with this for an age.Could you confirm that the query at the bottom should go in the sites-available/default file in the auth section?Huntgroups work with radcheck but understand I need a separate attr now (at last)!On Jul 26, 2012, at
Hi everybody,
I just installed and configured FreeRADIUS 2.1.10 successfully. I am using it
to authenticate Wifi users. I got trial certificates from GeoTrust, which are
supposed to be accepted by windows 7.
The thing is, that when I try to connect to to my wifi network a window pops up
On 26/07/12 11:17, Ismael Yáñez wrote:
I click on connect and it works, but I would like, if possible, to
make this pop up disappear.
Pre-configure the trusted server cert and name under the network
profile. You can do this using netsh XML profiles, Group Policy, or a
tool such as su1x or
How do I go about comparing two attributes from an update request?I have the following in my default conf. file:update request { SQL-Location := "%{sql: SELECT xxx}"} update request { SQL-Location-Id := "%{sql: SELECT yyy }"}if (SQL-Location != SQL-Location-Id ) { reject}And my debug log
On 26/07/12 12:41, Jenny Blunt wrote:
How do I go about comparing two attributes from an update request?
I have the following in my default conf. file:
update request {
SQL-Location := %{sql: SELECT xxx}
}
update request {
SQL-Location-Id := %{sql: SELECT yyy }
}
if
Mucho graciasOn Jul 26, 2012, at 01:01 PM, Phil Mayers p.may...@imperial.ac.uk wrote:On 26/07/12 12:41, Jenny Blunt wrote: How do I go about comparing two attributes from an update request? I have the following in my default conf. file: update request { SQL-Location := "%{sql: SELECT xxx}"
Wegener, Norbert wrote:
Are there plans to enable reading of a new crl without restarting the
server?
I'd suggest OCSP.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Arvind Gupta wrote:
I am new for RADIUS server authentication and looking to implement a
RADIUS client. I found that there are many RADIUS client library
available and most popular are libradius and libfreeradius.
figuring out that which one is best and what is pros and cons of each
one. Any
On 07/26/2012 09:11 AM, Alan DeKok wrote:
Arvind Gupta wrote:
I am new for RADIUS server authentication and looking to implement a
RADIUS client. I found that there are many RADIUS client library
available and most popular are libradius and libfreeradius.
figuring out that which one is best and
jobhunt...@aol.com wrote:
I have added some AVP's for an rlm_counter
What does that mean?
and want to look at the values. I have tried using radclient but it prints
only one of the AVP's I added. Since I added each AVP the same way, can
anyone tell me what determines which AVP's
John Dennis wrote:
What is the (perceived) problem with LGPL?
Religious intolerance. :)
I'd rather have a BSD licensed library that's *used* by idiot vendors,
than an LGPL'd library they're afraid of.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
On 07/26/2012 09:55 AM, Alan DeKok wrote:
John Dennis wrote:
What is the (perceived) problem with LGPL?
Religious intolerance. :)
I'd rather have a BSD licensed library that's *used* by idiot vendors,
than an LGPL'd library they're afraid of.
Can't it be dual licensed then?
--
John
John Dennis wrote:
Can't it be dual licensed then?
I'm loath to dual-license libfreeradius-radius.
Part of the reason to have a BSD licensed library is to have *less*
functionality than the LGPLd one. A BSD licensed one is usually
client-side. A client needs less functionality than a
Hi Folks,
I'm in the process to setup a WPA(2)-Enterprise (IEEE 802.1X) protected WLAN.
I choose FreeRADIUS (2.1.10) with a EAP-TLS to authenticate and control the
access to the network.
While everything works so far, I just can't get the Session-Timeout to work.
If I start 'freeradius -X'
On Thu, Jul 26, 2012 at 04:08:04PM +0200, Klaus Klein wrote:
While everything works so far, I just can't get the Session-Timeout to work.
...
Any idea how I could pinpoint the problem either from the FreeRADIUS or the
client side?
If FreeRADIUS is sending the AVP back to the NAS (which you
Then AP probably doesn't understand Session-Timeout attribute... (not
implemented for example)
It would be helpful to tell us what are you using as AP
On 26.7.2012 16:08, Klaus Klein wrote:
Hi Folks,
I'm in the process to setup a WPA(2)-Enterprise (IEEE 802.1X)
protected WLAN.
I
Am 26.07.2012 16:29, schrieb Marinko Tarlać:
Then AP probably doesn't understand Session-Timeout attribute... (not
implemented for example)
It would be helpful to tell us what are you using as AP
AP No.1
Netgear WG602v3 with dd-wrt v24_micro_generic.bin
AP No.2
Siemens Gigaset SE515dsl
Am 26.07.2012 16:16, schrieb Matthew Newton:
On Thu, Jul 26, 2012 at 04:08:04PM +0200, Klaus Klein wrote:
While everything works so far, I just can't get the Session-Timeout to work.
If FreeRADIUS is sending the AVP back to the NAS (which you state
it is), it's the job of the NAS (the AP) to
Hi Alan
Thanks a lot for the valuable information. As you mentioned that BSD one is
used by most of the vendors. Which one is very popular among vendors?
Arvind
On Thu, Jul 26, 2012 at 7:35 PM, Alan DeKok al...@deployingradius.comwrote:
John Dennis wrote:
Can't it be dual licensed then?
25 matches
Mail list logo