Hi,
I need to send kineto attributes from seagull to free radius which are
of type 2.
But the standard attributes like user name are of type 1.
Is there a way to make standard attribute in RFC-2865 to type 2??
Please help.
Thanks Regards,
Yashaswini | Prod Engg | Tech
Dear All, Any thoughts on this??
On Sun, Jan 6, 2013 at 5:05 PM, Muhammad Usman muhd.usma...@gmail.comwrote:
Dear All,
I am trying to configure freeradius for EAP-SIM authentication, for that i
compiled FreeRadius with ./configure --with-modules=rlm_sim
--with-modules=rlm_sim_files.
On 01/07/2013 10:10 AM, Muhammad Usman wrote:
Dear All, Any thoughts on this??
Various eap-sim issues have been discussed on the lists in the last few
months. Read the archives for more details.
IIRC the fixes are in 2.x.x branch - not all were in the release version
of 2.2.0. Download
Yashaswini Sathyanarayana wrote:
Hi,
I need to send kineto attributes from seagull to free radius which are
of type 2.
But the standard attributes like user name are of type 1.
Is there a way to make standard attribute in RFC-2865 to type 2??
Please help.
What does
I tried attaching the debug log-file, but the mail-message was rejected by
the mailing list for exceeding 100KB
How am I supposed to attach the complete logs?
On Mon, Jan 7, 2013 at 11:35 AM, Ajay Garg ajaygargn...@gmail.com wrote:
On Sun, Jan 6, 2013 at 8:00 PM, Alan DeKok
On 07/01/13 13:18, Ajay Garg wrote:
I tried attaching the debug log-file, but the mail-message was rejected
by the mailing list for exceeding 100KB
How am I supposed to attach the complete logs?
You're supposed to *look* at them first; I'd give strong odds the answer
you seek is in there.
Ajay Garg wrote:
I tried attaching the debug log-file, but the mail-message was rejected
by the mailing list for exceeding 100KB
How am I supposed to attach the complete logs?
Shorten it. Much of the conf file output can be deleted.
Or, READ IT. Odds are that the answers to your
Ajay Garg wrote:
here are the logs that should identify the problem ::
...
[tls] TLS 1.0 Alert [length 0002], fatal decrypt_error
TLS Alert read:fatal:decrypt error
TLS_accept: failed in SSLv3 read client certificate A
rlm_eap: SSL error error:1409441B:SSL routines:SSL3_READ_BYTES:tlsv1
Hi,
the client sent a cert that your server didnt like. correct cert configured on
the
client?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dear Alan D. List Users,
I am reposting this message only because it bounced last due to size error.
I tried to reduce the size but less information to see. Apologies if it was
sent but i received bounce and no response from any member.
---: Orignal Message : ---
I tried to
On 07/01/13 16:28, Phil Mayers wrote:
I don't have the time to try and decipher the build system shenanigans,
so I don't know why; this is from a tarball (NOT a git checkout) of
master as of a few minutes ago.
Maybe the empty TARGET=?
Sorry all, meant to send to -devel - I blame
I don't have the time to try and decipher the build system shenanigans,
so I don't know why; this is from a tarball (NOT a git checkout) of
master as of a few minutes ago.
Maybe the empty TARGET=?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 07/01/13 16:28, Phil Mayers wrote:
I don't have the time to try and decipher the build system shenanigans,
so I don't know why; this is from a tarball (NOT a git checkout) of
master as of a few minutes ago.
Maybe the empty TARGET=?
Yeah that was it; pull request #161 opened
-
List
Hello
I been having problem as listed in this bug list:
https://bugzilla.samba.org/show_bug.cgi?id=6563#c59
I know at least few university having similar issue and ended up with
restarting winbind - that resolve the issue. I am not sure which version of
samba+winbind are you using?
Also, I am
On 07/01/13 16:49, Khapare Joshi wrote:
Hello
I been having problem as listed in this bug list:
https://bugzilla.samba.org/show_bug.cgi?id=6563#c59
I know at least few university having similar issue and ended up with
restarting winbind - that resolve the issue. I am not sure which version
of
Thanks Alan, and A.L.M.
I too thought the same looking at the decrypt failure messages.
As I told in my startup-mail on this thread, the procedure ::
su -
cd /etc/raddb/certs
make clean
make
On 01/07/2013 12:18 PM, Ajay Garg wrote:
Thanks Alan, and A.L.M.
I too thought the same looking at the decrypt failure messages.
As I told in my startup-mail on this thread, the procedure ::
su -
cd /etc/raddb/certs
Ummm, if you are using those scripts then you have local certs which are
different on each server...and thus the client wouldnt match. If you require
both servers to be used by the same client then you need to use the same CA on
both server installs. Likewise, only one server/CA should be
Thanks John
I am indeed looking for a ground-zero-solution :)
On Tue, Jan 8, 2013 at 12:14 AM, John Dennis jden...@redhat.com wrote:
On 01/07/2013 12:18 PM, Ajay Garg wrote:
Thanks Alan, and A.L.M.
I too thought the same looking at the decrypt failure messages.
As I told in my
Fr2 is running under pfsense but iu know is using freebsd as kernel.
But the funny thing is this:
/usr/share/misc(10): file termcap.db
termcap.db: Berkeley DB 1.85 (Hash, version 2, native byte-order)
Now fr2.
Quote
file /var/log/radacct/timecounter/db.daily
On 01/07/2013 02:41 PM, Ajay Garg wrote:
Upon restarting, it shows a missing server.pem error.
I reckon that we need to run make server too at some point of time (so
that server.pem gets generated after make destroycerts).
make destroycerts should have removed all the pem files and keys. After
John,
I am confused.
I will be grateful if you could specify the sequence of commands to be
run after make destroycerts.
Note that ::
a)
Running JUST make client generates client.pem and ca.pem, but no
server.pem.
b)
Running JUST make generates server.pem and ca.pem, but no
client.pem.
On 01/07/2013 03:32 PM, Ajay Garg wrote:
John,
I am confused.
I will be grateful if you could specify the sequence of commands to be
run after make destroycerts.
Note that ::
a)
Running JUST make client generates client.pem and ca.pem, but no
server.pem.
b)
Running JUST make generates
Guys,
Is there an option to set Fall-Through = Yes for groups as default,
just wanted to avoid having Fall-Through = Yes in every group I have in
radgroupreply.
So if a user is a member of three groups I didn't want to have to put the
Fall-Through attib in at least the first two
Mike Russell wrote:
I tried to search the mail archives for the similar topic but did not
find matched results. Then read wiki again to crosscheck that if i have
done it well before posting on the mailing list. I am sorry if similar
post has been answered before. I have problem with
Hi,
My radius server is crashing almost everyday and I'm not sure what is
the issue.
Here is what i see,
/etc/init.d/radiusd status
radiusd dead but pid file exists
I don't see any obvious message in my Syslog either. I'm using the
free-radius on Centos 5.8 (2.6.18-308.16.1.el5PAE)
freeRadius has its own log files...
On 1/8/2013 1:22 AM, Faisal M.A wrote:
Hi,
My radius server is crashing almost everyday and I'm not sure what
is the issue.
Here is what i see,
/etc/init.d/radiusd status
radiusd dead but pid file exists
I don't see any obvious message in my Syslog
I've check /var/log/radius but one of them is binary and other one is
capturing the login details.
Its hard to tell when it was crashed.
On Tue, Jan 8, 2013 at 12:23 PM, Marinko Tarlac mangi...@gmail.com wrote:
freeRadius has its own log files...
On 1/8/2013 1:22 AM, Faisal M.A wrote:
Hi,
Hi ,
By default all standard attribute like user-name, user-password are of
type 1 and length 1.
But kineto attributes are of type 2 and length 2.
So is there a way to make RFC-2865 dictionary that is added in free
radius to type 2.
Please help.
Thanks Regards,
Thanks John.
I am still getting the exact same error (as pasted in 3-4 mails earlier).
I am doubting that this has got to do something with two ca.pem being
generated in the calls to make and make client.
My freeradius version is freeradius-2.2.0-0.fc17.i686
Does TLS work at your end?
On Tue,
On Tue, Jan 8, 2013 at 12:05 AM, Alan DeKok al...@deployingradius.com
wrote:
Alan DeKok Wrote:
The sqlcounter module should be pretty simple. Configure accounting data
to go into SQL, and ensure that the server is receiving accounting packets.
Then, configure the sqlcounter module.
31 matches
Mail list logo