-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
| FreeRADIUS 2.0.5 ; Date: 2008/05/30 09:31:23 , urgency=medium
| Feature improvements
| * Permit SQL authorize_reply_query to be empty.
Thanks! Saves us half the queries!
Is the issue about lost User-Passwords fixed? I mean the one in
Hi Alan.
Hers's my version:
OpenSSL version
OpenSSL 0.9.8g 19 Oct 2007
OpenSSL
p
7 jun 2008 kl. 12.00 skrev freeradius-users-
[EMAIL PROTECTED]:
Send Freeradius-Users mailing list submissions to
freeradius-users@lists.freeradius.org
To subscribe or unsubscribe via the World
Ah You're relying on the authorize section being run after the
proxy reply is received.
Don't do that.
That feature was removed before 2.0, and seems to have accidentally
been enabled again. It was removed in 2.0.5 because it's wrong. The
post-proxy section is meant to process proxy
Stefan Winter wrote:
| FreeRADIUS 2.0.5 ; Date: 2008/05/30 09:31:23 , urgency=medium
| Feature improvements
| * Permit SQL authorize_reply_query to be empty.
Thanks! Saves us half the queries!
Yup. There was no reason to require it in the first place.
Is the issue about lost
hi all
i need help on account of freeradius
Accounting Respond Message:
AttributeID Vendor ID Sub Attribute ID Status Attribute Name Type
Value
26 9 101 O
h323-credit-amount String Customer balance at the time
Hello,
new network manager version prompt for PEAP version 0 or version 1.
Is there support for PEAP version 1 on freeradius ?
thanks
Riccardo
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Hello,
new network manager version prompt for PEAP version 0 or version 1.
Is there support for PEAP version 1 on freeradius ?
not directly, no. can use with latest 2.0.x series a
3rd party link to eg wpa_supplicant to do other quirky things.
alan
-
List info/subscribe/unsubscribe? See
Wherever you keep user details - users file, sql, ldap, ...
Ivan Kalik
Kalik Informatika ISP
Dana 9/6/2008, Do Nguyen Ha [EMAIL PROTECTED] piše:
hi all
i need help on account of freeradius
Accounting Respond Message:
AttributeID Vendor ID Sub Attribute ID Status Attribute Name
Hi guys,
I looked around a bit but I've not found an answer to my question.
I have a freeradius server, it works fine and so on but now I need to
differentiate class of users that is that I have users of class A that
have a Max-All-Session attribute which I manipulate with standard
accounting
Hi folks.
I'm wondering, would it be possible to encrypt the connection to the backend
data store (it being MySQL) using SSL? MySQL would have support for this, but I
sppear to not find any documentation for Freeradius on how to set that side up
for it .. Any pointers appreciated ..
Max-All-Session attribute is individual for every user (that has it). You
don't need groups, realms or anything like that. Your routine that
creates user entries should be able to handle that.
Ivan Kalik
Kalik Informatika ISP
Dana 9/6/2008, sub [EMAIL PROTECTED] piše:
Hi guys,
I looked around
Hi,all.
I wish to dispose authorization on the switch with the dynamic
isolation VID on the port on the protocol of 802.1x on RADIUS Server.
Stand: the switch of 3Com 5500-EI (Software Of version of 3Com OS Of
v3.02.03s56), computer from OS Windows XP (SP2), RHEL 5 update 1,
Gennadiy Redko wrote:
The authorization to FreeRadius is passed at the given moment, but to
port is not allotted necessary VID.
The 3com switch is broken.
FreeRADIUS does not support 3Com switches ?
FreeRADIUS is sending the attributes that the 3com documentation says
is necessary. The
You will probably need to adapt the driver with mysql_ssl_set():
http://dev.mysql.com/doc/refman/5.0/en/mysql-ssl-set.html
Ivan Kalik
Kalik Informatika ISP
Dana 9/6/2008, Anders Holm [EMAIL PROTECTED] piše:
Hi folks.
I'm wondering, would it be possible to encrypt the connection to the
Where $driver has a value of rlm_sql_mysql?
//anders
- Original Message -
From: Ivan Kalik [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Monday, June 9, 2008 2:51:09 PM GMT +00:00 GMT Britain, Ireland, Portugal
Subject: Re: MySQL
Alan DeKok ?:
Gennadiy Redko wrote:
The authorization to FreeRadius is passed at the given moment, but to
port is not allotted necessary VID.
The 3com switch is broken.
Hardly
I have six new switch on a choice.
FreeRADIUS does not support 3Com switches ?
FreeRADIUS is sending
Gennadiy Redko wrote:
It is clear. Whether it is possible to check up somehow a management on
adjustment for presence of mistakes? Technical support 3Com wishes to
I shall ask in another way:
Whether there are working FreeRADIUS config files for 3Com 5500G-EI?
Let for other type of
Gennadiy Redko wrote:
Alan DeKok ?:
The 3com switch is broken.
Hardly
I have six new switch on a choice.
shrug You're the one who said the switch isn't behaving as documented.
It is clear. Whether it is possible to check up somehow a management on
adjustment for presence of
Gennadiy Redko wrote:
Gennadiy Redko wrote:
It is clear. Whether it is possible to check up somehow a management
on adjustment for presence of mistakes? Technical support 3Com wishes to
I shall ask in another way:
Whether there are working FreeRADIUS config files for 3Com 5500G-EI?
On 2008-06-09 15:34, Gennadiy Redko wrote:
Hi,all.
I wish to dispose authorization on the switch with the dynamic
isolation VID on the port on the protocol of 802.1x on RADIUS Server.
Stand: the switch of 3Com 5500-EI
5500-EI or 5500G-EI?
(Software Of version of 3Com OS Of v3.02.03s56)
Hi,
Can anyone here help me to fix the error below:
I run instruction in README such
make ca.pem
make ca.der
make server.pem
make server.csr
make client.pem
and then copy ca.der, client.p12 then I install the certificate into Windows XP.
When click the client certificate and it shows
Krzysztof Ole;dzki ?:
(Software Of version of 3Com OS Of v3.02.03s56)
Too old and quite buggy with respect to radius handling.
Really...
The authorization to FreeRadius is passed at the given moment, but to
port is not allotted necessary VID.
FreeRADIUS does not support 3Com
Krzysztof Olędzki ?:
I guess it works because it is properly configured. 3Com may also work
if you setup it with (a blind guess):
domain (...)
vlan-assignment-mode string
accounting optional
Thanks for advice. And it is possible to see your configs?
Regards
Gennadii Redko.
Best
I understand that radius authenticating ppp (PPTP in this case)
connections against shadow passwords requires cleartext authentication
(PAP).
Does PAM allow you to work around this? From reading what I can find on
PAM, it would seem that FreeRADIUS would pass off the authentication
Hi All,
I am having problemes getting Post-Proxy-Type to work in FreeRadius (FR);
I did tests with FR v2.0.3 and FR v2.0.5 after update without success;
Here is what i want to do:
Use attr_rewrite to write some attributes (those for setting VLAN) in
proxy replies received from the home server.
Alan DeKok ?:
If they don't like that, submit a bug on freeradius.org saying that
3com is broken. Anyone else trying to buy their equipment will discover
that it doesn't work, and will go to another vendor.
Whether I do not know correctly has acted, but I have followed your
advice:
Hello,
I assume that data integrity and secrecy is vital for you, between your
RADIUS server and your MySQL server. Why not creating an IPSEC tunnel
between the two ones ? It doesn't require any programming skills, and
it's fully secure if it is well set. It might be any encrypted VPN
Hi,
No. Driver is sql_mysql.c file in
src/modules/rlm_sql/drivers/rlm_sql_mysql/ folder of your distribution.
You will need to edit the source file and recompile to have freeradius
mysql client ask for a SSL connection.
hmm, i could see a future with sql.conf containing
ssl = yes
and each
Alan DeKok wrote:
Frank Sweetser wrote:
The usernames currently don't have a domain portion. Would it be possible for
me to set a default domain for a given username? (The list is small, so would
be manageable for me.) And if so, could you give me at least a rough example
of how I would set
You are suposed to delete those files when you are changing ip pool
range. Module should be able to start without them.
Ivan Kalik
Kalik Informatika ISP
Dana 5/6/2008, Alan DeKok aland at deployingradius.com piše:
tg_melo at bol.com.br wrote:
I had a freeradius server 1.1.7 running up with
Background:
We're using FreeRADIUS-2.0.3 with an OpenLDAP backend, on two separate
systems for authentication and authorization of users to our wireless
network and a lesser-used VPN service. I would like to be able to modify
the LDAP query filter based on (for example) which NAS device sent
man unlang - attribute lists.
***
The list: prefix is optional, and if omitted, is assumed to refer
to the request list.
***
Ivan Kalik
Kalik Informatika ISP
Dana 9/6/2008, Sylvain Robitaille [EMAIL PROTECTED] piše:
Background:
We're using FreeRADIUS-2.0.3 with an OpenLDAP backend, on
Hi,
For some reason the module returns noop ;-( I tried the following:
I created new 'files' instance:
files post_proxy_files {
usersfile = ${confdir}/post-proxy-users
acctusersfile = ${confdir}/post-proxy-users
auth_usersfile =
hi all
i need help on account of freeradius
Accounting Respond Message:
AttributeID Vendor ID Sub Attribute ID Status Attribute Name
Type Value
26 9 101 O
h323-credit-amount String Customer balance at the time of
Pshem Kowalczyk wrote:
For some reason the module returns noop ;-( I tried the following:
Which is not what I suggested. Why?
I guess the easiest way to fix this is to use unlang to update the
reply packet based on information from either control or request
attributes.
That's what
Ivan Kalik wrote:
db_dir = $(raddbdir) ==
It should be:
db_dir = ${raddbdir} (brackets are wrong)
Fixed, thanks.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
36 matches
Mail list logo