I ran crle as you mentioned, and /usr/local/lib is there in the path... Not sure if I'm going to spend too much more time on this one. Thinking of using a RedHat box and be done with it. Thanks for the help.
Ken Connell Intermediate Network Engineer Computer & Communication Services Ryerson University 350 Victoria St RM AB50 Toronto, Ont M5B 2K3 416-979-5000 x6709 ----- Original Message ----- From: [EMAIL PROTECTED] Date: Tuesday, June 15, 2004 10:39 am Subject: Freeradius-Users digest, Vol 1 #3362 - 15 msgs > Send Freeradius-Users mailing list submissions to > [EMAIL PROTECTED] > > To subscribe or unsubscribe via the World Wide Web, visit > http://lists.freeradius.org/mailman/listinfo/freeradius-users > or, via email, send a message with subject or body 'help' to > [EMAIL PROTECTED] > > You can reach the person managing the list at > [EMAIL PROTECTED] > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Freeradius-Users digest..." > > > Today's Topics: > > 1. Re: Freeradius-Users digest, Vol 1 (Re: Won't run on Solais > 8) (Cameron Gregg) > 2. Problem compiling: cannot find the library > `../rlm_eap_tls/rlm_eap_tls.la' (Michael Schwartzkopff) > 3. Re: copying accounting (Alexander Serkin) > 4. Re: copying accounting (Robert Haskins) > 5. Re: copying accounting (Alan DeKok) > 6. Re: radius log (Alan DeKok) > 7. Re: Accounting question for EAP-TTLS for Pre 2 (Alan DeKok) > 8. Re: copying accounting (Alexander Serkin) > 9. Re: copying accounting (Alan DeKok) > 10. Re: Accounting question for EAP-TTLS for Pre 2 (Gary McKinney) > 11. Re: configuring freeradius on freebsd 4.10 (Paul Hampson) > 12. Re: rlm_expr question (Alan DeKok) > 13. Freeradius and OpenLdap (Jawhar TAZI) > 14. Re: Freeradius and OpenLdap (Michael Schwartzkopff) > 15. Re: Modify packet proxied to a specific realm (Alan DeKok) > > --__--__-- > > Message: 1 > Date: Wed, 16 Jun 2004 00:35:47 +1000 > From: Cameron Gregg <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: Freeradius-Users digest, Vol 1 (Re: Won't run on > Solais 8) > Reply-To: [EMAIL PROTECTED] > > Ken Connell wrote: > > PATH = /usr/local/bin:/usr/bin:/usr/sbin:/usr/ucb: > > Radiusd is in /usr/local/sbin > > libradius-0.9.3.so is in /usr/local/lib/ > > > > What is crle ? (I'm a bit of a Linux/Unix newbie). > > > > > > Ken Connell > > crle (on solaris), it sets/shows the library paths. A bit like > ldconfig > on linux i think. > > run crle and see what the output is. Mine looks like this: > > $ crle > > Configuration file [3]: /var/ld/ld.config > Default Library Path (ELF): > /usr/lib:/usr/local/lib:/usr/local/ssl/lib Trusted Directories > (ELF): /usr/lib/secure (system default) > > Command line: > crle -c /var/ld/ld.config -l > /usr/lib:/usr/local/lib:/usr/local/ssl/lib > $ > > You need to make sure /usr/local/lib is in your default library path. > > If is isn't, you will need to do something like: > > $crle -c /var/ld/ld.config -l /usr/lib:/usr/local/lib > > I'm a bit sketchy on all this myself, I'm just passing on what has > worked for me. > > Of course you should be able to do a 'man crle' to get all the > nitty-gritty info. > > If /usr/local/lib is already there (in your default path) then I'm > not > sure why your library can't be found....maybe something to do with > the > way freeradius was compiled. I find solaris very frustrating at > times, > especially using GNU tools mixed with sun tools. > > Hope this helps. > > Cam > > PS you can also use ldd <program name> to see what libraries it > needs > and if it can find them. > > > > > Intermediate Network Engineer > > Computer & Communication Services > > Ryerson University > > 350 Victoria St > > RM AB50 > > >>-- __--__-- > >> > >>Message: 3 > >>Date: Tue, 15 Jun 2004 09:36:05 +1000 > >>From: Cameron Gregg <[EMAIL PROTECTED]> > >>To: [EMAIL PROTECTED] > >>Subject: Re: Won't run on Solais 8 > >>Reply-To: [EMAIL PROTECTED] > >> > >>Ken Connell wrote: > >> > >>>FreeRadius 0.9.3 > >>>It's been great on Redhat, but on a Solaris 8 box I get the > >> > >>following:> fatal: libradius-0.9.3.so: open failed: No such > file > >>or directory > >> > >>What directory is your libradius-0.9.3.so in? Also where is radiusd? > >> > >>Could be a library path issue....what is the output of crle? > >> > >>Cam > >> > > > > --__--__-- > > Message: 2 > From: Michael Schwartzkopff <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Problem compiling: cannot find the library > `../rlm_eap_tls/rlm_eap_tls.la'Date: Tue, 15 Jun 2004 15:11:32 +0200 > Reply-To: [EMAIL PROTECTED] > > =2D----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi, > > I am triying to compile the latest snapshot: 20040615, but make > results in = > an=20 > error: > > /root/freeradius-snapshot-20040615/libtool --mode=3Dlink gcc - > release 1.1.0= > =2Dpre0=20 > \ > =2D -module -export-dynamic -g -O2 -D_REENTRANT - > D_POSIX_PTHREAD_SEMANTICS==20 > =2D -DOPENSSL_NO_KRB5 -I../../../../include -I../.. - > I../rlm_eap_tls=20=2D -DOPENSSL_NO_KRB5 -I./../../libeap \ > =2D -o rlm_eap_peap.la -rpath /usr/local/lib rlm_eap_peap.lo=20 > peap.lo ../../../../lib/libradius.la \ > =2E./rlm_eap_tls/rlm_eap_tls.la -L./../../libeap -leap -lcrypto - > lssl -lns= > l=20 > =2D -lresolv -lpthread > libtool: link: cannot find the library `../rlm_eap_tls/rlm_eap_tls.la' > > There is no rlm_eap_tls.la in the indicated directory. Perhaps > make tries t= > o=20 > compile the eap_peap module before the eap_tls module due to > alphabetic=20order ? Or is there an other reason? Any way out? > > System: > =2D - SuSE 8.1 (yes, I know its old but at the moment I have to > use it). > =2D - OpenSSL patched to 0.96g > > =2D --=20 > Dr. Michael Schwartzkopff > MultiNET Services GmbH > Bretonischer Ring 7 > 85630 Grasbrunn > > Tel: (+49 89) 456 911 - 0 > =46ax: (+49 89) 456 911 - 21 > mob: (+49 174) 343 28 75 > > PGP Fingerprint: F919 3919 FF12 ED5A 2801 DEA6 AA77 57A4 EDD8 979B > > =2D----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.2.4 (GNU/Linux) > > iD8DBQFAzvWKqndXpO3Yl5sRAqQ8AJwN1h2dJH2UsoC4HnXYNt+OgfN39QCeKWfD > KHDWCURsOCqoTYYZnwDsI0c=3D > =3DSbwy > =2D----END PGP SIGNATURE----- > > > --__--__-- > > Message: 3 > Date: Tue, 15 Jun 2004 17:15:26 +0400 > From: Alexander Serkin <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: copying accounting > Reply-To: [EMAIL PROTECTED] > > Replicate-To-Realm seem to do what i want. > Copying accounting matching the check item in acct_users > to the realm specified while storing this accounting locally. > Am i right? > > Alexander Serkin wrote: > > Is it possible to keep accounting for several realms locally > along with > > sending it to third party AAA server? > > I.e. i need to write accounting for customers visiting us from > another > > network, but also send it to their home AAA server. > > > > > > -- > Sincerely Yours, > Alexander Serkin, > Moscow Cellular Communications > ph. +7(095)7952089 > fa. +7(095)7952084 > > > > --__--__-- > > Message: 4 > Date: Tue, 15 Jun 2004 09:19:15 -0400 > From: Robert Haskins <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: copying accounting > Reply-To: [EMAIL PROTECTED] > > I thought radrelay was the way to replicate accounting to other > servers. > Alexander Serkin wrote: > > > Replicate-To-Realm seem to do what i want. > > Copying accounting matching the check item in acct_users > > to the realm specified while storing this accounting locally. > > Am i right? > > > > Alexander Serkin wrote: > > > >> Is it possible to keep accounting for several realms locally > along > >> with sending it to third party AAA server? > >> I.e. i need to write accounting for customers visiting us from > another > >> network, but also send it to their home AAA server. > >> > >> > > > > > > --__--__-- > > Message: 5 > From: "Alan DeKok" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: copying accounting > Date: Tue, 15 Jun 2004 09:26:53 -0400 > Reply-To: [EMAIL PROTECTED] > > Alexander Serkin <[EMAIL PROTECTED]> wrote: > > Replicate-To-Realm seem to do what i want. > > Copying accounting matching the check item in acct_users > > to the realm specified while storing this accounting locally. > > Am i right? > > That attribute is not supported. Use radrelay. > > Alan DeKok. > > > --__--__-- > > Message: 6 > From: "Alan DeKok" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: radius log > Date: Tue, 15 Jun 2004 09:28:38 -0400 > Reply-To: [EMAIL PROTECTED] > > "apellido jr., wilfredo p." <[EMAIL PROTECTED]> wrote: > > Hello i configured freeradius (rlm_pap + rlm_mysql + > rlm_sqlcounter) = > > successfuly and it authenticate perfectfully but i dont see any > stop = > > message in radius.log. > > Accounting packets aren't logged to radius.log. > > Alan DeKok. > > > --__--__-- > > Message: 7 > From: "Alan DeKok" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: Accounting question for EAP-TTLS for Pre 2 > Date: Tue, 15 Jun 2004 09:30:00 -0400 > Reply-To: [EMAIL PROTECTED] > > "Michael Ding" <[EMAIL PROTECTED]> wrote: > > I have been play with FreeRadius for a few weeks in the > following > > enviroment: > > Funk Software Odyssey Client + Belken wireless router + > FreeRadius 1.0.0 > > Pre2. Finally, I get the system working last night, but I found > out a > > problem with accounting file. I turn on detail, auth_detail and > reply_detail > > files. But only auth_detail & reply_detail is generated when EAP- > TTLS is > > used. I used radtest with CHAP, I found all 3 files are generated. > > No, you didn't. The "detail" module logs only accounting requests, > and when you send a CHAP authentication request using "radtest", it > doesn't send an accounting request. > > > Is this a desire behavior for EAP-TTLS? If so, how do I generate > billing > > info for my wireless usage? > > See the FAQ. Your NAS has to send accounting information for the > server to be able to log it. > > Alan DeKok. > > > > --__--__-- > > Message: 8 > Date: Tue, 15 Jun 2004 17:25:52 +0400 > From: Alexander Serkin <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: copying accounting > Reply-To: [EMAIL PROTECTED] > > radrelay seem to do more than i need. > Actually the task is to copy accounting for specific CLID of > roaming users to > their home AAA server. > radrelay works directly with detail file which contains not only > roaming CLIDs. > > Alan DeKok wrote: > > Alexander Serkin <[EMAIL PROTECTED]> wrote: > > > >>Replicate-To-Realm seem to do what i want. > >>Copying accounting matching the check item in acct_users > >>to the realm specified while storing this accounting locally. > >>Am i right? > > > > > > That attribute is not supported. Use radrelay. > > > > Alan DeKok. > > > > - > > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > -- > Sincerely Yours, > Alexander Serkin, > Moscow Cellular Communications > ph. +7(095)7952089 > fa. +7(095)7952084 > > > > --__--__-- > > Message: 9 > From: "Alan DeKok" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: copying accounting > Date: Tue, 15 Jun 2004 09:35:33 -0400 > Reply-To: [EMAIL PROTECTED] > > Alexander Serkin <[EMAIL PROTECTED]> wrote: > > radrelay seem to do more than i need. > > So? Replicate-To-Realm won't work. If it does, you're using an > older version of the server, and that feature will STOP working when > you upgrade. > > Don't use Replicate-To-Realm. > > > Actually the task is to copy accounting for specific CLID of roaming > > users to their home AAA server. > > > > radrelay works directly with detail file which contains not only > > roaming CLIDs. > > So... configure the server to have a variant of the detail module > which is used only to log the roaming users. > > Alan DeKok. > > > > --__--__-- > > Message: 10 > Date: Tue, 15 Jun 2004 09:45:00 -0400 > From: "Gary McKinney" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Subject: Re: Accounting question for EAP-TTLS for Pre 2 > Reply-To: [EMAIL PROTECTED] > > A followup for all... > > I have been looking for an inexpensive WAP (Wireless Access Point) > or WRT (Wireless Router) that sends the Radius Accounting > information to the Radius Server - to date I have NOT found any of > the inexpensive WAP or WRT devices which send the accounting > information to the Radus Server... > > If anyone knows of such a critter I would be very interested as I > have several applications that can use the accounting information! > > I suspect if we all start asking for such functionality the > vendors might start putting the feature in the NAS devices.... > Just a thought (I bug them once a week myself!) > > > Gary N. McKinney > > Network Administrator > Computer Services Dept. > Brevard County Library System > > > > ---------- Original Message ---------------------------------- > From: "Alan DeKok" <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > Date: Tue, 15 Jun 2004 09:30:00 -0400 > > >"Michael Ding" <[EMAIL PROTECTED]> wrote: > >> I have been play with FreeRadius for a few weeks in the > following > >> enviroment: > >> Funk Software Odyssey Client + Belken wireless router + > FreeRadius 1.0.0 > >> Pre2. Finally, I get the system working last night, but I found > out a > >> problem with accounting file. I turn on detail, auth_detail and > reply_detail > >> files. But only auth_detail & reply_detail is generated when > EAP-TTLS is > >> used. I used radtest with CHAP, I found all 3 files are generated. > > > > No, you didn't. The "detail" module logs only accounting requests, > >and when you send a CHAP authentication request using "radtest", it > >doesn't send an accounting request. > > > >> Is this a desire behavior for EAP-TTLS? If so, how do I > generate billing > >> info for my wireless usage? > > > > See the FAQ. Your NAS has to send accounting information for the > >server to be able to log it. > > > > Alan DeKok. > > > > > >- > >List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html>--- > >[This E-mail scanned for viruses by Declude Ant-Virus Scanner] > > > > > > > > ________________________________________________________________ > Sent via the KillerWebMail system at mail.brev.org > > > > > > > --__--__-- > > Message: 11 > Date: Tue, 15 Jun 2004 23:48:12 +1000 > To: [EMAIL PROTECTED] > Subject: Re: configuring freeradius on freebsd 4.10 > From: [EMAIL PROTECTED] (Paul Hampson) > Reply-To: [EMAIL PROTECTED] > > On Tue, Jun 15, 2004 at 09:14:16AM +0200, Darko Kalevski wrote: > > >>>Because FreeBSD doesn't support shadow passwords, if I > remember the > > >>>code correctly, you have to comment out passwd= and shadow= > to get > > >>>system password file authentication that uses master.passwd. > > > > Which is how the server comes configured by default. There > are also > > >comments in radiusd.conf SPECIFICALLY MENTIONING FREEBSD. > > > > So... you edited "radiusd.conf" to change the default > > >configurastion, but didn't read the comments directly above the > > >section you were editing. > > > > What kind of documentation could we have to include in the > server so > > >that you would read it? > > > Oh come on, I didnt know how FreeBSD deals with passwords, that > means > > the word -lookups are done via database- didnt mean to me that > it doesnt > > use shadow file...i still dont know some aspects of this OS so > still > > learning, nothing about FreeRadius :) ... so maybe you could > write > > FreeBSD doesnt use shadow file in the manner linux does, as it > is not > > mentioned alot...neither is in the handbook i think... > > He meant the following chunk of text: > > # To force the module to use the system password functions, > # instead of reading the files, leave the following entries > # commented out. > # > # This is required for some systems, like FreeBSD, > # and Mac OSX. > # > # passwd = /etc/passwd > # shadow = /etc/shadow > # group = /etc/group > > I can see that it might not be clear that the comment applies to > the preceeding paragraph... Maybe that should be one paragraph... > > -- > Paul "TBBle" Hampson, on an alternate email client. > > > --__--__-- > > Message: 12 > From: "Alan DeKok" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: rlm_expr question > Date: Tue, 15 Jun 2004 10:25:48 -0400 > Reply-To: [EMAIL PROTECTED] > > "nsinit" <[EMAIL PROTECTED]> wrote: > > 3. radreply table: > > id UserName Attribute op Value > > 1 ylei Reply-Message := %{expr: %{Call- > Refrence}} > You have to put the Value in back-quotes: `%{expr: %{Call-Refrence}` > > Alan DeKok. > > > --__--__-- > > Message: 13 > From: "Jawhar TAZI" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Freeradius and OpenLdap > Date: Tue, 15 Jun 2004 14:20:58 +0000 > Reply-To: [EMAIL PROTECTED] > > Hi Everyboy, > > Does anybody know please why each time i am trying to create a new > object > radiusprofile in my directory of openldap i've got the message : > > 04:09:53 PM: Failed to add new entry cn=dial,ou=univ-montp3,c=fr > Root error: [LDAP: error code 65 - no structural object class > provided] > I have addes the schema (radius-ldap.v3) in the conf file. > > Have you ever had this problem ? > > Thank You > > _________________________________________________________________ > MSN Search, le moteur de recherche qui pense comme vous ! > http://search.msn.fr/worldwide.asp > > > > --__--__-- > > Message: 14 > From: Michael Schwartzkopff <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: Freeradius and OpenLdap > Date: Tue, 15 Jun 2004 16:28:18 +0200 > Reply-To: [EMAIL PROTECTED] > > =2D----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Am Dienstag, 15. Juni 2004 16:20 schrieb Jawhar TAZI: > > Hi Everyboy, > > > > Does anybody know please why each time i am trying to create a > new object > > radiusprofile in my directory of openldap i've got the message : > > > > 04:09:53 PM: Failed to add new entry cn=3Ddial,ou=3Duniv- > montp3,c=3Dfr> Root error: [LDAP: error code 65 - no structural > object class provided] > > > > I have addes the schema (radius-ldap.v3) in the conf file. > > > > Have you ever had this problem ? > > > > Thank You > > Hi, > > the radius-ldap file is NOT structural. You need a structural class: > 1) Make Radius-LDAP structural. There are files in the internet. > 2) Add also a structural class like inetorgperson.scheme. > > =2D --=20 > Dr. Michael Schwartzkopff > MultiNET Services GmbH > Bretonischer Ring 7 > 85630 Grasbrunn > > Tel: (+49 89) 456 911 - 0 > =46ax: (+49 89) 456 911 - 21 > mob: (+49 174) 343 28 75 > > PGP Fingerprint: F919 3919 FF12 ED5A 2801 DEA6 AA77 57A4 EDD8 979B > > =2D----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.2.4 (GNU/Linux) > > iD8DBQFAzweIqndXpO3Yl5sRAhumAJ9f8IynGR6/lo+m4Mz62M2wGVzQ3gCaA0Rb > ldJCjkc30r/Ob8vg4fb7o/k=3D > =3DhxVx > =2D----END PGP SIGNATURE----- > > > --__--__-- > > Message: 15 > From: "Alan DeKok" <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: Modify packet proxied to a specific realm > Date: Tue, 15 Jun 2004 10:45:18 -0400 > Reply-To: [EMAIL PROTECTED] > > Kostas Zorbadelos <[EMAIL PROTECTED]> wrote: > > Thanks Alan, I thought I would. But which module should I use? > > raddb/preproxy_users > > It should be obvious from there. > > Alan DeKok/ > > > > --__--__-- > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > End of Freeradius-Users Digest > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
