Re: problem with EAP-TLS
dark0s dark0s schrieb: Hi, I have to realize a RADIUS server with freeradius 1.0.5 and Cisco Aironet AP. The authentication method I must to use is EAP-TLS. I'm using the certificates created with openssl, for the authentication. When I have distributed the certificates to the server and the to client too, I proceed with authentication of the client. The software of PCMCIA card says the client is connected and associated, but access point says the authentication is failed. What could to be the reason of failure about the authentication? Regards, Saverio Have this card a ralink chipset? smime.p7s Description: S/MIME Cryptographic Signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Freeradius 1.1.0 crash on FreeBSD 6
Dear all, I have installed Freeradius 1.1.0 in FreeBSD with Mysql 5.0.17. Authenticaiton an authorization works fine. But when I enable the Max-Daily-Session module it crashes with segmentation fault. and radiusd.core file is created. Below is the dumped file of radiusd.core file: == bw-proj# gdb /usr/local/sbin/radiusd radiusd.core GNU gdb 6.1.1 [FreeBSD] Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and you are welcome to change it and/or distribute copies of it under certain conditions. Type show copying to see the conditions. There is absolutely no warranty for GDB. Type show warranty for details. This GDB was configured as i386-marcel-freebsd...(no debugging symbols found)... Core was generated by `radiusd'. Program terminated with signal 11, Segmentation fault. Reading symbols from /lib/libcrypt.so.3...(no debugging symbols found)...done. Loaded symbols for /lib/libcrypt.so.3 Reading symbols from /usr/local/lib/libradius-1.1.0.so...done. Loaded symbols for /usr/local/lib/libradius-1.1.0.so Reading symbols from /usr/local/lib/libltdl.so.4...done. Loaded symbols for /usr/local/lib/libltdl.so.4 Reading symbols from /usr/lib/libssl.so.4...done. Loaded symbols for /usr/lib/libssl.so.4 Reading symbols from /lib/libcrypto.so.4...done. Loaded symbols for /lib/libcrypto.so.4 Reading symbols from /usr/lib/libpthread.so.2...done. Loaded symbols for /usr/lib/libpthread.so.2 Reading symbols from /lib/libc.so.6...done. Loaded symbols for /lib/libc.so.6 Reading symbols from /usr/local/lib/rlm_exec-1.1.0.so...done. Loaded symbols for /usr/local/lib/rlm_exec-1.1.0.so Reading symbols from /usr/local/lib/rlm_expr-1.1.0.so...done. Loaded symbols for /usr/local/lib/rlm_expr-1.1.0.so Reading symbols from /libexec/ld-elf.so.1...done. Loaded symbols for /libexec/ld-elf.so.1 #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 3330 lensym = LT_STRLEN (symbol) + LT_STRLEN (handle-loader-sym_prefix) [New LWP 100191] (gdb) bt #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 #1 0x080544e7 in find_module_instance () #2 0x08054a64 in setup_modules () #3 0x0804c79e in main () = - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius 1.1.0 crash on FreeBSD 6
[EMAIL PROTECTED] wrote: #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 3330 lensym = LT_STRLEN (symbol) + LT_STRLEN (handle-loader-sym_prefix) [New LWP 100191] (gdb) bt #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 #1 0x080544e7 in find_module_instance () #2 0x08054a64 in setup_modules () #3 0x0804c79e in main () It's bug #98. http://bugs.freeradius.org/show_bug.cgi?id=98 -- Nicolas Baradakis - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius 1.1.0 crash on FreeBSD 6
Ok I followed the step in bug #98 and compiled with ./configure --disable-shared Now when I tried to run the radiusd -X it shows /libexec/ld-elf.so.1: Shared object libperl.so not found, required by radiusd while searching the libperl.so it was located in /usr/local/lib/perl5/5.8.7/mach/CORE/libperl.so so I linked it with command # ln -s /usr/local/lib/perl5/5.8.7/mach/CORE/libperl.so /libexec/ld-elf.so.1 but it still shows same error ? On 1/22/2006, Nicolas Baradakis [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 3330 lensym = LT_STRLEN (symbol) + LT_STRLEN (handle-loader-sym_prefix) [New LWP 100191] (gdb) bt #0 0x280ba250 in lt_dlsym (handle=0x811a800, symbol=0xbfbfd8f0 rlm_counter) at ltdl.c:3330 #1 0x080544e7 in find_module_instance () #2 0x08054a64 in setup_modules () #3 0x0804c79e in main () It's bug #98. http://bugs.freeradius.org/show_bug.cgi?id=98 -- Nicolas Baradakis - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Fallback Auth if forwarding fails
Hi Alan, thanks for your fast answer. Alan DeKok wrote: Freeradius Users Mailing List [EMAIL PROTECTED] wrote: But for a short period of time I need to have a fallback strategy if forwarding fails (remote RADIUS server is dead). Is there a way to match on a different entry i.e. in the users file after recognizing that the remote RADIUS server is dead? Not really. But you can try another RADIUS server. See proxy.conf for details. I think this is the right way. But if I want to have a round robin by default and the alternate configuration as fallback strategy I will have to forward once again? RADIUS 1: forward to RADIUS 2 (default) RADIUS 1: forward to RADIUS 3 (fallback) RADIUS 2: forward to RADIUS 4 and RADIUS 5 (round robin default) Or is there a way to combine round robin and fallback like the Preference Attribute used in RFC 2868 (RADIUS Attributes for Tunnel Protocol Support). Thanks. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: problem with EAP-TLS
I don't know if PCMCIA card has got a ralink chipset. The card is a Belkin F5D7010 with 32 bit and support for 802.11g. Is a card with ralink chipset necessary to make work EAP-TLS? or a card without ralink chipset can work too? ___ Yahoo! Mail: gratis 1GB per i messaggi e allegati da 10MB http://mail.yahoo.it - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Bug 314..
Has bug 314 been fixed? Problem with rlm_otp on FreeBSD 6.0 thanks.. --haizam - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html