Re: Is there a way to renew pptp user information of a user connected mikrotik?
Am 24.12.2012 07:36, schrieb ???: Thank you for paying attention to my issues. Currently, the freeradius server's expiration time is set at 00:00 and the server automatically disconnects it if it's connected. A user's expiration date is today and he is currently connected to the server. The user wants to use it for another months and he already has paid And because the user paid for another month, he absolutely doesn't want to be disconnected at 00:00. Then, I added him for another month in dialup_admin. I'd like to renew the user's information by transfering radcheck table information to mikrotik nas. Is this possible? http://wiki.mikrotik.com/wiki/Manual:RADIUS_Client#Change_of_Authorization You can send a CoA packet to the mikrotik (you have to enable the listening port first) and change all of the attributes mentioned on the wiki *-- Original Message --* *Date:* Monday, Dec 24, 2012 02:47:26 PM *From:* Jed Gainer jedgai...@gmail.com *To:* FreeRadius users mailing list freeradius-users@lists.freeradius.org *Subject:* Re: Is there a way to renew pptp user information of a user connected mikrotik? I do not understand your question. On Sun, Dec 23, 2012 at 9:35 PM, ??? k2...@nate.com mailto:k2...@nate.com wrote: mikrotik - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Enforcing use of Eap-TLS or PEAP
I try to set up radius authentication in my WiFi network. I want to have: 1. one user (samsung phone) should be authenticated with PEAP 2. others should be authenticated with EAP-TLS. Naive approach is to use Auth-Type but its treated as misuse at http://deployingradius.com/documents/configuration/auth_type.html But example is only for ms-chap, and I don't know which attribute(?) use to force PEAP /EAP-TLS Any help? Am I missing something? KJ -- http://blogdebart.pl/2009/12/22/mamy-chorych-dzieci/ QOTD: It's been real and it's been fun, but it hasn't been real fun. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Enforcing use of Eap-TLS or PEAP
Kamil Jońca wrote: I try to set up radius authentication in my WiFi network. I want to have: 1. one user (samsung phone) should be authenticated with PEAP 2. others should be authenticated with EAP-TLS. Give user (1) a password. Give each of the other users a client certificate. Done. Naive approach is to use Auth-Type but its treated as misuse at http://deployingradius.com/documents/configuration/auth_type.html But example is only for ms-chap, and I don't know which attribute(?) use to force PEAP /EAP-TLS Any help? Am I missing something? You're making it too complicated. There's no need to force anything. Just configure the users, and it will work. If you don't give the users from (2) any passwords, PEAP won't work for them. If you don't give users from (1) any client certificates, EAP-TLS won't work for them. It's that simple. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html