samba version
Is there a particular version of samba that runs better than others for ntlm_auth? I have a ubuntu lucid test server that authenticates wireless users fine using ntlm_auth on initial logins, but randomly it will start failing reauth attempts on laptops that have been logged in for a while. I searched through the mailing list archives and someone previously with the same problem downgraded to 3.0.30 to fix it so just curious. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
cisco log entry
What does this error mean on a cisco switch? I only get it on a certain model of switch with a certain ios image (a newer image doesn't give the error). It happens when the configuration is saved. Oct 18 16:40:21.365 EDT: %PARSER-3-BADSUBCMD: Unrecognized subcommand 32 in sg-radius command 'load-balance' I'm going to upgrade the ios on the last few switches soon so probably won't see the error again, but I'm just curious if it's something I should care about. This is with 2 Ubuntu Lucid servers using FreeRADIUS version 2.1.8. I used the per user privilege level user example and the Config Sample #1 cisco device example from http://wiki.freeradius.org/Cisco (which was VERY helpful). - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Cisco Mac-Auth-Bypass with Freeradius 2.0.4
Frank Ivan, Just wanted to thank yall for the advice and let you know this worked like a charm. Just had to change Fall-Through = True to Fall-Through = Yes which was simple enough using the debug output. Version thing with the syntax I guess... Thanks again! Austin -Original Message- Message: 5 Date: Fri, 16 May 2008 10:27:06 +1000 From: Ranner, Frank MR [EMAIL PROTECTED] Subject: RE: Cisco Mac-Auth-Bypass with Freeradius 2.0.4 [SEC=UNCLASSIFIED] To: FreeRadius users mailing list freeradius-users@lists.freeradius.org __ From: [EMAIL PROTECTED] g [mailto:[EMAIL PROTECTED] adius.org] On Behalf Of MONTFORD, AUSTIN Sent: Friday, 16 May 2008 07:31 To: freeradius-users@lists.freeradius.org Subject: Cisco Mac-Auth-Bypass with Freeradius 2.0.4 Hey, I just got this working on a test server finally using the users file and have a quick question. I was wondering is there a way where I don't have to type the last 3 lines of this everytime in my users file? I was thinking of using some kind of setup with a seperate file for each vlan containing only the first statement (with the mac address as the user/pass). Then $include each vlanfile in the users file with freeradius appending the correct tunnel statements depending on what vlanfile the mac address was in. Anyways I haven't quite wrapped my head around the syntax to do this or am sure this is the best way. If someone has any advice that would be great. 1234Cleartext-Password := 1234 Tunnel-Type = VLAN, Tunnel-Medium-Type = IEEE-802 Tunnel-Private-Group-Id = Students By the way Freeradius rocks! Thanks, Austin There is a couple of ways to do this. 1. Use groups. 2. Use Fall-Through and group you users file. Example: # Set boilerplate text DEFAULT Tunnel-Type = VLAN, Tunnel-Medium-Type = IEEE-802, Fall-Through = True # Staff systems DEFAULT Tunnel-Private-Group-Id := Staff, Fall-Through = True $INCLUDE staff.users # Student systems DEFAULT Tunnel-Private-Group-Id := Students, Fall-Through = True $INCLUDE student.users ... DEFAULT Auth-Type:=reject Student.users would have lines like: 1234Cleartext-Password := 1234 1235Cleartext-Password := 1235 and could be generated by a script. Regards, Frank Ranner - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Cisco Mac-Auth-Bypass with Freeradius 2.0.4
Hey, I just got this working on a test server finally using the users file and have a quick question. I was wondering is there a way where I don't have to type the last 3 lines of this everytime in my users file? I was thinking of using some kind of setup with a seperate file for each vlan containing only the first statement (with the mac address as the user/pass). Then $include each vlanfile in the users file with freeradius appending the correct tunnel statements depending on what vlanfile the mac address was in. Anyways I haven't quite wrapped my head around the syntax to do this or am sure this is the best way. If someone has any advice that would be great. 1234Cleartext-Password := 1234 Tunnel-Type = VLAN, Tunnel-Medium-Type = IEEE-802 Tunnel-Private-Group-Id = Students By the way Freeradius rocks! Thanks, Austin - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
