Jochen Kellner via FreeIPA-users
writes:
> I see... I've looked again for my research concerning IPA OTP timeouts.
> These posts document the timeouts I found:
>
> https://www.redhat.com/archives/freeipa-users/2016-December/msg00239.html
>
Hi,
Sergiy Genyuk via FreeIPA-users
writes:
> Radius server is DUO so when in FreeIPA radius server set it sends
> Access-Request to the DUO Radius server DUO check password against AD
> and then push Accept message to the user mobile app... then returns
> Access-Accept message back to
On Mon, 2020-07-13 at 19:13 +, Sergiy Genyuk via FreeIPA-users
wrote:
> Radius server is DUO so when in FreeIPA radius server set it sends
> Access-Request to the DUO Radius server DUO check password against AD and
> then push Accept message to the user mobile app... then returns
>
Radius server is DUO so when in FreeIPA radius server set it sends
Access-Request to the DUO Radius server DUO check password against AD and then
push Accept message to the user mobile app... then returns Access-Accept
message back to FreeIPA.
Of cause it takes some time so I have setup
Sergiy Genyuk via FreeIPA-users
writes:
> Thank you for your reply, I do have ipv6 disabled and in capture do not see
> failed attempts.
> In capture it is only ipv4:
>
> 1 0.0 xx.xx.xx.xx -> yy.yy.yy.yy RADIUS 117 Access-Request(1)
> (id=214, l=75)
> 2 7.889686902 yy.yy.yy.yy ->
Hi Jochen,
Thank you for your reply, I do have ipv6 disabled and in capture do not see
failed attempts.
In capture it is only ipv4:
1 0.0 xx.xx.xx.xx -> yy.yy.yy.yy RADIUS 117 Access-Request(1)
(id=214, l=75)
2 7.889686902 yy.yy.yy.yy -> xx.xx.xx.xx RADIUS 90 Access-Accept(2)
Hello Sergiy,
Sergiy Genyuk via FreeIPA-users
writes:
> I have setup radius proxy (DUO) and associate user with it. Everything works
> except radius
> timeout. It is 5 seconds and you have to be blazing fast to push the button
> :-)
> I did adjust radius timeout in freeipa to 30 seconds but