I'm looking for some good documentation on PAM for authentication with
radius or with any service. I've only been able to find documentation
that is either brief or out of date. Any good books, or sites
Thanks!
John
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
[EMAIL PROTECTED] wrote:
I'm looking for some good documentation on PAM for authentication with
radius or with any service. I've only been able to find documentation
that is either brief or out of date. Any good books, or sites
Try the PAM radius authentication module. There's really
Hi all,
we have a freeRadius Server (0.9.3) authenticating WLAN-Users.
It works fine with the local users file, but we want it to authenticate the users
against our NT-Domain.
I have learned that rlm_smb should be used to achieve this, so I re-configured
freeRadius with experimental modules.
WLAN authentication is handled by the EAP module. Sounds like, for what
you're wanting to do, you need to look at the PEAP setup.
--Mike
On Tue, 2003-12-16 at 08:22, Kai Matla wrote:
Hi all,
we have a freeRadius Server (0.9.3) authenticating WLAN-Users.
It works fine with the local users
The authentication now works and I see an Access Accept Packet at the
end. But the interesting is that the authentication goes a few seconds
later on and the same process is repeated.
The Windows XP PC never gets really authenticated. The Access Point show
that the authentication was successfull
Just a guess:
Is there any firwall software/hardware that may not be allowing the
acknowledgement
to be returned to the NAS?
Sevcik Berndt wrote:
The authentication now works and I see an Access Accept Packet at the
end. But the interesting is that the authentication goes a few seconds
later
the
acknowledgement
to be returned to the NAS?
Sevcik Berndt wrote:
The authentication now works and I see an Access Accept Packet at the
end. But the interesting is that the authentication goes a few seconds
later on and the same process is repeated.
The Windows XP PC never gets really authenticated
Obermeier Markus ICM MP PD TS [EMAIL PROTECTED] wrote:
How does Freeradius choose the cipher suite?
It doesn't. It lets SSL pick it.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dear all,
I am working on a EAP/TLS authentication with Freeradius and the Odessey client.
After a client hello message with a bunch of cipher suites, the odyssey client
receives a server hello message with one cipher suites. It responds with a
TLS Alert message that tells the server the cipher
Hello,
I am trying to configure a wireless communication network using
authentication with Freeradius.
I have already configured one client, my access point (aironet cisco), and
my freeradius server to use TLS authentication.
I took the EAP/TLS authentication HOW-TO, and I tried to do exactly what
what's the problem? You've just described how you want the
server to work, which is exactly how the server currently works.
If you want CHAP to work with LDAP, you MUST store the plain-text
password in LDAP, and then let the server use that to do the CHAP
authentication itself. The LDAP module
at the debug info, it looks like thats whats happening when you do a
radiustest (which works) on it anyway? This is also how qmail-ldap
handels its authentication.
Thanks for the help :)
--
Entelin [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello list,
I'm looking for some information about how to setup my user profile file
into my FreeRADIUS Server (vers 0.9.1 runing in a RedHat 7.2 box) to allow
user authentication via CHECKPOINT VPN.
I want to acces from a XP box, outside of my PRIVATE LAN, via VPN with
CheckPoint firewall
Daniel Garcia [EMAIL PROTECTED] wrote:
I'm looking for some information about how to setup my user profile file
into my FreeRADIUS Server (vers 0.9.1 runing in a RedHat 7.2 box) to allow
user authentication via CHECKPOINT VPN.
What does the Checkpoint need?
Colud somebody tell my where I
First of all, sorry for the poor English level.
I need some help! I'm writing to you because I read that you were working
with freeRadius and Cisco switch. My problem is that I want to connect the
freeRadius server to a Cisco Catalyst 3550 switch (like:
workstation--switch--freeradius)
Shoujit Mitra [EMAIL PROTECTED] wrote:
I have a question regarding the implementation of Digest-MD5 authentication
protocol as defined in 'expired' draft draft-sterman-aaa-sip-00.txt
As per the everything seems to be perfect other than step-4 in the below
sequence diagram.
...
I would
I have a question regarding the implementation of Digest-MD5 authentication
protocol as defined in 'expired' draft draft-sterman-aaa-sip-00.txt
As per the everything seems to be perfect other than step-4 in the below
sequence diagram.
User RADIUS
At Wed, 26 Nov 2003 11:55:30 -0800 (PST),
Mike Million wrote:
Hi,
I had a talk with a guy in my company that has experience setting up
wireless stuff as I do not have any experience on that (I have a bit
in the radius part). He told me that there are commercial solutions
that offer the
Hello,
If you can generate a freeradius debug trace of a successfull
PEAP/MSCHAPv2 authentication process, please email
me a copy. I think my case is successfull but I can't get any bits over
the link after authentication (client is PPC 2003,
AP-2000 with sw 2.3.3).
regards,
-jja
-
List
There is an open-source project called NoCatAuth which is a box that acts like a
BlueSocket appliance. It hi-jacks HTTP sessions and passes off the authentication to
a radius box.
I haven't yet tried the NoCatAuth soulution, but I had done the above with a
BlueSocket box and
a FreeRadius
: Cisco h323 authentication
I just have a quick question on the setup of a Cisco AS to authenticate
h323 connection via radius.
Does someone have the appropriate configurations on the AS to make it
auth the connections?
I see that Aivis Olsteins asked this back in April but didn't get an
answer
At Tue, 25 Nov 2003 20:18:30 -0800 (PST),
Mike Million wrote:
[1 text/plain; us-ascii (7bit)]
I am a novice here, so my question may sound pretty silly.
I am trying to authenticate users through an Orinico AP-2500 WAP using an username
a password. AP-2500 provides this portal page
On Wed, 2003-11-26 at 03:24, Sebastien HANUCHE wrote:
have a look ... maybe useful
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/vapp_dev/vsa
ig3.htm#129870
Thanks. I have been there, and I think my configuration is sufficient:
aaa authentication login h323 group radius
Title: Message
Hi all. I'am
using a NAS - cisco 4500 router and trying to get it to use my freeradius
installation on my RH8.0 box. Now i think i have the hosts file configured
correctly
Defines a
RADIUS client. The format is 'client
[hostname|ip-address]'## '127.0.0.1' is another name
I just have a quick question on the setup of a Cisco AS to authenticate
h323 connection via radius.
Does someone have the appropriate configurations on the AS to make it
auth the connections?
I see that Aivis Olsteins asked this back in April but didn't get an
answer on the list.
--
David
I am a novice here, so my question may sound pretty silly.
I am trying to authenticate users throughan Orinico AP-2500 WAP using an username a password. AP-2500 provides this "portal page" feature where you can redirect the users to a webpage (in an external webserver) for then to log-in. So, I
I was reading this thread and I would like to suggest you try the
Internet Authentication Service (a radius server) that comes as part
of optional networking components in w2ks
Then use proxy radius.
Ad for realms, if you need to do realm rewriting, good luck. I tried
Heiden, John [EMAIL PROTECTED] wrote:
I am assuming I need to somehow have FreeRADIUS add a realm
to the incoming information first, then pass that back to the
Active Directory server?
Are you using FreeRADIUS to put the users into different realms, or
are the users logging in with different
]
[mailto:[EMAIL PROTECTED] Behalf Of Alan DeKok
Sent: Wednesday, November 19, 2003 11:12 AM
To: [EMAIL PROTECTED]
Subject: Re: Multiple realm authentication with FreeRADIUS back to
Active Directory?
Heiden, John [EMAIL PROTECTED] wrote:
I am assuming I need to somehow have FreeRADIUS add
Heiden, John [EMAIL PROTECTED] wrote:
So kind of imagine a tree of sorts. The leaves/branches are
the Cisco AS servers, they go back and authenticate to a
Linux server with Free Radius. The Linux/FreeRADIUS server
then ultimately authenticates the users back to an AD server.
But the
: Multiple realm authentication with FreeRADIUS back to
Active Directory?
Heiden, John [EMAIL PROTECTED] wrote:
So kind of imagine a tree of sorts. The leaves/branches are
the Cisco AS servers, they go back and authenticate to a
Linux server with Free Radius. The Linux/FreeRADIUS server
We are trying to authenticate users with FreeRadius 0.9.2 against
the /etc/shadow file in a solaris system.
We know that System authentication won't work for EAP-MD5. But, it's
possible to make it using CHAP or PEAP?
Thanks
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
No, CHAP, and MS-CHAP (the inner authentication method used with PEAP)
require clear text passwords. Therefore, the shadow password file is not
compatible with these methods. This bit me to start with.
You could always try TTLS with SYSTEM
Tue Nov 18 22:04:40 2003 : Auth: rlm_chap: Attribute
CHAP-Password is required for authentication. Cannot
use User-Password.
Tue Nov 18 22:04:40 2003 : Debug:
modsingle[authenticate]: returned from chap (rlm_chap)
for request 2
Tue Nov 18 22:04:40 2003 : Debug:
modcall[authenticate]: module chap
salut
No, CHAP, and MS-CHAP (the inner authentication method used with PEAP)
require clear text passwords. Therefore, the shadow password file is not
compatible with these methods. This bit me to start with.
so, there is no PAP for PEAP?
You could always try TTLS with SYSTEM as the inner
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
-Original Message-
From: Artur Hecker [mailto:[EMAIL PROTECTED]
Sent: 18 November 2003 15:49
To: [EMAIL PROTECTED]
Subject: Re: Authentication against /etc/shadow using ...
salut
No, CHAP, and MS-CHAP (the inner
akongr [EMAIL PROTECTED] wrote:
I have set up free-radius 0.9.2 runnig on Solaris to authenticate VPN
access from VPN server running on MS-Win2000 server. The authentication
method is PAP. There is no problem in authentication for computers
running XP. But it could not be authenticated
=?iso-8859-1?Q?Jos=E9?= Berenguer [EMAIL PROTECTED] wrote:
We know that System authentication won't work for EAP-MD5. But, it's
possible to make it using CHAP or PEAP?
No. See the FAQ. It talks SPECIFICALLY about system authentication
and CHAP.
Microsoft PEAP doesn't send clear-text
Which won't ever send a CHAP password.
modsingle[authenticate]: calling chap (rlm_chap) for
request 2
Tue Nov 18 22:04:40 2003 : Auth: rlm_chap: Attribute
CHAP-Password is required for authentication. Cannot
use User-Password.
Exactly.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
At Sun, 16 Nov 2003 05:15:53 -0800 (PST),
apellido jr., wilfredo p [EMAIL PROTECTED] wrote:
Good day Mr. Dekok, sorry if im asking stupid
question. Im just asking so that i can sure that chap
authentication doesnt work and maybe someone could
give some comment. Hoping maybe i miss something
to have about 5 different realms,
and 2) need to have the FreeRADIUS server mostly just act
as a pass through back to an (Micro$oft) Active Directory
server which does the real authentication. The FreeRADIUS
server would do the accounting as well as preventing mulitple
logins.
I am assuming I need
Hi,
Pls forgive me if this question is not entirely related to free-radius.
I have set up free-radius 0.9.2 runnig on Solaris to authenticate VPN
access from VPN server running on MS-Win2000 server. The authentication
method is PAP. There is no problem in authentication for computers
running XP
Good day Mr. Dekok, sorry if im asking stupid
question. Im just asking so that i can sure that chap
authentication doesnt work and maybe someone could
give some comment. Hoping maybe i miss something. I
test it already before asking this in mailing list and
it doesnt work.
=
wilfredo
apellido jr., wilfredo p [EMAIL PROTECTED] wrote:
Im just asking so that i can sure that chap
authentication doesnt work and maybe someone could
give some comment. Hoping maybe i miss something. I
test it already before asking this in mailing list and
it doesnt work.
Then say that. I
can i use chap authentication in rlm_sql?
=
wilfredo pahilanga apellido jr.
technical support
mactan online
bacolod city, philippines
+63 34 4348311
If you can't hear me, it's because i'm in parentheses.
__
Do you Yahoo!?
Protect your identity with Yahoo
apellido jr., wilfredo p [EMAIL PROTECTED] wrote:
can i use chap authentication in rlm_sql?
You don't. The SQL module doesn't do authentication.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Good day Mr. Dekok, sorry what i mean is im using
mysql to store user's information and pap
authentication to authenticatite them. what im asking
is if i can use chap?
=
wilfredo pahilanga apellido jr.
technical support
mactan online
bacolod city, philippines
+63 34 4348311
If you can't hear
apellido jr., wilfredo p [EMAIL PROTECTED] wrote:
what i mean is im using
mysql to store user's information and pap
authentication to authenticatite them. what im asking
is if i can use chap?
I don't understand why you're asking this question on the mailing
list. It would take you 5
Hi,
I'm new to radius setup.
Can anyone help point me in the right direction here.
The supplicant fails to authenticate
and i see following debug messages repeat in the log.
rlm_eap: processing type tls
rlm_ap: list_clean deleted one item
Thanks,
-
List info/subscribe/unsubscribe? See
Alvin Fernando [EMAIL PROTECTED] wrote:
The supplicant fails to authenticate
and i see following debug messages repeat in the log.
rlm_eap: processing type tls
rlm_ap: list_clean deleted one item
Those messages have nothing to do with the authentication failure.
Read the OTHER messages
rlm_ldap: (re)connect to 193.63.251.176:636, authentication 0
rlm_ldap: setting TLS mode to 1
rlm_ldap: bind as / to 193.63.251.176:636
rlm_ldap: waiting for bind result ...
rlm_ldap: performing search in ou=Login,o=LSHTM, with filter
(cn=anstpbat)
rlm_ldap: looking for check items in directory
: - authenticate
rlm_ldap: login attempt by anstpbat with password qwert1e
rlm_ldap: user DN: cn=Anstpbat,ou=Login,o=LSHTM
rlm_ldap: (re)connect to 193.63.251.176:636, authentication 1
rlm_ldap: setting TLS mode to 1
rlm_ldap: bind as cn=Anstpbat,ou=Login,o=LSHTM/qwert1e to
193.63.251.176:636
Deepak Singhal [EMAIL PROTECTED] wrote:
I tried editing postgresql.conf and specified sql1 and sql2 and used these
in radius.conf but it gives error :
Failed to link to module 'rlm_sql1': file not found
What should i specify in radiusd.conf.
See doc/configurable_failover. It gives
hai friends,
I have installed free radius and radtest commands working fine locally.
The OS used is RedHat 8.0 . But When i am trying this command from other servers, it
is not responding. Also when i am dialing, i am getting authentication failed message.
The same configuration i have done
Hi. All
Howto use external authentication for Freeradius.
Thank.
Sila S
Sila Sujjinanont wrote:
Hi. All
Howto use external authentication for Freeradius.
Thank.
Sila S
R E A D T H E D O C S .
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
2 different password
attributes? How will each authentication protocol (PAP, MS_CHAP, e.g)
then point to different LDAP modules to bind the corresponding
passwords?
Lai
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
authentication with LDAP
Date: Mon, 27 Oct 2003 16:11:49 +0800
On 24 Oct 2003 at 11:41, Kostas Kalevras wrote:
I read the document that MS-CHAP can also use NT-Password. So I am
thinking to have PAP to use crypted userPassword and MS-CHAP to use
an encoded NT-Password eventually. Is it feasible?
Yes
Sorry, I had read the thread and could not identify what was going
on. I got it now.
The information below is VERY helpful.
Thanks very much.
Lai
On 27 Oct 2003 at 2:27, Matt Sapp wrote:
Sigh. We just went over this last week in the LEAP+LDAP thread. If
you use the password_attribute
On Sun, 26 Oct 2003, Ruslan Spivak wrote:
Hello.
For now i use authentication(authtype PAP) and accounting in mysql(also
rlm_sqlcounter).
I saw in config option for authentication using ldap. Is it possible to
use ldap authentication and mysql accounting and will rlm_sqlcounter
work
Hello.
For now i use authentication(authtype PAP) and accounting in mysql(also
rlm_sqlcounter).
I saw in config option for authentication using ldap. Is it possible to
use ldap authentication and mysql accounting and will rlm_sqlcounter
work in such combination?
Thanks in advance.
Your help
Lai Fu Keung [EMAIL PROTECTED] wrote:
We are heading to have Single Sign On for all services. Having a
plain text password on a machine is considered insecure and loss of
privacy.
Nonsense.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Lai Fu Keung [EMAIL PROTECTED] wrote:
My problem is that both MS_CHAP and PAP authentications will look up
the plain text password. But I want PAP to look up the crypted
userPassword.
Again, why?
Alan DeKok.
-
List info/subscribe/unsubscribe? See
rad_check_password: Found Auth-Type EAP
rad_check_password: Found Auth-Type System
Warning: Found 2 auth-types on request for user 'jose'
auth: type System
modcall: entering group authenticate for request 0
rlm_unix: Attribute User-Password is required for authentication.
modcall[authenticate
Lai Fu Keung [EMAIL PROTECTED] wrote:
How can ask LDAP to look at UserPassword attribute when PAP is used,
and look at chapPassword attribute when MS_CHAP is used?
Why? UserPassword will work fine with both authentication methods.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http
=?iso-8859-1?Q?Jos=E9?= Berenguer [EMAIL PROTECTED] wrote:
I can't read /etc/shadow. Password are encrypt.
The error is (in debug mode):
As you have discovered, you cannot use /etc/passwd to authenticate
EAP sessions.
EAP *requires* a plain-text password. /etc/passwd does not supply
one.
On 22 Oct 2003 at 11:09, Alan DeKok wrote:
How can ask LDAP to look at UserPassword attribute when PAP is used,
and look at chapPassword attribute when MS_CHAP is used?
Why? UserPassword will work fine with both authentication methods.
I read the document which says that for MS_CHAP, I
: user DN: uid=testuser,ou=radius,c=hk
rlm_ldap: (re)connect to freeradius.hku.hk:389, authentication 1
rlm_ldap: bind as uid=testuser,ou=radius,c=hk/testtest to
freeradius.hku.hk:389
rlm_ldap: waiting for bind result ...
modcall[authenticate]: module first_ldap returns reject
modcall: group
To: [EMAIL PROTECTED]
Subject: Authentication based on interface?
I have a cicso 3600 with 2 physical interfaces (2 ISDN PRIs) and want
to make 2 usergroups with separate access to them (ex. group1 can login
only from Serial0/0, and group2 - Serial1/0). How could that be done?
-
List info
You forgot to mention how your radius server is configured, using the system
password file, sql, LDAP?
I am using mysql.
Either way though, as a general solution you should be able to separate the
two by adding NAS-Port and group as check conditions to the users file.
You'll need one for
redundant
rlm_ldap: - authenticate
rlm_ldap: login attempt by testuser with password testtest
rlm_ldap: user DN: uid=testuser,ou=radius,c=hk
rlm_ldap: (re)connect to freeradius.hku.hk:389, authentication 1
rlm_ldap: bind as uid=testuser,ou=radius,c=hk/testtest to
freeradius.hku.hk:389
rlm_ldap
I was thinking about checking the interface, but the it appears only when
NAS-Port-Type=ISDN:
Vendor-Specific = V9:T1:L24:interface=Serial0/0:30
NAS-Port-Type = ISDN ^^^
NAS-Port = 20030
Have you ran FreeRADIUS in debug mode (radiusd -X) and done
OK: [jose/no User-Password attribute]
Info: rlm_eap_md5: No password configured for this user
Auth: Login incorrect: [jose/no User-Password attribute]
System authentication will NEVER work for EAP-MD5. It's CHAP. See
the FAQ.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http
I have a cicso 3600 with 2 physical interfaces (2 ISDN PRIs) and want
to make 2 usergroups with separate access to them (ex. group1 can login
only from Serial0/0, and group2 - Serial1/0). How could that be done?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello!
Ive installed Exim 4.20, in my Linux Red-Hat 9 server.
After my installation I perform all tests following the documentation in
your web site successfully.
Right now I can send mails though Exim but I need my Exim clients
authenticate in my Freeradius server, and I cant find a
Hello list,
I' ve installed my freradius v 0.9.1 on a redhat 7.2 machine.
I'm trying to setup clients file to permit AAA from a cisco gatekeeper
(built in CISCO 3511 MCU) used for VoIP system..
I'm looking for any example of syntax (users file) to allow authoritzation
and validation of joinig
Thakn You for your answer.
The problem is that I can't find and access the attribut i need in Active
Directory.
I would like to use MD5-Challenge, so I have to make my LDAP search on which
Active Directory attribut?
Thanks a lot one more time
Hello
I would like to know if it was possible to make the authentication via
Active Directory without using PAM and Kerberos Authentication.
Thank you a lot
_
MSN Messenger : discutez en direct avec vos amis !
http
Hi,
you can use LDAP or samba to do this,
CHANseth666 666 [EMAIL PROTECTED] wrote:
HelloI would like to know if it was possible to make the authentication via Active Directory without using PAM and Kerberos Authentication.Thank you
Hello,
Just after couple of days work, I managed to get the whole kaboodle
working to this point :-)
(freeradius 0.9.1, proxim AP-2000, ipaq H5550)
Any ideas why there is no reply to the challenge, but an access request
with the MAC address of the ipaq?
regards,
-jja
Hi folks,
In last time I have spend hours and hour to find out solution for delivering
an IP address to my wireless LAN station after successful authentication.
I'v tried framed-ip-address parameter for delivering static IP address to AP
but it shows no reactions.
In some discussion I have found
Roman Janos [EMAIL PROTECTED] wrote:
In last time I have spend hours and hour to find out solution for delivering
an IP address to my wireless LAN station after successful authentication.
...
ROMAN J Auth-Type := EAP
Service-Type = Framed-User,
Framed-Protocol = PPP
Hi there everybody,
I'd like a example setting
Freeradius using Mysqlfor authentication.
If someone know where can I get
it, pleasereplyto me.
Thanks for help
setembro de 2003 10:24Para:
FreeradiusAssunto: Using Mysql for Authentication / Usando MySql
para Autenticação
Hi there everybody,
I'd like a example setting
Freeradius using Mysqlfor authentication.
If someone know where can I
get it, pleasereplyto me.
Thanks for help
, cause i wanted to use nas-port-type based authentication, because
i have to kinds of users, analog and ISDN, in order to prevent analog
users from using ISDN services
which is working fine now
but the problem i faced is in simultenous-use, as it is a check item
too, if the radius don't receive
wrote:
On Thu, 25 Sep 2003, Ossama Suleiman wrote:
dear all,
while authenticationg against ldap i enabled the compare_check_items
= yes, cause i wanted to use nas-port-type based authentication, because
i have to kinds of users, analog and ISDN, in order to prevent analog
users
On Sun, 28 Sep 2003, Ossama Suleiman wrote:
dear kostas,
i found rlm_checkval to be still an experimental module, i just wanted to make
sure if it is reliable with a large
number of users??
It's experimental because it was newly added to the source and we are too lazy
to move it to the
On Thu, 25 Sep 2003, Ossama Suleiman wrote:
dear all,
while authenticationg against ldap i enabled the compare_check_items
= yes, cause i wanted to use nas-port-type based authentication, because
i have to kinds of users, analog and ISDN, in order to prevent analog
users from using ISDN
this in ldap.attrmap
checkItem Simultaneous-UseradiusSimultaneousUse
- Original Message -
From: Dustin Doris [EMAIL PROTECTED]
To: freeradius-users [EMAIL PROTECTED]
Sent: Thursday, September 25, 2003 7:02 PM
Subject: Re: ldap authentication / simultenious-use
dear all,
while authenticationg against ldap i enabled the compare_check_items
= yes, cause i wanted to use nas-port-type based authentication, because
i have to kinds of users, analog and ISDN, in order to prevent analog
users from using ISDN services
which is working fine now
On Thu, 25 Sep 2003, Ossama Suleiman wrote:
dear all,
while authenticationg against ldap i enabled the compare_check_items
= yes, cause i wanted to use nas-port-type based authentication, because
i have to kinds of users, analog and ISDN, in order to prevent analog
users from using
in the users file??
Thank you so much for your help
best regards
ossama
- Original Message -
From: Dustin Doris [EMAIL PROTECTED]
To: freeradius-users [EMAIL PROTECTED]
Sent: Thursday, September 25, 2003 7:02 PM
Subject: Re: ldap authentication / simultenious-use
On Thu, 25 Sep 2003
dear all,
i am using freeradius 0.9.1 with ldap
what i want to do is to authenticate users depending whether they
are ISDN or Async, i added to radiusCheckItem: the pair: NAS-Port-Type
== ISDN for isdn users, and NAS-Port-Type == Async for normal dialup
users,
but what actually
Hi there everybody,
I'd like a example setting
Freeradius using Mysqlfor authentication.
If someone know where can I get
it, pleasereplyto me.
Thanks for help
sorry my mistake
forgot to comment out: compare_check_items = yes
in radiusd.conf
sorry again
ossama
Ossama Suleiman wrote:
dear all,
i am using freeradius 0.9.1 with ldap
what i want to do is to authenticate users depending whether they
are ISDN or Async, i added to
Bruno Gianelli Braido - IG [EMAIL PROTECTED] wrote:
I'd like a example setting Freeradius using Mysql for
authentication.
Have you tried reading the docs which come with the server, or the
RADIUS book, instead of posting the same message multiple times to the
list?
Alan DeKok.
-
List
with the same letters.
I had the same problem with an external authenticator with squid, but wrote an
authenticator in perl myself to check both servers and only give back one OK
if the authentication succeeds one of them them. Is this possible to use with
FreeRadius ?
Many regards,
Andres
-
List info
Hello.
In the last release of the freeradius in experimental mode is supported
EAP-TTLS authentication, anyone knows whether PEAP (Cisco) authentication
is supported too?
Thanks in advance.
Regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
point apple AEBS (Airport Extreme Base Station) and I
working freeradius sous mandrake 9.0
I made the authentication using MAC address wireless card.
I running RADIUS -X -A and i have an access-accept, thereby i have
internet access.
---
auth: user supplied User-Password matches
Francisco Javier Martinez Martinez [EMAIL PROTECTED] wrote:
In the last release of the freeradius in experimental mode is supported
EAP-TTLS authentication, anyone knows whether PEAP (Cisco) authentication
is supported too?
There has been no announcement. There have been similary
1 - 100 of 807 matches
Mail list logo