Hi,
I've downloaded and compiled 1.0.1 and I see that
the distrubution does not contain db_mssql.conf. If one of you has this file (MS
SQL Server database schema), could you send it to me via e-mail?
Rogier Mulder
[EMAIL PROTECTED]
Hello,
First of all, you can set radius.conf to see your database (sql.conf). You
can make some tables like users.
In users you can have fields like Prepaid -yes or no, Calling Card- yes or
no, Balance, Usage etc.
There is a radacct table that includes AcctStopTime, AcctStartTime,
Hi,
Active Directory works with freeradius through, but if
you want to use it within a 802.1x/EAP environment it
won't work. Because you have to get out of Active
Directory the NT Passwords. Active Directory doesn't
support this, so far I came to know.
Is there any solution to this.
Thanks,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cool Man wrote:
| Hi,
|
|
| Active Directory works with freeradius through, but if
| you want to use it within a 802.1x/EAP environment it
| won't work. Because you have to get out of Active
| Directory the NT Passwords. Active Directory doesn't
|
For using PEAP with FreeRADIUS and Active Directory, you'll need to use
the ntlm_auth functionality in the mschap module.
--Mike
On Thu, 2004-10-21 at 06:36, Cool Man wrote:
Hi,
Active Directory works with freeradius through, but if
you want to use it within a 802.1x/EAP environment it
Dera list:
I´m working with PPP Dial-In connections
to a Cisco box with CHAP authentication. My users are authenticated through
Radius server (freeradius 1.0.1) and the user profiles are load in a MySQL
database created with the script provided in a freeradius.tar.gz file.
All is working fine.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael,
This is more out of curosity than anything ( I have not looked at the
ntlm_auth module ... for the record ):
What does the ntlm_auth module give you over the kerberos authentication
for user auth. Does the ntlm_auth module give you the ability
Dera list:
I´m working with PPP Dial-In connections to a Cisco box with CHAP
authentication. My users are authenticated through Radius server
(freeradius 1.0.1) and the user profiles are load in a MySQL database
created with the script provided in a freeradius.tar.gz file. All is
working
Hi Bill,
My problem is I am proxying user of a specfic domain
to another radius server which is infact an Active
directory.
Now the EAP packets proxied to AD are rejected
straight away, Now my question is how should I setup
my kerbeors so that the request goes to proxied AD.
Secodly, The
Hi,
there are obviously different kinds of encryption and as you mention with
out a key, decryption is not possible.
It's not only the question of a key, it's also a question of methods
used. Given a hash value (often called encrypted password), you
just can't get back to the clear
Hi,
(snipp)
CHAP
(snipp)
Encrypted password.
(snipp)
It's impossible to combine CHAP and encrypted (hashed!) passwords,
see my other mail with the subject
Re: problem authenticating to passwd/shadow files
HTH,
Stefan
-
List info/subscribe/unsubscribe? See
Hi Doris:
I tried again but the problem persiste.
I ran radius in debug mode and this is the output:
rad_recv: Access-Request packet from
host 10.250.1.1:1645, id=55, length=76
NAS-IP-Address
= 10.250.1.1
NAS-Port
= 1
NAS-Port-Type
= Async
User-Name
= cisco
CHAP-Password
=
Hi Nicolas, Thomas!
Here is a more detailed description of our scenario:
+--+
+---+ | NAS/Roaming | (NAS/Roaming Partner may not be
| 1 | | RadiusServer | part of our Network and can have their
+---+ +--+ own
Hi there,
I'm experiencing some troubles to receive some RADIUS requests using my
FreeRADIUS server.
The RADIUS server who sends the requests is a DTC Radius server :
http://www.dtc.co.jp/Radius2.0/RelNoteE.html.
I get the following error message :
Error: WARNING: Malformed RADIUS packet from
Cameron Birky [EMAIL PROTECTED] wrote:
I encrypt at my client and then the pptpd calls the freeradius
plugin for authentication. does anyone know if pptpd decrypts
before it passes the string to freeradius for authentication?
Q: How do you encrypt at the client?
Q: How could pptpd
I use two level of authentication.First username and password (EAP-PEAP) and
then check for MAC Addresses. I've try to use session-timeout, but when I
use this attribute, cache for user info will lost and we need to enter
username password again. Hope u can help me Julius Igugu. TQ very much for
[EMAIL PROTECTED] wrote:
Ok. I wasn't explaining the situation clear enough. The script
always succeeds only for testing. Later on I will implement some
logic to it which will check the received user account from external
systems and returns exit value 0 or 1 depending on the external
Rogier Mulder [EMAIL PROTECTED] wrote:
While digging deeper into the src tree, I'm getting the feeling that
there is more I'm missing. In
src/modules/rlm_sql/drivers/rlm_sql_freetds there is only
Makefile. It references sql_freetds.c which is not on the system.
The freetds support was
[EMAIL PROTECTED] wrote:
I'm working with PPP Dial-In connections to a Cisco box with CHAP
authentication. My users are authenticated through Radius server
(freeradius 1.0.1) and the user profiles are load in a MySQL
database created with the script provided in a freeradius.tar.gz
file. All
Cool Man [EMAIL PROTECTED] wrote:
My problem is I am proxying user of a specfic domain
to another radius server which is infact an Active
directory.
Active Directory is not a RADIUS server.
Could you say which RADIUS server you're actually using?
Now the EAP packets proxied to AD are
Benoit ROVERA [EMAIL PROTECTED] wrote:
I'm experiencing some troubles to receive some RADIUS requests using my
FreeRADIUS server.
The RADIUS server who sends the requests is a DTC Radius server :
http://www.dtc.co.jp/Radius2.0/RelNoteE.html.
I get the following error message :
Error:
On Thu, 21 Oct 2004, Alan DeKok wrote:
Additionally how the authentication request is
forwarded to AD.
FreeRADIUS can do authentication to a Windows domain via ntlm_auth.
It's not quite the same thing, but it's close.
Another, possibly simpler, solution is to install IAS on the Windows
Been having trouble sending to this list, this is just a test. No need to
reply, please ignore. Thanks.
- Nate
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Raimund Sacherer [EMAIL PROTECTED] wrote:
My previously posted patch adds configuration items for the proxy.conf
config file where you can define the ip_addr which should be used for
each Realm.
I would be glad if someone can confirm this as problem and my patch as
the right solution ;-)
I've been having issues sending to the list, so apologies if this is dup.
I've got some weirdness with freeradius 1.0.1 (same results
in previous versions). Test systems are x86_64 and i386 Fedora Core 2
machines (2.6.8.1). Same tests on older redhat9 machine (2.6.4) do not have
the same issue.
Hi all,
I tried to use MSCHAP v2 in freeradius 1.0.0 but got
rlm_mschap: FAILED: MS-CHAP2-Response is incorrect
I guess this can happen only when response is not matched with
calculated.
But MSCHAP v2 worked with freeradius 0.9.3 version and the same NAS.
Take a look at the log below and let me
kevin J [EMAIL PROTECTED] wrote:
I tried to use MSCHAP v2 in freeradius 1.0.0 but got
rlm_mschap: FAILED: MS-CHAP2-Response is incorrect
I guess this can happen only when response is not matched with
calculated.
But MSCHAP v2 worked with freeradius 0.9.3 version and the same NAS.
If you're
Alan,
thanks for your reply. I only started today with this list so I do not have access to
yesterday's contributions. Could you forward these to me or point me to an arhcive?
rgrds rgr
-Original Message-
From: [EMAIL PROTECTED] on behalf of Alan DeKok
Sent: Thu 21-10-2004 18:32
To:
http://lists.cistron.nl/pipermail/freeradius-users/
Regards
Doc
- Original Message -
From: Rogier Mulder [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, October 21, 2004 10:40 PM
Subject: RE: Missing db_mssql.sql in 1.0.1 distribution
Alan,
thanks for your reply. I only started
I am trying to use our MS AD database for with LDAP. Authentication
works fine but I can not get authourisation based on group membership to
work.
The issue seems to be that radiusd never queries and group info from the
directory at all. I have read the various how-to's etc, but they are all
Have we found the solution?
If so, can I get it?
Kevin.
Alan DeKok wrote:
kevin J [EMAIL PROTECTED] wrote:
I tried to use MSCHAP v2 in freeradius 1.0.0 but got
rlm_mschap: FAILED: MS-CHAP2-Response is incorrect
I guess this can happen only when "response" is not matched with
On Fri, 22 Oct 2004, Glen Eustace wrote:
I am trying to use our MS AD database for with LDAP. Authentication
works fine but I can not get authourisation based on group membership to
work.
The issue seems to be that radiusd never queries and group info from the
directory at all. I have read the
On Fri, 2004-10-22 at 11:10, Kostas Kalevras wrote:
Use the Ldap-Group attribute:
--users file--
DEFAULT Ldap-Group == mygroup
Reply-Message = user in group mygroup
Tried all sorts of combinations of that and no query is evident from
radiusd -X.
I am using 0.9.3 on FC1 by
G.
Quickest way to look silly. Post a question with a simple answer to a
support list :-(
I had commented out 'files' from the authorisation section, must have
thought that the 'ldap' covered things.
I am now getting queries and can work on the attributes and search etc.
--
.*. |
Please refer to the message posted below by Dan Carrol. I am trying to eMail Dan
directly (as he suggests) but cannot find his email address - Does any body have any
ideas?
Thanks,
Loris Meadows
Manager, ICT Security Risk
Department of Education Training
2 Treasury Place
East Melbourne VIC
Hi, can anyone tell me where I can get good
documentation for freeradius. I've just installed it
on my linux box and need to configure it and begin
using it for work.
Thanks!
___
Do you Yahoo!?
Declare Yourself - Register online to vote today!
Hi everyone,
I use freeradius 0.9.3.
Does anyone know what special characters this version support for using in
username or passwords (e.g.\,-,_,^,space, etc) either in the
users file or mysql database?
Can you give me a documentation site where I can find as much of this
information as
37 matches
Mail list logo