Could use cron to HUP server every so often
[EMAIL PROTECTED] 21/01/2005 00:05:09
Just floating an idea...
Is it worth considering adding a periodic section to radiusd.conf
and
the radius server? Rather than retrofitting reload this, reload that,
functionality into existing functions that are
(I'm reposting this message because previous message was sent with wrong e-mail
account, moderator has not yet approved message. Please forgive me for possible
double entry)
Hi all,
I have a NAS, a Nortel Contivity VPN-Concentrator (in this case used for PPTP
tunnels) which I have configured
want to limit the users so that multiple logins are not allowed
using a single account.
At our company we have ( proprietary ) server which forwards
authentication requests to radius which is configured to query Mysql
and confirm the user credentials.
I have done the following
radcheck table
Dustin Doris wrote:
Dustin Doris wrote:
Hi,
how can i manage to accept two kind of users:
the first:
premium, may login from serverA and serverB
the second:
normal, may only login from serverB
I thought to manage this by huntgroup-file:
huntgroup-file:
Hi!
rad_recv: Access-Accept packet from host IPnumber-Vasco:1645, id=0,
length=198 Reply-Message = Login successful.
MS-CHAP2-Success =
0x02533d4645343046424332434131364136373045313546303944343831414542383036433
1463031423943 MS-MPPE-Encryption-Policy = 0x0001
Hi all!
I am new in freeradius. I use debian testing. How i install and config
freeradius, freeradius-dialupadmin?
Please help me guys
Sincerely,
Tulga.G
Lead Programist of Netsoft LLC
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
What platform are you running it on? Easiest way is to use rpm or
yum/apt etc to install (on Linux).
Have a look at http://www.frontios.com/freeradius.html and also search
the list archives - the notes are also included in all the conf files
which are pretty handy
[EMAIL PROTECTED] 21/01/2005
Alan,
I'm not using an NAS to send the Access-Request. I'm using
radeapclient.
It is causing me a problem it is just not what is supposed to happen I
think.
freeradius version 1.0.1
I had tried to attach some configuration files but they bounced off the
mail server saying Message is bigger
Hello all,
a question about internal processing and memory allocation:
When I run a /etc/init.d/radiusd reload or restart, the first 20 minutes I get
a lot of
Fri Jan 21 10:33:51 2005 : Info: The maximum number of threads (32) are active,
cannot spawn new thread to handle request
and
Fri
Oops. I meant to say
It is NOT causing me a problem it is just not what is supposed to happen
I
think.
Sorry
Martin.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: 21 January 2005 10:12
To:
Hello
i would like to have a notification when a client is proxied to a
realm. is it possible ?
For example,
if [EMAIL PROTECTED] connects to freeradius and freeradius contacts the
realm company.com i'd like to have a reply message which tell me
[EMAIL PROTECTED] has been proxied to company.com
Tnx for your reply!
My kernel is 2.6.8-1-686. OS is Debian testing.
I install: apt-get install freeradius and apt-get install
freeradius-dialupadmin. Installation is successfully finished. So i cannot
config freeradius and cannot use dialup-admin. My installed dialupadmin
hasn't sql, and
Hi!
i would like to have a notification when a client is proxied to a
realm. is it possible ?
It sure is. You can use the pre-proxy {} section and do whatever you like
there. For example an exec instance that executes a script of your choice. It
all depends on what you mean with
Use apt to install freeradius-sql..
[EMAIL PROTECTED] 21/01/2005 11:27:06
Tnx for your reply!
My kernel is 2.6.8-1-686. OS is Debian testing.
I install: apt-get install freeradius and apt-get install
freeradius-dialupadmin. Installation is successfully finished. So i
cannot
config
On Thursday 20 January 2005 19:15, Schoggins, George wrote:
Could someone give me an example of the exec and how it is configured to
run.
See the 'exec-program-wait' script in your freeradius source. It has examples
of use and quick explanation.
Zoltan
-
List info/subscribe/unsubscribe?
Hi,
I want to works Freeradius + NT4 domain and i don't
know how to do?
Can you share you experience about this
subjet.
I'm looking for freeradius.org and i found nothing
about this.
Regards,
On Friday 21 January 2005 05:52, Zoltan A. Ori wrote:
On Thursday 20 January 2005 19:15, Schoggins, George wrote:
Could someone give me an example of the exec and how it is configured to
run.
See the 'exec-program-wait' script in your freeradius source. It has
examples of use and quick
Hmm, Tomcat presents a different issue for authentication. I have RADIUS
working with Apache 2.0, but I have not setup Tomcat.
I think you will need to address Tomcat authentication separately since it
runs as a separate service.
From: Liz Osborne [EMAIL PROTECTED]
Reply-To:
I believe the virtual IP DHCP would be addressed by the Cisco PIX, not the
RADIUS server.
http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_user_guide_chapter09186a00800898ed_4container_ccmigration_09186a00801e893a.html
Try this link.
I would also search for Cisco PIX How To VPN
Here is the radiusd -Xxxx output from when the Extreme Networks switch
tries to auth the port:
snip
Thu Jan 20 04:21:12 2005 : Debug: Listening on authentication *:1812
Thu Jan 20 04:21:12 2005 : Debug: Listening on accounting *:1813
Thu Jan 20 04:21:12 2005 : Debug:
On Thu, 20 Jan 2005, Rad Adm wrote:
I want to limit the users so that multiple logins are not allowed
using a single account.
At our company we have ( proprietary ) server which forwards
authentication requests to radius which is configured to query Mysql
and confirm the user credentials.
Why doesn't everyone just setup redundant radius servers so you can afford
to HUP a server or even take one offline for a bit? It seems that would
be best practice anyway. Freeradius is very stable from my experiences,
but I can't say the same for some of the hard drives I've had in our
Wow. The EAP messages does indeed decode to an EAP Response/Identity
with a value of AMS\mcapelle. I've never seen a EAP-aware NAS rewrite
the User-Name. That violates RFC2869, which states that the NAS must
*copy* the contents of the identity into the User-Name. The only thing
I can
my configuration is that :
attr_rewrite cross_a_realm_company {
attribute = Reply-Message
searchin = proxy_reply
searchfor = [+ ]
replacewith = through company.com
#ignore_case = no
#new_attribute = yes # i don't know ???
max_matches = 1
append= no
}
There is an error
When you're using EAP, it's not always that simple. HUPping a server or
taking it offline is something you'd rather avoid if possible as it
becomes noticible to the end users when you do it. We do indeed have
redundant servers. If one fails, then yes, the other picks up the load,
but it's
I am running version 2.23 FreeRadius on Windows XP Pro. The error I keep
getting is file or directory not found. I have run the script in the
exec-program-wait mode but the path is not working correctly. I have put
the script in every directory and subdirectory in Radius and it still
errors with
Michael Griego [EMAIL PROTECTED] wrote:
Or, instead of using the Autz-Type attribute, use the new rlm_policy
module in CVS to selectively call instance ldap1 or ldap2 based on the
huntgroup.
I don't think that works quite as yet.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
On Friday 21 January 2005 10:18, Schoggins, George wrote:
I am running version 2.23 FreeRadius on Windows XP Pro.
I'm not aware of any version 2.23 of freeRADIUS.
The error I keep
getting is file or directory not found. I have run the script in the
exec-program-wait mode but the path is not
[EMAIL PROTECTED] wrote:
It is causing me a problem it is just not what is supposed to happen I
think.
What in the documentation led you to think that?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Sorry
The Radiud.conf says version 1.160
George Schoggins
Enterasys Networks
Phone: 407-268-9894
FAX: 407-268-9881
Cell: 407-808-6013
Email: [EMAIL PROTECTED]
www: http://www.enterasys.com
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Zoltan
Ori
Neil Craig [EMAIL PROTECTED] wrote:
Is it worth considering adding a periodic section to radiusd.conf
and the radius server? Rather than retrofitting reload this, reload
that, functionality into existing functions that are called during
the processing of a request, modules could implement a
Hi there
I'am using freeradius to authenticate and authorize users connecting to a
cisco router. In my configuration freeradius uses ldap as the backend
database. I have not defined Service-Type and Framed-Protocol in my ldap
schemas. Now I need to add this two attributes for all users. How can
Alan,
This is not causing me a problem at all. I was just wondering what I
had wrong in my configuration to cause it to happen.
Martin
5.44. Table of Attributes
The following table provides a guide to which attributes may be found
in which kinds of packets, and in what quantity.
Nans Delrieu [EMAIL PROTECTED] wrote:
There is an error when i launch freeradius -x :
radiusd.conf[1868] Unknown module rcode 'attribute'.
You are putting the module configuration in an authorize section,
not in the modules section.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
have you tried a non
mschapv2 authentication? try a basic authentication with NTradping to make
sure
The password is read
correctly when you are not doing mschapv2.
I think you set the password
incorrectly in the users file.
Ron.
http://www.positive-logic.net
You could do it with the users file by adding a DEFAULT user re:
DEFAULT
Service-Type = Authenticate-Only,
Framed-Protocol = PPP,
Fall-through = yes
I haven't tried a DEFAULT entry without any check-items. If it doesn't
work you could use (any User-Name greater than one
On Mon, 17 Jan 2005 11:43:51 -0500, Alan DeKok [EMAIL PROTECTED] wrote:
Red Cayenne [EMAIL PROTECTED] wrote:
I mean that your sql xlat function needs to call radius_xlat, too.
How else will it expand the variables passed to your function?
Print out the string that gets passed to your sql
I'm looking for some information regarding FreeRadius and
MSSQL. I can find several documents talking about a mysql
setup, but would like some particulers regarding a mssql
setup. Any suggetions? Links, forums, irc channels?
-
List info/subscribe/unsubscribe? See
[EMAIL PROTECTED] wrote:
This is not causing me a problem at all. I was just wondering what I
had wrong in my configuration to cause it to happen.
Nothing.
5.44. Table of Attributes
...
Yes, I've read the RFC's. FreeRADIUS doesn't follow the RFC's
exactly, for a whole host of reasons.
I'm looking for some information regarding FreeRadius and
MSSQL. I can find several documents talking about a mysql
setup, but would like some particulers regarding a mssql
setup. Any suggetions? Links, forums, irc channels?
-
List info/subscribe/unsubscribe? See
http://www.frontios.com/freeradius.htmlnixinfo [EMAIL PROTECTED] wrote:
I'm looking for some information regarding FreeRadius andMSSQL. I can find several documents talking about a mysql setup, but would like some particulers regarding a mssql setup. Any suggetions? Links, forums, irc channels?-
I am using Freeradius 1.0.0 on Redhat Enterprise 3 I also have it
installed on Suse 9.2. I am connecting to Postgres 7.4.6. I can
authenticate to a users file. But when I try to use radcheck in
postgres I get login incorrect. I am trying to upgrade from freeradius
.7.3 running on Solaris 2.8 and
Alfred H. Dahl [EMAIL PROTECTED] wrote:
When I run a /etc/init.d/radiusd reload or restart, the first 20 minutes
I get a lot of
Fri Jan 21 10:33:51 2005 : Info: The maximum number of threads (32) are
active, cannot spawn new thread to handle request
It takes a bit of time to
On Fri, 2005-21-01 at 13:52 -0800, [EMAIL PROTECTED] wrote:
I am using Freeradius 1.0.0 on Redhat Enterprise 3 I also have it
installed on Suse 9.2. I am connecting to Postgres 7.4.6. I can
authenticate to a users file. But when I try to use radcheck in
postgres I get login incorrect. I am
Does anyone know where I can get freeradius that will run on XP. I have
it loaded but it was passed on from a friend and I do not know where to
go and get it.
George Schoggins
Email: [EMAIL PROTECTED]
www: http://www.enterasys.com
-
List info/subscribe/unsubscribe? See
I have previously posted this, but received no response. I am getting
fairly desparate, and would really appreciate a response from someone,
as I have no where else to turn. Thanks in advance.
-
Hello,
I am having trouble configuring our RADIUS server for use as a 802.11b
authenticator.
Hi all someone know how to configure freeradius
with LDAP for EAP/TLS authentication ?
Any howto ?
Thanks
Jacques VUVANT
47 matches
Mail list logo