Greeting,
I'm trying to setup a computer with the above configuration.
Anyone know about how to pass the NoCat Attribute of (Member) back to
the NoCat Gateway?
I've got this in the radtest
Vendor-32767-Attr-1 = 0x4d656d626572
Idle-Timeout = 300
Anyone know if I'm on the right
I have a situation when some of my 'nas's will have dynamic ip address's.
So, I could use a generalized case to allow my radius server to listen..
something like this.
client 0.0.0.0/0 {
secret = test
-
I guess this would be ok, if I had lots of nas's.
Hello,
I would like to authenticate my users who have a certificate
but I want to check the /L field (locality name) of the certificate
and not the user name which is the /CN of the certificate.
is there a way to do this with Freeradius ?
thank you
Rick
-
List info/subscribe/unsubscribe? See
Hi,
i have to use ntlm_auth command with freeradius.
Before, i want to execute ntlm_auth manually. For this job i use samba
and winbind.
the result command is :
ntlm_auth --requeset-nt-key --domain=micro --username=alex
password:
NT_STATUS_NO_LOGON_SERVERS: No logon servers
Dave Plonka wrote:
We noticed that as of in freeradius-1.0.0 and again in 1.0.1 that the
check-radiusd-config script is broken. This is because it used the
-p port option of radiusd, which is deprecated and ignored as of
freeradius-1.0.0.
That's right. The command line option was removed
Hi,
The problem seems to be, again, that even one adds
--with-ltdl-lib=/opt/csw/share/libtool/libltdl
--with-ltdl-include=/opt/csw/share/libtool/libltdl
make does not seem to care about it.
I've found this to be the case with several (if not all) of the
--with-BLAH-lib and with
On Mon, 31 Jan 2005, Cris Boisvert wrote:
Is their a way for me to add other attributes through the Dialup admin that
are not currently in the screens?
See the documentation in dialup_admin/doc
In short, yes. Check the conf/user_edit.attrs. Depending on your user db (ldap
or sql) you should use
Thank you to Alan and Matthias for your suggestion. John and I went
through countless configuration iterations and debugs in the 1.0.1 baseline
and the CVS pre 1.0.2 snapshot without success. Lastly, we were successful
when we started clean yesterday with another download of the CVS 1.0.2
Hi,
I've got this in the radtest
Vendor-32767-Attr-1 = 0x4d656d626572
Idle-Timeout = 300
Interesting approach. Maybe it's really worth adding support for
such syntax (if it doesn't exist) if someone just doesn't want to add
vendor attributes to the dictionary. OTOH,
Hi!
I'm using freeradius 0.9.3 on Red Hat 7.3 system but i have a monthly
problem.
Monthly, i think freeradius reset all connection, for example at 31 of
January i have 20 users conected and at 04:00 (01 of February) all users
dissapear, and they need to reconnect again. Can you help me?
I
Hi all,
sorry to bother you, I searched all on google but didn`t find a solution,
either it is not designed as I think or I misunderstand something
So here the story :
I have to assign IP addresses via dynamic pools on Freeradius and via some
local pool on NAS. (requirement)
So I added in
Thanks, My Radius with LDAP is OKAY now.
How can I configure the password in LDAP with MD5. Example:
in the LDAP I put:
rootpw {MD5}aY3BnUicTk23PiinE+qwew==
In the Radius.conf I put:
ldap {
server=ldaps.xxx.com
identity=cn=root,dc=com
Hi,
Monthly, i think freeradius reset all connection,
FreeRadius (or any other Radius server) does not touch connections
at all. It's the NAS that is doing all this. The only thing that
FreeRadius does is deciding whether or not to accept a connection,
if it's asked by a NAS. Also, it
On Wed, 2 Feb 2005, Anderson Alves de Albuquerque wrote:
Thanks, My Radius with LDAP is OKAY now.
How can I configure the password in LDAP with MD5. Example:
in the LDAP I put:
rootpw {MD5}aY3BnUicTk23PiinE+qwew==
In the Radius.conf I put:
ldap {
server=ldaps.xxx.com
That line below means if the client is not 1.2.3.4, then reject.
On Tue, 1 Feb 2005, Cris Boisvert wrote:
Does this mean... the client ip has to be 1.2.3.4 if not reject
Or if the client ip is this reject?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
rlm_ippool requires that the packet contain NAS-IP-Address and NAS-Port.
Are you sending those attributes?
If not, you may need to modify rlm_ippool to uniquely identify a user by
something else.
On Wed, 2 Feb 2005, Michael Kopp wrote:
Hi all,
sorry to bother you, I searched all on google
On Tue, 1 Feb 2005, Michel van Dop wrote:
When i only connect freeradius to the slave db it works great! Same on only
master db!
I think there is a radiusd.conf problem i find on google more configs
old/and very old but not a working solution.
The fail-over document on the own radius
Hi,
I'm not sure I'm supposed to post about mod_auth_radius here. Sorry if I'm not.
My apache (2.0) server is installed with rpm's. DSO's are enabled. So, I use
apxs.
When I launch the command apxs2 -i -a -c mod_auth_radius-2.0.c, the result is
:
/usr/lib/apache2/build/libtool --silent
From: Andoni Ayala - KNET [EMAIL PROTECTED]
Hi!
I'm using freeradius 0.9.3 on Red Hat 7.3 system but i have a monthly
problem.
Monthly, i think freeradius reset all connection, for example at 31 of
January i have 20 users conected and at 04:00 (01 of February) all users
dissapear, and
Yes
Thanks, the reason are that monthly rotate log:
/var/log/radius/radutmp {
monthly
rotate 100
create
compress
missingok
}
/var/log/radius/radwtmp {
monthly
rotate 100
create
compress
missingok
And the new
[EMAIL PROTECTED] wrote:
Vendor-32767-Attr-1 =3D 0x4d656d626572
Idle-Timeout =3D 300
Interesting approach. Maybe it's really worth adding support for
such syntax (if it doesn't exist) if someone just doesn't want to add
vendor attributes to the dictionary. OTOH, it's
Andrew Frazer [EMAIL PROTECTED] wrote:
I have a situation when some of my 'nas's will have dynamic ip address's.
That's always bad.
However I have lots more than one 'nas', that I want to use. And I want each
nas to use a different secrect. How can I identify the NAS without using
My freeradius installation on FreeBSD5.3 is using up
99% of CPU resources. it is running with postgresql in
a dual intel 800 machine with 1 gb ram.
Basic functionality it provides is only accounting.
Anyone has any input on this ?
-Apu
=
---
Before God we are all
Hi,
I fount i 85% solution for my problem.
Set in sql1 (masterdb) connect_failure_retry_delay = 1800
So if master db is down is use slave:
authorize {
redundant {
sql1
sql2
}
}
He go slow (180 seconds down) from sql1 to sql2 and try connect after 1800
Hi, this our first message to the list. We are trying to deploy a Wireless
LAN based on 802.1X EAP-TTLS.
We have have built an authentication infraestructure with the following
components:
- A Radius server (Linux SuSe 9.0 + FreeRadius CVS version from March'2004).
- Access Point Aironet
Can somebody help out.
I try to run my dialup_admin interface but only what am seeing is Could
not connect to database.
Your help will be appreciated\
Thank you
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Francisco,
Are you authenticating the RADIUS server or just ignoring the validity (or
otherwise) of the certificate it sends? If you are trying to authenticate the
RADIUS server and it's either sending an invalid (or self signed) certificate
or the root certificate authority that signed
I have this in the users file
pork1 Client-IP-Address != 208.243.100.5, Auth-Type := reject, Password ==
test
When I test from that nas I get a reject every time.
Ideas?
Thanx
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dustin
Doris
Sent:
On Wed, 2 Feb 2005 18:25:38 +0100, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
Can somebody help out.
I try to run my dialup_admin interface but only what am seeing is Could
not connect to database.
Can you connect to the database from the machine dialup-admin runs on?
Your help will be
Hi all,
I am a new user of Freeradius and i need your
help.
Do you know if there is any way to achieve EAP-SIM
based Auhtentication using Freeradius?
Do i need to include more files in the freeradius
server;
Thanks in advance!
Giorgos
I'm setting up dialupadmin. I get in the left had column nothing but
php code
Why, and could someone point me in the direction to correct it.
?php
$auth_user = $HTTP_SERVER_VARS[PHP_AUTH_USER];
if ($auth_user){
if (is_file(../html/buttons/$auth_user/buttons.html.php3))
Can anyone tell me where I can find binaries for FreeRadius
for Redhat 9
George Schoggins
Enterasys Networks
Phone: 407-268-9894
FAX: 407-268-9881
Cell:407-808-6013
Email: [EMAIL PROTECTED]
www: http://www.enterasys.com
image001.gif
Cris Boisvert [EMAIL PROTECTED] wrote:
I have this in the users file
pork1 Client-IP-Address != 208.243.100.5, Auth-Type := reject, Password ==
test
When I test from that nas I get a reject every time.
See what debugging mode says.
Ideas?
Try putting the password in a different
Riccardo Veraldi [EMAIL PROTECTED] wrote:
I would like to authenticate my users who have a certificate
but I want to check the /L field (locality name) of the certificate
and not the user name which is the /CN of the certificate.
is there a way to do this with Freeradius ?
Source code
Firstly, run the server in debug mode (as it says in the doco), and you
can see exactly what its doing, and why you are being rejected:
radiusd -X
Secondly, the user password attribute is called User-Password (as per
the examples in the users file), so try that.
Regards,
Mike
-Original
Hi Paul,
You're looking for the block around line 3925 in aclocal.m4,
with the following comment block:
dnl #
dnl # That didn't work. Try adding the '-lcrypto' line.
dnl # Some SNMP libraries are linked against SSL...
dnl #
Copy from the next line through fi, paste below the fi,
Title: configure for rlm_ldap on Solaris
Hi List,
I've done some more investigation into why configure doesn't work out of the box on Solaris for rlm_ldap.
I've found the reason, now I need to find a solution, hopefully with someone's help...
By default, Solaris comes with ldap include
FreeRADIUS 1.0
RH8
NoCat=Radius client
Mysql
Hi.
There are certain attributes such as the
FramedIPAddress, AcctTerminateCause,service type etc,
are remain empty when accounting session is started
and stoped. From what I seek, the RADIUS client is not
sending those attributes value.Some of the
Dear All
[EMAIL PROTECTED]@How can I check
username/passowrd/calling-station-id. I can't use the
calling-station-id when I run external file. With
radiusd -X -A,folled is my log
module eap returns ok for request 7
modcall: group authenticate returns ok for request 7
radius_xlat:
I don't presume anyone has seen the following error and I presume I have pulled
the whole process below.
Maybe however one who knows the code a little better than myself will point me
in the right direction.
This occurs from an Ericsson Tigris unit. I used to happen on one we had on a
remote
Hi Dustin,
thanks , that worked for me !
(didn`t know that the NAS-Port is necessary)
Regards
Michael
--__--__--
Message: 3
Date: Wed, 2 Feb 2005 10:39:32 -0500 (EST)
From: Dustin Doris [EMAIL PROTECTED]
To: freeradius-users@lists.freeradius.org
Subject: Re: Dynamic IP Pools on
Hi...
I have two FreeRadius System on RH9 working with Oracle9 DB each have its
own DB at the same server, I found in the radius.log file this message:
There is no DB handle to use! Skipped 0, tried to connect 0
What is the cause of this problem and how could I solve it?
42 matches
Mail list logo