Hi,
i am a newbie at freeradius.
I have a working installtion of freeradius.
After i have created certs using the CA.all script i can start radius.
My Microsoft Wlan client can authenticate on the radius.
All works fine.
But now i will use Certs from my OpenCa installation to authenticate
Am Montag, 23. Mai 2005 10:54 schrieb [EMAIL PROTECTED]:
Hi,
i am a newbie at freeradius.
I have a working installtion of freeradius.
After i have created certs using the CA.all script i can start radius.
My Microsoft Wlan client can authenticate on the radius.
All works fine.
But now i
Am Montag, 23. Mai 2005 10:54 schrieb [EMAIL PROTECTED]:
Hi,
i am a newbie at freeradius.
I have a working installtion of freeradius.
After i have created certs using the CA.all script i can start radius.
My Microsoft Wlan client can authenticate on the radius.
All works fine.
I cannot get the 802.1x to work on the cisco. It works for
local management but will not send a request when doing 802.1x. Does anyone
have the config I should use on the cisco and the radius to make this work? Thanks
in advance
George Schoggins
I want to kick users offline if they are over their time limit. Can I do
it using FreeRADIUS?
Regards,
Svetlana
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I installed all of the MySQL elements on my system and created and
configured the database (its name is 'radius'). Here is the
structure:
[EMAIL PROTECTED]:/usr/local/etc/raddb # mysql -u hwc
-p radius
Enter password:
Reading table information for completion of table and column names
You
Are you sure your key and certificate files are PEM encoded? Based on
the errors, it looks like they might be DER encoded.
--Mike
Tom Tim wrote:
Hi,
i am a newbie at freeradius.
I have a working installtion of freeradius.
After i have created certs using the CA.all script i can start
Whoops. Didn't read the whole message before sending that last one.
--Mike
Tom Tim wrote:
Hi,
i am a newbie at freeradius.
I have a working installtion of freeradius.
After i have created certs using the CA.all script i can start radius.
My Microsoft Wlan client can authenticate on the
Thanks Michael Griego and Michael Schwartzkopf,
now i export my certificate on OpenCA as pkcs12 Certifikate. After that i
convert it as .pem using openssl. Now the cert file looks like the file
generated with CA.all script and all works fine!!!
Greetings tim
www.mails.at - Der kostenlose
Hi all,
I've about the same problem that John. Windows prompted me for a
user/password (test/test in my case). but in my log it doesn't want to
transmit it and I don't find where the process is blocked, so could you
help me ? (I use an Cisco AP1231)
I'm using a PEAP method, hmmm I'm trying
Hello,
I've been searching more documentation but there is too much about
attr_filter...
Is it possible to permit any attribute for DEFAULT entry instead of specifying
all posible attributes in a post-proxy answer?
Thanks in advance!
El Jueves, 19 de Mayo de 2005 11:42, David Manchado
OK, I've made tons of progress. Now I'm trying to run ntlm_auth from
my own wrapper script, as suggested here. And I'm hitting a wall:
The FreeRADIUS ntlm_auth module runs ntlm_auth with a parameter I can't
find anywhere in the environment of my exec script.
I get these environment variables
I do it using the Time-Out=time variable. Read the documentation for
more information.
On 5/23/05, Svetlana Vyslanko [EMAIL PROTECTED] wrote:
I want to kick users offline if they are over their time limit. Can I do
it using FreeRADIUS?
Regards,
Svetlana
-
List
iMeta Co wrote:
Okay guys, I just finished setting up the server
through a PEAP connection. I attached the root.der
through my email and installed it in my XP. Also, I
set up my NETGEAR MR814v2 Wireless Router and my Wi-Fi
Laptop running Windows XP with:
Shared Key Authentication
128-bit
Schoggins, George wrote:
I cannot get the 802.1x to work on the cisco. It works for local
management but will not send a request when doing 802.1x. Does anyone
have the config I should use on the cisco and the radius to make this
work? Thanks in advance
Please read
Thomas Boutell [EMAIL PROTECTED] wrote:
OK, I've made tons of progress. Now I'm trying to run ntlm_auth from
my own wrapper script, as suggested here. And I'm hitting a wall:
The FreeRADIUS ntlm_auth module runs ntlm_auth with a parameter I can't
find anywhere in the environment of my exec
Tariq Rashid [EMAIL PROTECTED] wrote:
hi - does freeradius separate the radius client code into a form that is
usable from custom code?
Sort of. But not really.
i am aware of the radiusclient(-ng) code and also the BSD libradius (part of
the system).
I think that the FreeRADIUS
As also suggested here I am attempting to drive radclient as a poor man's
proxy connection from a custom script.
Unfortunately attribute names are apparently case-sensitive and
the environment variables lose case information from their names.
When I pass an attribute without matching the case in
Stephen D. Bechard [EMAIL PROTECTED] wrote:
I have already tried uninstalling and reinstalling all of the above,
but the errors the same. Any insight or advice would be greatly appreciated,
the errors I am getting are below...
It's a bug in the code. The solution is to fix libradius, so
Alex Moreno [EMAIL PROTECTED] wrote:
Is Exec-Program-Wait a variable in a configuration file? Which one
if it is?
doc/README
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi all,
I'm trying to authentificate ser users against ldap.
IP phone --- SER --- freeradius --- ldap
Everything's working well exept the username who's passed to ldap.
The user is passed with [EMAIL PROTECTED] and I want just the username.
After googling a long while and trying to modify
Palmer J.D.F. [EMAIL PROTECTED] wrote:
I have been looking at this today but it doesn't appear that I can 'pass'
the user's realm (from the username [EMAIL PROTECTED]) into the users file as
an
attribute?
The realm module sets it. So you have to list realms before
files. an authorize.
I'm using radclient to talk to an IAS server. I'm attempting to
pass on a request to it from an exec script.
I've succeeded in restoring the case and punctuation of the
attributes. Here's what I'm passing to standard input of radclient:
Microsoft-Attr-34 =
Thomas Boutell [EMAIL PROTECTED] wrote:
I have tried replacing NAS-IP-Address with the IP of the FreeRADIUS
server running radclient. And I have tried leaving it alone. Either
way, I get the same error from radclient:
radclient: received response to request we did not send.
The
Thanks Alan,
Realms are listed before the files, I'll look into using regular
expressions.
Cheers,
Jezz.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok
Sent: 23 May 2005 17:53
To: freeradius-users@lists.freeradius.org
Subject: Re: Proxying
Hi
I just upgraded to 1.0.2 from 0.93, and now Im seeing my acct exec program
being left in a zombie state after being fired by acct_users file.
Is there something I can do to prevent this, its eating all my server's
threads.
Is this related to rlm_exec: Wait=yes but no output defined. Did you
Alan DeKok wrote:
Different IP addresses
That darn host has multiple IPs and likes to respond... creatively.
I think that's the issue. Making headway again now. Thanks.
I'm thinking I should be able to use configurable_failover between
the built-in ntlm_auth (for the local Samba domain) and
Hello,
I'm still struggling with a problem I wrote in about in the past. I
will explain what I am trying to do as well as possible.
We have customers authenticating through our radius server which uses an
openldap backend. Each user has an entry in our ldap database and it is
the only
Hello,
Anyone could help me with a Segment
violation or Segment
fault error when running radiusd -X with MySQL?
Thanks.
Perhaps your rlm_sql module did not compile properly. When are
configuring for the install watch the messages very closely and ensure
that the required libraries and header files are found, and that it will
be built. Do the same for any other modules you're going to use.
Software
yes,
me and i think many others too.
---
Miguel
-Original Message-From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On Behalf Of Software
Development GroupSent: Monday, May 23, 2005 2:27 PMTo:
freeradius-users@lists.freeradius.orgSubject: FreeRadius Segment
FaultHello,Anyone
Hello,
Anyone could help me with a the following errors in Configure
--with-experimental-modules?
configure: warning: mysql headers not
found. Use --with-mysql-include-dir=path.
configure: warning: sql submodule 'mysql' disabled
Thanks.
You
need the *-devel rpm installed. i.e.
rpm -i
mysql-devel.rpm
-Original Message-From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On Behalf Of Software
Development GroupSent: Monday, May 23, 2005 2:29 PMTo:
freeradius-users@lists.freeradius.orgSubject: FreeRadius Configure
Hi,
for the sql mysql
module you need the mysql header files. The configure script couldnt find those
automatically, so you will have to specify the path to them by using the with-mysql-include-dir=path
directive.
Regards,
Edvin Seferovic
From:
[EMAIL PROTECTED]
Thomas Boutell [EMAIL PROTECTED] wrote:
I'm thinking I should be able to use configurable_failover between
the built-in ntlm_auth (for the local Samba domain) and the
custom script (to proxy things to the other NT domain).
That should work.
Alan DeKok.
-
List
Hi,
as someone already
answered... you will either need the mysql-devel.rpm package or you should
install the headers from another source.
You can also type whereis
mysql ( I suppose you have the whereis command installed on your system
). It will return few paths where mysql binaries
The code does retry. See sql.conf, connect_failure_retry_delay.
Set it to a smaller value, and see if that helps.
My testing revealed that it does not work. Maybe it is because
I am not using mysql ? I am using unixODBC/freetds, wonder
if that matters.
That's a bad design. It means
37 matches
Mail list logo
