Hi Alan,
When you mean key off the NAS-IP-Address, do you mean like I suggested in my
previous example, or a cleaner solution?
Cheers,
john
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok
Sent: 27 March 2006 19:23
To: FreeRadius users
How would they work in this case?
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jonathan De
Graeve
Sent: 27 March 2006 19:28
To: FreeRadius users mailing list
Subject: RE: Different user attributes based on
NAS-IP-Address?AlsoSuffixwildcards
to Alex M:If u are using MySQL you need to set, radiusd.configto read NAS table im MuSQL (look et the end of the config file, I think it's a last line) and then add your NAS clients to NAS table im db
Thanks for your advice. Will you please explain and describe the detail to me ? I searched
On Mon, Mar 27, 2006 at 10:01:56PM +0200, jf wrote:
i need both authentication, i need the certificate and wrong user/pass
yesterday i was reading several mails from this list and i think i
found some answer to my question
i am going to try to use peap over tls
On Mon, 2006-03-27 at 17:37 -0500, Alan DeKok wrote:
(gdb) info threads
That *may* be enough. What will also help (if you have symbols) is:
(gdb) thread 1
(gdb) bt
(gdb) thread 2
(gdb) bt
(gdb) thread 3
(gdb) bt
...
The easiest way of doing this is
(gdb) thread apply all bt
on
If you could extend on this a bit... would migrating
the pieces from a diff of the old (working) and new
(freshly installed) config files work or would it be
better to just print out the working copies and
manually tweak the necessary pieces?
tia,
Laker
--- Alan DeKok [EMAIL PROTECTED] wrote:
Hi,
I need a GUI for administration of the ippool-feature. Currently I'm using
freeradius 1.1.1 with dialup admin 1.8 from CVS. The ippool-feature works
fine, my aim is to add/edit/delete ip-pools within the dialup-admin.
I know, I have to parse the radiusd.conf and write an approperiate
Hello All,
My Cisco NAS is listening to responses from FreeRadius here is my Cisco
config
aaa new-model
!
!
aaa authentication login default local
aaa authentication ppp default group radius
aaa authorization network default group radius
aaa accounting delay-start
aaa accounting exec default
On Tue 28 Mar 2006 09:13, vignesh wrote:
Hello all
Can I have multiple authentication queries in sql.conf file. There are
different ways by which we want to autheticate the users. I will let you
know what I exactly want. I want to authenticate users based on the CLID
and the remote ip
Hi there!
You *REALLY* *SHOULDN'T* post 7-style passwords from Cisco on a public mailing
list:
http://www.alcrypto.co.uk/cisco/
Just enter your crypto stings into the box near the bottom and press enter.
l2tp tunnel password 7 04561F021C
Good passwords are longer and include numbers,
Thanks stefan
But this is just a test password running on a private test platform
Thanks for the hint anyway
--
|-Adil Bikarbass
|-IT Manager, MTDS
|-tel +212.3.767.4861
|-fax +212.3.767.4863
|-gsm +212.6.139. 4541
|-14, rue 16 novembre
|-Rabat, Kingdom of Morocco
-Original
How do I learn more about how to use regular expressions in freeradius?
I have looked over the docs, mans, and examples in the source.
I have looked in Jonathan Hassell's RADIUS book...
I still haven't found anything on the subject.
Thanks
Duane Cox
You should be able to use regular
hi list, well, finally my linux based ap works with wpa-eap, i use debian etch,
madwifi-ng-r1475, freeradius 1.1.0 and hostapd 0.5.2. my ap can authenticate
users and they can connect to wlan, everything ok. but now result they cann't
surf internet because connection is very slow, they cann't
I am currently trying to compile the new version of FreeRadius 1.1.1.
I've used the same configure statement just like in 1.1.0 and for some reason I
am receiving a few build errors. Please help.
~Alan
OS: Red Hat Enterprise v.3 (2.4.21-4.EL 32bit)
Configure Statement:
Hi, from what I see in the log files ... A start packet from the NAS has reached the FreeRadius server, but the ACK packet has
not reached the NAS, therefore the NAS is sending the packet again, and the ACK packet again did not reach ... a few times.
The last packet reached the NAS and accounting
--On Tuesday, March 28, 2006 17:10:41 +0200 Jérémy Cluzel
[EMAIL PROTECTED] wrote:
Exec-Program: /usr/local/bin/ntlm_auth --request-nt-key
--username=jpbrunain --domain=CHRT --challenge=d8a9272386722a12
--nt-response=db063bdf850cff582568f32a83da83315bac0a1c2adc19a2
Exec-Program output:
Hi Alan,
I am not sure if this is even remotely relevant but rlm_x99_token has
been renamed to rlm_otp, I think. Try --without-rlm_otp and see if
that helps.
I've also been unable to compile FR 1.1.1 using the same parameters as
I used in 1.1.0 but my problems appear to be similar to those with
Alan [EMAIL PROTECTED] wrote:
I am currently trying to compile the new version of FreeRadius 1.1.1. I've
used the same configure statement just like in 1.1.0 and for some reason I
am receiving a few build errors. Please help.
It's a bug in the Makefile, discussed here in the past week, and
Stuart Auchterlonie [EMAIL PROTECTED] wrote:
The easiest way of doing this is
(gdb) thread apply all bt
...
Thanks. I've updated doc/bugs with that information.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Laker Netman [EMAIL PROTECTED] wrote:
If you could extend on this a bit... would migrating
the pieces from a diff of the old (working) and new
(freshly installed) config files work or would it be
better to just print out the working copies and
manually tweak the necessary pieces?
I would
Pelusa Vali [EMAIL PROTECTED] wrote:
and when clients authenticating get lots of messages like this:
IEEE 802.1X: 00:0f:66:11:c1:96 REAUTH_TIMER entering state INITIALIZE
This is not an 802.1X list. If the problem is RADIUS and FreeRADIUS
related, we can help you.
I think it's behavior
Adil Bikarbass [EMAIL PROTECTED] wrote:
My radius is listening on 1645 for auth and 1646 for acct, I can see the
auth request coming into my radius box but the IP address is never got from
the Framed-IP reply item but assigned from the Cisco pool
Any clue about what could be the problem?
Duane Cox [EMAIL PROTECTED] wrote:
How do I learn more about how to use regular expressions in freeradius?
man users.
See also doc/variables.txt
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Is the caller responsible for freeing the memory pointed to by the return
value from cf_section_value_find ? Or does this just point to the memory
owned by the conf_section which free radius will free on its own ?
--
View this message in context:
The NAS-IP-Address can be used as a check item, just like anything
else.
DEFAULT NAS-IP-Address == 1.2.3.4
Reply-Message = Hello you guy from 1.2.3.4
The same config can be applied to SQL.
But not with the current dialup_admin IIRC you have to put it in
manually not?
J.
James J J Hooper a écrit :
Radius is working fine ... ntlm_auth is returning 'Logon failure' i.e
either samba / your 2003 AD thinks the password is wrong (look at the event
viewer on the domain controller) or you do not have permission to
authenticate.
Well, I know that the password typed
Hey guys,
I'm looking at this nifty FreeRadius package and I'd like to quickly write a
simple XML-RPC module for FreeRadius. I'm looking at the other modules and
I'm wondering which one you guys would recommend that I mimic. I just want
the simplest, most straightforward module that I could
[snip]
Nevermind, I think that rlm_example is designed to be just that.
Still, if anyone has any suggestions or tips before I start, they'd be very
welcome.
Michael
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Michael Nguyen [EMAIL PROTECTED] wrote:
I'm looking at this nifty FreeRadius package and I'd like to quickly write a
simple XML-RPC module for FreeRadius. I'm looking at the other modules and
I'm wondering which one you guys would recommend that I mimic. I just want
the simplest, most
hi @ all,
i would know, whats now the best version of freeradius to use?
thx
Konne
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I'm using freeradius with an LDAP Backend to authenticate some users (I'm
working in my University' labs).
As today, i'm using a clear unencrypted wifi connection authenticating
MAC through freeradius, my target is to use WPA (or WPA2) with Radius.
What i need is a tipical ldap account
On Mar 28, 2006, at 10:55, Michael Nguyen wrote:
Hey guys,
I'm looking at this nifty FreeRadius package and I'd like to
quickly write a simple XML-RPC module for FreeRadius. I'm looking
at the other modules and I'm wondering which one you guys would
recommend that I mimic. I just want
On Tue, 2006-28-03 at 12:05 -0500, Alan DeKok wrote:
Adil Bikarbass [EMAIL PROTECTED] wrote:
My radius is listening on 1645 for auth and 1646 for acct, I can see the
auth request coming into my radius box but the IP address is never got from
the Framed-IP reply item but assigned from the
Hi!
My
Linux:
uname
-a
Linux
ANVL-Workstation 2.4.20-8smp #1 SMP Thu Mar 13 17:45:54 EST 2003 i686
i686i386 GNU/Linux
[EMAIL PROTECTED] etc]# radiusd -XFloating
point exception
Any help?
Thanks!
__Albert
SPECIAL NOTICE
All information transmitted hereby is intended only for the use
H, at this point I am not using a makefile, I am just compiling manually
using these commands
gcc -c -WALL -fPIC -I/freeradius-1.1.0/src/include -DNDEBUG -o
rlm_mymodule.o rlm_mymodule.c
gcc -shared -lcurl -lssl -o rlm_mymodule.so rlm_mymodule.o
--
View this message in context:
Albert Lin [EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] etc]# radiusd -X
Floating point exception
FreeRADIUS doesn't use floating point numbers.
Your system appears to be fairly broken.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,We tried FR 1.1.1 and we are still having problems with passwords containing special characters like '$' for the LDAP authentication. In FR 1.1.0 the '$' was replaced by a character such as '%24'. For the new version, the symbol '$' is deleted as well as the character that is next to it.
I've tracked down why some of my users aren't
authenticating...
Appartenly somewhere (rlm_sql ?) the username is
being changed possible in an anti-injection function, I don't know.
Can someone shed some light on this?
For instance, in the debug snip below, the username
'dcoxdcox' is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello
There appears to be a conflict with the Makefiles in the doc
directories and the behaviour of RPM. With version 1.1.0, this was
OK as they were both consistent, but are not with version 1.1.1.
Now when the RPMs are built (on RHEL3 U6), the
Though it does not support Solaris, it looks good.
Tunning with Solaris seems to be hard because many codes are linked to
only Windows, LINUX, and FreeBSD.
BTW, Alan,
do you know how to configure outer-attributes for eap-ttls in
eapol_test?
I want to make user-name=anonymous in outer.
Many
Duane Cox [EMAIL PROTECTED] wrote:
Appartenly somewhere (rlm_sql ?) the username is being changed possible
in an anti-injection function, I don't know.
Can someone shed some light on this?
See sql.conf, look for safe characters. Edit at your own risk.
Alan DeKok.
-
List
Hello all,
I have installed freeradius 1.0.5 in freebsd 6. I am authenticating
pppoe users to my remote freeradius server. I tried to delete the stale
session from radutmp file with radzap coammand but it doesnot work;
radwho shows the following login information:
#radwho
Login Name
I noticed this too, that with 1.1.1 the docs are installed to doc/freeradius
and not doc/freeradius-1.1.1
I'm not sure why this change came about, but can't a simple sed script fix
it? Then build your RPM.
sed -i '[EMAIL PROTECTED]/[EMAIL PROTECTED]/[EMAIL PROTECTED]' doc/Makefile
sed -i
I updated NAS table,set type to 'livingston', it seemed the Freeradius server has recogenized the nas client.
However, another mistake:'MYSQL check_error: 2013, returning SQL_DOWN 'appears,the following are the complete error message:
rad_recv: Access-Request packet from host
Hi..Are we allowed to open sockets inside a module and communicate with other programs. If not then how else can we communicate with other network programs..
New Yahoo! Messenger with Voice. Call regular phones from your PC and save big.-
List info/subscribe/unsubscribe? See
[EMAIL PROTECTED] etc]# radiusd -X
Floating point exception
FreeRADIUS doesn't use floating point numbers.
Your system appears to be fairly broken.
Isn't SIGFPE also thrown when dividing integers by zero? So also an
integer-only operation like mod can throw this.
Stefan
--
Stefan
On Mar 28, 2006, at 22:08, radhika putty wrote:
Hi..
Are we allowed to open sockets inside a module and communicate with
other programs. If not then how else can we communicate with other
network programs..
I can't see why not. I have one module that I tested that used pipes
to move
47 matches
Mail list logo