Thanks, Alan. I got it worked now by creating my own version of
Stripped-User-Name in hints. So now I know more about how freeradius
is working :-)
Thanks everyone for all the replies. They may not head to the solution
directly; but they really stimulate my thinking.
Lai
-Original
Hi all!
I'm trying to set-up a freeradius 1.1.3 using MySQL 5.0.22 as
Database Backend... although i have a very annoying problem that i don't
know how to solve.
When i launch the service with -X option to see debug, it seems that
everything goes well, although when i try to submit some
Rohaizam Abu Bakar [EMAIL PROTECTED] writes:
Hi,..
running xlat within rlm_perl.. giving correct result.. but what concern me
is that.. in debug log.. there are garbage output as below:-
radius_xlat: '.*'
radius_xlat: Running registered xlat function of module y5perl for string
Hi,
rlm_sql (sql): SQL query error; rejecting user
^^^
whats the query?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Raúl Rodríguez wrote:
Hi all!
I'm trying to set-up a freeradius 1.1.3 using MySQL 5.0.22 as
Database Backend... although i have a very annoying problem that i don't
know how to solve.
When i launch the service with -X option to see debug, it seems that
everything goes well, although
Mark Jones wrote:
I am not trying to be unhelpful.
We have two new servers that we installed last fall and both are doing
the exact same thing.I can give you as much info as you ask for.
The problem is I don't know what else to ask for. I've never seen
this before, and I have no idea why
Dennis Skinner wrote:
Mark Jones wrote:
WHY is the detail module failing to acquire the file lock? Is the
disk full? Is the CPU busy?
I assume it is to do with radrelay.
Just a thought What file system are you using on the volume where
the detail records are being stored? Locking on
Evan Vittitow wrote:
This uid does exist and has the NT and LM password attributes.
If that output is all you see, then the client has stopped halfway
through. Fix the client, whatever the problem is
If it's a windows client, you're probably missing the magic oids. See
the list archives.
Sorry, I'm stupid... i have commented sql query about authentication
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[CONFIG] Socket 4 (frame handler) had an event!
Network ID from EAP hint : Pukey
If this is a wired network, the above ID can be used in the
configuration file to identify this network.
[CONFIG] Working from config file /etc/xsupplicant.conf.
Network ID from EAP hint : Pukey
If this is a wired
Evan Vittitow wrote:
[CONFIG] Socket 4 (frame handler) had an event!
Network ID from EAP hint : Pukey
If this is a wired network, the above ID can be used in the
configuration file to identify this network.
[CONFIG] Working from config file /etc/xsupplicant.conf.
Network ID from EAP hint : Pukey
Hi!
I am trying to use freeradius as an authentication server for sip express
router. I am o newbee with free radius so a kindly ask for your help.
I configured ser so it sends the requests messages to radius but I encountered
a strange error:
Both are running on the same machine so it is
Hi,m
Thank you for the informative reply. It'll take a couple of days to gigest
all of it (me being so new to this and all :) ), but I think I can take a
look at the PEAP solution.
As far as the the APs, believe me, this is a fight I've already lost. Being
a school, we have next to nothing in
The database is not a problem, since we have a huge one in place, one stored
in Active Directory (for which I can use the freeradius LDAP module) or
MySQL one. The database is really our main strength, since we have tons of
information about every student, staff and parent in (its what my main
tzieleniewski wrote:
I also included the digest modules in the authentication and authorization
sections in the radiusd.conf.
At the end I added the user data in the users file:
It's not being matched:
modcall[authorize]: module files returns noop for request 0
And because that users
Hi,
responsibility entails). A quick question, however, would this be just as
eay to set up on a Macintosh? (since many of my supplicants will be macs..)
Macs are very friendly with wireless (well, if its OSX 10.3 and higher
anyway). you can configure them to match the PC method - EAP-PEAP
or
-Original Message-
The database is not a problem, since we have a huge one in
place, one stored in Active Directory (for which I can use
the FreeRADIUS LDAP module) or MySQL one.
If you use ActiveDirectory, I believe you would have an easier time
using ntlm_auth. Using LDAP
Thank you for your reply.
We are (with the exception of some prototype tests) going to be
completely EAP-TLS.
Your answer brings me back to my original issue--the CA_path does not
exist in the eap.conf file. If I add it, it doesn't seem to work (on
1.1.4).
Just adding additional certs to the
So then it seems to me that my best solution would then be to implement
either an EAP-PEAP or EAP-TTLS solution authenticating against either my
mysql or my active directory (I've been reading the ntlm authentication
through samba, and it's not something hard to set up). This way I can have
Quoting gkalinec [EMAIL PROTECTED]:
What would, in your opinion, be better? TTLS or PEAP?
I believe with TTLS you would need to load software on each computer, can
someone else verify that? I am using PEAP and it works with Windows, Macs and
linux(using wpa_supplicant or xsupplicant).
Also,
Phil Mayers ([EMAIL PROTECTED]) wrote:
Evan Vittitow wrote:
[CONFIG] Socket 4 (frame handler) had an event!
Network ID from EAP hint : Pukey
If this is a wired network, the above ID can be used in the
configuration file to identify this network.
[CONFIG] Working from config file
Dan Geist explained what it was I am trying to do. His suggestion is the
way I will look, to use a perl module to split the authentication.
Time for some ASCII Art (bad)
NAS --- FR
(this field passes the password via RADIUS/PAP, and is the securID
tokencode + kerberos pwd.)
( ex: user:jdoe
Hello,
I have installed a freeradius with mysql and dialupadmin , but I need to
migrate theusers of system and the passwords that are in /etc/shadow
are encrypted with DES and crypt of dialupadmin use MD5, How Do I can
do to migrate this users? any idea? or How do I make for that crypt of
Hi,
So then it seems to me that my best solution would then be to implement
either an EAP-PEAP or EAP-TTLS solution authenticating against either my
PEAP or TTLS? no reason why you cannot have both. FreeRADIUS is quite happy
doing both
at same time... especially if you use MSCHAPv2 as the
-Original Message-
What would, in your opinion,
be better? TTLS or PEAP?
They're not Mutually exclusive. You can have both. I'd suggest doing
both.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi !
I've a problem with my new version FreeRADIUS 1.1.0_2 on FreeBSD 7.0 CURRENT
vol2% # /usr/local/sbin/radiusd -X
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/clients.conf
Config: including file:
What should I do , because when I started RADIUS it started, and when I
want to connect my laptop to server I see segmentation fault
Please follow doc/bugs
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Jacek and everyone,
In message [EMAIL PROTECTED], Jacek Burszta
[EMAIL PROTECTED] writes
Hi !
I've a problem with my new version FreeRADIUS 1.1.0_2 on FreeBSD 7.0 CURRENT
I got a fuller version of this report from Jacek directly and have sent
a longer reply by private mail. I see Phil's
Hi All,
I have an instace of freeradius 1.1.2 running. I started the radius with -X
switch. Is there any way to get a log of requests/response coming to/from
radius. I tried to capture on udp port 1812 but no use.
Best Regards,
Abdul Qadir
hi ...
I have installed Freeradius on FreeBSD 6.2 running fine also PPPoE server
ruuning on this machine. I want to assign manual dns for my user so I insert
a query in radgroupreply table .
++---+---++-+
| id | GroupName | Attribute
It's work!!.. thanks..
--haizam
- Original Message -
From: Bjørn Mork [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Thursday, January 25, 2007 6:05 PM
Subject: Re: rlm_perl DEBUG log with garbage output
Rohaizam Abu Bakar [EMAIL
Abdul Qadir wrote:
Hi All,
I have an instace of freeradius 1.1.2 running. I started the radius
with -X switch. Is there any way to get a log of requests/response
coming to/from radius. I tried to capture on udp port 1812 but no use.
FreeRADIUS won't write a log when in debug mode (-X).
Umar Draz wrote:
hi ...
I have installed Freeradius on FreeBSD 6.2 running fine also PPPoE
server ruuning on this machine. I want to assign manual dns for my user
so I insert a query in radgroupreply table .
Does the documentation for the PPPoE server claim it understands
33 matches
Mail list logo