Alison Lee wrote:
We would like to load-balance 802.1X wireless authentications on
multiple radius servers. The problem is that EAP methods require a
series of requests and replies between the client and the same radius
server, but a normal radius proxy will treat each request as a new one
Erico Augusto wrote:
Hi,
I'm using EAP-TTLS to supplicant authentication.
to authenticate the users at freeradius, I'm using users file to match
user's password:
user User-Password == test
Reply-Message = success
No. Do NOT match the users password.
Andrew Long wrote:
I think I got it, I can now authenticate with ntradping, but I get an
attribute dump:
unknown vendor 8744, size xx='' repeated many times...
From... ntradping.
Is this because I am impersonating the NAS from a laptop? ie., should
clear up when the NAS is actually
Message: 4
Date: Fri, 30 Mar 2007 09:04:40 +0200
From: Alan DeKok [EMAIL PROTECTED]
Subject: Re: load balancing 802.1x auth requests
To: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Message-ID: [EMAIL PROTECTED]
Content-Type: text/plain; charset=ISO-8859-1
Yes it is windows PEAP, but my question is? Every that i plug in the network
cable it is going to recognize my computer without asking me for the
Active Directory Login, lets put this way, i log off from the
workstation and the some one else logins, it would not ask for his
credentials.
Hi,
Yes it is windows PEAP, but my question is? Every that i plug in the network
cable it is going to recognize my computer without asking me for the
Active Directory Login, lets put this way, i log off from the
workstation and the some one else logins, it would not ask for his
Are there any performance statistics available for freeradius? I am using
1.1.5 and mysql 5 and trying do determine if there will be a bottleneck in
radius packet processing. The makers of my NAS are saying that this could
become an issue and I am just trying to see what type of numbers people
Murray Hooper wrote:
Are there any performance statistics available for freeradius? I am
using 1.1.5 and mysql 5 and trying do determine if there will be a
bottleneck in radius packet processing.
The performance numbers depend on your OS, CPU, memory, and database.
Generally, any common PC
O/H Murray Hooper έγραψε:
Are there any performance statistics available for freeradius? I am
using 1.1.5 and mysql 5 and trying do determine if there will be a
bottleneck in radius packet processing. The makers of my NAS are
saying that this could become an issue and I am just trying to
Hi,
Are there any performance statistics available for freeradius? I am using
1.1.5 and mysql 5 and trying do determine if there will be a bottleneck in
radius packet processing. The makers of my NAS are saying that this could
become an issue and I am just trying to see what type of numbers
Andrew Long wrote:
Now we're taking a step back because I tried changing the username
on the NAS and in the SQL and can no longer authenticate with :( NTRADPING.
Why use ntradping? Use radclient.
And you're using CHAP... which is why it doesn't match.
Now we're taking a step back because I tried changing the
username on
the NAS and in the SQL and can no longer authenticate with
:( NTRADPING.
Why use ntradping? Use radclient.
I will in the future, but I'm in mid-stream here...
And you're using CHAP... which is why it doesn't
Hello,
My problem is about Radius reply. With user file it's possible to reply
some AVPs with same name like that :
My-AVP += name:robert,
My-AVP += age:38,
My-AVP += country:fr
most important it's possible to do that :
Sip-AVP+= username:%{User-Name}
But how it's possible to do something
On Friday 30 March 2007 09:13:17 Andrew Long wrote:
In NTRADPING:
username: hiegalleria
...
rad_recv: Access-Request packet from host 192.168.10.100:49259, id=5,
length=59
User-Name = hiegalleria_cn3200
CHAP-Password = 0xac0b9199834a040866dd0050c44d4fdf35
Am I missing
Andrew Long wrote:
...
Change the attribute name to Cleartext-Password, and the
operator to :=.
I have about 20 other NAS's using this identical configuration and they all
authenticate...
They're not using CHAP.
Just for giggles, I restored the username to the old one in
Change the attribute name to Cleartext-Password, and the
operator
to :=.
I have about 20 other NAS's using this identical configuration and
they all authenticate...
They're not using CHAP.
Each and every one is using CHAP. Promise.
ANdrew
-
List
David Wood wrote:
The second group of patches that remain I'm going to post below -
because I think they might be candidates for committing to FreeRADIUS
itself. It was clearly felt by previous contributors to the port that
the Makefiles don't always contain $(CFLAGS) when they would be
Nicolas Baradakis wrote:
..
Every downstream distribution has its own mechanism to handle the
config files. I don't know the opinion of the others, but I'm unsure
about a configure option that's useful for the FreeBSD port only.
It's easier to run a port-specific sed script.
i.e. This is
Andrew Long wrote:
Each and every one is using CHAP. Promise.
Then something else is making it not work...
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
-
List info/subscribe/unsubscribe? See
O/H Bodin Bruno έγραψε:
Hello,
My problem is about Radius reply. With user file it's possible to reply
some AVPs with same name like that :
My-AVP += name:robert,
My-AVP += age:38,
My-AVP += country:fr
most important it's possible to do that :
Sip-AVP+= username:%{User-Name}
But how
HI,
I managed to do password checking for user, it works. Now i would
like to return soem things in Access-Accept when SER sends packet :
rad_recv: Access-Request packet from host 10.240.0.144:35694, id=160,
length=64
User-Name = [EMAIL PROTECTED]
Service-Type =
I will be out of the office starting 03/30/2007 and will not return until
04/09/2007.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello All,
We would like to get your input on an issue we are facing:
We are using two NASs and one FreeRadius 1.1.5, the first NAS authenticate
the user someuser through Radius and assign an IP address with no
problem.
we can see the accounting start record with the calling-station-ID and
Adil Azmi Bikarbass wrote:
The issue is that we want the second NAS to get the calling-station-ID
from the someuser session on Radius
To do... what?
is there a way we can have this to work and pass this attribute from one
session to another?
Sure. Store the Calling-Station-Id in a
24 matches
Mail list logo