Rio Yang wrote:
I configured two realm in proxy.conf.
One is realm ABC (prefix mode), and another is def.org (suffix mode).
In my thinking, when request come into radius, prefix will work first
then suffix. (configured in radius.conf)
Did you list prefix before suffix in radiusd.conf?
Can we use kill -HUP pid in the latest version or is it still not stable?
from my observations: it somehow works, but the next EAP-TLS
conversation causes a segfault. In short, no.
Read the past recent threads, there are suggestions for alternatives
-
List info/subscribe/unsubscribe? See
Hi members,
@Joe: I use Version 3.0.22-13 of Samba. But I think the username that windows
sends for Authentication with host account is controlled by the windows client.
There I use a Win XP with SP2.
@Phil: Thanks, this solution works great. So I can eliminate the second Request
to the
Josh Shamir wrote:
It can be an access point problem? About the communication with
Coovachilli or Radius?
The packets are making it to the supplicant, so I don't think there's
a problem with the AP or anything else. It's a supplicant issue.
Or proxy.conf bad configured?
The requests
Hello Everybody,
I must use the attribute : 29 : Termination-Action with an access-accept
packet. How could I do this ? My Huawei device uses this attribute to allow a
user to manage the switch with a specific level.
Thank you for your assistance !
Best regards,
Nicolas.
-
List
Hi Anoop,
could you *please* fix your quoting!
Maybe
http://www.dfn.de/content/dienstleistungen/dfnroaming/workshops/wsarchiv/
(handout Server(Freeadius)-/Client Zertifizierung durch die DFN-PCA - Wie
geht das? Was ist zu beachten? are in German language but the FreeRADIUS
config part is
Arran Cudbard-Bell wrote:
Compiled from scratch , from current CVS head as of 20 minutes ago..
Did it go in properly ?
Yes. What OS are you running? Is it a 64-bit CPU?
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The
What's the meaning of `checkItem'? How to use it?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
wj wrote:
What's the meaning of `checkItem'? How to use it?
Read the documentation for the users file. It's the same thing.
man users
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
-
List
[EMAIL PROTECTED] wrote:
Hello Everybody,
I must use the attribute : 29 : Termination-Action with an access-accept
packet. How could I do this ? My Huawei device uses this attribute to allow a
user to manage the switch with a specific level.
You configure the server to send it in the
Hi,
noone an idea on the issue below? Is my requirement to have PAP credentials
verified against NT-Hashes in mySQL so unusual? I would have thought this was
a common thing to do...
Am Donnerstag, 26. April 2007 08:51:56 schrieb Stefan Winter:
Hi,
I try to get rid of cleartext passwords
Alan DeKok wrote:
Arran Cudbard-Bell wrote:
Compiled from scratch , from current CVS head as of 20 minutes ago..
Did it go in properly ?
Yes. What OS are you running? Is it a 64-bit CPU?
Alan DeKok.
--
http://deployingradius.com - The web site of the book
Stefan Winter wrote:
noone an idea on the issue below? Is my requirement to have PAP credentials
verified against NT-Hashes in mySQL so unusual? I would have thought this was
a common thing to do...
It's common. It also works for me.
Are you sure you're using a version of the MSCHAP
Arran Cudbard-Bell wrote:
Yes dual core Power PC G5 64bit CPU.
That's what I thought.
Posix says that struct timeval has member time_t tv_sec. So it
*should* be safe to pass a pointer to tv_sec to a function that takes a
time_t *, right?
Apparently not on the Mac. sigh Please try the
I'll try to upgrade to 1.1.6
Thanks Alan.
Rio
2007/5/9, Alan DeKok [EMAIL PROTECTED]:
Rio Yang wrote:
I configured two realm in proxy.conf.
One is realm ABC (prefix mode), and another is def.org (suffix
mode).
In my thinking, when request come into radius, prefix will work first
then
Alan DeKok wrote:
Arran Cudbard-Bell wrote:
Yes dual core Power PC G5 64bit CPU.
That's what I thought.
Posix says that struct timeval has member time_t tv_sec. So it
*should* be safe to pass a pointer to tv_sec to a function that takes a
time_t *, right?
Apparently not on the
Hi Alan,
On Thu, May 03, 2007 at 01:26:47PM +0200, Milan Holub wrote:
As you can see group session returned REJECT but the user is accepted!
== just politely wonder whether you've find some time to look
at this issue...
Milan Holub
holub (at) thenet (dot) ch
Hi,
prety sure, yes. First time I did a make install on my workstation, and that
was into a specific prefix /usr/local/freeradius-1.1.6/
locate rlm_mschap shows three compiled files, two of them in my home dir and I
very much doubt they are caught up by the linker.
I can make a completely
Milan Holub wrote:
Hi Alan,
On Thu, May 03, 2007 at 01:26:47PM +0200, Milan Holub wrote:
As you can see group session returned REJECT but the user is accepted!
== just politely wonder whether you've find some time to look
at this issue...
The session section checks multiple logins, not
Arran Cudbard-Bell wrote:
...
But now get
...
Rejecting request 1 due to lack of any response from home server
194.82.174.185 port 1812
Assertion failed in event.c, line 688
Abort
When proxying, on the second failed attempt
That's a typo in the assertion. Just delete line 688, and
Another classic Dumb Question.
Over the next few months I'm going to be setting up a lot of IP pools for
sqlippool. My Pool-Name's are based on the Called-Station-Id.
The way I'm doing it right now is a DEFAULT for each one, like this:
DEFAULT Called-Station-Id == brantley_pppoe_141,
Hugh Messenger wrote:
Is there some way I can make this generic, so I don't have to add each one
to the users file seperately? Conceptually, it'd be like ...
DEFAULT Called-Station-Id == /^(\w+_pppoe_\d+)$/, Pool-Name := $1
$ man users
...
Also see doc/variables.txt.
DEFAULT
The packets are making it to the supplicant, so I don't think there's
a problem with the AP or anything else. It's a supplicant issue.
The strange problem is that the long authentication time are about the
same for Win XP build-in supplicant and MAC OS X supplicant. What kind
of changes can
Hi,
I just migrated my old GNU-Radius to freeradius 1.1.6 in a Debian Etch
box. So far, everything is working, but one odd thing is happening.
I'm authenticating users from tree differente types of NAS: One Monowall
Box, one pptp box (running PopTop), and one dialup box based on 3Com's
Total
Hi. I have problems with performing authentication with freeradius.
When I use the command:
radtest tkiziloren password ldap.anaadolu.edu 10 testing123
i get the message below:
rad_recv: Access-accepted...
However when i try to perform same task by using securew2 on XP client, it
always
We are currently using a Redback SMS 500 to terminate PPPoE sessions for
client desktops. Up until now an older Steelbelted Radius server has
been used to authenticate RADIUS requests forwarded by the Redback and
it's worked ok. We want to transfer the RADIUS support to a freeradius
installation
Alan DeKok [EMAIL PROTECTED] says:
$ man users
DOH!!
Mea Maxima Culpa. I swear I read that through twice, and managed to
blind-spot on the =~ both times.
Alan DeKok.
-- hugh
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
However when i try to perform same task by using securew2 on XP client, it
always shows attempting to authenticate,
did you configure SecureW2 to allow new connections?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
We are running freeradius version 1.0.1, I've added the
1.0.1? why?
09:10:40 9May2007: %RAD-7-SEND_IPADDR: Sent to 10.103.0.4: port 1812
09:10:40 9May2007: %RAD-7-SPKT: Sent packet:
0x01 00 00 4f 65 0f 55 dd 7c a2 0b 7d a4 bf a0 b3
85 37 a3 4e 01 0d 6a 61 6b 65 31 40 6c 6f 63
That's a typo in the assertion. Just delete line 688, and it will work
Yep, thanks. :)
Couple of things,
Firstly is is possible to specify return codes for users files depending
on matched sections ? Or will the files module always return ok ?
Secondly, whats considered decent throughput
My apologies for including the redback trace - won't happen again.
1.0.1 because it was already installed and running - haven't had a
chance to upgrade.
Thanks for the feedback.
-Samson
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
On Behalf Of [EMAIL PROTECTED]
Hello,
Using Freeradius 1.1.6 on latest RHEL AS4 x64 with rlm_sqlippool, using
PostgreSQL
8.2.1.
After some hours operating, freeradius start to log lots of Info:
rlm_sqlippool: ip=[] len=0. Running the allocate-find query directly
under
psql shows no problem.
Issuing service radiusd restart
32 matches
Mail list logo
