Hi,
Is-it possible to search users on nested groups. For
example :
User1 is in group Group1,
User2 is in group Group2,
Group1 and Group2 are in group Group12
The users config :
...
DEFAULT ldap-iut-Ldap-Group == Group12
Tunnel-Medium-Type:1 = 6,
Tunnel-Type:1 =
Hello list,
I would like to use one freeradius for 2 different NAS-groups. Therefore
I need two different users files, one for each instance. I tried to make
the module configuration per virtual server, which seems not to be working.
Does anybody has a trick to get this working?
BR
Uwe
-
List
Gary Gatten wrote:
I'm assuming I can do roughly the same thing with NTLM_AUTH? I have
to use NTLM_Auth for 8021x (right? - at least all docs say this),
No, they don't.
They say that you need to use ntlm_auth for authentication in
*certain* cases, when the user database is Active
Hello
On Tue, Aug 25, 2009 at 08:29:49AM +0200, kisteorg google wrote:
Hello list,
I would like to use one freeradius for 2 different NAS-groups. Therefore
I need two different users files, one for each instance. I tried to make
the module configuration per virtual server, which seems not
kisteorg google wrote:
I would like to use one freeradius for 2 different NAS-groups. Therefore
I need two different users files, one for each instance. I tried to make
the module configuration per virtual server, which seems not to be working.
You need to create two instances of the files
hi
i added below code to get username,
VALUE_PAIR *vp;
vp = pairfind(request-packet-vps, PW_USER_NAME);
printf(x equals %s \n, vp);
it is not printing anything
plz help me.
regard's
shivashankar.c
2009/8/24 Ivan Kalik t...@kalik.net
how to check username and password in
shiva shankar wrote:
hi
i added below code to get username,
VALUE_PAIR *vp;
vp = pairfind(request-packet-vps, PW_USER_NAME);
printf(x equals %s \n, vp);
it is not printing anything
We do *not* teach C programming on this list. Buy a book, or take a
course.
Alan DeKok.
-
I was trying to dynamically limit the customers speed when they hit their
download quota. I'm doing this for DSL users connected to a Cisco NAS.
Aren't the WISPr only for wireless users?
Use avpairs.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See
Hello list,
I would like to use one freeradius for 2 different NAS-groups. Therefore
I need two different users files, one for each instance. I tried to make
the module configuration per virtual server, which seems not to be
working.
Does anybody has a trick to get this working?
You can
Hi,
I'm experimenting with using freeradius 2.0.4 to authenticate
administrative access to network equipment. If I deploy it then I'll
end up with well over a hundred clients, so I'd like to describe the
entire address range in a single 'client' block.
I also want to have a syslogged
Hello.
I am using FR v2.1.6.
I am needing to generate values of reply attributes via SQL. I am using
`%{sql:SQL-query}` clause.
I am inserting attribute/value pairs into radreply table, where value -
`%{sql:}`-clause.
But I had got complex and large queries. I don't want to increase size of
I am needing to generate values of reply attributes via SQL. I am using
`%{sql:SQL-query}` clause.
I am inserting attribute/value pairs into radreply table, where value -
`%{sql:}`-clause.
But I had got complex and large queries. I don't want to increase size of
fields of SQL-table.
How I
Hi,
I'm experimenting with using freeradius 2.0.4 to authenticate
administrative access to network equipment. If I deploy it then I'll
end up with well over a hundred clients, so I'd like to describe the
entire address range in a single 'client' block.
okay - just a big range will
On 25/08/09 09:50, Alan Buxey wrote:
[Ian Chard wrote:]
I also want to have a syslogged record of each login attempt, which I
can do, but I can't figure out how to log the client's IP address
without having to specify every client individually in freeradius's
config. As it is, I just get
On Tue, Aug 25, 2009 at 09:42:24AM +0100, Ivan Kalik wrote:
I am needing to generate values of reply attributes via SQL. I am using
`%{sql:SQL-query}` clause.
I am inserting attribute/value pairs into radreply table, where value -
`%{sql:}`-clause.
But I had got complex and large
Hi,
If modifying the linelog isn't possible then I like the sound of this.
Is there some documentation on the dynamic_clients option? I can't seem
to find any reference to it on freeradius.org.
$site_config/raddb/sites-available/dynamic-clients
(one of many cases where the feature is
Hi,
Replace that with:
files foo {
...
}
files bar {
...
}
And point the usersfile, etc. to different files in each one.
Ok. Just one point left. Where do I reference foo and bar. Are these the
server names?
BR
Uwe
-
List
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 24/08/2009 16:46, John Morrissey wrote:
On Sat, Aug 22, 2009 at 01:59:00AM +0100, Arran Cudbard-Bell wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 21/08/2009 21:15, John Morrissey wrote:
On Sun, Aug 16, 2009 at 10:11:02AM +0200,
On 25/08/09 10:39, Alan Buxey wrote:
Hi,
If modifying the linelog isn't possible then I like the sound of this.
Is there some documentation on the dynamic_clients option? I can't seem
to find any reference to it on freeradius.org.
$site_config/raddb/sites-available/dynamic-clients
(one of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 24/08/2009 13:56, Alan DeKok wrote:
Arran Cudbard-Bell wrote:
No, that'll get you the timestamp of when the packet was read back into the
server. The only way to calculate the original received timestamp is to
write the original
Hi,
I have strange behavior on my freeradius.
I try to make it ask for client certificate as part of EAP-TTLS
authentication.
I added the configuration EAP-TLS-Require-Client-Cert = Yes to users
configuration file as control for my username.
And got the following LOG
TLS_accept: SSLv3 write
---BeginMessage---
Hello,
Just to inform that I have solved the problem.
Some parts of the ldap were not indexed properly so it cause some
troubles with freeradius.
Matthew
Ivan Kalik a écrit :
I fixed the SSL issue, restarted the server and the group check was
working until now: *no
Forgot to add the sniffing results earlier
Hi,
I have strange behavior on my freeradius.
I try to make it ask for client certificate as part of EAP-TTLS
authentication.
I added the configuration EAP-TLS-Require-Client-Cert = Yes to users
configuration file as control for my username.
And
Hi Buxey,
After generating the certificates the file server.der was not created!
Ca.der ok!!!
What can I do???
Best regards
2009/8/18 Alan Buxey a.l.m.bu...@lboro.ac.uk:
Hi,
Hi ALL!!!
Hi!
ignore the tutorials. install latest version from source...ensure
Hi Buxey,
After generating the certificates the file server.der was not created!
Ca.der ok!!!
What can I do???
It's server.crt.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
kisteorg google wrote:
Ok. Just one point left. Where do I reference foo and bar. Are these the
server names?
No. They are the names of the *instance* of the files module. You
will use foo and bar in the various virtual servers, instead of files.
Alan DeKok.
-
List
hello,
This is what i have configured on my cisco Ap
!
aaa new-model
aaa group server radius rad_eap2
server 10.190.1.17 auth-port 1832 acct-port 1833
aaa authentication login default group rad_eap2 local
aaa authentication enable default group rad_eap2 enable
aaa authorization exec default group
OK Kalik,
Thanks!
2009/8/25 Ivan Kalik t...@kalik.net:
Hi Buxey,
After generating the certificates the file server.der was not created!
Ca.der ok!!!
What can I do???
It's server.crt.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See
UP
On Thu, Aug 20, 2009 at 10:49 AM, Alexandr
Kovalenkoalexandr.kovale...@gmail.com wrote:
Hello,
It has been stated in release notes for FR 2.1.6 that loosing of tags
for tagged attributes is fixed in rlm_perl in this version, but it is
not.
Look at the example below:
$
29 matches
Mail list logo