-Address}/auth-deta
il-%Y%m%d - /var/log/radius/radacct/127.0.0.1/auth-detail-20100428
[auth_log] /var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d
exp
ands to /var/log/radius/radacct/127.0.0.1/auth-detail-20100428
[auth_log] expand: %t - Wed Apr 28 20:38:07 2010
++[auth_log
Hello again list,
Thanks for the prompt reply on my previous inquiry regarding the
compiling error. Worked perfectly with a new checkout.
A new problem has arrived though. I am trying to do some authentication
on the WiMAX platform.
radiusd: FreeRADIUS Version 2.2.0, for host
Kristoffer Milligan wrote:
Thanks for the prompt reply on my previous inquiry regarding the
compiling error. Worked perfectly with a new checkout.
A new problem has arrived though. I am trying to do some authentication
on the WiMAX platform.
...
Wed Apr 28 09:04:01 2010 : Info: (7) [ttls]
Hi all
I am having problems building FR 2.1.8 on Debian 5.0.4
I have followed the process:
Building Debian packages
$ tar zxf freeradius-server-2.X.Y.tar.gz
$ cd freeradius-server-2.X.Y
$ fakeroot dpkg-buildpackage -b -uc
...
All looks well until
gcc -o .libs/radclient
Tim Robinson wrote:
Hi all
I am having problems building FR 2.1.8 on Debian 5.0.4
radmin.c:437: warning: implicit declaration of function 'using_history'
$ apt-get install libreadline libreadline-dev
Alan DeKok.
-
List info/subscribe/unsubscribe? See
I will be out of the office starting 04/28/2010 and will not return until
05/03/2010.
I will respond to your message when I return.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I know some os the thread almost similar to my problem, but let me send
some logs from my freeradius logs.
Tue Apr 27 17:59:44 2010 : Info: WARNING: Child is hung for request 383.
Tue Apr 27 17:59:44 2010 : Info: WARNING: Child is hung for request 382.
Tue Apr 27 17:59:45 2010 :
Hmm... that will cause all of the users to be rejected. Delete it.
Yes
I follow this howto http://wiki.freeradius.org/SQL_Huntgroup_HOWTO and,
*DEFAULT Auth-Type := Reject
That's not necessary. It should be deleted from the page.
Thanks
--
Ana
You very helpfully deleted all the interesting information from the
debug log (please always post the full log). But you can do this
yourself. Take a look at sql initialization section and see what it's
saying about initializing the sql driver, in this case it should be
rlm_sql_mysql, that
brisston...@free.fr wrote:
I have some troubles to proxy PEAP requests to (internal) virtual server :
I have one proxy server (with realms define in proxy.conf file) that forward
the
request internally to a virtual server define in site-enabled directory.
Why is there a need to proxy the
On Wed, Apr 28, 2010 at 09:43:50AM +0100, Tim Robinson wrote:
I am having problems building FR 2.1.8 on Debian 5.0.4
$ tar zxf freeradius-server-2.X.Y.tar.gz
Any ideas please? I have googled for days on this
In all your googling you managed to miss the simple fact that you don't
actually
Oninz Unix wrote:
I know some os the thread almost similar to my problem, but let
me send some logs from my freeradius logs.
Tue Apr 27 17:59:44 2010 : Info: WARNING: Child is hung for request 383.
Tue Apr 27 17:59:44 2010 : Info: WARNING: Child is hung for request 382.
Tue Apr 27
Aurélien Geron wrote:
Basically, if I understand correctly, his idea is to have the python fellows
declare the proper dependencies in every *.so file, so that the
libpython2.5.so.1 file gets loaded automatically when the math module (or
any other dynamic module) gets loaded. Maybe that's
Aaron Paetznick wrote:
I'd consider capturing the whole thing, but I'd be happy with just the
rlm_pap: CLEAR TEXT password check failed part. Do I have access to
that level of info from within rlm_sql?
Look at Module-Failure-Message. It's populated by the PAP module with
the various
After edit mschap file module by uncommented line containing ntlm_auth =, i
used a AP Cisco client from freeradius to test with test aaa group radius
user userpass new-code
User define in user files work fine, but user on AD don't.
In freeradius using the test bellow, I can access users on
Why is not working ntlm_auth for ms-chap ?
It would be easier to answer your question if you included the debug output for
a rejected request as opposed to just the startup messages..
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Pedro Alves wrote:
User define in user “files” work fine, but user on AD don’t.
In freeradius using the test bellow, I can access users on AD.
Have you followed the Active Directory howto on
http://deployingradius.com?
r...@mhvrad01:/usr/local/etc/raddb# radiusd -X
...
Ready to process
Hi thanks for your reply.
I have to proxy all authentication request to virtual server (not just PEAP). We
have differents kind of internals users (student, staff, guest, ...). Each of
them is managed by one virtual server associated to one realm, example : for the
student :
realm
Hello Again.
This is the test with local user:
AP#test aaa group radius userlocal localpass new-code
Trying to authenticate with Servergroup radius
User successfully authenticated
rad_recv: Access-Request packet from host xx.xx.xx.xx port 1645, id=174,
length=53
User-Password =
Alan DeKok wrote:
Aurélien Geron wrote:
Basically, if I understand correctly, his idea is to have the python fellows
declare the proper dependencies in every *.so file, so that the
libpython2.5.so.1 file gets loaded automatically when the math module (or
any other dynamic module) gets
Accounting methods
The following accounting logging methods are supported by the server
Local 'detail' files
Local 'wtmp' and 'utmp' files
Proxy to another RADIUS server
Replicate to one or more RADIUS servers
SQL (Oracle, MySQL, PostgreSQL, Sybase, IODBC, etc)
I think I answered my own question.
Its all in proxy.conf
This looks like exactly what I need to scale out my freeradius servers and
leverage my MySQL - Master- Master backend.
From: eric.hernan...@allegiantair.com
To: freeradius-users@lists.freeradius.org
Date: 04/28/2010 09:38 AM
%{Module-Failure-Message} seems to be empty for me. Is there a
scope/prefix I should try?
--Aaron
On 4/28/2010 9:37 AM, Alan DeKok wrote:
Aaron Paetznick wrote:
I'd consider capturing the whole thing, but I'd be happy with just the
rlm_pap: CLEAR TEXT password check failed part. Do I
Dear All,
I want to know how can I insert accounting detail log to Mysql database.
Thanks .
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Nasser Heidari wrote:
Dear All,
I want to know how can I insert accounting detail log to Mysql database.
Read raddb/sql.conf
Look for sql in raddb/sites-enabled
See the Wiki for SQL.
This is documented in many, many, places.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Aaron Paetznick wrote:
%{Module-Failure-Message} seems to be empty for me. Is there a
scope/prefix I should try?
Hmm... it *should* be there along with the packet attributes.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Pedro Alves wrote:
This is the test with AD user:
AP#test aaa group radius userad userpass new-code
Trying to authenticate with Servergroup radius
User rejected
rad_recv: Access-Request packet from host xx.xx.xx.xx port 1645, id=175,
length=52
User-Password = userpass
brisston...@free.fr wrote:
I have to proxy all authentication request to virtual server (not just PEAP).
We
have differents kind of internals users (student, staff, guest, ...). Each of
them is managed by one virtual server associated to one realm, example : for
the
student :
So... are
Huh. Here's my complete SQL query:
postauth_query = INSERT INTO ${postauth_table} \
(username, pass, reply, authdate, message,
nasipaddress) \
VALUES ( \
'%{User-Name}', \
Aaron Paetznick wrote:
Huh. Here's my complete SQL query:
postauth_query = INSERT INTO ${postauth_table} \
(username, pass, reply, authdate, message,
nasipaddress) \
VALUES ( \
'%{User-Name}', \
On 4/28/2010 3:23 PM, Alan DeKok wrote:
Uh... did you update your schema to have a message colummn?
Yes, I have extended my radpostauth table with columns to hold the
message and the nasipaddress. It is working perfectly if I use
'%{reply:Reply-Message}', but it is always empty if I use
Aaron Paetznick wrote:
On 4/28/2010 3:23 PM, Alan DeKok wrote:
Uh... did you update your schema to have a message colummn?
Yes, I have extended my radpostauth table with columns to hold the
message and the nasipaddress. It is working perfectly if I use
'%{reply:Reply-Message}', but it
Alan
Thanks! That did the trick. It was actually libreadline5 etc but you got
me in the right direction. I tried to add this to the wiki but could
not find a way to get a login...
Much appreciated your speedy response anyhow.
Cheers
Tim
On 28/04/2010 09:50, Alan DeKok wrote:
Tim Robinson
I'm sorry, your explanation wasn't clear to me. How can I expose
Module-Failure-Message to or reference Module-Failure-Message within
rlm_sql?
This, also, didn't work for me:
post-auth {
...
Post-Auth-Type REJECT {
update reply {
Alan DeKok wrote:
Oninz Unix wrote:
I know some os the thread almost similar to my problem, but let
me send some logs from my freeradius logs.
Tue Apr 27 17:59:44 2010 : Info: WARNING: Child is hung for request 383.
Tue Apr 27 17:59:44 2010 : Info: WARNING: Child is hung for request
Correct.
Just use JRadiusSimulator to make MS-CHAP and work fine.
Thanks
-Original Message-
From: freeradius-users-bounces+pedrojmalves=gmail@lists.freeradius.org
[mailto:freeradius-users-bounces+pedrojmalves=gmail@lists.freeradius.org
] On Behalf Of Alan DeKok
Sent:
I have a server that is running a relatively clean install of Ubuntu 9.10
Server. Due to the known licensing issue restrictions I cannot simply use
the debian freeradius package. I would like to know if the following outline
would install freeradius with support for SSL on my server. Comments from
37 matches
Mail list logo