I found this draft draft-dekok-radext-dtls-02.txt. Does freeRADIUS support
RadSec feature? Is there any guidance for RadSec feature?
Best regards.
John
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
John wrote:
I found this draft draft-dekok-radext-dtls-02.txt. Does freeRADIUS
support RadSec feature? Is there any guidance for RadSec feature?
If it supported radsec, the configuration files would have examples.
Radsec support should be added this year.
Alan DeKok.
-
List
Philippe Schwarz wrote:
Ok, but it's useless only; i can keep it that way , right ?
useless means confusing, unnecessary, and extra work.
You should delete it.
.. Failed to authenticate the user.
You didn't specify a password for the user.
Oh! I should have read more carefully..
I
Difan Zhao wrote:
And it doesn't work. Then I am checking the debug and I found that the $ in
the username was interpreted to something like =24:
Read raddb/sql/postgresql/dialup.conf, and look for safe-characters
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Hi,
I found this draft draft-dekok-radext-dtls-02.txt. Does freeRADIUS support
RadSec feature? Is there any guidance for RadSec feature?
not yet. thats why there isnt a doc to read
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi. im used freeradius 2.1.8. Please can somebody give me an example of
configuration of files to do na simple test with radiusd -X.
because i'm testing now a local client and the result is reject. I modify onlu
users and clients.conf.is that anought?
1/I add on Users:
sonia Auth-Type :=
Hello,
I want to send the NoCat user Class in the Access-Accept.
I don't know if I can send an attribute defined by me.
I have defined an attributed:
# cat /etc/freeradius/dictionary
$INCLUDE/usr/share/freeradius/dictionary
ATTRIBUTENoCat-User-Class3000string
And I put this
Hi,
Hi. im used freeradius 2.1.8. Please can somebody give me an example of
configuration of files to do na simple test with radiusd -X.
because i'm testing now a local client and the result is reject. I modify
onlu users and clients.conf.is that anought?
1/I add on Users:
sonia
Mr Alan i do it but always the same result:
r...@pfe-laptop:/home/pfe/freeradius-server-2.1.8# radtest sonia salut
127.0.0.1:1812 1812 testing123
Sending Access-Request of id 76 to 127.0.0.1 port 1812
User-Name = sonia
User-Password = salut
NAS-IP-Address = 127.0.1.1
NAS-Port =
How is FreeRADIUS supposed to know when a user disconnects and frees up the
IP address from the pool if the NAS doesn't tell it? Anything else is not
exactly reliable. If you have a user with a long duration session that lasts
longer than your timeout the IP could be put back into the pool when it
Hi there,
In the freeradius wiki a page give informations about failover [1]. It
explains how to setup two sql modules pointing to two dbms. But in this
setup, the radius server is a single point of failure. How to setup two
radius servers speaking with two dbms ?
Thank you for your help.
Tabacchiera Stefano wrote:
Ok, you're right, but in my case I know the client session can't last more
than 24hrs.
So, for me it's ok to remove all *inactive* entries older than that.
But, as far as I know, this seems to be impossible with gdm pool.
So, what the maximum_timeout parameter is
Fabien COMBERNOUS wrote:
In the freeradius wiki a page give informations about failover [1]. It
explains how to setup two sql modules pointing to two dbms. But in this
setup, the radius server is a single point of failure. How to setup two
radius servers speaking with two dbms ?
Configure
Hi
Thanks for last advices with freeradius installations + peap on debian lenny
Now i have no problem with enabling peap :)
this time I'm asking for help with some other problem:
I'm trying to enable WPA2 enterprice authentication on my accesspoints.
When trying to auth my wireless client I'm
On 05/04/2010 06:21 PM, Josip Rodin wrote:
On Tue, May 04, 2010 at 09:39:30PM +0100, Alan Buxey wrote:
3.) Install the the main FreeRADIUS package from there, for example with:
apt-get install -t lenny-backports freeradius
alternatively, grab the source and build it yourself. the
On 05/05/2010 06:38 AM, dorra aa wrote:
Mr Alan i do it but always the same result:
The definition of insanity is doing the same thing over and over and
expecting different results.
-Benjamin Franklin
plz can you give me the steps that i may to do more then that.
plz help me. I am a
John Dennis wrote:
I have to agree with Josip that whenever possible users should be
directed to install pre-built packages with the advice to build it
yourself being dispensed only with great care.
The Wiki could be updated to make all of that clearer, too.
It would also help if we could
ds14.kornel wrote:
Hi
Thanks for last advices with freeradius installations + peap on debian lenny
Now i have no problem with enabling peap :)
...
rad_recv: Access-Request packet from host 192.168.10.50 port 2054,
id=148, length=169
...
Message-Authenticator =
Ok, you're right, but in my case I know the client session can't last more
than 24hrs.
So, for me it's ok to remove all *inactive* entries older than that.
But, as far as I know, this seems to be impossible with gdm pool.
So, what the maximum_timeout parameter is useful for ???
It sets
Tabacchiera Stefano wrote:
I've done my tests with an ad-hoc pool, with maximum_timeout set at 10 secs.
And the results I posted came from a new test session done the day after the
first test.
(24 hrs 10 secs)
Why that timeout doesn't apply?
Did you set Session-Timeout? If not, you're
Hi,
Mr Alan i do it but always the same result:
r...@pfe-laptop:/home/pfe/freeradius-server-2.1.8# radtest sonia salut
127.0.0.1:1812 1812 testing123
Sending Access-Request of id 76 to 127.0.0.1 port 1812
User-Name = sonia
User-Password = salut
NAS-IP-Address = 127.0.1.1
On 05/05/2010 11:01 AM, Alan Buxey wrote:
Hi,
Mr Alan i do it but always the same result:
r...@pfe-laptop:/home/pfe/freeradius-server-2.1.8# radtest sonia salut
127.0.0.1:1812 1812 testing123
Sending Access-Request of id 76 to 127.0.0.1 port 1812
User-Name = sonia
User-Password =
On Wed, May 05, 2010 at 04:43:37PM +0200, Alan DeKok wrote:
John Dennis wrote:
I have to agree with Josip that whenever possible users should be
directed to install pre-built packages with the advice to build it
yourself being dispensed only with great care.
The Wiki could be updated
Thank you very much Alan! I added the $ in the safe-characters and it
works great now. However I also added \ but it doesn't seem to work...
My FreeRadius is also setup to handle PEAP for Windows XP PCs and they
use domain\username format. In debug I see:
[sql] expand: SELECT id, UserName,
Date: Wed, 5 May 2010 11:08:28 -0400
From: jden...@redhat.com
To: freeradius-users@lists.freeradius.org
Subject: Re: plz help me: access-reject
CC: a.l.m.bu...@lboro.ac.uk
On 05/05/2010 11:01 AM, Alan Buxey wrote:
Hi,
Mr Alan i do it but always the same result:
25 matches
Mail list logo
