Dear Sir,
I've tried a lot to find out the solution for auto expiration day limit from
1st login, but no luck. I'm not that much expert in freeradius. I'm planning
15 days limit from user 1st login. I'll be grateful if anyone can give me a
step by step solution for this problem.
exec
Post-Auth
Jay Kuhne (jkuhne) wrote:
I am finding that with fall-through, I am limited to 68 lines no matter
what the content.
You are likely limited to 4K packets.
Does anyone know off-hand if this is a configuration limitation or does
it have to do with RADIUS packet size?
It's likely the RADIUS
Alfonso Alejandro Reyes Jiménez wrote:
Hi, I'm trying to use the huntgroup feature on the freeradius software
with out luck. I think I'm missing something that's why I'm sending this
email maybe you can help me.
You should read the debug output of the server. The answer is in there.
users
Eugen Konkov wrote:
HI, FreeRadius.
when run radiusd -X it works fine.
But when run in multithread (without -X) it core dump after ten or
twelve queriest to radiusd.
please help any.
Read doc/bugs
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Vineet Verma wrote:
Does FreeRADIUS offer a debug option that displays the key generated
during EAP-TLS (or the unencrypted MPPE keys sent out)? I understand
this would be a security risk in a live network but it would be helpful
for debugging issues found in the lab.
? The MPPE keys are
Hello Sumon,
This has been discussed before. are you using mysql / postgreql? use the
counter module. check the following.
http://www.mail-archive.com/freeradius-users@lists.freeradius.org/msg20630.html
Hi Alan,
Thanks. I will check it out.
Regards,
Jay
-Original Message-
From: freeradius-users-bounces+jkuhne=cisco@lists.freeradius.org
[mailto:freeradius-users-bounces+jkuhne=cisco@lists.freeradius.org]
On Behalf Of Alan DeKok
Sent: Tuesday, August 24, 2010 5:41 AM
To:
Hi frree-radius users !
I'm running a freeradius 2.0.4 on a DEBIAN 5.0.5
We want to access an LDAP / windows base , wich is declared
in radiusd.conf file
Below is the output produced by the radiusd -X debugging mode
when I run the radtest :
_radtest command_:
/usr/sbin/radtest -d
Isabelle RECH wrote:
Hi frree-radius users !
I'm running a freeradius 2.0.4 on a DEBIAN 5.0.5
We want to access an LDAP / windows base , wich is declared
in radiusd.conf file
Below is the output produced by the radiusd -X debugging mode
when I run the radtest :
...
Obviously, it's the
Hello list
We use freeradius with opendlap and machine-authentification
(samba-pcs) for years with success.
Windows xp and vista clients works fine.
Now i wanted to authenticate a Windows 7 laptop and i get the
following errors :
[suffix] No such realm NULL
++[suffix] returns noop
[eap]
alois blasbichler wrote:
Now i wanted to authenticate a Windows 7 laptop and i get the following
errors :
...
[peap] TLS 1.0 Alert [length 0002], fatal unknown_ca
TLS Alert read:fatal:unknown CA
TLS_accept:failed in SSLv3 read client certificate A
rlm_eap: SSL error error:14094418:SSL
On 24/08/10 15:19, alois blasbichler wrote:
Hello list
We use freeradius with opendlap and machine-authentification
(samba-pcs) for years with success.
Windows xp and vista clients works fine.
Now i wanted to authenticate a Windows 7 laptop and i get the
following errors :
[suffix] No such
Now i wanted to authenticate a Windows 7 laptop and i get the following
errors :
...
[peap] TLS 1.0 Alert [length 0002], fatal unknown_ca
TLS Alert read:fatal:unknown CA
TLS_accept:failed in SSLv3 read client certificate A
rlm_eap: SSL error error:14094418:SSL
I dont use certificates neither on the server and neither on the
client side.
I read in teh internet that also windows7 should work without
certificates - is that true ?
Strictly speaking this is actually true, However! You need to understand
what is happening:
1) Win7 will not connect to a
Hi,
Thanks for your reply. Actually we never heard Alan's advise thats why we
always face problem. We've to read read read to find out the solution.
../modules/sqlcounter_expire_on_login is already builtin with freeradius
I'm searching like a mad!!
Thanks again for the useful resource from
Sumon Ahmed wrote:
Hi,
Thanks for your reply. Actually we never heard Alan's advise thats why
we always face problem. We've to read read read to find out the solution.
There is no magic do what I want configuration in the server. You
have to think for yourself.
What you want to do is
Hello
My situation is :
I dont want user certificates for the clients to authenticate.
I configure my freeradius that only laptops in my domain can login to
my wireless - safe enaugth - so all private laptops and strange
laptops dont enter in my network. Only latops that a Administrator
On 08/24/2010 11:09 AM, alois blasbichler wrote:
My situation is :
I dont want user certificates
Nobody said anything about user certificates. The situation is no
different than any other SSL server, if the cert presented by the server
is not signed by a CA trusted by the client it *should*
Hi,
So far all worked ok till windows 7.
If i need i can create a server certificate and import this on my
clients but i dont want use client certificates.
you dont need to - you just need the CA that the server was signed with to
be on your Win7 clients
so Windows 7 works with EAP-TLS
I authenticate VPN users where the VPN Server authenticates against a
LDAP server and FreeRadius 2.1.8 on CentOS. That generally, works
fine. I'm using a user account to authenticate the radius server
against AD for the queries.
What's odd is tho the other user accounts work, I can't
Hi,
I have a FreeRADIUS 2.1.9 installation (compiled from source) running on
Solaris 10 Sparc and I've run into a memory leak issue when reloading the
configuration with a HUP signal. I have a very simple RADIUS setup with just
an authorize and a users file. The users file is rather large at
I'm hitting some snags trying to compile from source with the newest
OpenSSL. I have compiled Openssl 1.0.0a and installed in /usr/local/ssl
(the default location). With FreeRadius 2.1.9 configure fails to detect
with errors which look like something which is possibly a problem with
my OpenSSL
At 04:48 PM 8/24/2010, Rick Steeves wrote:
I authenticate VPN users where the VPN Server authenticates against
a LDAP server and FreeRadius 2.1.8 on CentOS. That generally, works
fine. I'm using a user account to authenticate the radius server
against AD for the queries.
What's odd is tho
I have to mysql configurations for one for my authentication request and
one for the accounting data. When it make a groupcheck query it is
always using the module for the accounting server is there anyway to
make this function correctly and have it use the configuration for the
authentication
24 matches
Mail list logo
