Johan Meiring wrote:
I've configured originate COA using the originate-coa as an example.
My (relevant/edited for privacy) configuration looks like this:
...
This works perfectly.
The home_server_pool seems unnecesary though, but if I leave it out,
freeradius -X complains that the
Peter Lambrechtsen wrote:
Hello
I've managed to compile pam_radius-1.3.17 both 32Bit and 64Bit.
I had to add -lsocket as part of linking to get it to work and modified
the make file to have -m64 to compile on 64bit
When I compile it for 64Bit this is my make output:
...
But when I try
Hi Alan
thanks for the reply.
Is there a way to identify the vendor/device-type of a radius request?
Do clients send a Vendor-ID/Private Enterprise Number such as that listed in
a VSA Dictionary.
Cheers
Cam.
--
On Wed, Sep 22, 2010 at 15:46, Alan DeKok al...@deployingradius.com wrote:
Cameron Wood wrote:
Is there a way to identify the vendor/device-type of a radius request?
Look at the side of the box. That's it.
Do clients send a Vendor-ID/Private Enterprise Number such as that
listed in a VSA Dictionary.
Do you see that information in a RADIUS packet?
It's
Does Freeradius have a way for me to see the packet sent to it?
I've already tried running it with the -X flag, but that isn't showing
enough detail.
Cheers
Cam.
--
On 22/09/2010 4:38 PM, Alan DeKok al...@deployingradius.com wrote:
-
List info/subscribe/unsubscribe? See
On Wed, Sep 22, 2010 at 6:06 PM, Alan DeKok al...@deployingradius.comwrote:
Any suggestions on what to do with gdb or to debug this problem??
$ gdb --args ./pamtester jpam peter authenticate
(gdb) run
(gdb) bt
This is what I get back:
(gdb) run
Starting program:
Peter Lambrechtsen wrote:
This is what I get back:
(gdb) run
Starting program: /usr/local/bin/sparcv9/pamtester jpam peter authenticate
procfs:4337 -- process not stopped.
procfs: ...giving up...
(gdb) bt
procfs: couldn't find pid 7326 (kernel thread 1) in procinfo list.
procfs: couldn't
Hi!
I have a freeradius(2.0.4+dfsg-6) using postgresql and running on Debian
Lenny.
Everything works great.
Now I'm in the position to where I need to insert or update the User-name,
NAS-Port-id, NAS-Port-type and NAS-Identiifier to a table in the database
each time freeradius receives a
hi,
when using eg linelog module, FreeRADIUS makes a file - anyone interested
in ability for the daemon to make a different TYPE of file - ie a named pipe
rather
than a plain file?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan Buxey wrote:
when using eg linelog module, FreeRADIUS makes a file - anyone interested
in ability for the daemon to make a different TYPE of file - ie a named pipe
rather
than a plain file?
$ man mknod ?
The main issue with a named pipe is that if it ever blocks, the server
blocks,
I've put some preliminary tar files on:
http://git.freeradius.org/pre/
If there are any issues, let me know now. Otherwise we'll release
2.1.10 on Monday.
The changelog is *extensive*. There are a large number of minor bugs
fixed, and a lot of minor new features added. But the result
Last call for 2.1.10
I haven't had a chance to rework the patch for saving replies after a PEAP/TTLS
reject (been very busy at work). I'll try to get to it today; but, I assume
it's too late for 2.1.10 at this point, right?
-
List info/subscribe/unsubscribe? See
Hi,
Alan Buxey wrote:
when using eg linelog module, FreeRADIUS makes a file - anyone interested
in ability for the daemon to make a different TYPE of file - ie a named
pipe rather
than a plain file?
$ man mknod ?
'mkfifo' please :-)
I know that an admin can make the file
On Wed, Sep 22, 2010 at 9:55 PM, Alan DeKok al...@deployingradius.comwrote:
Peter Lambrechtsen wrote:
This is what I get back:
(gdb) run
Starting program: /usr/local/bin/sparcv9/pamtester jpam peter
authenticate
procfs:4337 -- process not stopped.
procfs: ...giving up...
(gdb) bt
Garber, Neal wrote:
Last call for 2.1.10
I haven't had a chance to rework the patch for saving replies after a
PEAP/TTLS reject (been very busy at work). I'll try to get to it today; but,
I assume it's too late for 2.1.10 at this point, right?
I'll take a look... but 2.1.10 has been
With the (hopefully) impending release of 2.1.10 I thought to ask:
My current FreeRADIUS server I have is compiled from source, when 2.1.10
comes out can I simply recompile and go or do I need to rip out the old
version first?
Jake Sallee
Godfather Of Bandwidth
Network Engineer
Fone:
On 22/09/10 14:15, Alan DeKok wrote:
I've put some preliminary tar files on:
http://git.freeradius.org/pre/
If there are any issues, let me know now. Otherwise we'll release
2.1.10 on Monday.
Can we squeeze one quick VSA update into dictionary.extreme:
ATTRIBUTE
On 22/09/10 15:14, Phil Mayers wrote:
On 22/09/10 14:15, Alan DeKok wrote:
I've put some preliminary tar files on:
http://git.freeradius.org/pre/
If there are any issues, let me know now. Otherwise we'll release
2.1.10 on Monday.
Can we squeeze one quick VSA update into
Sallee, Stephen (Jake) wrote:
My current FreeRADIUS server I have is compiled from source, when 2.1.10
comes out can I simply recompile and go or do I need to rip out the old
version first?
Recompile install. It will *not* break anything in your existing
configuration.
Alan DeKok.
-
Hi list,I have some problems with the mentioned message.COMPLETE MESSAGE :rad_recv: Access-Request packet from host MYIP port 2343, id=110, length=207 NAS-Port-Type = Ethernet Calling-Station-Id = "C4:2C:03:DA:11:44" Called-Station-Id = "station-DC" NAS-Port-Id = "ether2" User-Name = "8charword"
On Wed, 2010-09-22 at 15:15 +0200, Alan DeKok wrote:
I've put some preliminary tar files on:
http://git.freeradius.org/pre/
If there are any issues, let me know now.
We have an issue but I am a little lost as to where things are going
wrong.
If I set the uid/gid and 'mode=rw' in
Recompile install. It will *not* break anything in your existing
configuration.
Awesome! Now if only Cisco and MS took the same approach to their
software my life would be SO much simpler! Thanks for the info.
Jake Sallee
Godfather Of Bandwidth
Network Engineer
Fone: 254-295-4658
Phax:
John Horne wrote:
The problem seems to be that although the proxy server returns a 'Yes'
reply (meaning the user is authenticated)
What does that mean? There is no standard attribute to transport a Yes.
Although this looks like a pppd problem, it only occurs after we have
issued 'radmin
On Wed, 2010-09-22 at 18:53 +0200, Alan DeKok wrote:
John Horne wrote:
The problem seems to be that although the proxy server returns a 'Yes'
reply (meaning the user is authenticated)
What does that mean? There is no standard attribute to transport a Yes.
Sorry, the 'Yes' is just the
Alan DeKok al...@deployingradius.com writes:
I've put some preliminary tar files on:
http://git.freeradius.org/pre/
If there are any issues, let me know now. Otherwise we'll release
2.1.10 on Monday.
A little late into the game, but I just noticed this:
bj...@nemi:~$ radclient -v
RCS keywords don't make sense with git, so use the RADIUSD_VERSION
macro instead, like the server and radmin already do.
Signed-off-by: Bjørn Mork bj...@mork.no
---
src/main/radclient.c |2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/src/main/radclient.c
On 09/22/2010 09:15 AM, Alan DeKok wrote:
I've put some preliminary tar files on:
http://git.freeradius.org/pre/
If there are any issues, let me know now. Otherwise we'll release
2.1.10 on Monday.
I verified 2.1.10 builds and produces an RPM. My apologies but I don't
have time at the
Hello All.
Please help.. Any suggestions on where I should start? Thank you very much
for your help!!
Doreen
On Mon, Sep 20, 2010 at 1:47 PM, Ziggy Bopster ziggybops...@gmail.comwrote:
Hi Freeradius user group,
I am relatively new to using Freeradius. Thanks for all your help
and
Hi Guys,
does someone know a way to do real EAP-SIM authentication with (through!)
freeradius?
Most if not all GSM-Carriers have radius-servers for their own WiFi-Hotspots,
but obviously
they wont give anyone access to them but only Hotspot-Roaming-Providers like
iPass or
WeRoam.
Is there
Hi - we recently upgraded to version 2.1.8 (freeradius) and my
authentication does not work any more.
This used to work (configured in Radius):
basic-a User-Password == csetestp
User-Name =~ ^([aA-zZ]+)-([aA-zZ]+)$,
Framed-Pool := 21,
Class := 2,
I also noticed that it is failing for PPP users as well:
prkoAuth-Type := Local, User-Password ==
Framed-Pool := 22,
Framed-IP-Netmask := 255.255.0.0,
Fall-Through = No
With this:
rad_recv: Access-Request packet from host 114.0.1.11 port 50633,
Hello all,
I have a client machine that authenticates to FreeRadius
using EAP-TTLS over Access_Point_1 just fine. When I roam the client to
Access_Point_2 and tries to authenticate again to FreeRadius, session
resumption seems to be failing with the following error.
On 09/22/2010 09:58 PM, Ziggy Bopster wrote:
Hello All.
Please help.. Any suggestions on where I should start? Thank you very
much for your help!!
You have two options:
First, create 1 instance of the ldap module. Use conditional statements
in the authorize section to do your ldap
I resolved this. Thanks.
On Wed, Sep 22, 2010 at 2:59 PM, Marlon Duksa mdu...@gmail.com wrote:
Hi - we recently upgraded to version 2.1.8 (freeradius) and my
authentication does not work any more.
This used to work (configured in Radius):
basic-a User-Password == csetestp
Thanks for the reply.
Resigned to the fact that I will have to distinguish my vendors/devices in
the clients.conf file, is there a way in this file to put multiple hosts in
a single statement, other than by using a netmask?
Cheers
Cam.
--
On Wed, Sep 22, 2010 at 17:46, Phil Mayers
On Wed, 2010-09-22 at 18:02 +0100, John Horne wrote:
The failed login has no MS-CHAP2-Success attribute being sent back.
Okay. The problem is to do with attribute filtering, but that in turn
seems to be caused by freeradius doing something unexpected when it
receives the HUP.
We define the
36 matches
Mail list logo