Erik wrote:
wouldn't you at least see checkrad initiate in the freeradius -X debug
if I set the NAS type to cisco? I was just trying to get it to
initiate, not expecting it to work. In the debug, it doesn't even
come up. I've read in prior posts where you said that checkrad should
initiate
Am 08.11.2011 11:48, schrieb Alan DeKok:
walter harms wrote:
Is seems that i dont understand the concept of realms.
largely... if you don't know what realms are, you don't need to use them.
Realms are just domain names. They are a simple way to group users
together, without
walter harms wrote:
Can someone point me to a documentation that explains
how to setup that realms ?
raddb/proxy.conf That is the *only* place to configure realms, and it
is well documented.
i found:
http://linux.die.net/man/5/rlm_realm
http://wiki.freeradius.org/Proxy
I told you to
On Wed, Nov 9, 2011 at 6:42 PM, walter harms wha...@bfs.de wrote:
Can someone point me to a documentation that explains
how to setup that realms ?
raddb/proxy.conf That is the *only* place to configure realms, and it
is well documented.
i found:
http://linux.die.net/man/5/rlm_realm
Hi,
I was able to implement simultaneous-use checking for a group using
exec-program-wait attribute. So a user logging in which belongs to the group
will be checked against that attribute. It is working but I worry that with too
many connections coming from this group of users, it will exhaust
Am 09.11.2011 13:42, schrieb Fajar A. Nugraha:
On Wed, Nov 9, 2011 at 6:42 PM, walter harms wha...@bfs.de wrote:
Can someone point me to a documentation that explains
how to setup that realms ?
raddb/proxy.conf That is the *only* place to configure realms, and it
is well documented.
i
det.explo...@yahoo.com wrote:
I'd like to implement this using unlang but not sure where to start. The part
that I am having difficulty is on where to create the procedure and how to
call the procedure. The rest of the things like the DB query I can reuse from
the existing program. I want
walter harms wrote:
mmh, i am starting to understand, i was expecting something different
therefore i did not realize what i have found.
Asking good questions helps. How do I set up realms gets answered
by read the realm documentation.
If you want something else, ask a better question.
I'm authenticating users in RADIUS against LDAP, if I login from computer
with 802.1x configured and users and password taken from domain automatic.
Im getting wrong authenticated because the login has the following chain.
DOMAIN\\Users
How can i avoid that radius read the prefix?
I've tried to
Hi,
our freeradius is working with our softswitch perfect. All my columns in
radacct are populating.
Now I have set freeswitch and I also got it work with freeradius. This
are two different softswitchs and I would like that bouth will populate
same base. Problem appears as freeswitch is
Hi,
mmh, i am starting to understand, i was expecting something different
therefore i did not realize what i have found.
...i think there is still a fundamental mix of terminology
use case:
my task is to setup a radiusd for 6 realms (Again not my idea). all realms
should be equal and will
Are you looking for additional problems, or are you trying to solve
the original issue?
I'm trying to understand exactly what's happening was wondering why
checkrad wasn't being called. If I get a NAS which does SNMP, for
example, I wanted to know that checkrad would work in a predictable
I searched throught the threads and found this thread exactly matching to my
error I am getting. I am getting following error while debugging freeradius
for using LDAP:
/usr/local/etc/raddb/modules/ldap[29]: Failed to link to module 'rlm_ldap':
file not found
Erik wrote:
I'm trying to understand exactly what's happening was wondering why
checkrad wasn't being called. If I get a NAS which does SNMP, for
example, I wanted to know that checkrad would work in a predictable
fashion.
It does. It works. See man checkrad.
I'll quote some of your
suggestme wrote:
I searched throught the threads and found this thread exactly matching to my
error I am getting. I am getting following error while debugging freeradius
for using LDAP:
/usr/local/etc/raddb/modules/ldap[29]: Failed to link to module 'rlm_ldap':
file not found
And the
It does. It works. See man checkrad.
Checkrad is called to double-check duplicate logins.
Thank you, I understand now.
The guy using exec-program-wait for Simultaneous-Use was doing
something different. That was clear from his post.
Not to me - this is a new world for me I'm doing
Alan,
I tried the 3 steps that is suggested in FAQ, that isn't working. Also, As
suggested in 3rd (b) step; I found the 'radiusd.conf' file inside
/usr/local/etc/raddb/radiusd.conf. Inside radiusd.conf file it is suggesting
to do :
To work around the problem, find out which library contains that
Miha Zoubek wrote:
our freeradius is working with our softswitch perfect. All my columns in
radacct are populating.
That's good.
Now I have set freeswitch and I also got it work with freeradius. This
are two different softswitchs and I would like that bouth will populate
same base.
suggestme wrote:
I tried the 3 steps that is suggested in FAQ, that isn't working.
The steps in the FAQ assume that you built the server yourself from
source. Did you?
They also assume (step 1), that you read the output. That will tell
you whether or not the required LDAP libraries and
The aps are over a private network(NAT) and the Radius server is on a
public network(it have a true ip).
I retrived the log file but it did not show me anything usefull.
Any ideias of what i must do?
On Tue, Nov 8, 2011 at 3:16 PM, Tim Sylvester
tim.sylves...@networkradius.com wrote:
My APs
Am 09.11.2011 15:00, schrieb Alan DeKok:
walter harms wrote:
mmh, i am starting to understand, i was expecting something different
therefore i did not realize what i have found.
Asking good questions helps. How do I set up realms gets answered
by read the realm documentation.
If
Hello,
I am a new user of FreeRadius (on windows)
I have the same question as this post: How to configure freeRADIUS server so
it replies with a PAP access-challenge message on access-request from a
client?
well i am working with a linux as server and don't have acess to the debug
mod if i get anything I will tell to you
On Wed, Nov 9, 2011 at 3:03 PM, hughdavid hughdavid1...@yahoo.fr wrote:
Hello,
I am a new user of FreeRadius (on windows)
I have the same question as this post: How to
The thread link posted has already git several answers in it...and ends quite
clearly. Why are you trying to drag this up again? Some coursework?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan,
The LDAP server was already configred in other machine by System
Administrator. I am trying to link FreeRadius to that existing and already
running LDAP server and authenticate the users using already configured
attribute. I didn't download LDAP on this machine where FreeRadius is
running.
On 11/09/2011 01:40 PM, suggestme wrote:
The LDAP server was already configred in other machine by System
Administrator. I am trying to link FreeRadius to that existing and already
running LDAP server and authenticate the users using already configured
attribute. I didn't download LDAP on this
Alan,
*Sorry for the confusion I made. I have put the name of LDAP server
accordingly , not the localhost. Just for privacy I didn't put here.*
Here is the output of radiusd -X command:
# radiusd -X
FreeRADIUS Version 2.1.10, for host i386-portbld-freebsd8.2, built on Oct 21
2011 at 11:26:0
Hi,
The aps are over a private network(NAT) and the Radius server is on a
public network(it have a true ip).�
I retrived the log file but it did not show me anything usefull.
Any ideias of what i must do?
the clients (APs) will have the address of their public gateway..or one of
a
suggestme wrote:
*Sorry for the confusion I made. I have put the name of LDAP server
accordingly , not the localhost. Just for privacy I didn't put here.*
Here is the output of radiusd -X command:
Which is the same error.
Your problem is simple. We are trying to help you, and you are
walter harms wrote:
What do you mean by realms should be equal? What is m2m?
equal = the realms will differ in names only, not in configuration
Since it's clear you don't know what realms are, I have no idea what
you mean by this.
m2m = machine to machine - no user interaction
Hi,
*Sorry for the confusion I made. I have put the name of LDAP server
accordingly , not the localhost. Just for privacy I didn't put here.*
okay
Here is the output of radiusd -X command:
and there. bingo.
libdir = /usr/local/lib/freeradius-2.1.10
urgh. why? really...why?
hughdavid wrote:
I thought that we can configure FreeRadius to implement the methods, that
generate Access-Challenge messages for PAP protocol, and we can define some
logic scenarios for these challenge exchanges
Apparently it is not possible with FreeRadius
Yes, it is. But you need to
Alan DeKok wrote too quickly:
But you need to posting the same question. If you do, you can be
unsubscribed.
You need to *stop* posting the same question.
I think I might set up a bot to monitor the list. The same question 3
times from someone results in them being unsubscribed.
Alan,
Sorry for any inconvenience caused by it. I just put the output 3rd time since
Alan Buxey asked for the complete radiusd-X output, not the small 3 line output
to get the complete picture. Yesterday only I joined this freeradius list.
Yesterday I opened the thread thinking to get
My intention is not to trouble by sending the same post. I just want
suggestion from this group.
That's the problem. You have HAD suggestions.
Why haven't you followed them?
Again, Sorry if my questions troubled you guys.
Thanks
hi,
quick one liner really.. if you look at the flow of this,
you will notice a small difference when the remote proxy sends back the
access-accept
(yes, there is a LOT of EAP output - there is also a lot of
challenge-response...when you
get familar, you can just ignore those 13 or 15
Rob Ansaldo wrote:
We are already running a MS IAS Radius server that uses our AD, but what
we would like to do is to use FreeRADIUS to proxy requests to our IAS
server and add in some vendor specific attributes that we would set in a
MySQL database.
That should be possible.
The IAS
Alan DeKok wrote:
-Original Message-
Rob Ansaldo wrote:
The IAS server does not have these attributes, nor do we
want to use the IAS server for them.
Or... you could just use FreeRADIUS for everything. :)
We can dream, right? :)
Is what I am trying to do possible and
Rob Ansaldo wrote:
Yes! This works perfectly! I had previously tried using just the sql
section in post-auth, but as expected it ran the postauth_query.
Will go dig around the comments and see how I missed the sql.authorize
syntax.
That configuration is not extremely well documented. :(
Hi,
I'm authenticating users in RADIUS against LDAP, if I login from computer
with 802.1x configured and users and password taken from domain automatic.
Im getting wrong authenticated because the login has the following chain.
DOMAIN\\Users
How can i avoid that radius read
As a hint for how to ask *good* questions, see the recent post about
Freeradius proxy to IAS w/SQL attributes?.
He posted a *detailed* description of what he was doing, what he
wanted, what went wrong, and what he needed help with.
The answer was really one line: change this to that.
Hi,
Where do I put this piece of code? Can I do this invocation in the authorize
block? Or is it something I put in the radiusd.conf? And where do I put the
custom procedure itself? Is it in /etc/freeradius/modules?
Sorry about this. I'm confused about the placement. First time to add a custom
On Thu, Nov 10, 2011 at 9:27 AM, Det Det det.explo...@yahoo.com wrote:
Hi,
Where do I put this piece of code? Can I do this invocation in the authorize
block? Or is it something I put in the radiusd.conf?
man unlang
Requests are processed through virtual servers (including the default
one),
On Wed, Nov 9, 2011 at 11:55 PM, walter harms wha...@bfs.de wrote:
What do you mean by realms should be equal? What is m2m?
equal = the realms will differ in names only, not in configuration
m2m = machine to machine - no user interaction
radius doesn't really care whether it's a no user
First of all,i have to say sorry,i know this topic maybe not related to
FR.But I guess here is the best place to find out the answer.
Enviroment: Fedora 14 + 2 AP(set to WPA_PSK).
On the Fedora 14,i use wpa_cli to switch from one wireless network to
another,during the handover,there will 10 PING
On Thu, Nov 10, 2011 at 10:37 AM, snan4love snan4l...@hotmail.com wrote:
First of all,i have to say sorry,i know this topic maybe not related to
FR.But I guess here is the best place to find out the answer.
No, it's not
Enviroment: Fedora 14 + 2 AP(set to WPA_PSK).
On the Fedora 14,i use
when i run the radius for debugging mode using *radusd -X* command i got
error like *bash: radiusd: command not found*
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alejandro Gandara wrote:
I'm authenticating users in RADIUS against LDAP, if I login from
computer with 802.1x configured and users and password taken from domain
automatic. Im getting wrong authenticated because the login has the
following chain.
DOMAIN\\Users
How can i avoid that
if u have installed FR I guess u did it from source. Anyways check ur PATH
variable.
Its a simple linux error. Kindly google before u post.
-Mrinal
On Thu, Nov 10, 2011 at 1:50 AM, Harshavardhan chillakuru
harshac...@gmail.com wrote:
when i run the radius for debugging mode using *radusd -X*
49 matches
Mail list logo