Paolo Barbato wrote:
radgoupreply
1 rfxguest Auth-Type := Reject
That should be in radgroupcheck, not in radgroupreply.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Alan,
this way paolo, since belong to rfxguest, is reject all the time
radgroupcheck
5 rfxguestAuth-Type := Reject
4 rfxguestAirespace-Wlan-Id := 5
…let me change question…I admint I'm a bit confused….where is matched
Airespace-Wlan-Id, I
Paolo Barbato wrote:
radgroupcheck
5 rfxguest Auth-Type := Reject
4 rfxguest Airespace-Wlan-Id := 5
This is wrong. Read the doc/rlm_sql, and look at the operators.
…let me change question…I admint I'm a bit confused….where is matched
Airespace-Wlan-Id, I mean in which sql table.
Hi Alan…that it !
On 14/mag/2012, at 11:52, Alan DeKok wrote:
Paolo Barbato wrote:
radgroupcheck
5 rfxguest Auth-Type := Reject
4 rfxguest Airespace-Wlan-Id := 5
This is wrong. Read the doc/rlm_sql, and look at the operators.
…let me change question…I admint I'm a bit
On 13/05/12 14:50, jomajo wrote:
Hello!
Maybe somebody know or maybe already implemented , Unix TimeStamp based
login?
Is this a class project? In have had (other) people emailing me off-list
about this.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 11/05/12 20:25, Mike wrote:
Phil,
I meant to say proxy-request, not proxy-reply.
Ah, ok.
Secondly, why would you need a log file to show an attribute
expanding to nothing? I just told you it is expanding to nothing aka
it has no assigned value once reaching the pre-proxy stage.
Hello Phil. Ofcourse it is not! I don't know (other people) but if they
know any helpful information related with this, please let me know.
Can you share more information about Matthew lab ? How he's reserving a
time slot and authenticating users with freeradius?
This information would be really
Hello Phil. Ofcourse it is not! I don't know (other people) but if they know
any helpful information related with this, please let me know.
Can you share more information about Matthew lab ? How he's reserving a time
slot and authenticating users with freeradius?
This information would be really
On 14/05/12 12:09, jomajo wrote:
Hello Phil. Ofcourse it is not! I don't know (other people) but if they know
any helpful information related with this, please let me know.
Ah, sorry, I'm confused - you're the same person!
Can you share more information about Matthew lab ? How he's
I found this disscussion
freeradius.1045715.n5.nabble.com/Opposite-of-Expiraton-attribute-td4497694.html
.
I have a problem at this point now:
# Executing section authorize from file
/etc/freeradius/sites-enabled/default
+- entering group authorize {...}
expand: %m-%d-%Y - 05-14-2012
We are having problems when accessing our sites. No matter which browser we use
to access it always requests authentication twice.
We have an Apache web server (v.2.2) with mod_auth_radius 2.0 installed. And we
have mounted a Jboss application using mod_jk module and protected access to it.
I
Thank you Phil!
I will try!
On Mon, May 14, 2012 at 3:25 PM, Phil Mayers p.may...@imperial.ac.ukwrote:
On 14/05/12 12:09, jomajo wrote:
Hello Phil. Ofcourse it is not! I don't know (other people) but if they
know
any helpful information related with this, please let me know.
Ah, sorry,
Hello,
I would take a look at the cookies in your browser. I could suspect that
you got two cookies, the browser might not send the cookie for some
internal URL, that gets called on your site. (maybe because it is not
the fqdn but the IP). Then the cookie will not be sent and you need to
/freeradius/radacct/172.16.83.51/auth-detail-20120514
[auth_log]
/var/log/freeradius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands
to /var/log/freeradius/radacct/172.16.83.51/auth-detail-20120514
[auth_log] expand: %t - Mon May 14 16:32:25 2012
++[auth_log] returns ok
[sql] expand: %{User
On 14/05/12 14:40, Efx Efx wrote:
CREATE TABLE `Resv` (
`Username` varchar(20) NOT NULL,
`Start-Time` int(11) NOT NULL,
`End-Time` int(11) NOT NULL
) ENGINE=MyISAM DEFAULT CHARSET=latin1;
Hyphens? Really? Bad idea. Stick to all lower-case letters and underscore.
*This is my output:*
#
Efx Efx wrote:
Phil, I configured my freeradius server as in your example above ( It
looks like case letters doesn't make any difference in MySQL statements)
1) PLEASE edit your posts to remove extra text. It's just polite.
User is successfully authenticated because of radcheck table. Maybe
We are using the correct password. There must be something broken
causing the passwords not to match. That is what I'm looking for help
to determine.
On Fri, May 11, 2012 at 3:02 PM, Alan DeKok al...@deployingradius.com wrote:
Steve Hopps wrote:
I'm trying to use FreeRadius with OpenLDAP for
Hello everyone,
As you know, FR has a radius.log file under /var/log/radius directory. I
noticed that inside the logrorate file, radius.log is set to rotate every
month. Like this :
/var/log/radius/radius.log {
monthly
rotate 100
create
missingok
Yes Alan, shame on me. ( I wasn't sleeping for 30 hours right now :/ )
Now freeradius doesn't know what is current-time? And can do anything more?
# Executing section authorize from file
/etc/freeradius/sites-enabled/default
+- entering group authorize {...}
sql_xlat
expand: %{User-Name}
On 14/05/12 15:07, Steve Hopps wrote:
We are using the correct password. There must be something broken
causing the passwords not to match. That is what I'm looking for help
to determine.
Send a full debug radiusd -X. The trimmed debug doesn't show enough info.
However, at a guess, this line:
On Mon, May 14, 2012 at 9:15 PM, yagizozen yagizo...@yahoo.com wrote:
Hello everyone,
As you know, FR has a radius.log file under /var/log/radius directory. I
noticed that inside the logrorate file, radius.log is set to rotate every
month. Like this :
/var/log/radius/radius.log {
Steve Hopps wrote:
We are using the correct password.
You can believe what the server sees. Or you can believe a fantasy.
It's that simple.
There must be something broken
causing the passwords not to match. That is what I'm looking for help
to determine.
As Phil said, post the FULL
hi,
I have one doubt in my Acct session id i had clients mac address then ssid
and then session id.but in some of the Act session id it shows clients mac
address then ssid and then 0.because of which i get huge Acct session time
about 947412332...please see the logs below.radius new is my ssid.it
jomajo wrote:
Yes Alan, shame on me. ( I wasn't sleeping for 30 hours right now :/ )
Now freeradius doesn't know what is current-time? And can do anything more?
The debug log doesn't show that.
The current-time is only available as a comparison, and requires the
logintime module to be
Hi,
you could also try to use
copytruncate
This will not remove the current log file, but will copy the logfile and
then try to truncate, so that you should not run into file handle issues.
Kind regards
Cornelius
Am 14.05.2012 16:15, schrieb yagizozen:
Hello everyone,
As you
I'll post the full log. It should be pulling from OpenLDAP. I had to
censor the log in a few places, including the IP of the system I'm
using to test, which I changed to 6.6.6.6
Thanks for helping me with this.
FreeRADIUS Version 2.1.10, for host x86_64-pc-linux-gnu, built on Nov
14 2010 at
Sharad P wrote:
I have one doubt in my Acct session id i had clients mac address then ssid
and then session id.but in some of the Act session id it shows clients mac
address then ssid and then 0.because of which i get huge Acct session time
about 947412332...please see the logs below.radius
Thank you Alan, but login-time module is already enabled.
Can you tell me guys, which solution do you see at this time based
authentication, because I don't know what to do at this point.
It checks time in the tables,and I can pass now some attributes and
authenticate the user?
But If time
On 14/05/12 15:25, jomajo wrote:
Failed parsing Resv-Start-Time: Unknown value Resv-Start-Time for
attribute Resv-Cur-Time
Ah, sorry. I keep forgetting unlang is picky.
You want:
if (Resv-Cur-Time %{Resv-Start-Time}) {
..
}
if (Resv-Cur-Time %{Resv-End-Time}) {
..
}
You need
Steve Hopps wrote:
I'll post the full log. It should be pulling from OpenLDAP. I had to
censor the log in a few places, including the IP of the system I'm
using to test, which I changed to 6.6.6.6
And please check Phil's comment. It is *still* showing this:
[pap] Using CRYPT password *
Hi,
We are using the correct password. There must be something broken
causing the passwords not to match. That is what I'm looking for help
to determine.
WHERE are you using the correct password? if the client is being given the
correct
password, then where are the usernames and paswords
On 14/05/12 15:58, Steve Hopps wrote:
I'll post the full log. It should be pulling from OpenLDAP. I had to
It's not. You haven't configured it to do that.
Module: Instantiating module ldap from file /etc/freeradius/radiusd.conf
ldap {
server = localhost
port = 389
Ok,
Hi,
I have one doubt in my Acct session id i had clients mac address then ssid
and then session id.but in some of the Act session id it shows clients mac
address then ssid and then 0.because of which i get huge Acct session time
about 947412332...please see the logs below.radius new is my
Freeradius says TRUE, but REJECTS the user anyway:
# Executing section authorize from file
/etc/freeradius/sites-enabled/default
+- entering group authorize {...}
++[logintime] returns noop
sql_xlat
expand: %{User-Name} - ieva
sql_set_user escaped user -- 'ieva'
expand: select
That's really interesting, sometimes I can get log in when I should,
sometimes I can get log in when I shouldn't.
I'm changing dates and looking at this behaviour.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Unix-TimeStamp-Based-Login-tp5708187p5709220.html
Sent
On 14/05/12 16:42, jomajo wrote:
Freeradius says TRUE, but REJECTS the user anyway:
You need to do some of the work here, and apply some thought to what's
going on. It's not polite to just post every error without doing some
work yourself to determine the problem.
READ the output, and
Phil.
I can't say how much thankful I'm! This is working ! Thank you Thank you
Thank you! :)
It's good to have a people like you in this community!
Thank's again!
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Unix-TimeStamp-Based-Login-tp5708187p5709308.html
Sent
On 11/05/2012 13:35, Phil Mayers wrote:
On 11/05/12 13:10, sgilmour wrote:
--nt-response=46eb0f981a6121ad65e5726b0ee0e2097d610172204c7f24
Fri May 11 08:08:13 2012 : Debug: Exec-Program output: Access denied
(0xc022)
Fri May 11 08:08:13 2012 : Debug: Exec-Program-Wait: plaintext: Access
Thanks James will do.
After doing more testing rather than doing PEAP authentication I attempted
to do TLS Authentication. When I did TLS authentication my TLS User
authenticated just fine and I was able to receive an access-accept. When
doing PEAP Authentication my PEAP user will fail with an
Hi,
After doing more testing rather than doing PEAP authentication I attempted
to do TLS Authentication. When I did TLS authentication my TLS User
authenticated just fine and I was able to receive an access-accept. When
doing PEAP Authentication my PEAP user will fail with an
Well I've been trying to follow the advice here and also what I've
found online and in the configs. I attempted to revert to the
'default' config files for sites-enabled, as this project was dropped
in my lap after months of another guy working on it and being
frustrated, and I wasn't sure what
I have a senario, no ldap schema extension is wanted ( no ldap group or profile
is wanted);
we do use ldap authentication though; and it works fine.
after authentication, we need to check one ldap attribute like vpn and and
return class: ou={ldap vpn value} back to the radius client (the cisco
Hi,
Well I've been trying to follow the advice here and also what I've
found online and in the configs. I attempted to revert to the
'default' config files for sites-enabled, as this project was dropped
in my lap after months of another guy working on it and being
frustrated, and I wasn't
Hello everyone,
We use below freeradius. It works well. The OS is Linux Enterprise 5.4. Thanks.
freeradius2.x86_64 2.1.12-3.el5installed
freeradius2-krb5.x86_642.1.12-3.el5installed
freeradius2-ldap.x86_64
where can isee this generator?
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Acct-session-ID-shows-0-tp5709113p5709781.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See
On Tue, May 15, 2012 at 8:34 AM, 全球无线联盟 2394263...@qq.com wrote:
Hello everyone,
We use below freeradius. It works well. The OS is Linux Enterprise 5.4.
5.4? really? why not update?
Thanks.
freeradius2.x86_64 2.1.12-3.el5
these packages should come post-5.4. Are you
46 matches
Mail list logo
