Hi,
I finally found what was the problem. I have read the rlm_sql but
it doesn't show how to limit access by groups. In fact, what i was
trying to do is to run two instances of coova chilli on a machine,
create two groups of users on freeradius database, one for the first
chilli and one
-%Y%m%d
- /netnfork/radius//var/log/radius/radacct/127.0.0.1/detail-20120629
Fri Jun 29 10:20:06 2012 : Info: [detail]
/netnfork/radius//var/log/radius/radacct/%{%{Packet-Src-IP-Address}:-%{Packet-Src-IPv6-Address}}/detail-%Y%m%d
expands to /netnfork/radius//var/log/radius/radacct/
127.0.0.1/detail
Dear all,
Can any possible to manage two database(MySQL) with single radius server. Here,
One database manage by one operator and another database manage by another
operator. This two operators database data will not see each other.
Please can anyone give suggestions on this regards.
On Fri, Jun 29, 2012 at 2:58 PM, Andrei Petru Mura mapand...@gmail.com wrote:
Fri Jun 29 10:20:06 2012 : Info: [hourlycounter] expand: %{sql:SELECT
SUM(AcctSessionTime - GREATER((1340953200 -
AcctStartTime::ABSTIME::INT4), 0)) FROM radacct WHERE
On Fri, Jun 29, 2012 at 3:04 PM, Malla reddy Sama
mallareddy.s...@yahoo.com wrote:
Dear all,
Can any possible to manage two database(MySQL) with single radius server.
You mean USE more than one database? Sure. Just create different sql
module instances:
Hello Chris,
Local realms should be defined as empty in raddb/proxy.conf. E.g.:
myrealm {
}
Your current erroneous setting
realm myrealm {
auth_pool = mypool
}
leads to stripping realm part from User-Name and proxying request to
127.0.0.1.
If you want to completely ignore realm
Here is what de debug shows. It seems it's first authenticated and then
denied:
Ready to process requests.
rad_recv: Access-Request packet from host 192.168.2.2 port 9903, id=94,
length=122
User-Name = vpntest
User-Password = password
Thanks for the input so far everyone.Can you guys confirm that this is the
correct format for the SQl side of things please ?Im still having problems and
just want to confirm that this is correct. mysql select * from radcheck;
++++++
Taz Manian wrote:
Can you guys confirm that this is the correct format for the SQl side of
things please ?
Im still having problems and just want to confirm that this is correct.
It's not.
mysql select * from radcheck;
++++++
|
Hello,
On Fri, Jun 29, 2012 at 03:13:45PM +0700, Fajar A.
Nugraha wrote:
or for different realms (e.g. all user @domain1
will read data from db1, while all user @domain1
will read data from db2).
most probably he'd like to differentiate them by
IMSI ranges.
P.S. I don't know how to do this
Jens W. Skov - JS Consult wrote:
Here is what de debug shows. It seems it's first authenticated and then
denied:
No. It explicitly says AUTHORIZED. That means allowed, but not
authenticated.
Found Auth-Type = opendirectory
+- entering group opendirectory {...}
rlm_opendirectory:
Found Auth-Type = opendirectory
+- entering group opendirectory {...}
rlm_opendirectory: [vpntest]: invalid password
Well... fix that.
:-) Of course the password is correct.
But I'll seek help some where else. The Apple support forums are not much
help.
Jens
-
List
Alexander Gattin wrote:
most probably he'd like to differentiate them by
IMSI ranges.
P.S. I don't know how to do this or if this is
even possible.
Yes. Look at the contents of the packets... write regular expressions
to split the ranges.
FreeRADIUS can do just about anything.
Alan
So, as you can see from my comments, the Session-Timeout attribute isn't
present in the radius response debug from the first login. The second
time
when it appears, it is caluculated correctly. For now I think that I
have an
issue with FR, so I don't go further to my chillispot NAS yet.
Yes. Look at the contents of the packets... write regular expressions
to split the ranges.
FreeRADIUS can do just about anything.
I not get your point Alan. What you means by range..? could you explain ..?
The db1 and db2 are in different location and operated by different people
Malla reddy Sama wrote:
Yes. Look at the contents of the packets... write regular expressions
to split the ranges.
FreeRADIUS can do just about anything.
I not get your point Alan. What you means by range..? could you explain ..?
sigh The message I replied to talked about IMSI
Thanks Alan, But the username isnt the problem, that authenticates properly and
if i put inmysql select * from radreply;
++-++---+--+
| id | UserName| Attribute| Value
On Fri, Jun 29, 2012 at 8:46 PM, Taz Manian djta...@hotmail.com wrote:
But the username isnt the problem, that authenticates properly and if i put
in
You should fix that. There might be a compatibility code that allows
it to work today, but the next versions might not have it.
I get no info
Sorry , i thought i had attached the radiusd -X report.rad_recv:
Access-Request packet from host 192.168.1.150 port 56916, id=97, length=123
User-Name = username@realm
Acct-Session-Id = 1340979220W15beb
NAS-Port = 0
Calling-Station-Id = 1115551212
On Fri, Jun 29, 2012 at 9:19 PM, Taz Manian djta...@hotmail.com wrote:
[sql] expand: SELECT id, groupname, attribute, Value,
op FROM radgroupcheck WHERE groupname =
'%{Sql-Group}' ORDER BY id - SELECT id, groupname,
attribute, Value, op
Hi,
are you running the preprocess module? if not, then Huntgroups arent looked at
or populated
alan
Yes, is running, in fact without WLC , work fine.
--
--
Silvero Martin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi all,
I'm using freeradius 2.1.12 and I have a problem that I would like to
resolve with unlang but I can't for syntax error...
I need to authorize users based on case insensitive regular
expression, something like
if User-Name match .*-guest$ use LDAP-1
else use LDAP-2
I made several
Taz Manian wrote:
but one silly
mistake caused me to try so many different things that i got myself
mixed up with it all.
THAT is really the problem. Trying many different things is always
a disaster. Follow the instructions *exactly*. Step by step.
Trying many things means you don't
On 06/29/2012 02:54 PM, Alan DeKok wrote:
Taz Manian wrote:
but one silly
mistake caused me to try so many different things that i got myself
mixed up with it all.
THAT is really the problem. Trying many different things is always
a disaster. Follow the instructions *exactly*. Step by
24 matches
Mail list logo
