Hi all,
We deploy freeradius integrated to Active Directory, but the AD enabled
Require signing option (see the attachement).
net join is OK after we set LDAP SASL wrapping to 'sign'. But LDAP search
failed. Is there a way to let LDAP search work? Can someone show me some
reference or
Hi All,
The last week I've had my first encounter with FreeRADIUS as we were supposed
to deploy eduroam. I had a lot of fun doing it although I have dreamt about the
config files after a couple of days :)
Everything is working as it should so no worries there, but I'm curious about
Hello,
Never played around with groups using rlm_sql and the default schema..
I am reading what i assume is saying that it should be possible to have several
groups to a account and each group should be able to supply that specific
groups radgroupreply attributes..
Number 4 below sure sounds
Sorry forget about priority i thought higher was first..Which it wasn’t.. Still
is it possible to get replies from multiple groups an account belongs to?
Cheers
Alex
Från:
freeradius-users-bounces+alexander.silverohrt=itux...@lists.freeradius.org
And sorry again…
I forgot old Fall-Through= yes which of course made it work..
I thank myself for my excellent answers☺
Cheers
Alex
Från:
freeradius-users-bounces+alexander.silverohrt=itux...@lists.freeradius.org
Mathieu Simon wrote:
Telling students how to install a internal CA root isn't going to work,
it already
didn't work for teachers in the past ...
Yes. That is a problem.
But allowing only (internal) devices with certs from the internal CA
through CA_file
would allow us to more easily
John wrote:
We deploy freeradius integrated to Active Directory, but the AD enabled
Require signing option (see the attachement).
That's really an AD question.
net join is OK after we set LDAP SASL wrapping to 'sign'. But LDAP
search failed. Is there a way to let LDAP search work? Can
Bas Penris wrote:
Everything is working as it should so no worries there, but I'm curious
about something. I configured the proxies and the local realm. When I
did a radtest like this:
radtest che...@localdomain.nl password 127.0.0.1 1 secret
I would get an Accept-Accept.
That's the easy
Thanks Alan! The following code in the sites-available/inner-tunnel solved
the problem.
if (%{sql: SELECT COUNT(*) FROM radcheck WHERE username =
'%{SQL-User-Name}' AND pwdtype = 'local'} 0) {
update control {
MS-CHAP-Use-NTLM-Auth := 0
}
}
ffgch2 wrote:
I have
how we can detect cues of reject in any section of default(site enable) ?
do we have any internal attribute or any source that can be use for
determine cues of rejecting user ?
best regards.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Alan,
The reason I didn't post the debugs and config files was because I thought
there might be an easy explanation which one of you would be able to spoon up
without any trouble. Especially because nothing is broken and everything works
as it's supposed to.
I'll get back with a debug
Bas Penris wrote:
The reason I didn't post the debugs and config files was because I
thought there might be an easy explanation which one of you would be
able to spoon up without any trouble.
We need certain information to answer questions. One piece of which
is the debug output. That's
yoann Couble wrote:
Hi everyone,
I have a freeRADIUS 2.0.4 server which has been running well for the
past two years.
Upgrade to 2.2.0.
With the sources downloaded from packages.debian.org,
wrote my version of rlm_chap.c.
Everything compiles and works fine when i do:
./configure
On 12 Apr 2013, at 11:01, Mehdi Ravanbakhsh baba...@gmail.com wrote:
how we can detect cues of reject in any section of default(site enable) ?
do we have any internal attribute or any source that can be use for
determine cues of rejecting user ?
Module-Failure-Message
But it's only
thanks ARRAN
On 4/12/13, Arran Cudbard-Bell a.cudba...@freeradius.org wrote:
On 12 Apr 2013, at 11:01, Mehdi Ravanbakhsh baba...@gmail.com wrote:
how we can detect cues of reject in any section of default(site enable) ?
do we have any internal attribute or any source that can be use for
The ldap.attrmap syntax in FR2 was:
checkItem $GENERIC$ radiusCheckItem
replyItem $GENERIC$ radiusReplyItem
Basically the ldap attributes radiusCheckItem radiusReplyItem
contained FR attr/value pairs which were then added to the
On 12 Apr 2013, at 15:00, Nicholas Lemberger nick.lember...@lkfd.net wrote:
The ldap.attrmap syntax in FR2 was:
checkItem $GENERIC$ radiusCheckItem
replyItem $GENERIC$ radiusReplyItem
Basically the ldap attributes radiusCheckItem
Ok I have upgraded to a compiled version of freeradius 2.2.0, and I was able to
see the same result. It crashed after a few minutes with the error below.
on-radius01 kernel: radiusd[10038]: segfault at 73d87000 rip
003c6c07b5bb rsp 73d83c08 error 4
I turned on core dumps to
Chris Taylor wrote:
Ok I have upgraded to a compiled version of freeradius 2.2.0, and I was able
to see the same result. It crashed after a few minutes with the error below.
on-radius01 kernel: radiusd[10038]: segfault at 73d87000 rip
003c6c07b5bb rsp 73d83c08 error 4
Yeah this is the only version of freeradius on the box the other was an rpm
version that was removed before I compiled this one.
-Original Message-
From:
freeradius-users-bounces+chris.taylor=corp.eastlink...@lists.freeradius.org
On 12 Apr 2013, at 15:21, Arran Cudbard-Bell a.cudba...@freeradius.org wrote:
On 12 Apr 2013, at 15:00, Nicholas Lemberger nick.lember...@lkfd.net wrote:
The ldap.attrmap syntax in FR2 was:
checkItem $GENERIC$ radiusCheckItem
replyItem $GENERIC$
21 matches
Mail list logo