Hi,
> Hello,
> I am facing issue with MS CHAP authentication in Ubuntu 13.04 . Also
> NTLM Authentication takes place when putting 'wait = no' in
> /etc/freeradius/modules/ntlm_auth
>
is ntml_auth on the command line working?
Please provide some debug
1813. Which
> > application is responsible for generating those pakets?
> >
> > Thank you!
> >
> > Andreas
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
>
> See section "Security Settings - W
Hello!
Excuse me please, if this is the wrong list for my question! If I have
an AccessPoint working on layer 2 like the ALL0278, how are accounting
pakets generated and sent to the radius-server on port 1813. Which
application is responsible for generating those pakets?
Thank you!
Andreas
0.0.1 {
>
> In 2.x it looks like this
> client localhost {
> ipaddr = 127.0.0.1
In his client.conf there is also a line require_message_authenticator = no
not commented out in the client localhost section that may throw the warning
with the braces.
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
"Fajar A. Nugraha" wrote:
> On Tue, Jul 17, 2012 at 4:54 PM, Andreas Meyer wrote:
> > I must say I am not sure, what information belongs to post-auth exactly
> > and why. I promise I read the FAQ!
>
> FR is very configurable. It's one of those things where t
Hello!
"Fajar A. Nugraha" wrote:
> On Tue, Jul 17, 2012 at 4:08 PM, Andreas Meyer wrote:
>
> > Hm, no luck with this one. I changed buffered.sql to log to sql, but it
>
> Did I EVER mention anything about buffered.sql?
> Was it EVER mentioned in the wiki
written to the database? Or how is the buffered.sql respected?
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello!
"Fajar A. Nugraha" wrote:
> On Tue, Jul 17, 2012 at 5:59 AM, Andreas Meyer wrote:
> > Hello!
> >
> > I authenticate a users against a mysql-db and everything is fine. Get
> > entries
> > in the radpostauth table but the radacct table stays emt
"radgroupcheck"
groupreply_table = "radgroupreply"
usergroup_table = "radusergroup"
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
clients.
>
> The above is not best practice under any security front
Oh yes, I just read the wikipedia about all that stuff about chap and pap and
PEAP and MS-chapv2 and EAP and TLS and so on. This is heavy rock.
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
"Fajar A. Nugraha" wrote:
> On Thu, Jul 5, 2012 at 11:05 PM, Andreas Meyer wrote:
> >
> > Is there a big picture somewhere available for the freeradius-server
> > like it is for postfix for example? I want to understand the contiguities
> > between pro
"Fajar A. Nugraha" wrote:
> On Thu, Jul 5, 2012 at 3:43 PM, Andreas Meyer wrote:
> >> > Without considering any security is it possible to hand out a
> >> > voucher to a client with just the ESSID, the username and the
> >> > password wri
SE 11.3.
A Windows XP I have only available in a VBox-environment. So testing
with a Linux would be enough for me a the moment.
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello!
If some machine is in the same subnet as the radiusd and the AP,
how do I prevent it from sniffing the secret for authentication
to the server?
Regards
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
th
> with radtest.
>
> So, here is the thing:
>
> *users file - first line:
> teste Cleartext-Password:="teste"*
My entry in the user file looks like this:
miles<-><-->Cleartext-Password := "davis45"
<--><-->Reply-Messag
Hello!
Iliya Peregoudov wrote:
> Hello Andreas,
>
> Your supplicant have rejected EAP-MD5 method proposed by freeradius and
> have requested for EAP-TTLS method. freeradius have sent EAP-TTLS/Start
> request. But your supplicant have never replied. The problem seems to be
d start with the upgrade first - the cerfificate make files got some
> fixes
> and improvements too! ;-)
So I followed your hint and compiled and installed freeradius-server-2.1.12.
Created new certificates and changed md5 to ttls in eap.conf and the client.conf
to accept my client.
I configured
Strange, where can I read about this?
> 4) EAP-TLS is plain/simple method - thus checking against SQL for passwords
> is wrong
Ok, disabled SQL and made entries in the users file.
miles<->Cleartext-Password := "davis45"
christiane<>Cleartext-Password := "chr
ried all kind of settings on the supplicant but I cannot get access using
the ca.pem
and get no lease from the DHCP-Server of the AP, TL-WA901ND
I post the following output of a radius -X session:
rad_recv: Access-Request packet from host 192.168.1.254 port 2048, id=155,
length=153
Hello,
I try to log users if they connect to radius, is it possible to track
that without all other informations from debug mode?
So best would be I only see that: [TIME]: foobar logged in
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 30.11.2011 15:53, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> in my enviroment I got three AP's runnning, all with the same essid,
>> after a while the connection seems lost
> WHAT connection?
>
> If it's the connection between the AP and the PC, this
Hi,
in my enviroment I got three AP's runnning, all with the same essid,
after a while the connection seems lost and a reconnection starts to
another AP and then I get the resumption error but I have no idea why I
lost the connection. No Errors in radius debug and a good reception is
given.
The re
Am 27.11.2011 10:17, schrieb Phil Mayers:
> On 11/27/2011 12:51 AM, Mr Dash Four wrote:
>>
>>> No, the shared secret is not transmitted over the wire.
>>> For additinal information see RFC2865, §2:
>>>
>>> "When a password is present, it is hidden using a method based on the
>>> RSA Message Digest
Am 26.11.2011 22:04, schrieb Mr Dash Four:
> I ma trying to set up freeRADIUS server implementing (wireless) user
> authentication (running wpa_supplicant) via AP (running hostapd).
>
> After reading various howto's and documentation as well as looking at
> numerous sources on the Internet, I can't
Am 24.11.2011 16:33, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> for example how does exactly auth. works or the radius protocol works
> We don't document RADIUS. See the RFCs for that.
>
> As for how the server works, see the doc directory. There are a lot
> of
ee http://www.freeradius.org/list/users.html
>
for example how does exactly auth. works or the radius protocol works
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
are there any and I don't see them, besides man pages/config files?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 20.11.2011 13:05, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> thats what I tried, but I get no info from the other client, only if I
>> them ping each other. Encryption is wpa+aes and what I should see if it
>> is encrypted? tls infos?
> This is a network connectiv
Hi,
I'm a little bit confused, I configure radius with self signed cert,
peap+mschap, so if I tried to connect with an android or apple device I
get the question if I want to accept the server cert, thats ok, but with
windows or linux I get the error that there is no cert, but it still
works, why
Am 20.11.2011 12:08, schrieb Alan Buxey:
> Hi,
>
>> is there any possibility to test if two machines with the same login can
>> sniff each others traffic?
> yes you can test that. though depending on what wireless configuration you
> have
> and method of encryption you might not get what you think
Hi,
is there any possibility to test if two machines with the same login can
sniff each others traffic?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 19.11.2011 19:37, schrieb Andreas Rudat:
> realy strange the machine where ubuntu AND xp is running both failes and
> windows is saying the zertificate is invalid/expired?? both are using
> the same one!
>
>
> Am 19.11.2011 19:17, schrieb Andreas Rudat:
>> Hi,
>>
realy strange the machine where ubuntu AND xp is running both failes and
windows is saying the zertificate is invalid/expired?? both are using
the same one!
Am 19.11.2011 19:17, schrieb Andreas Rudat:
> Hi,
> I get the error from time to time, I use one self signed cert for alle
> cl
Hi,
I get the error from time to time, I use one self signed cert for alle
clients and some times I get this error from one ubuntu client, do you
have any idea?
so self+signed cert + mschapv2
TLS Alert read:fatal:bad certificate
Sat Nov 19 18:52:30 2011 : Error: TLS_accept:failed in SSLv3 rea
Hi,
perhaps it is the wrong mailing list but I try it :)
my samba pdc is running in a different subnet than my radius clients.
So, samba ist running x.x.15.x and my Wlan+Radius users using x.x.16.x
I use wins instead of dns. I joined with my client the domain
successfully, but if I try to login I
Hi Alan,
much thanks for that info!
Andreas
Am 18.11.2011 23:59, schrieb Alan Buxey:
> Hi,
>> Hi,
>>
>> hope anyone knows that, if I connect successfully with an xp client, I
>> have never again to put in my login data, so windows has to save my
>> login stuff
Hi,
hope anyone knows that, if I connect successfully with an xp client, I
have never again to put in my login data, so windows has to save my
login stuff anywhere but where? I would like to delete my login data.
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org
Am 12.11.2011 23:00, schrieb Sven Hartge:
> Sven Hartge wrote:
>> Andreas Rudat wrote:
>>> Am 11.11.2011 03:56, schrieb Fajar A. Nugraha:
>>>> On Fri, Nov 11, 2011 at 8:29 AM, Gary Gatten wrote:
>>>>> I agree with Jake, in that I *think* it would b
nk one *needs* a cleartext password, but does need some way to
>> compare apples-to-apples.
> That's exactly what Alan is saying:
> "
> store your passwords in the LDAP as NT-Password or LM-Password
> "
But if that works, why then all are saying that you
ah, I see, if I disconnect from wlan, there is also no response from
radius no disconnect response.
Am 28.10.2011 15:49, schrieb Andreas Rudat:
> Am 28.10.2011 08:55, schrieb Fajar A. Nugraha:
>> On Fri, Oct 28, 2011 at 1:46 PM, Andreas Rudat wrote:
>>> sorry for that. I u
Am 28.10.2011 08:55, schrieb Fajar A. Nugraha:
> On Fri, Oct 28, 2011 at 1:46 PM, Andreas Rudat wrote:
>> sorry for that. I use 802.1x
> 802.1 wired? wireless?
>
>> and I'm wondering if I connect again
> What do you mean by "connect again"? unplug the
Am 28.10.2011 08:33, schrieb Fajar A. Nugraha:
> On Fri, Oct 28, 2011 at 1:18 PM, Andreas Rudat wrote:
>> Am 27.10.2011 22:57, schrieb Alan DeKok:
>>> Andreas Rudat wrote:
>>>> if I connect to my radius server, I don't need my password anymore, also
>>>
Am 27.10.2011 22:57, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> if I connect to my radius server, I don't need my password anymore, also
>> if I restart radius or my workstation. But why?
> The PC caches the credentials.
>
> Alan DeKok.
> -
> List i
Hi,
if I connect to my radius server, I don't need my password anymore, also
if I restart radius or my workstation. But why?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I edit the wrong site... sorry
Am 26.10.2011 15:48, schrieb Andreas Rudat:
> Hello,
>
> I work with this tutorial
> http://deployingradius.com/documents/configuration/active_directory.html
>
> all works fine, since I try to use ntlm_auth with radius directly
>
>
> I a
Hello,
I work with this tutorial
http://deployingradius.com/documents/configuration/active_directory.html
all works fine, since I try to use ntlm_auth with radius directly
I added a user tester / testen
users:
at the top DEFAULT Auth-Type := ntlm_auth
tester Cleartext-Password := "testen"
an
Am 23.10.2011 22:04, schrieb Phil Mayers:
> On 10/23/2011 06:03 PM, Andreas Rudat wrote:
>
>> another problem, I tried to test the connection with
>>
>> ntlm_auth --request-nt-key --domain=foo.bar --username=test
>> --password=test
>>
>> and get the me
Am 23.10.2011 17:48, schrieb Andreas Rudat:
> Am 23.10.2011 17:26, schrieb James J J Hooper:
>> On 23/10/2011 16:02, Andreas Rudat wrote:
>>> Hello,
>>>
>>> I understand it correctly, that I can't use peap + mschapv2 with
>>> ldap? Im realy con
Am 23.10.2011 17:26, schrieb James J J Hooper:
> On 23/10/2011 16:02, Andreas Rudat wrote:
>>
>> Hello,
>>
>> I understand it correctly, that I can't use peap + mschapv2 with
>> ldap? Im realy confused atm, what I can realy use, everytime I think
>&
Hello,
I understand it correctly, that I can't use peap + mschapv2 with ldap? Im realy
confused atm, what I can realy use, everytime I think its fine, I found another
unsecure thing :/
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 21.10.2011 18:28, schrieb Phil Mayers:
On 21/10/11 17:03, Andreas Rudat wrote:
Hi,
I'm using samba as pdc and ldap as user database. That all works fine.
Now I want to use the ldap database for user auth. for radius.
But when I'm looking here
http://deployingradius.com
e the same. "Konfiguration of
Kerberos" but why? I think it should also with ntlm only? And does this
paper is the correct for me? Caus if I understand it correctly in that
scenario they are using a MS AD?
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 02.10.2011 20:54, schrieb yzy-oui-fi:
How would you manage with PFSENSE and Freeradius, without using captiv
portal for Lan Interface Auth??? Squid Proxy? VPN ?
That was my question :)
But its solved, I dont need lan.
Thanks
Le dimanche 02 octobre 2011 à 18:22 +0200, Andreas Rudat a
is not really a freeradius Issue
Thanks, but I dont want to use captive portal. It would be great if I
could tell radius that user can only connect if it used min. one Radius
Client, for example the AP.
Andreas
Le dimanche 02 octobre 2011 à 17:31 +0200, Andreas Rudat a écrit :
Hello,
I use
Hello,
I use radius for my wlan auth but I also want it for lan but how? I use
pfsense with radius 2.x It works fine with wlan but how I use it for
lan? If I connect via lan port on my AP I can reach everything without
radius auth.
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http
Am 25.09.2011 23:07, schrieb Alan DeKok:
Andreas Rudat wrote:
HI Alan,
yes that is what I want, but my ldap doesn't work atm ;-)
See the FAQ for "it doesn't work"
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
sorry,
HI Alan,
yes that is what I want, but my ldap doesn't work atm ;-)
But thanks.
Andreas
Am 25.09.2011 17:02, schrieb Alan DeKok:
Andreas Rudat wrote:
Thats also bad only nt-hash is not good, I tried to set up Ad but got
heavy problems with setting it up.
I have no idea why. See m
samba, it's
nt-hash), you don't need ntlm_auth.
Thats also bad only nt-hash is not good, I tried to set up Ad but got
heavy problems with setting it up. But it would be the best thing for
auth samba and fr users I think?
Last way would be perhaps of using smbpasswd.
Andreas
-
List i
Hi again,
erm it should work if I use mysql for samba accounts and using ntlm_auth
+ ms-chap on radius?
Am 25.09.2011 13:03, schrieb Andreas Rudat:
Hi,
is that combination possible?
Radius and Samba should use the same sql database for accounting. Are
there any problems or hints?
Thanks
Hi,
is that combination possible?
Radius and Samba should use the same sql database for accounting. Are
there any problems or hints?
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I want to use a ssh tunnel between radius and my user database on
another machine, anyone tried that? I think it should work port
forwarding on port 139 of samba or sql port?
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
x27;t reach the
WIFI router. The packet was dropped by the gateway.
Can anyone advise a solution for this?
Thanks!
Tom
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
if needed, have u changed or added the new client to radius?
Andreas
-
List info/subs
Am 21.09.2011 22:09, schrieb Alan DeKok:
Andreas Rudat wrote:
but is it usefull to use kerberos with two machines?
Most of the time: no.
I think it would be
a contradiction of kerberos and would it work without AD/ldap?
I have no idea what that means.
And could
I use a sql database
ntlm and
the rlm_mschap module?
Thanks!
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
a fee for this service
involved...
Regards,
Andreas -
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
But all packets are coming trough, I think.
Both servers are on the same subnet, with same gateway.
Am 18.08.10 15:53, schrieb Alan DeKok:
> Andreas Hubert wrote:
>> I really have no clue, why the AP and client should work with the second
>> server and not with the first on
> Use an AP that works.
>
> Use a client PC that works.
>
The strange thing is, both work, but only together with the second server, not
with the first one.
On the AP I can enter two RADIUS servers, in case one gets down, what I also
want to use. I also switched them in the configuration wit
Andreas Hubert:
> Do you have any other idea, after I sent out the logs of both servers, the
> one where everything works and the other server where it don't work?
>
> Am 17.08.10 21:56, schrieb Alan DeKok:
>> Andreas Hubert wrote:
>>> I dont know if updating is
Do you have any other idea, after I sent out the logs of both servers, the one
where everything works and the other server where it don't work?
Am 17.08.10 21:56, schrieb Alan DeKok:
> Andreas Hubert wrote:
>> I dont know if updating is such a good idea. Mac OS X comes
e, Airport has same configuration, client uses
same configuration, but if the first server is up, it does not work and if the
second server is up it works.
See logs attached.
-2 works
-1 does not work
Am 17.08.10 19:01, schrieb Andreas Hubert:
> After a bit more investigating, I think I come
glist is the wrong place for non-radius
related problems :(
Maybe anyone here with more MacOS X Server and Airport/RADIUS experience who
may help me?
Am 17.08.10 17:59, schrieb Alan DeKok:
> Andreas Hubert wrote:
>> Like it is always:
>>
>> Tue Aug 17 17:42:48 2010 : Auth: r
ofile
Add a User Profile
Name it "test" or whatever
Enter your OpenDirectory login and password (local account prob won't work?)
Try TTLS
Select your network
Click ok
I did not updated to 2.1.9
Am 17.08.10 17:59, schrieb Alan DeKok:
> Andreas Hubert wrote:
>> Lik
Apple Airport Extreme
Am 13.08.10 18:33, schrieb Alan DeKok:
> Andreas Hubert wrote:
>> I also activated the debug mode and it came out this:
> ...
>> rad_recv: Access-Request packet from host 192.168.214.100 port 65527, id=37,
>> length=510
> ...
>> Sen
Like it is always:
Tue Aug 17 17:42:48 2010 : Auth: rlm_opendirectory: User is authorized.
Tue Aug 17 17:42:57 2010 : Error: rlm_eap: No EAP session matching the State
variable.
Tue Aug 17 17:44:21 2010 : Auth: rlm_opendirectory: User is authorized.
Tue Aug 17 17:44:30 2010 : Error: rlm_eap: N
nting address * port 1813
Listening on proxy address * port 1814
Ready to process requests.
rad_recv: Access-Request packet from host 192.168.214.100 port 65527, id=35,
length=162
User-Name = "ahu"
NAS-IP-Address = 192.168.214.100
NAS-Port = 0
Called-Station-Id = "00-1C
o have a lot of comments in the code and to have a lot of
debug messages. So I could follow what's going on in detail.
Kind regards,
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok schrieb:
> Andreas Hartmann wrote:
>> See http://bugs.freeradius.org/bugzilla/show_bug.cgi?id=81
>
> Where you file a bug against FreeRADIUS for an OpenSSL issue.
>
> I understand that FreeRADIUS is affected. But...
>
>> It does not work for me.
Alan DeKok schrieb:
> Andreas Hartmann wrote:
>> well, I thought about the problem with reauth: Why must there be passwords
>> in the session?
>
> There shouldn't be passwords in the session. There should be a *name*
> in the session.
>
>> That's
Alan DeKok schrieb:
> Andreas Hartmann wrote:
>> Now, I looked at the SSL-session_id.
>>
>> tls_session->ssl->session->session_id is empty when the data is saved to
>> the session.
>>
>> At the time the data is fetched from the session during reauth,
--
That's what is sent to the client after this process:
Sending Access-Accept of id 52 to 192.168.1.9 port 2048
MS-MPPE-Recv-Key =
0x
MS-MPPE-Send-Key =
0x
EAP-Message = 0x03020004
Message-Authenticator = 0x
User-Name = "myu...@mydom.it"
Kind regards,
Andreas Hartmann
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Andreas Hartmann schrieb:
> Bjørn Mork schrieb:
>> Andreas Hartmann writes:
>>
>>> Fri Jun 4 11:22:48 2010 : Info: [tls] WARNING: No information in
>>> ^
>>> cached session!
>>>
Bjørn Mork schrieb:
> Andreas Hartmann writes:
>
>> Fri Jun 4 11:22:48 2010 : Info: [tls] WARNING: No information in
>> ^
>> cached session!
>> ^^^
>>
>> Fri Jun 4 11:22:48 2010 :
Andreas Hartmann schrieb:
> Alan DeKok schrieb:
>> Andreas Hartmann wrote:
>>> I have one basic question:
>>> There are now two different caches: one in eap (based on ssl) and the
>>> extern cache, rlm_caching.
>>
>> rlm_caching has nothing to do w
Alan DeKok schrieb:
> Andreas Hartmann wrote:
>> I have one basic question:
>> There are now two different caches: one in eap (based on ssl) and the
>> extern cache, rlm_caching.
>
> rlm_caching has nothing to do with EAP.
>
>> If I want to use fast_re
Alexander Clouter schrieb:
> Bjørn Mork wrote:
>> Andreas Hartmann writes:
>>
>>> Yes, you're right - I meant option eap -> tls -> cache -> enable is
>>> switched _on_ and fast_reauth is on too on the supplicant. My wrong :-(.
>>>
&
Andreas Hartmann schrieb:
> David Mitchell schrieb:
>> Alan DeKok wrote:
>>> Andreas Hartmann wrote:
>>>> In eap.conf, the option eap -> tls -> cache -> enable is switched off
>>>> and fast_reauth in wpa_supplicant is enabled.
>>>
>&g
David Mitchell schrieb:
> Alan DeKok wrote:
>> Andreas Hartmann wrote:
>>> In eap.conf, the option eap -> tls -> cache -> enable is switched off
>>> and fast_reauth in wpa_supplicant is enabled.
>>
>> Uh... that makes no sense.
>>
>>
Alan DeKok schrieb:
> Andreas Hartmann wrote:
>> In eap.conf, the option eap -> tls -> cache -> enable is switched off
>> and fast_reauth in wpa_supplicant is enabled.
>
> Uh... that makes no sense.
Yes, you're right - I meant option eap -> tls -
lized
Wed Jun 2 21:04:16 2010 : Error: SSL: SSL_read failed in a system call
(-1), TLS session fails.
Wed Jun 2 21:04:16 2010 : Debug: TLS receive handshake failed during
operation
If fast_reauth in wpa_supplicant is disabled, the reauthentication works
fine, but the connection between the AP and the supplicant ist
interrupted for about 20 seconds - much to long :-).
Do you have any idea how to solve this problem?
Thanks for you help,
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
}
Why does it not work, if i configure the same with "realm DEFAULT", does the
DEFAULT realm not match
all realms, known or unknown ?
regards,
Andreas M.
--
g,
Andreas M.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
signed it is
working but not with
the Thawte cert.
Does anyone know, how to include the xp extension into the Thawte certificate ?
best regards,
Andreas M.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
...I would have bet that I had done exactly these steps this morning. But
nevertheless I tried it another time and - succeeded.
Thanks for pushing my nose on this again and again - it finally helped :) I
will try to find the differences between
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
On Tuesday 12 May 2009 11:57:14 Alan DeKok wrote:
> Andreas Bourges wrote:
> > -> the user gets rejected, but not because of the Auth-Type := Reject
> > setting in the users file. This is the same behaviour we observer when
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
...we recently upgraded vom freeradius 0.9 to freeradius 2.1.4. Unfortunately
local users cannot be authenticated anymore.
This morning I used the default configuration files from 2.1.4 and started
from scratch. My first objective was to get any
Hello,
yes i rebooted the router, i was also not able to find similiar proplems on
cisco pages.
Maybe it is easier to report this to cisco, i thought anyone had same troubles.
thanks so far.
r,
Andreas M.
Stefan Winter schrieb:
I never saw the gigaword attribute, i think they are only send
Hello,
i´ve done this already twice, but why does this happen only on virtual access interfaces and not on
the upstream interface ?!
I never saw the gigaword attribute, i think they are only send, when it is
necessary, or is this wrong ?
r,
Andreas M.
Stefan Winter schrieb:
> Hi,
>
virtual-interfaces (pptp dialup). Maybe this problem is not realy radius related,
but i hope to find an answer.
I included some log entries and config examples, maybe someone has any
experience with this errors.
regards,
Andreas M.
Here is the last interim update:
Tue Apr 15 23:23:46 2008
Hello Alan,
as I see your result I better understand unlang and the mighty of it.
Thx for your patience. All working perfectly well now.
Kind Regards,
Andreas
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
On Behalf Of Alan DeKok
Sent: Mittwoch, 2. April 2008
ere I wanted to use an
Ascend-filter with entries matching IP-address from pool. I still don't
know, how to change order of modules to make the IP-address known to the
files-module and appreciated your uidance again.
Kind Regards,
Andreas
users:
DEFAULT User-Name := "test_...", Po
addb/sites-enabled/default[285]: Errors parsing
accounting section.
That mades me think I need to move the pool there either, sorry.
Kind Regards,
Andreas
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
On Behalf Of Alan DeKok
Sent: Dienstag, 1. April 2008 07:46
To:
1 - 100 of 172 matches
Mail list logo