Hi Guys, I have another Cuestion.
How can I convert the username to UPPERCASE in the authorization section?
Or how can I Authorize only the Username wittren in UPPERCASE?
Thanks
2013/4/19 Andres Gomez Ruiz
> Thanks a lot guys!
>
> Both methods work. Finally I used the regex in the
Thank you all for your replays,
I used SLES 11 freeradius standard package and it was too old,
and it was my mistake and took a few days off my life.
Hopefully someone else does not make the same mistake
Andres
2013/4/27 Alan DeKok
> Andres wrote:
> > FreeRADIUS server Versi
e
nas=`hostname`
fi
(
echo "User-Name = \"$1\""
echo "User-Password = \"$2\""
echo "NAS-IP-Address = $nas"
echo "NAS-Port = $4"
if [ "$6" ]
then
echo
grateful if someone would care to assist me with this problem
Andres
2013/4/26 Chitrang Srivastava
> whats the hostname of ur system ?
>
>
> On Fri, Apr 26, 2013 at 6:30 PM, Andres wrote:
>
>> this way looks my hosts file:
>>
>> # IP-Add
ipv6-allrouters
ff02::3 ipv6-allhosts
10.58.5.58 radius.mydomain.com radius
Andres
2013/4/26 Chitrang Srivastava
> Most likely your host file didnt have entry of your domain name,
> dump your hostname and /etc/hosts file here and then we can comment better
>
>
t user: Success
radclient: $Id$ built on Jan 22 2013 at 23:55:37
FreeRADIUS Version 2.1.1, for host x86_64-suse-linux-gnu, built on Jan 22
2013
host file looks fine
I would appreciate it if someone can help me
,
Andres
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thanks a lot guys!
Both methods work. Finally I used the regex in the Authorize section.
Best regards.
Andrés
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi everybody.
I'm using freeradius to log many wireless user, It works great.
I have a MySQL table working with freeradius, and I use some SQL_counters
to control the "timeup" of my users (based on the raddacct table of the
database); everything work great, but I only have a problem:
Using a capt
I'm always amazed when people search google and click on random pages,
> instead of going to the FreeRADIUS documentation. Is it really that
> novel to look at a Wiki?
I found that too. It's quite brief actually. I was searching for something
more detailed.
A.
-
List info/subscribe/unsubscri
. 404
Is there any other good howto about freeradius + LDAP + groups -- ho to
make them wor together?
Andres
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ling-Station-Id=
33:44:55:66:77:88
And, in that moment user1 can't logging never. The user1 can't logging from
a device with MAC-Addr 00:11:22:33:44:55 or MAC-Addr 33:44:55:66:77:88, or
anyone.
How can I do this?
Thanks a lot!!
Andres
-
List info/subscribe/unsubscribe? See http:
:11:22:33:44:55
3 user1Calling-Station-Id=
33:44:55:66:77:88
And, in that moment user1 can't logging never. The user1 can't logging
from a device with MAC-Addr 00:11:22:33:44:55 or MAC-Addr
33:44:55:66:77:88, or anyone.
How can I do this?
Thanks a lot!
anyone can help?
2012/8/21 Andres Gomez Ruiz
> Hi everybody!!
>
> Im using freeradius in a simple way (freeradius + MySQL). I have some
> users attached to some groups... it works fine!! The groups have some
> simple attributes like "Max-All-Session" in radgroupcheck
AC address, If I put 2 or more MAC
address It doesnt work.
What can I do in order to enable some MAC Address attached to users in
mysql database? (not only one?)
Thanks !!
--
*
**Andres Gomez*
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thanks Fajar!!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
is moment the user can login again the next day. How can I do to
invalid the user after midnight?
An example of an user:
radcheck table
username: user1
User-Password :=""
radusergroup table
username: user1
groupname: 1day
radusergroup table
groupname: 1day
Max-Daily-Session :=
4GL and dd-wrt.
>There are a few problems I cannot figure out though:
[snip]
OFFTOPIC, but isn't that stated on dd-wrt documentation, that only WPA2-AES
auth works correctly on dd/wrt?
Andres Septer
Systems Administrator
Navirec Software OÜ
Tallinn, Estonia
http://navirec.com
-
List i
# Executing group from file /etc/raddb/sites-enabled/packetfence
+- entering group MS-CHAP {...}
[mschap] Told to do MS-CHAPv1 with NT-Password
[mschap]expand: %{Stripped-User-Name} ->
[mschap]... expanding second conditional
[mschap]expand: %{mschap:User-Name:-None} -> Us
OK, I achieved my goal to get freeradius authenticate via mschap
challenge-response and authorize via LDAP search.
I's working, though, I'm not sure, that I'm doing it right. This "solution"
works only with one group (my example, VPNusers). I think it is not expandable
to the scenario like:
"
> I set up a testing environment with an virtual Windows Server 2008 R2
> server with Active Directory Role and a virtual freeradius server
> (v2.1.12).
> For the authentication I use ntlm_auth (followed instructions on
> http://deployingradius.com/documents/configuration/active_directory.htm
[snip]
> Why it fails on freeradius,
I found the mistake exactly after sending last mail. There are some "magical"
configuration directives for AD.
A.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- Original Message -
From: "Matthew Newton"
Sent: Tue, 3.4.2012 13:01
To: "FreeRadius users mailing list"
Subject: Re: MSSCHAP auth + LDAP authorizaton
[SNIP]
The LDAP module can be configured for group lookups - look about
half way down modules/ldap, you'll find the group settings. Che
rrect ldap bind values but now I'm pretty much lost
How to tell freeradius, that after successful MSCHAP auth against AD it must
browse AD via LDAP and check that te username belongs to specified group?
Any suggestions of documentation that will help, would be appriciated.
Andres Septer
-
So I finally got the idea, whats wrong. Tehre were missing premissions.
I tried to run ntlm_auth under radiusd user and got same error as in logs.
Reading winbind reply failed! (0xc001)
Adding rediusd to winbind group solved the problem.
A.
-
List info/subscribe/unsubscribe? See http://ww
OK, I found out at least one mistake I made: when using command line, grabbed
from strace output I forgot to remove commas:
SO, this line gives
/usr/bin/ntlm_auth "--request-nt-key", "--username=freeradius.test",
"--domain=LOCAL", "--challenge=0x7c68b9721c3a0b46",
"--nt-response=13e96b497efab
> which version of samba are you running? versions 3.2 - 3.5 have b0rked
> return things -
> fixed in latest 3.6 - on the command line things work okay but when a program
> is using the
> return values they are wrong (or something to that affect. cant recall all
> the details
> but the recome
> Check the winbind log files,
Did that already. Nothing interesting there, only lines like
[2012/03/08 14:32:17.115991, 3]
winbindd/winbindd_misc.c:417(winbindd_priv_pipe_dir)
[25675]: request location of privileged pipe
[2012/03/08 14:32:17.117136, 6]
winbindd/winbindd.c:840(winbind_clie
us.test
--password=passwordschmassword
NT_STATUS_OK: Success (0x0)
Seems that values for "challenge" and "response" are getting filled
incorrectly. I also tried to turn with_ntdomain_hack aprameter on and off, but
no avail.
Is freeradius at all responsible to fill those parameter
2009/8/10 Peter Lambrechtsen
> Have checked out Penrose from Safehaus.
>
This Penrose looks really cool but it doesn't seem very active? Last update
news is from 2007? and yes I'm into FOSS solutions :)
Andres Kaaber
-
List info/subscribe/unsubscribe? See http://www.fre
omplicated. So what are your thoughts?
--
Andres Kaaber
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
time?
"Andres Pazos" <[EMAIL PROTECTED]> wrote:
> Is it possible to have [EMAIL PROTECTED] authenticated against MSsql and
> [EMAIL PROTECTED] authenticated against MySql?
Yes.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.
Is it possible to have [EMAIL PROTECTED] authenticated against MSsql and [EMAIL
PROTECTED] authenticated against MySql?
thanks in advance.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
thanks anyway!.
-Original Message-
From: [EMAIL PROTECTED] on behalf of Alan DeKok
Sent: Fri 11/11/2005 4:18 PM
To: FreeRadius users mailing list
Subject: Re: freeradius wont let realms based auth
"Andres Pazos" <[EMAIL PROTECTED]> wrote:
> My problem is tha
thanks again. im really sorry about mistakes i've made.
i was trying to say "authorize" instead of "authenticate", then:
if realm is "wireless", i want radius to authorize the user using
MySQL. if realm is "dhcp", i want radius to authorize the user using
the SQL server.
- users file
# Ex
thanks again!.
I already understand the diference between accounting and authentication.
I have a freeradius server (1.0.5), a MySQL server and an SQL server (with
different databases).
what i need to do is, i.e.:
User sends radius request (i.e.: radtest [EMAIL PROTECTED] password server p
done by using acct-type or i should do other thing?
thanks in advance!!!
Andres Pazos
-Original Message-
From: [EMAIL PROTECTED] on behalf of Alan DeKok
Sent: Thu 11/10/2005 7:42 PM
To: FreeRadius users mailing list
Subject: Re: freeradius wont let realms based auth
"Andres
hi, im new to the mailing list. i'd be really thanked if someone could help me
with the following issue:
im trying to use freeradius with sql and mysql realm based (i.e.: sql when
realm=dhcp and mysql when realm=wireless).
i've red acct-type and tried to do the same. is that correct?, should i
it must compile rlm_sqlcounter
tar -zxvf freeradius
in
/usr/local/freeradius/src/modules/rlm-sqlcounter
sh configure
make
make install
cp /usr/local/lib/rlm-sqlcounter to
/usr/lib
try radiusd -X
Regards
Andrés de Barros
Ingeniería en Data
Canelones 2271
11200 Montevideo - Uruguay
Tel:
Title: itprola Firma
I have FCI and freeradius-0.9.3-1.1
This is a problem in my log file!!!
Wed Jun 8 09:55:08 2005 : Error: Discarding new request from client
10.10.0.10:1812 - ID: 239 due to live request 3056Wed Jun 8 09:55:10
2005 : Error: Discarding new request from client 10.10.0.1
Title: itprola Firma
this it is the error "Error: Discarding new request from client " as it is
solved?
Mon May 30 12:10:59 2005 : Auth: Login OK: [00301a0af0ea/00301a0af0ea]
(from client 10.10.0.10 port 0)Mon May 30 12:13:07 2005 : Auth: Login OK:
[EMAIL PROTECTED]/] (from client 10.10.1.2
-Mensaje original-
De: Stuart Harris [mailto:[EMAIL PROTECTED]
Enviado el: miércoles, 29 de diciembre de 2004 18:32
Para: freeradius-users@lists.freeradius.org
Asunto: RE: Errors in the initialization of EAP/PEAP with freeradius
(URGENT HELPPP!!)
ok, as I showed bad ettique last time by
to dispell your myth we all use redhat ... I've got clients running it
on Debian and also on FreeBSD .. :P
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Juan Andres Campanini
> Sent: 29 December 2004 15:58
> To: freeradius
hipsur Sistemas Informáticos S.L.
www.chipsur.es
-Mensaje original-
De: Alan DeKok [mailto:[EMAIL PROTECTED]
Enviado el: miércoles, 29 de diciembre de 2004 16:33
Para: freeradius-users@lists.freeradius.org
Asunto: Re: Errors in the initialization of EAP/PEAP with freeradius
(URGENT HELPPP!!)
Hi
list,
I'm
having some real issues configuring freeradius with EAP/PEAP to authorize our
wifi users access to internet.
When I configure freeradius following the directives in this
document: http://www.broadbandreports.com/forum/remark,9286052~mode=flat
I get
this errors:
radius:/usr
44 matches
Mail list logo
