2.2.0 - Shared Secret is incorrect

Hi, I´m wondering, if I miss something or why do Info-Messages about Invalid-Message-Authenticator not appear in the default radius.log anymore? Even can´t get it with update control { Tmp-String-0 = %{debug:7} } in log section of radiusd.conf. It´s only

Re: Re: 2.2.0 - Shared Secret is incorrect

But it DID appear in earlier versions of freeradius with default settings for logging. And I don´t see the difference to something logging Erros like Error: Ignoring request to authentication address * port 1812 from unknown client x.x.x.x port 1092 regarding the mentioned DoS problem. We´re

Re: Re: Re: 2.2.0 - Shared Secret is incorrect

Sorry, but I only wanted to know why the behaviour has changed and if there is any way to do it by configuration or access it with unlang... BTW: If I remove the client completely, log in normal mode says): Fri Jul 19 16:32:29 2013 : Error: Ignoring request to authentication address * port 1812

Re: 2.2.0 - Shared Secret is incorrect

Dear Arran, Sorry, about the typo with debug I looked at the invalid packet counters. Only shows the requests with wrong shared secrets in rejects-Counter ... Same thing stats client auth x.x.x.x requests5 responses 5 accepts 1 rejects

Re: 2.2.0 - Shared Secret is incorrect

No. It didn´t inlcude a Message-Authneticator attrib... - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Antw: Re: Attr-Rewrite and Users File

it should be left out only in this special case... Thank you very much... Anja Alan DeKok al...@deployingradius.com 02.10.2009 20:33 Anja Ruckdaeschel wrote: Now I did it with unlang in the authorize section before the files module if (Acct-Session-Id) { if (Acct-Session

Re: Attr-Rewrite and Users File

Do you mean the stripping part? - Anja Ruckdäschel M.A.; Rechenzentrum der Universität Regensburg; Universitätsstr.31; 93 053 Regensburg Telefon: +49 941 943 4826

Antw: Re: Attr-Rewrite and Users File

Now I did it with unlang in the authorize section before the files module if (Acct-Session-Id) { if (Acct-Session-Id =~ /^[^\(]+([\(])([^\)]+).+$/ ) { update request { ldapgroups1-Ldap-Group := cn=%{2},ou=vpn,ou=test,o=test,c=de

Attr-Rewrite and Users File

Hi there! Please help I´m doing a attr_rewrite with an attribute in the request: attr_rewrite strip-vpn { attribute = Acct-Session-Id searchin = packet searchfor = ^[^\(]+([\(])([^\)]+).+$ replacewith = %{2} new_attribute = no max_matches =

Use LDAP-Groups for rejecting a user

Hello there! I´m using freeradius 2.1.6 and use a ldap-group to reject some users. The problem is, when the ldap-servers are not responding when doing the search for the ldap-dn or when doing the search for the dn in the group the files-Module returns ok because the user abc matches for the next

Freeradius 2.1.6: LDAP connect

Hello there! Hope you can help. I´m running freeradius 2.1.6 on sles 11 and do LDAP-Authentificaiton on Radius. EAP/TTLS with cleartext-password against ldap works fine. PEAP/MSCHAP with universal password retrieval works fine. Ldap-Groups work fine. Load-Balancing with multiple ldap-servers