You can create a group deactivated for the users you don't want to
allow to connect and set Auth-Type == Reject for that group.
If you want to tie a group to a certain NAS you have to use huntgroups:
TestNAS1NAS-IP-Address == xxx.xxx.xxx.xxx
SQL-Group == dialup,
There is a nas table you can use. It's the last table db_mysql.sql
creates;
Then you have to enable it in sql.conf
# Set to 'yes' to read radius clients from the database ('nas'
table)
#readclients = yes
I haven't tried it but it should work.
Bogdan.
-Original
Title: Message
Hello Miguel,
To be honest I'm not sure! The last reply from Alan
says that this functionality is in the CVs head and not in 1.1.x. I'm not sure
exactly what that means. But I guess you are right, at the moment it is
impossible to use MD5 or SHA1. I guess the best practice
That would be nice to do. Especially for deactivated users.
Unfortunately I don't think it's possible. One of my colleagues looked
into that but he couldn't do it at this level.
Some companies to this with MS ISA.
As far as I know you need some sort of a proxy server to do this.
Bogdan.
I've just tried it but it doesn't work. :-( Is WISPr-Redirection-URL
specific to a certain type of NAS? I've tried it with an adsl username:
Radcheck:
+-+---+++---+
| id | UserName | Attribute | op | Value |
attributes (rlm_sql: unknown attribute SSHA-Password). For the time
beeingI'llstick with Unix Crypt.
Please let me know if you find a better
config.
Bogdan.
-Original Message-From: Bogdan Dumitriu - Technical
Support Team [mailto:[EMAIL PROTECTED] Sent: May 4, 2006
3:40 PMTo
users mailing list
Subject: Re: FreeRadius + MySQL Encrypted passwords
Bogdan Dumitriu - Technical Support Team [EMAIL PROTECTED]
wrote:
However my
freeRadius doesn't recognize any of these 2 attributes (rlm_sql:
unknown attribute SSHA-Password).
This functionality is in the CVS head
Hello all,
Is this normal?
It looks like it's comparing group ownership against each group even
though the user is a member of only one group. Why does it has to check
group ownership if there is an entry in the usergroup file for this
user?
It looks like it's running 'SELECT GroupName FROM
Title: Message
Hi
all,
I've been trying to
encrypt the passwords in mySQL using SHA1 or MD5 without any luck for the last
several days.
First let me tell
you a bit about our system:
RedHat ES
4
freeradius-1.0.1-2.RHEL4
freeradius-mysql-1.0.1-2.RHEL4
Thanks Alan,
Changed:
| 844 | bogdan | Crypt-Password | == | 55MCU5TXMoKsA |
To
| 844 | bogdan | SSHA-Password | == | 55MCU5TXMoKsA |
And
pap {
encryption_scheme = sha1
}
And it says:
rlm_sql: unknown attribute SSHA-Password
However the output
10 matches
Mail list logo