RE: VMPS fallback vlan

I have the following in my users file. It does a lookup of my vlans table on the users mac-address(aka Calling-Station-Id) if it can't find it then it assumes it is a guest and then defaults to vlan 16. DEFAULT Auth-Type = ntlm_auth Tunnel-Type = VLAN,

RE: Authenticating Laptop without a Certificate Installed

-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of Phil Mayers Sent: Tuesday, January 24, 2012 3:13 PM To: freeradius-users@lists.freeradius.org Subject: Re: Authenticating Laptop without a Certificate Installed On 01/24/2012 08:53 PM, McSparin, Joe wrote: When I connect

[no subject]

Is There a way to add the removal of delimiters such as - or : to the rewrite_calling_station_id section. Thanks, Joe -- This email message and any attachments are for the sole use of the intended recipient(s) and contain confidential and/or privileged information. Any unauthorized review,

RE:

AM To: FreeRadius users mailing list Subject: Re: On 16 Jan 2012, at 15:22, McSparin, Joe wrote: Is There a way to add the removal of delimiters such as - or : to the rewrite_calling_station_id section. Course. Just change update request { Called-Station-Id := %{tolower

Documentation of Setting up dialupadmin

Does anyone where some documentation could be found for setting up dialup admin on FreeBSD. Thanks, Joseph R. McSparin Network Administrator Hill Country Memorial Hospital 830 990 6638 phone 830 990 6623 fax jmcspa...@hillcountrymemorial.org -- This email message and any attachments are for

RE: Documentation of Setting up dialupadmin

:35 PM To: FreeRadius users mailing list Subject: Re: Documentation of Setting up dialupadmin Am 11.01.12 18:35, schrieb McSparin, Joe: Does anyone where some documentation could be found for setting up dialup admin on FreeBSD. Thanks, Joseph R. McSparin

Connecting Windows XP wirelessly with EAP TKIP

Is there anything special that needs to be done on windows XP to connect wirelessly to an access point using FreeRadius. I was connecting fine with Windows 7 but now tryng to connect windows XP there is nothing even triggering the Radius server I am running in radiusd -X and when I connect the xp

RE: Connecting Windows XP wirelessly with EAP TKIP

Subject: Re: Connecting Windows XP wirelessly with EAP TKIP McSparin, Joe wrote: Is there anything special that needs to be done on windows XP to connect wirelessly to an access point using FreeRadius. I was connecting fine with Windows 7 but now tryng to connect windows XP there is nothing even

Distributing Certificates

Now that I have my Radius server configured I need to begin implementation I have 600 computers that will be using it. The question I am wondering is do I have to go around and install a certificate on every one of the computers and then maintain that every year changing out the certificate on

RE: Distributing Certificates

[mailto:freeradius-users-bounces+jmdanner=samford@lists.freeradius.org] On Behalf Of McSparin, Joe Sent: Friday, January 06, 2012 10:18 AM To: FreeRadius users mailing list Subject: Distributing Certificates Now that I have my Radius server configured I need to begin implementation I have 600

SQL Statement in users file

Does this seem like a doable scenario in the users file it doesn't return anything but I'm not sure if it is query issue or if those values are not available in the users file. DEFAULT Auth-Type = ntlm_auth Tunnel-Type = VLAN, Tunnel-Medium-Type = IEEE-802,

RE: SQL Statement in users file

Of Phil Mayers Sent: Thursday, January 05, 2012 10:29 AM To: freeradius-users@lists.freeradius.org Subject: Re: SQL Statement in users file On 05/01/12 15:24, McSparin, Joe wrote: Does this seem like a doable scenario in the users file it doesn't return anything but I'm not sure if it is query issue

RE: SQL Statement in users file

Message- From: freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists.freerad ius.org [mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of McSparin, Joe Sent: Thursday, January 05, 2012 10:54 AM To: FreeRadius users mailing list Subject

RE: SQL Statement in users file

[mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of Brian Julin Sent: Thursday, January 05, 2012 12:22 PM To: FreeRadius users mailing list Subject: RE: SQL Statement in users file McSparin, Joe wrote: Does anyone know if there is a way in the users

Using FreeRadius to override VLAN Assignment

I have put the following into my users files DEFAULT Auth-Type = ntlm_auth Tunnel-Type = VLAN, Tunnel-Medium-Type = IEEE-802, Tunnel-Private-Group-id = 1001 I have told my access point to Allow RADIUS Override on the VLAN Assignment however the

RE: Using FreeRadius to override VLAN Assignment

is being sent, you cannot determine whether it is the AP or the freeradius server that needs fixing. From: freeradius-users-bounces+bjulin=clarku@lists.freeradius.org [mailto:freeradius-users-bounces+bjulin=clarku@lists.freeradius.org] On Behalf Of McSparin, Joe

RE: Using FreeRadius to override VLAN Assignment

If I removed the Auth-Type part would it process it for all requests for testing purposes? Joseph R. McSparin Network Administrator Hill Country Memorial Hospital 830 990 6638 phone 830 990 6623 fax jmcspa...@hillcountrymemorial.org -Original Message- From:

RE: Using FreeRadius to override VLAN Assignment

WooHoo! That got it. Thanks. Joseph R. McSparin Network Administrator Hill Country Memorial Hospital 830 990 6638 phone 830 990 6623 fax jmcspa...@hillcountrymemorial.org -Original Message- From: freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists.freerad ius.org

Active Directory with Radius Accounting

I have setup FreeRadius to work with Active Directory for User name Authentication. My next step is going to be to start authenticating the MAC address as well. I have setup my sql database and created the required schema. I have uncommented the lines in radiusd.conf and sql.conf and

RE: Active Directory with Radius Accounting

=hillcountrymemorial.org@lists.freerad ius.org [mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of Alan DeKok Sent: Tuesday, January 03, 2012 5:00 PM To: FreeRadius users mailing list Subject: Re: Active Directory with Radius Accounting McSparin, Joe

RE: Active Directory with Radius Accounting

=hillcountrymemorial.org@lists.freerad ius.org [mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of Alan DeKok Sent: Tuesday, January 03, 2012 5:00 PM To: FreeRadius users mailing list Subject: Re: Active Directory with Radius Accounting McSparin, Joe wrote: My access

Error Reading Certificate file

Get this error when running radiusd -X I checked my passwords in eap.cnf, ca.cnf, server.cnf and client.cnf rlm_eap: SSL error error:0200100D:system library:fopen:Permission denied rlm_eap_tls: Error reading certificate file /usr/local/etc/raddb/certs/server.pem rlm_eap: Failed to initialize type

RE: Error Reading Certificate file

+jmcsparin=hillcountrymemorial.org@lists.freerad ius.org [mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of Alan DeKok Sent: Friday, December 30, 2011 10:22 AM To: FreeRadius users mailing list Subject: Re: Error Reading Certificate file McSparin

FreeRadius Installation Errors

I got my test server up and running nicely with FreeRadius now I have my production server that I am installing exact same machine and same process however this time when I install freeradius from /usr/ports/net/freeradius2 I get the following errors and no /usr/local/etc/raddb directory is

RE: FreeRadius Installation Errors

@lists.freerad ius.org [mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of Alan DeKok Sent: Thursday, December 29, 2011 12:57 PM To: FreeRadius users mailing list Subject: Re: FreeRadius Installation Errors McSparin, Joe wrote: I got my test

RE: GUID based Authentication on FreeRadius

8:25 AM To: FreeRadius users mailing list Subject: Re: GUID based Authentication on FreeRadius McSparin, Joe wrote: Anyone know if this is possible. I have found information on MAC Based Authentication but nothing on GUID. What does that mean? The GUID isn't sent in a RADIUS packet. So

RE: GUID based Authentication on FreeRadius

ius.org [mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists .freeradius.org] On Behalf Of Alan DeKok Sent: Wednesday, December 28, 2011 9:57 AM To: FreeRadius users mailing list Subject: Re: GUID based Authentication on FreeRadius McSparin, Joe wrote: My goal is, I have users

Installing Third Part Certificate on FreeRadius

I have a certificate called AddTrustExternalCARoot.crt that I would like to have FreeRadius start using. I know I need to change the eap.conf to look at the new cert however I was noticing that when the test certificates are created there is both a server.crt and server.pem. Is there a

RE: Installing Third Part Certificate on FreeRadius

the cert all by itself in the crt file. I'm about to go swap them out on our systems, so I'll review to see if there was anything else odd about it. Jacob M. Dawson Network Research Engineer Virginia Tech On 27 Dec 2011, at 12:41, McSparin, Joe wrote: I have a certificate called

GUID based Authentication on FreeRadius

Anyone know if this is possible. I have found information on MAC Based Authentication but nothing on GUID. Joseph R. McSparin Network Administrator Hill Country Memorial Hospital 830 990 6638 phone 830 990 6623 fax jmcspa...@hillcountrymemorial.org -- This email message and any attachments

Domain Group Authentication

I currently have FreeRadius setup to authenticate agains Active Directory and it works great. I was wondering though for everyone out there using it if you had any reccomendations for this scenario: I have users that will connect wirelessly using their NT domain username and password on the

Is it Possible to use FreeRadius without certificates

I would like to just have freeRadius authenticate against my active directory in windows using only the user name and password in Active Directory for authentication. Is this possible to do I don't want to have to mess with installing certificates on the user machines or the server. Is this

RE: Error when trying to create certificates

trying to create certificates McSparin, Joe wrote: It's not located in the /usr/local/etc/raddb directory where my install is but I did a search and it is located here /usr/local/share/examples/freeradius/raddb/certs/xpextensions. Find out who created the packaged (RPM, DEB, etc.) for your system

RE: Error when trying to create certificates

It's not located in the /usr/local/etc/raddb directory where my install is but I did a search and it is located here /usr/local/share/examples/freeradius/raddb/certs/xpextensions. Joseph R. McSparin Network Administrator Hill Country Memorial Hospital 830 990 6638 phone 830 990 6623 fax

[no subject]

Keep getting this error message when running make in my /raddb/certs directory I reinstalled openssl but to no avail. Any thoughts? /usr/bin/openssl ca -batch -keyfile ca.key -cert ca.pem -in server.csr -key `grep output_password ca.cnf | sed 's/.*=//;s/^ *//'` -out server.crt -extensions

FreeRadius Authentication using Active Directory

I have followed several tutorials for setting up Active Directory with FreeRadius. When I run the ntlm_auth from the command line I get a success message however when I run the radtest with the username and password I get a Access-Reject. I am using FreeRadius 1.8 and I have included the message

RE: FreeRadius Authentication using Active Directory

I have been trying to upgrade to 2.1.x from 1.1.8 however I keeping getting this error In file included from /usr/local/include/krb5.h:846, from rlm_krb5.c:32: /usr/local/include/krb5-protos.h:41: error: expected identifier or '(' before numeric constant