Hi All,
Currently we are planning to use FreeRadius with Jradius server.
But I find Jradius is not well supported by FreeRadius.
We have to copy jradius.conf and rlm_jradius.c from Jradius package to
FreeRadius package to build the module. Furthermore many FreeRadius versions do
not support
[mailto:freeradius-users-bounces+eric.jp.zhou=alcatel-lucent@lists.freeradius.org]
On Behalf Of Arran Cudbard-Bell
Sent: 2013年6月7日 10:59
To: FreeRadius users mailing list
Cc: qdlcp-secur...@list.alcatel-lucent.com
Subject: Re: FreeRadius with Jradius module
On 6 Jun 2013, at 22:13, ZHOU Eric JP eric.jp.z
Setup:
- FreeRADIUS 1.0.4 built with edir on FreeBSD 4.11 server.
- Cisco 3005 VPN Concentrator
- LDAP database on NetWare 6.5 server
Everything works fine when not use SSL certificate and TLS. However,
when TLS is turned on, here is what I get:
-snip-
Listening on authentication *:1812
Sayantan,
It was a password error. Thanks.
Josh
Quoting Sayantan Bhowmick [EMAIL PROTECTED]:
Hi,
If you are getting a reply with ldapsearch then you should be able
to authenticate as that user. One of the possible causes of the -669
error is an invalid password. So check the password
Here is my setup:
FreeBSD 4.11 server with FreeRADIUS 1.0.4 authorizing/authenticating users in an
eDirectory Tree on a NetWare 6.5 server.
My issue:
There are three root contexts in the tree. If I set the basedn to context1, I
can successfully authorize/authenticate users in context1, but I
Great, that worked. Thanks.
Quoting Mearl Danner [EMAIL PROTECTED]:
Might try downloading this and reading. It's very helpful.
http://www.novell.com/documentation/edir_radius/pdfdoc/radadmin/radadmin.pdf
If that's 3 separate o= at the root of the tree, the this from the above
Setup:
FreeRADIUS 1.0.4 on FreeBSD 4.11 authenticating to eDirectory on Netware 6.5
server.
Issue:
I have read the FAQ section regaring limiting access to specific groups
(http://freeradius.org/faq/#5.2), but I can't get it to work. For one, I am not
entirely certain where to add the lines. I
My fault...members of that group are DENIED access. Now I get.
So, that leads me to another question. How do I change the syntax so that users
are ALLOWED access if they are a member of the specified group? I tried
changing the line in the users file to Auth-Type := Allow, but this didn't
I am running FreeRADIUS 1.0.4 on FreeBSD 4.11 authenticate/authorize users via
LDAP on a NetWare 6.5 server/tree.
I can successfully authenticate and authorize users if they reside in the root
context (o=rootcontext), but authorize fails if the user is in an ou in the
root context. The identity
Ok, I'm now one step closer. Mearl's solution worked somewhat. Here is the
output from the debug:
-snip-
rlm_ldap: - authorize
rlm_ldap: performing user authorization for gwaccesspo1
radius_xlat: '(cn=gwaccesspo1)'
radius_xlat: 'o=services'
rlm_ldap: ldap_get_conn: Checking Id: 0
I have not setup Universal Passwords as this is not an option because of the
complexities of the tree. As of right now, the LDAP Group in eDirectory does
not require TLS, so I am therefore not requiring it in radiusd.conf either. I
want to get it to work over cleartext for now, and then setup
11 matches
Mail list logo
