I'm sorry becoze I'm a beginner and delivered u guys this question. I tried to use mysql for my freeradius 0.9.2 after I entered radiusd -X, something like this occur.
rlm_sql_mysql: Couldn't connect socket to MySQL server [EMAIL PROTECTED]:radius . . rlm_sql_mysql: Mysql error 'Access denied for user: '[EMAIL PROTECTED]' (Using password: YES)' . . rlm_sql (sql): Failed to connect DB handle #0 rlm_sql (sql): starting 1 rlm_sql (sql): starting 2 rlm_sql (sql): starting 3 rlm_sql (sql): starting 4 rlm_sql (sql): Failed to connect to any SQL server. Module: Instantiated sql (sql) radiusd.conf: "SQL" modules aren't allowed in 'authenticate' sections -- they have no such method. May be I'ved missed somewhere, and if some one notice my mistake please help me. Thank you. --- [EMAIL PROTECTED] wrote: > Send Freeradius-Users mailing list submissions to > [EMAIL PROTECTED] > > To subscribe or unsubscribe via the World Wide Web, > visit > > http://lists.freeradius.org/mailman/listinfo/freeradius-users > or, via email, send a message with subject or body > 'help' to > [EMAIL PROTECTED] > > You can reach the person managing the list at > [EMAIL PROTECTED] > > When replying, please edit your Subject line so it > is more specific > than "Re: Contents of Freeradius-Users digest..." > > > Today's Topics: > > 1. Re: Wireless authentication via LDAP and PEAP > (Jon Stahler) > 2. Re: Wireless authentication via LDAP and PEAP > (David Hart) > 3. Re: Wireless authentication via LDAP and PEAP > (Alan DeKok) > 4. Re: Wireless authentication via LDAP and PEAP > (Jon Stahler) > 5. Re: Wireless authentication via LDAP and PEAP > (Alan DeKok) > 6. RE: Dual authentication!! (Kirti S. Bajwa) > 7. SegFault/missing libssl for EAP/TLS (Robert > Schultz) > > --__--__-- > > Message: 1 > Date: Wed, 08 Sep 2004 15:58:18 -0500 > From: "Jon Stahler" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Subject: Re: Wireless authentication via LDAP and > PEAP > Reply-To: [EMAIL PROTECTED] > > --=__Part1E3E6D7A.0__= > Content-Type: text/plain; charset=US-ASCII > Content-Transfer-Encoding: 7bit > > > > Jon Stahler > Manager of Systems Services > Illinois Fire Service Institute > 11 Gerty Drive > Champaign, IL 61820 > (217) 333-2163 > > >>> [EMAIL PROTECTED] 9/8/2004 3:18:45 PM >>> > > "Jon Stahler" <[EMAIL PROTECTED]> wrote: > > I've been trying to setup FreeRadius in order to > authenticate my > > wireless users against my Novell eDirectory via > the built in LDAP > > server. > > > You can't, it's impossible. LDAP doesn't do EAP, > and will never do > >EAP. > > > Instead, put clear-text passwords into LDAP, list > "ldap" in the > >"authorize" section of "radiusd.conf", and let the > server figure it > >out. It WILL work. > > Ok...So explain to me how I get my Access Point to > authenticate against > my eDirectory users. If LDAP won't do it, what > WILL? Why does it > authenticate successfully against my LDAP server and > respond with > authenticate OK if this is not the case? How should > I modify my setup > to do what you are asking. Please use small words > and be patient with > me as I am a new to this. > > Input clear-text passwords into LDAP how exactly? > The passwords come > from eDirectory. I don't directly manage the LDAP > server. It is > automated. Is there a specific attribute I need to > populate with data > from my eDirectory? I can add attributes to the > server if this is > necessary. > > > On the Radius screen, I see that the request is > sent to the LDAP > > server. The EAP module of FreeRadius responds OK > over and over and > over > > again infinitely until I either kill my wireless > connection or the > > server thread. > > There's a lot more detail than that, usually. > Buried somewhere in > that log is the real reason why it's failing. > > > I have only uncommented PEAP and MSCHAPV2 in my > EAP.CONF file. > > In order for PEAP to work, you also need to > configure the tls{} > section of eap.conf. > > > Alan DeKok. > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > > --=__Part1E3E6D7A.0__= > Content-Type: text/html; charset=ISO-8859-1 > Content-Transfer-Encoding: 8bit > > <HTML><HEAD> > <META http-equiv=Content-Type content="text/html; > charset=iso-8859-1"> > <META content="MSHTML 6.00.2900.2180" > name=GENERATOR></HEAD> > <BODY style="MARGIN: 4px 4px 1px; FONT: 10pt > Tahoma"> > <DIV> </DIV> > <DIV> </DIV> > <DIV>Jon Stahler<BR>Manager of Systems > Services<BR>Illinois Fire Service Institute<BR>11 > Gerty Drive<BR>Champaign, IL 61820<BR>(217) > 333-2163<BR><BR>>>> [EMAIL PROTECTED] 9/8/2004 > 3:18:45 PM >>><BR></DIV> > <DIV style="COLOR: #000000">"Jon Stahler" > <[EMAIL PROTECTED]> wrote:<BR>> I've > been trying to setup FreeRadius in order to > authenticate my<BR>> wireless users against my > Novell eDirectory via the built in LDAP<BR>> > server.<BR><BR>> You can't, it's > impossible. LDAP doesn't do EAP, and will > never do<BR>>EAP.<BR><BR>> Instead, put > clear-text passwords into LDAP, list "ldap" in > the<BR>>"authorize" section of "radiusd.conf", > and let the server figure it<BR>>out. It > WILL work.</DIV> > <DIV style="COLOR: #000000"> </DIV> > <DIV style="COLOR: #000000"> > <DIV>Ok...So explain to me how I get my Access Point > to authenticate against my eDirectory users. > If LDAP won't do it, what WILL? Why does it > authenticate successfully against my LDAP server and > respond with authenticate OK if this is not the > case? How should I modify my setup to do what > you are asking. Please use small > words and be patient with me as I am a new > to this.</DIV> > <DIV> </DIV> > <DIV>Input clear-text passwords into LDAP how > exactly? The passwords come from > eDirectory. I don't directly manage the LDAP > server. It is automated. Is there a > specific attribute I need to populate with data from > my eDirectory? I can add attributes to the > server if this is necessary.<BR><BR>> On the > Radius screen, I see that the request is sent to the > LDAP<BR>> server. The EAP module of > FreeRadius responds OK over and over and > over<BR>> again infinitely until I either kill my > wireless connection or the<BR>> server > thread.<BR><BR> There's a lot more detail than > that, usually. Buried somewhere in<BR>that log > is the real reason why it's failing.<BR><BR>> I > have only uncommented PEAP and MSCHAPV2 in my > EAP.CONF file.<BR><BR> In order for PEAP to > work, you also need to configure the > tls{}<BR>section of eap.conf.</DIV></DIV> > <DIV style="COLOR: #000000"><BR> Alan > DeKok.<BR><BR>- <BR>List info/subscribe/unsubscribe? > See <A > href="http://www.freeradius.org/list/users.html";>http://www.freeradius.org/list/users.html</A><BR></DIV></BODY></HTML> > --=__Part1E3E6D7A.0__=-- > > > --__--__-- > > Message: 2 > Date: Wed, 08 Sep 2004 14:01:04 -0700 > From: David Hart <[EMAIL PROTECTED]> > Subject: Re: Wireless authentication via LDAP and > PEAP > === message truncated === __________________________________ Do you Yahoo!? Yahoo! Mail is new and improved - Check it out! http://promotions.yahoo.com/new_mail - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
