David W Bell wrote:
> That is what I am doing, however they append to the current line, I
> would like to put a linebreak at the end of each one to make them flow
> properly
Can you say what you have configured, and what the server sends? i.e.
DEBUG output?
Alan DeKok.
-
List info/subscribe/
That is what I am doing, however they append to the current line, I
would like to put a linebreak at the end of each one to make them flow
properly
David
You most likely want operator += to add multiple attributes with the same
name.
http://wiki.freeradius.org/Operators
Ivan Kalik
Kalik Info
You most likely want operator += to add multiple attributes with the same
name.
http://wiki.freeradius.org/Operators
Ivan Kalik
Kalik Informatika ISP
Dana 20/2/2008, "David W Bell" <[EMAIL PROTECTED]> piše:
>yep - tried that :)
>
>> Hi David,
>>
>> Have you tried putting "\n" to see if that pu
yep - tried that :)
Hi David,
Have you tried putting "\n" to see if that puts a line break into the
response? Whether the RADIUS client will barf on that is another
matter ;-)
Rgds,
Guy
On 20/02/2008, David W Bell <[EMAIL PROTECTED]> wrote:
David W Bell wrote:
> Thanks for the info so
Hi David,
Have you tried putting "\n" to see if that puts a line break into the
response? Whether the RADIUS client will barf on that is another
matter ;-)
Rgds,
Guy
On 20/02/2008, David W Bell <[EMAIL PROTECTED]> wrote:
> David W Bell wrote:
> > Thanks for the info so far.
> >
> > Is there
David W Bell wrote:
Thanks for the info so far.
Is there a howto on getting this to work?
Questions I still have on this are.
1) Do I need to extend my Schema to include "Cisco-AV-Pair" if so is
there an example I can copy
2) What is the exact line that I need to add to my ldap.attrmap file
Thanks for the info so far.
Is there a howto on getting this to work?
Questions I still have on this are.
1) Do I need to extend my Schema to include "Cisco-AV-Pair" if so is
there an example I can copy
2) What is the exact line that I need to add to my ldap.attrmap file to
then refer to th
Password is a check item. It has nothing to do with what's in the reply
(av-pairs are reply items). Just remove the password and it will still
work the same. You *can* leave the check line blank in users file.
Ivan Kalik
Kalik Informatika ISP
Dana 19/2/2008, "David W Bell" <[EMAIL PROTECTED]> pi
David W Bell escribió:
Only way I have found to get RADIUS to pass the AV-PAIRS back is from
the users file.
Try using Reply-items in ldap.attrmap.
Or the users file without authenticating users against it.
If I have missed something, please let me know
David
And why do you have passwor
I was wondering the same thing :-)
On the subject of getting the attributes from LDAP, the Cisco AV pairs
are just another AV Pair. Sure, Cisco have broken their AVs up with
sub-AVs, but it's still just passing a value back from LDAP and
manipulating the format so that it is placed corr
Only way I have found to get RADIUS to pass the AV-PAIRS back is from
the users file.
If I have missed something, please let me know
David
And why do you have password in two locations? If you store it in Ldap
you don't need it in users file and vice versa.
Ivan Kalik
Kalik Informatika ISP
Greetings! I'm using freeradius 1.1.6 on gentoo (2.6.15-gentoo-r5) to account
sip calls via radius client on cisco 26xx and have a problem: I need to get
iphop attributes from radius accounting packets, but I can't :( While running
freeradius in debug mode (-X key), I see required attributes as sho
And why do you have password in two locations? If you store it in Ldap
you don't need it in users file and vice versa.
Ivan Kalik
Kalik Informatika ISP
Dana 19/2/2008, "David W Bell" <[EMAIL PROTECTED]> piše:
>Hi there.
>
>My Saga continues
>
>I have freeRADIUS working with openLDAP and can
Hi there.
My Saga continues
I have freeRADIUS working with openLDAP and can log into CISCO kit and
pass the priv-level from the raddb/users file.
Is there any way that this information can be passed from the openLDAP
user details instead?
I am looking to do a single-signon system and i
t;Dan Goscomb" <[EMAIL PROTECTED]>
To: "FreeRadius users mailing list"
Sent: 18 September, 2007 11:22
Subject: Re: Sending Cisco AV Pairs per realm
Here is a short example that should work for you using the hints file:
#hints
DEFAULT User-Name =~ "@dsl.realm"
> Here is a short example that should work for you using the hints file:
>
> #hints
> DEFAULT User-Name =~ "@dsl.realm"
> Hint = "DSL"
> #/hints
>
> #users
> DEFAULT Hint == "DSL"
> Cisco-AVPair += "..."
> #/users
Thanks Kevin
This looks great, however the caveat is that we're using MySQL
On Friday 14 September 2007 11:28:51 Dan Goscomb wrote:
> Hi
>
> I have a number of realms on my radius server (FreeRADIUS Version
> 1.1.6). All users are valid in both realms (one is for dialup, one for
> broadband).
>
> e.g.
> [EMAIL PROTECTED]
> [EMAIL PROTECTED]
>
> All realm's are stripped so
Hi
I have a number of realms on my radius server (FreeRADIUS Version
1.1.6). All users are valid in both realms (one is for dialup, one for
broadband).
e.g.
[EMAIL PROTECTED]
[EMAIL PROTECTED]
All realm's are stripped so that the user (dang in the examples above)
is authenticated. However, on di
Hello
I have a question about cisco AV-Pairs and I see many
mails about this but now solutions:
When I receive radius packet from the cisco gw I have
some Cisco-AVPair attribute.
h323-call-origin =
"h323-call-origin=answer"
h323-call-type = "h323
Yes,
Like in:
Cisco-AVPair += "ip:inacl#09=deny udp any any eq 1234"
Cisco-AVPair += "ip:inacl#71=permit tcp host 1.2.3.4 5.6.7.0 0.0.0.255"
Kind regards,
Nico Baggus
-
ATTENTION:
The information in this electro
Hello,
Does anyone know the method of sending AV-Pair to cisco devices?
Is it possible to send ACLs to cisco PIX on a per user basis?
TS
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
21 matches
Mail list logo
