On 05/09/12 14:01, opensou...@tigusoft.pl wrote:
Login incorrect (rlm_pap: CLEAR TEXT password check failed):
[ddjz/\222�?�?\207s\231\264B\030\006xڧ4] (from client localhost port 1 cli
00-16-E6-35-FB-04) LOGIN ERROR
WARNING: Unprintable characters in the password. Double-check the
sh
opensou...@tigusoft.pl wrote:
> On Wednesday 05 September 2012 05:16:07 Fajar A. Nugraha wrote:
>
> Thanks, ok so here is the full log:
Which you need to read.
You also need to read Fajar's previous response.
> Login incorrect (rlm_pap: CLEAR TEXT password check failed):
> [ddjz/\222�?�?\2
On Wednesday 05 September 2012 05:16:07 Fajar A. Nugraha wrote:
Thanks, ok so here is the full log:
root@hotspot:/etc/freeradius# freeradius -X
FreeRADIUS Version 2.1.10, for host x86_64-pc-linux-gnu, built on Nov 14 2010
at 21:12:30
Copyright (C) 1999-2009 The FreeRADIUS server project and
On Wed, Sep 5, 2012 at 9:47 AM, opensou...@tigusoft.pl
wrote:
> users can not log in, from radius logs it would appear as if chilli login form
> for the user sends the password in some encrypted format (eap?)
Nope
> while Radius only wants to use it as cleartext (despite configuration
> "authori
Hello
we use radius, with chilli hotspot for login but the password is not working:
users can not log in, from radius logs it would appear as if chilli login form
for the user sends the password in some encrypted format (eap?)
while Radius only wants to use it as cleartext (despite configuratio
>Now that you mention it, the billing software _is_ getting replaced
>some time soon, but until then I have to hack radius as a workaround.
>
So alter groups and not passwords.
>Is it not possible to "Fall-Through" failed users to another section
>with its own pool and auth-type: accept?
>
Why? J
> >
> >
> > -Original Message-
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED]
> > On Behalf Of Andy Billington
> > Sent: 25 January 2008 18:58
> > To: FreeRadius users mailing list
> > Subject: Re: Hello, and a (hopefully) simple quest
> Sent: 25 January 2008 18:58
> To: FreeRadius users mailing list
> Subject: Re: Hello, and a (hopefully) simple question
>
> Vlad,
> are the passwords changed _by the billing system_ for any other
> reason? You could use a trigger on the table to make a corresponding
> change on t
behaviour.
David Roze
---
http://www.netexpertise.eu
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
On Behalf Of Andy Billington
Sent: 25 January 2008 18:58
To: FreeRadius users mailing list
Subject: Re: Hello, and a (hopefully) simple question
Vlad,
are the passwor
Vlad,
are the passwords changed _by the billing system_ for any other
reason? You could use a trigger on the table to make a corresponding
change on the usergroup when the billing system changes the password.
Better though might just be to have a "Expiry Due?" column added to
the users, and then h
That's a very valid point, however we do all the CPE configuration
ourselves. Customer, as a rule, does not have access to the PPPoE
settings.
I think the message they would get is going to say something like
"There is a problem with your internet connection. Please call
blahblahblah to resolve th
So, what would be the difference between a customer who was disconnected, and one who cannot remember his/her password (yeah, this never happens,
right?) There would be no differentiation, and customers who have simply forgotten their password may be upset when you tell then they are
disconnecte
Well, what I'm trying to do is accept the session whether the password
is correct or not, but if it's not correct, assign Framed-IP-Address
from a different IP pool, so our firewall downstream from the NAS can
redirect their HTTP traffic to a payment site.
Vlad
On Jan 25, 2008 11:27 AM, JB <[EM
If it's just a message you want to display, you could use the Reply-
Message attribute.
Of course, your access controler would have to know how handle this
attribute.
JB
Marinko Tarlac wrote:
radius will reply whatever you need but you need to tell him what do
you want.
For example, if y
The only problem with this method is that our billing system is not
(currently) capable of changing the usergroup when the account is
suspended. All it does is change the password.
Vlad
On Jan 25, 2008 11:22 AM, Marinko Tarlac <[EMAIL PROTECTED]> wrote:
> radius will reply whatever you need bu
radius will reply whatever you need but you need to tell him what do you
want.
For example, if you're using mysql, when user account expires you can add
him to specific group and group attributes you can set in radgroupreply
table. (ip pool, tx, rx limit etc.)
On Jan 25, 2008 6:18 PM, Vlad Sedov
Hey folks.
Right now, we use freeradius to authenticate simple pap/chap PPP
clients. When a username/password is rejected, radius simply send back
a reject message to the NAS.
Is it possible to change this behavior so that a failed auth attempt
gets accepted with an alternate IP pool instead of b
Hi!
Ive installed Freeradius, its working great. I use it to verify users,
im running a PPTPD server. I have a question though.
When i do "radwho" it lists current users. The output is the following:
userlogin usernamePPP S122 Tue 21:27 127.0.0.1
The question i have is, what
Am Donnerstag, 26. Oktober 2006 20:56 schrieb Mike May:
> How can I determine that version of freeRadius that is currently running?
radiusd -v
RTFM
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
How can I determine that version of freeRadius that is
currently running?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am Donnerstag, 19. Januar 2006 15:49 schrieb Armin Krämer:
> Whee can i define that freeradius should look at the ldap database for user
> accounts and not at the users list?
>
> Greetings
>
> Armin
Read rlm_ldap in the doc directory.
--
Dr. Michael Schwartzkopff
MultiNET Services GmbH
Bretonisc
from LDAP.
Regards,
Edvin Seferovic
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Armin Krämer
Sent: Donnerstag, 19. Jänner 2006 15:50
To: 'FreeRadius users mailing list'
Subject: Simple Question about LDAP
Whee can i define that fr
Whee can i define that freeradius should look at the ldap database for user
accounts and not at the users list?
Greetings
Armin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
"Valeriy V. Peshkoff" <[EMAIL PROTECTED]> wrote:
> How can i add correct event-timestamp using preproxy_users? Or may be
> there is a another way?
I think the version you're using doesn't support reading dates as
large numbers. This should work in the CVS head.
Alan DeKok.
-
List info/sub
Hello!
I need to insert Event-Timestamp in request destinated to some realm.
Reading documentation i find only one correct way
Here is my preproxy_users
DEFAULT Realm == "crossroam.com"
Idle-Timeout := `%{Idle-Timeout:-60}`, <- Worked
Acct-Interim-Interval := `%{Acct-Interim-Inte
Nicolas Baradakis пишет:
Valeriy V. Peshkoff wrote:
But why developer doesn't do equal things for ACCEPT =)
Post-Auth-Type ACCEPT {
Reply-Message-Accept
}
Doesn't work
If I understand correctly what you are trying to do, it should be
written like this:
post-auth {
Reply-Mess
Valeriy V. Peshkoff wrote:
> But why developer doesn't do equal things for ACCEPT =)
> Post-Auth-Type ACCEPT {
> Reply-Message-Accept
> }
> Doesn't work
If I understand correctly what you are trying to do, it should be
written like this:
post-auth {
Reply-Message-Accept
Post-Aut
Nicolas Baradakis пишет:
Valeriy V. Peshkoff wrote:
Can you help me giving example on how to do it?
I have this in radius.conf
post-auth {
Post-Auth-Type REJECT {
Reply-Message
}
}
When i create
attr_rewrite Reply-Message {
attribute = Reply-Message
# may be "packet", "reply", "proxy", "
Valeriy V. Peshkoff wrote:
> Can you help me giving example on how to do it?
>
> I have this in radius.conf
>
> post-auth {
> Post-Auth-Type REJECT {
> Reply-Message
> }
> }
>
> When i create
> attr_rewrite Reply-Message {
> attribute = Reply-Message
> # may be "packet", "reply", "proxy", "prox
Nicolas Baradakis пишет:
Valeriy V. Peshkoff wrote:
Using attr_rewrite i can add reply-message to any packet.
But i want add Reply-Message only to the Access-Reject packet or use
different Reply-Message to Accept and Reject. How can i do it?
See http://www.freeradius.org/radiusd/doc/
Valeriy V. Peshkoff wrote:
> Using attr_rewrite i can add reply-message to any packet.
> But i want add Reply-Message only to the Access-Reject packet or use
> different Reply-Message to Accept and Reject. How can i do it?
See http://www.freeradius.org/radiusd/doc/Post-Auth-Type
--
Nicolas Bara
Using attr_rewrite i can add reply-message to any packet.
But i want add Reply-Message only to the Access-Reject packet or use
different Reply-Message to Accept and Reject. How can i do it?
--
Russia, St. Petersburg
Quantum Communications
Valeriy V. Peshkov | [EMAIL PROTECTED]
+7 (812) 327-613
Ok, i have freeradius and postgreSQL to authorise and authenticate users for
VoIP usage with a Cisco gateway. I have only one question: where do I put
the account codes that let the people use the system and where do I put the
money they have?!
-
List info/subscribe/unsubscribe? See http://www.f
33 matches
Mail list logo