Hi Ivan,
t...@kalik.net schrieb:
You should upgrade to the latest version. If that doesn't cure it, try
making client certificate signed by the CA and not server certificate.
I had 2.1.3 running a week ago, but it didn't work also. But I wasn't
sure about the configs. Unfortunately the
hi to all,
has anyone managed to make a deb file out of the latest freeradius
server? the instractions on the wiki didn't work ,at least for me.
I am on Ubuntu 7.10
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
to reply to my own post if you want to build a deb file with a patched
freeradius {to support EAP} do the following:
download the .tar.bz2 source archive from radius site
exract to a directory freeradius-server-X.X.X
then edit rules file in freeradius-server-X.X.X/debian so that the
configure
Aggelidis Nikos wrote:
to reply to my own post if you want to build a deb file with a patched
freeradius {to support EAP} do the following:
You shouldn't have to do that. The debian files that ship with the
server include instructions to build with OpenSSL. Look for openssl
in the rules
I am new to FreeRADIUS.
We have these groups and I wonder if FreeRADIUS is capable of handling
authentication for them with this time frame:
1. EASY - 24hrs access valid or 1 month
2. BUSY - 24hrs access valid for 14 days
3. BUSINESS - 08:00 - 18:00 valid for 1 month
4. RELAX - Monday to
On Fri, Jan 23, 2009 at 08:55:32AM +0100, Alan DeKok wrote:
Tim Gustafson wrote:
I am running FreeRADIUS on FreeBSD 7.1 for my Cisco wireless APs to
authenticate against. The clients are using MSCHAPv2 and XP and Mac OSX
(as well as several wireless devices like iPhones and so on) are
The certs shouldn't be the problem. On the clients I have a client cert
with right extended-usage and the server has a server-cert with the
right attributes. In XP the certmgr says it's for
Clientauthentification. They worked with SP2. But I also tried to
install a server-cert with
Hi all,
I'm using FreeRadius 2.1.3 on 2 Linux machines with accounting data stored in
both radacct file and MySQL database. Recently we found that some 'aged'
records have AcctStopTime = NULL.Seems Stop accounting packet for these
records are not received. The problem is consistent in
Well, there are many reasons why this could happen most of them caused
between your NAS and Radius server; since you have already checked the
detail file you should check your AP logs for reboots and radius
timeouts(although it is UDP based there is an accounting ack sent). I am not
familiar with
I have been having trouble recently with getting dynamic VLAN
assignment working on my Cisco AP. Clients are successfully
authenticating with FreeRADIUS. However, they do not seem to be
picking up extra attributes from the users file (below is the
relevant portion of it).
wgraeber
I'm using FreeRadius 2.1.3 on 2 Linux machines with accounting data stored in
both radacct file and MySQL database. Recently we found that some 'aged'
records have AcctStopTime = NULL.Seems Stop accounting packet for these
records are not received. The problem is consistent in both cases
Hi,
I have been having trouble recently with getting dynamic VLAN
assignment working on my Cisco AP. Clients are successfully
authenticating with FreeRADIUS. However, they do not seem to be
picking up extra attributes from the users file (below is the
relevant portion of it).
wgraeber
I have been having trouble recently with getting dynamic VLAN
assignment working on my Cisco AP. Clients are successfully
authenticating with FreeRADIUS. However, they do not seem to be
picking up extra attributes from the users file (below is the
relevant portion of it).
wgraeber
I have a Ruckus ZoneDirector 1025 with waps that I just installed.
Testing out different EAP types I can use. I am using FreeRadius 2.1.3.
I have eap-ttls and eap-peapv0 working perfectly (I am using windows to
control the wireless card for peap and it works great). Was going to try
eap-tls by
Date: Fri, 23 Jan 2009 11:16:55 -0500
From: William Graeber swi...@swilly.tk
Subject: Cisco Aironet 1130ag dynamic VLAN assignment
To: freeradius-users@lists.freeradius.org
Message-ID:
1d7de5e60901230816j64dec24dhe90883e276e48...@mail.gmail.com
Content-Type: text/plain; charset=UTF-8
I
Hi Alan
Isnt CHAP more secure than PAP?
Can you please explain why one should not use CHAP for anything ?
-Vinay
On Sun, Jan 18, 2009 at 9:58 PM, Alan DeKok al...@deployingradius.com wrote:
Vinay wrote:
Can we use the FreeRADIUS client code with CHAP configuration?
In the code I see an #if 0
Isnt CHAP more secure than PAP?
Can you please explain why one should not use CHAP for anything ?
Read freeradius FAQ.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I have a Ruckus ZoneDirector 1025 with waps that I just installed.
Testing out different EAP types I can use. I am using FreeRadius 2.1.3.
I have eap-ttls and eap-peapv0 working perfectly (I am using windows to
control the wireless card for peap and it works great). Was going to try
eap-tls by
Hello all,
We are currently using EAP-TLS authentication with FreeRADIUS at the place
where I work right now. Management would like to be able to restrict the use
of a given certificate for this authentication to specific MAC addresses. In
other words, for each certificate, the desire is to tie
We are currently using EAP-TLS authentication with FreeRADIUS at the place
where I work right now. Management would like to be able to restrict the use
of a given certificate for this authentication to specific MAC addresses. In
other words, for each certificate, the desire is to tie that
Hello
I would like to have more informations about the deletestalesessions
option of rlm_sql.
- What does it do?
- What's its behaviour?
- How does it achieve what it does?
regards
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I have updated my Freeradius from 2.0.5 to 2.1.3 and am having a problem
with the regular expressions I am using in the users file.
If I provide a simple example users file I am testing against:
DEFAULT NAS-IP-Address =~ 192.168.1.1|10.0.1.1
Service-Type = Framed-User,
Hi,
Hi,
I have updated my Freeradius from 2.0.5 to 2.1.3 and am having a problem
with the regular expressions I am using in the users file.
If I provide a simple example users file I am testing against:
DEFAULT NAS-IP-Address =~ 192.168.1.1|10.0.1.1
(192.168.1.1|10.0.1.1) ?
when i use regex, i use it with unlang so it might differ from a users
file but here is how i would write it for unlang:
DEFAULT NAS-IP-Address =~ /192.168.1.1|10.0.1.1/
Le 23.01.2009 14:18, Tim Lightfoot a écrit :
Thanks for the suggestion - this also gives the same result:
[files]
Thank you, I tried it as /expr/ and also /expr/ both have the same result.
I use these regular expressions within both users file and MySQL on my live
Radius box, its failing within both modules.
Would it be unlang processing the expressions here.
From:
Hi,
I have updated my Freeradius from 2.0.5 to 2.1.3 and am having
a
problem with the regular expressions I am using in the users
file.
If I provide a simple example users file I am testing against:
I don't think unlang is used for processing users file (an thus neither
mysql as it's supposed to mirror user file)
but you could add an update clause (which uses unlang) to add your reply
items.
something like:
if (request:NAS-IP-Address =~ /192.168.1.1|10.0.1.1/) {
update reply {
Hi,
From experience, what would be the best server configuration for
200,000 users with 75,000 concurrent users throttling 50,000
connections per second (with 1 NAS Client) in terms of:
1. Hardware configuration
2. Chooise of DB (PostgreSQL or MySQL)
3. FreeRadius Configuration
I am at the moment experiencing problem of load with mysql as acct DB
(query failure during database backup of massive radius ticket
injection) for a setup of 15000 concurrent users so I would recommend
its use!
Le 23.01.2009 17:54, tech.subscripti...@shepherdhill.biz a écrit :
Hi,
From
Quoting freeradius-users-requ...@lists.freeradius.org:
I am new to FreeRADIUS.
We have these groups and I wonder if FreeRADIUS is capable of handling
authentication for them with this time frame:
1. EASY - 24hrs access valid or 1 month
2. BUSY - 24hrs access valid for 14 days
3. BUSINESS -
Tim Lightfoot wrote:
[files] expand: %{NAS-IP-Address} - 192.168.1.1
[files] Invalid regular expression : empty (sub)expression == problem
here
This error is being produced by the regular expression library on your
system. FreeRADIUS is just asking the library to use the regular
31 matches
Mail list logo