Thanks a lot for your reply.
Yes i got it working. However one more question :
what is the operator used to check if the value is empty ?
if(control:Calling-Station-Id == ){
reject
}
*not working for above
So i tried to make sure if the user LDAP attribute for CallingStationID was
On 14.03.2013 07:28, Danny Kurniawan wrote:
Thanks a lot for your reply.
Yes i got it working. However one more question :
what is the operator used to check if the value is empty ?
if(control:Calling-Station-Id == ){
reject
}
if(!control:Calling-Station-Id) {
reject
Thanks Olivier.
yes previous message has been resolved. Thanks a lot. Let me try your
suggestion.
-Danny
On Thu, Mar 14, 2013 at 2:41 PM, Olivier Beytrison oliv...@heliosnet.orgwrote:
On 14.03.2013 07:28, Danny Kurniawan wrote:
Thanks a lot for your reply.
Yes i got it working. However
On Thu, Mar 14, 2013 at 5:28 PM, Danny Kurniawan
danny.kurnia...@fairchildsemi.com wrote:
Thanks a lot for your reply.
Yes i got it working. However one more question :
what is the operator used to check if the value is empty ?
if(control:Calling-Station-Id == ){
reject
}
so is that done as in post-auth in the inner-tunnel now works?
Rgds
Alex
On 13 Mar 2013, at 20:14, Arran Cudbard-Bell a.cudba...@freeradius.org wrote:
On 13 Mar 2013, at 13:19, Matthew Newton m...@leicester.ac.uk wrote:
On Wed, Mar 13, 2013 at 12:58:15PM -0400, Arran Cudbard-Bell wrote:
On 03/13/2013 07:45 PM, Robin Helgelin wrote:
First problem is that I need to rewrite the output from ldap to
something the radius-client finds useful. But there are radius modules
for rewriting things right?
Yes, though TBH manipulating LDAP DNs in unlang/attr_rewrite is going to
be a pain.
On 03/14/2013 09:36 AM, Alex Sharaz wrote:
so is that done as in post-auth in the inner-tunnel now works?
Should be. Please git pull and recompile and confirm.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi All,
All of the suggestion works fine :)
So just wondering, will this unlang method works for radius 1.x version? If
its not working, what is the method that i can use in that version?
Thanks
Danny
On Thu, Mar 14, 2013 at 2:58 PM, Fajar A. Nugraha l...@fajar.net wrote:
On Thu, Mar 14,
Just to add in,
I have tested and i know it works to compare it by enabled the checkval
inside radius.conf
But now how can i check if the value of the CallingStationID is not empty?
In Radius 2.x i can use the unlang below, but in Radius 1.x it's failed
when i tried that.
Also i have enabled
I am migrating and modernising a FreeRADIUS config that was written a
couple of years ago, to make it more modular.
I have written my own uobsql-rnwc module , based on the built-in sql
module. To date, I have been loading this module in radiusd.conf, by doing:
instantiate {
uobsql-rnwc
}
On Thu, Mar 14, 2013 at 10:10:28AM +, Phil Mayers wrote:
On 03/14/2013 09:36 AM, Alex Sharaz wrote:
so is that done as in post-auth in the inner-tunnel now works?
Should be. Please git pull and recompile and confirm.
It should fully work now. Previously, inner-tunnel post-auth
reject was
On Thu, Mar 14, 2013 at 02:14:57PM +, Jonathan Gazeley wrote:
instantiate {
uobsql-rnwc
}
This worked.
OK.
Forgive me if I've missed something obvious. How do I load custom
modules within virtual servers?
Just put it in the global instantiate section, as above, then use
it in the
On 14/03/13 14:26, Matthew Newton wrote:
Just put it in the global instantiate section, as above, then use
it in the virtual server.
The point of my exercise is to make my FreeRADIUS config fully modular
in preparation for my suite of RADIUS servers being managed by a config
management tool,
So is anyone know how to do the following in the FreeRadius 1.1.7 ?
if(control:Calling-Station-Id == ){
reject
}
I just want to reject the packet if the Control (or maybe check) is empty
or has no value. I could not afford to upgrade at this time as it's a
native freeradius comes
On Thu, Mar 14, 2013 at 03:04:08PM +, Jonathan Gazeley wrote:
On 14/03/13 14:26, Matthew Newton wrote:
Just put it in the global instantiate section, as above, then use
it in the virtual server.
The point of my exercise is to make my FreeRADIUS config fully
modular in preparation for my
Yup works just fine thanks
Rgds
Alex
On 14 Mar 2013, at 14:22, Matthew Newton m...@leicester.ac.uk wrote:
On Thu, Mar 14, 2013 at 10:10:28AM +, Phil Mayers wrote:
On 03/14/2013 09:36 AM, Alex Sharaz wrote:
so is that done as in post-auth in the inner-tunnel now works?
Should be. Please
Any UK eduroam free radius sites out there implementing CUI that I could talk
to/test out my configs with?
Rgds
Alex
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Danny Kurniawan wrote:
So is anyone know how to do the following in the FreeRadius 1.1.7 ?
if(control:Calling-Station-Id == ){
reject
}
You don't. Version 1 doesn't suppot unlang.
I just want to reject the packet if the Control (or maybe check) is
empty or has no value. I
On 14 Mar 2013, at 17:01, Alex Sharaz alex.sha...@york.ac.uk wrote:
Any UK eduroam free radius sites out there implementing CUI that I could
talk to/test out my configs with?
I have at Loughborough. What would you like to know?
Regards
Scott
signature.asc
Description: Message signed
Just like to talk through what I've got here and, if possible use a test
account at your site to check that
a). I'm sending out the right stuff
b). saving your generated cui in the right place.
Rgds
Alex
On 14 Mar 2013, at 17:14, Scott Armitage s.p.armit...@lboro.ac.uk wrote:
On 14 Mar
On 14 mar 2013, at 11:06, Phil Mayers p.may...@imperial.ac.uk wrote:
On 03/13/2013 07:45 PM, Robin Helgelin wrote:
First problem is that I need to rewrite the output from ldap to
something the radius-client finds useful. But there are radius modules
for rewriting things right?
Yes,
On 14 Mar 2013, at 13:39, Robin Helgelin lob...@gmail.com wrote:
On 14 mar 2013, at 11:06, Phil Mayers p.may...@imperial.ac.uk wrote:
On 03/13/2013 07:45 PM, Robin Helgelin wrote:
First problem is that I need to rewrite the output from ldap to
something the radius-client finds useful.
Thanks Alan.
I have read some article about compiling our own rpm. I only concern about
the --edir integration.
So is there any input for me whether after i upgrade using the rpm that i
build my self, can i still using it with edir? As i saw somewhere article
that said make sure you used --edir
On 03/14/2013 01:20 PM, fernando@gmail.com wrote:
i put on LDAP (/module)
password_attribute = userPassword
and now works fine... almost :S
he only works with plaintext password, how i change that to use MD5
passwords?
You need to understand the information found here:
Danny Kurniawan wrote:
I have read some article about compiling our own rpm. I only concern
about the --edir integration.
Add that to the suse files. Look for the script running configure.
So is there any input for me whether after i upgrade using the rpm that
i build my self, can i still
Hi,
Tue Mar 12 15:10:20 2013 : Info: # Executing section authorize from file
When you make debug output, please just use:
radiusd -X
Don't use the other arguments; they just create noise and volume
(timestamps) that are basically irrelevant.
Ok, sorry.
This fails really REALLY early in
Hi all,
I' ve a problem when i want to check user with huntgroup :
bp3 User-Password := test , Calling-Station-Id ==
844b.f5b8.d423 is Ok
but not :
bp3 User-Password := test , Calling-Station-Id == 844b.f5b8.d423
, Huntgroup-Name == wifi
I read something like that in mailing list
hi,
you've edited a whole lot of stuff out of your debug log...including
the stuff which actually matters where the failure actually occurs
(you just kept the part where the end result was recorded).
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello everyone,
I have just deploy a Freeradius on CentOS 5.9 Linux machine.
I should like use EAP method with TLS so I have genetated the certs. I
had just ran bootstrap script from /etc/raddb/certs and it generated
many files as follow
01.pem
ca.der
ca.key
ca.pem
dh
server.crt
server.csr
Usuário do Sistema wrote:
I should like use EAP method with TLS so I have genetated the certs. I
had just ran bootstrap script from /etc/raddb/certs and it generated
many files as follow
...
What are that files I have import to windows clients machine ?
Just the ca.der and client
Hi,
01.pem
ca.der
ca.key
ca.pem
dh
server.crt
server.csr
server.key
server.p12
server.pem
What are that files I have import to windows clients machine ?
for EAP-TLS ? as thats a certificate authentication method you need to
generate client certificatesthe standard provided
Hi All,
Sorry for this beginner question again. I have read the wiki i will need
some hint from any of you:
1. So which files that i need to download from
http://freeradius.org/download.html ? Version 2.2.0: tar.gz OR
Version 2.2.0: tar.bz2 ?
2. So after i download one of them just copy it here
On Fri, Mar 15, 2013 at 10:52 AM, Danny Kurniawan
danny.kurnia...@fairchildsemi.com wrote:
Hi All,
Sorry for this beginner question again. I have read the wiki i will need
some hint from any of you:
1. So which files that i need to download from
http://freeradius.org/download.html ?
Thanks in advance for all the explanation. I will spent more time on
learning on it for sure, it's just the requirement need me to learn it on
practical way *this task handed over to me not in a good timely manner and
yet they want it fast :)
Again i believe thats not an excuse for me not to read
*Lasts messages i make a lot of confusion and didnt sent to all group.*
*
*
*now i've a problem, and this is making me crazy!*
*i change the /module/LDAP and now i can authenticate using plaintext or
when i use the passwordwith {crypt}*
*
*
*but when i try to use {md5} this dont work!*
*rad_recv:
fernando@gmail.com wrote:
*now i've a problem, and this is making me crazy!*
*i change the /module/LDAP and now i can authenticate using plaintext or
when i use the passwordwith {crypt}*
*but when i try to use {md5} this dont work!*
You edited the configuration file and broke it.
sorry man, u didnt help.
i tryed 1000 things and this actual configurations is the best i can make.
why instead so be rude with me dont try to realy help me? like send me you
default file or the orthers file to config?
i dindt do anything without to fallow guides on internet. im trying to
learn
fernando@gmail.com wrote:
sorry man, u didnt help.
I don't see why.
i tryed 1000 things and this actual configurations is the best i can make.
Nonsense.
why instead so be rude with me dont try to realy help me? like send me
you default file or the orthers file to config?
Because
On 14 Mar 2013, at 22:52, fernando@gmail.com wrote:
Ok man,
keep dont help too much, ill try again,
the documentation dont helped before and i guess this will not help again...
im keep saying dont need to be rude man, do you born everything? 2 months ago
i never used a linux pc, now im
fernando@gmail.com wrote:
Ok man,
keep dont help too much, ill try again,
the documentation dont helped before and i guess this will not help again...
My suggestions work. Since you're not interested in following them, I
don't know why you're on this list.
im keep saying dont need to
40 matches
Mail list logo