Hi,
Following line is from the CA.all script provided by FreeRADIUS for
generation of certificates:
openssl ca -policy policy_anything -out newcert.pem -passin pass:whatever
-key whatever -extensions xpclient_ext -extfile xpextensions -infiles
newreq.pem
My question is:
Is the use of
On Wed, Nov 10, 2004 at 06:41:25PM +0100, Nicolas Baradakis wrote:
Pasi Kärkkäinen wrote:
How do I add new attribute in post-proxy section?
See module rlm_attr_rewrite.
Thanks for you reply.
Reading the man-page, I didn't see how to _add_ attribute with
rlm_attr_rewrite.
Why is it checkrad uses different snmpwalk format? when I follow the
example
$ snmpwalk 192.168.0.1 somecommunity system
it reports the following error
snmpwalk: No securityName specified
but it works when I do
$ snmpwalk -v 2c -c somecommunity 192.168.0.1 system
Is there any way to solve
Hi!
Third mail about this same thing, hopefully now I'm clear enough to get
a reply :)
I'm using freeradius 1.0.0. I'm proxying same requests based on realm
(@foo.com) to another radius server.
Now, when I get a reply back from the another radius server, I need to add
Pool-Name attribute for
Kostas Zorbadelos wrote:
...
I resubmit the patch as a text file (output of
diff sql_oracle.c.before_patch sql_oracle.c freeradius_oracle_patch)
because from the web page I had
problems applying it and I was forced to apply it partly by hand
editing of the code...
the same problem. I cannot
On Thu, 11 Nov 2004, Lito A. Lampitoc wrote:
Why is it checkrad uses different snmpwalk format? when I follow the
example
$ snmpwalk 192.168.0.1 somecommunity system
it reports the following error
snmpwalk: No securityName specified
but it works when I do
$ snmpwalk -v 2c -c somecommunity
Hello
We have got a Redback 500 here for PPPoE Authentication.
Radius Server is freeradius: FreeRADIUS Version 1.0.1
Since two days we have the Problem the in the Radius File
the connecion Start and Stop ist logged 4 Times.
That means the the Start is listed 4 times with the same
On Thu, Nov 11, 2004 at 02:23:36PM +0300, Alexander Serkin wrote:
OK here is the patched file. You can verify it if you diff it with the
original file.
Kostas
Kostas Zorbadelos wrote:
...
I resubmit the patch as a text file (output of
diff sql_oracle.c.before_patch sql_oracle.c
Could anybody sched a light onto max_servers and num_sql_socks selection
criteria ? (Oracle 9.2.0.4 is used).
How many of them should one set up in order to optimize processor/memory usage?
I had max_servers=32 and num_sql_socks=18 till today. A lot of There are no DB
handles to use! messages
On Thu, Nov 11, 2004 at 01:13:38PM +0200, Pasi Kärkkäinen wrote:
Hi!
Third mail about this same thing, hopefully now I'm clear enough to get
a reply :)
I'm using freeradius 1.0.0. I'm proxying same requests based on realm
(@foo.com) to another radius server.
some, not same.
On Thu, Nov 11, 2004 at 12:48:38PM +0100, Dominik Sennfelder wrote:
the connecion Start and Stop ist logged 4 Times.
That means the the Start is listed 4 times with the same
Acct-Session-Id and the Stop is listet 4 times with the same
for example a part of the log and my radiusd.conf
My system requires Local Auth-Type Method, but this method ha not defined in my
radiusd.conf, and when I run radiusd with -X param, this appear
auth: No authenticate method (Auth-Type) configuration found for the request:
Rejecting the user
Thanks
Germn P. Santilln
Administrador de Redes
Three (groups of) questions...
When I set my Linksys WRT54GS router to RADIUS mode, I'm required to
enter a WEP key into the router. Why? Is it even used for anything?
At the client end, I can configure WinXP for WPA or WEP and never even
enter the key.
That's leads me to this question:
Bilal Shahid [EMAIL PROTECTED] wrote:
Is the use of -extensions here necessary for authenticating a Client to
the FreeRADIUS Server using EAP-TLS/EAP-TTLS?
a client? Some clients, yes.
everything works out fine ... Client does not complain of Verifying
failure as in the first case.
Alexander Serkin [EMAIL PROTECTED] wrote:
Could anybody sched a light onto max_servers and num_sql_socks selection
criteria ? (Oracle 9.2.0.4 is used).
How many of them should one set up in order to optimize processor/memory
usage?
The defaults should be good for most systems.
Now they
Hi, all.
I'm using FreeRadius 1.0.1 with rlm_perl under Linux kernel 2.4.27
rlm_perl module using DBI makes AAA.
BUT, I found it increases its memory usage from 8Mb to 500Mb, so, what
will be the next??
And why?
Best regards,
AL
--
Best regards,
Serg Shipaev, IP TELephony EXchange Ltd.
e-mail:
I apologize if this question sounds silly but which type of Clients need the
use of extensions and which type does not?
I reckon that this thing (requiring the use of extensions or not) is
configurable on each Client. Is this understanding correct?
Thanks,
Bilal
From: Alan DeKok [EMAIL
Bilal Shahid [EMAIL PROTECTED] wrote:
I apologize if this question sounds silly but which type of Clients need the
use of extensions and which type does not?
XP needs it. From what you've said, your client doesn't.
Can you say what your client is, or is it a secret?
I reckon that this
Hi!
I wrote about this leak sometime ago.
There was leakless rlm_perl in version 0.9.3.
In previous and in all 1.0.X versions memory leak exists.
So, now i use this rlm_perl with 1.0.1.
Attached version also have a little improvement - it
modifies all 3 items - reply, config but request.
Hi,
Hi,
Thank you. I'll try to rebuild this module.
Is't works normally after?
AL
[EMAIL PROTECTED] wrote:
Hi!
I wrote about this leak sometime ago.
There was leakless rlm_perl in version 0.9.3.
In previous and in all 1.0.X versions memory leak exists.
So, now i use this rlm_perl with 1.0.1.
Attached
On Thu, Nov 11, 2004 at 09:40:01PM +0300, Admin wrote:
Hi, all.
I'm using FreeRadius 1.0.1 with rlm_perl under Linux kernel 2.4.27
rlm_perl module using DBI makes AAA.
BUT, I found it increases its memory usage from 8Mb to 500Mb, so, what
will be the next??
And why?
Look at
We are getting ready to install a couple new radius servers, but we are
having some problems. The servers are running Fedora Core 3 and freeradius
1.0.1. Our current radius servers use older versions of RedHat and
freeradius 0.9.3. I copied the config files from our current servers to our
new
J Thomas Hancock [EMAIL PROTECTED] wrote:
Our current radius servers use older versions of RedHat and
freeradius 0.9.3. I copied the config files from our current servers to our
new servers and get the following errors in the radius.log 3 times per
authentication request:
Error:
Pasi Kärkkäinen wrote:
How do I add new attribute in post-proxy section?
See module rlm_attr_rewrite.
But you can't use this to add value based on realm..
You need one module instance of rlm_attr_rewrite for each realm.
In the users file you put something like
DEFAULT Realm ==
I have freeradius 1.0.1 setup and working great except for
authenticating to our windows domain. With ntlm_auth from the command
line I can authenticate fine. Samba is installed and I have joined our
local Windows 2000 domain. I am using freeradius to authenticate wireless
users via PEAP.
[EMAIL PROTECTED] wrote:
How do I strip off the domain\ from the domain\username so that my
users wont have to enter their login credentials a second time? Ive
tried using the hints file and realms, but Im having no success as I
really dont have a clue what Im doing.
I noticed an option in
I tried that option. No go unfortunately.
Thanks...
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Paul
Sent: Thursday, November 11, 2004 6:44 PM
To: [EMAIL PROTECTED]
Subject: Re: strip domain name from username
[EMAIL PROTECTED] wrote:
How do I
= yesModule: Instantiated radutmp (radutmp)
Listening on IP address *, ports 1812/udp and 1813/udp, with proxy on
1814/udp.Ready to process requests.
rad_recv: Access-Request packet from
host 192.168.21.2:1812, id=51,
length=112 NAS-IP-Address =
192.168.21.2 NAS-Port =
50003 NAS-Port-Type =
Ethernet User-Name
Bukhari, Anila [EMAIL PROTECTED] wrote:
Now on the radius server, the radtest command works fine, meaning
that the RADIUS/LDAP setup is working fine. But when I try to login
via the laptop which is directly connected to the cisco 802.1x
enabled port, I see the following failure due to MD5
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thursday 11 November 2004 18:28, [EMAIL PROTECTED] wrote:
How do I strip off the domain\ from the domain\username so that my
users won't have to enter their login credentials a second time? I've
tried using the hints file and realms, but I'm
Hmmm we are running version 0.9.3-1 from Redhat Enterprise Linux 3.0.
Wonder why Redhat is not using the latest version...
Anyways, is this a known problem with earlier versions of FreeRadius? I'll test
with 1.0.1-1 version then.
Thanks,
Anila Bukhari
-Original Message-
On Thu, Nov 11, 2004 at 04:46:25PM +0200, Eva Kolega wrote:
Paul ,
Please do not off-list email me without asking first. My personal email
archives are not available on the web (as far as I know) so any answer I
give privately would have much less value than if I answer on-list.
I enclose the
I have some question relate
with EAP-TTLS.
Is it possible that
freeradius works as a proxy with EAP-TTLS?
I mean I use freeradius as a
proxy and it works well with EAP-MD5 method.
Alan DeKok wrote:
...
A 386 should be able to handle that. Find out why your DB is so
slow, and fix it.
The problem comes up after about 15 records are created in the acct table.
The table is indexed. I've attached accounting schemasql.conf. May be some DBAs
are here in the list? Any
Client is Open1x's XSupplicant talking to FreeRADIUS through a D-Link Access
Point.
I am not sure what are the conditions/requirements under which a Client
requires the use of -extensions. Does it have something to do with the
application for which the Client is being used?
From: Alan DeKok
35 matches
Mail list logo