Title: configure script nightmare with ucd-snmp
Hi List,
I'm attempting to build freeRADIUS 1.0.1 on Solaris 9 with ucd-snmp 4.2.6
I've been struggling to get the configure script to successfully recognise ucd-snmp and thus enable it for compilation in freeradius. I'm on Solaris 9, and
Hi.
I need a solution to deal with access requests not containing User-Name
attribute. The request is as below:
3GPP2-Correlation-Id = 768E
Calling-Station-Id = 25009769921
Framed-Protocol = PPP
User-Password = secret
Service-Type = Framed
NAS-IP-Address = a.b.c.d
Acct-Session-Id =
Thanx alot.
I already solve the 1st prob but now there is another prob. It's wrote there
x99_rlm.c:550: error: label at end of compound statement
Cheers,
sunshung
From: Sebastian Wild [EMAIL PROTECTED]
Reply-To: freeradius-users@lists.freeradius.org
To: freeradius-users@lists.freeradius.org
Hi,
I would like use ntlm_auth to authenticate domain's NT users but freeradius
in debug mode seems to not check or execute the command ntlm_auth.
How it works ntlm_auth?
Also i don't know which line to add in users file with ntlm_auth ??
Can you help me please
regards,
-
List
Hi All
I am having a problem setting up a TX/RX for a user using Ascend-Data-Rate in
Radgroupreply.
I need to set them under group if i set them up for a single user it works fine.
in Table radgroupreply
I have group 1 Ascend-Data-Rate := rxspeed
2 Ascend-Data-Rate :=
Is it possible to use with freeradius the /etc/shadow (/etc/passwd) of
another server?
___
| | HOW? | |
-- | RADIUS | --- | /etc/shadow |
|__| |_|
Server 1
Hello,
how to hide User-Password in radacct logs
--
Nicolas Viers | Service Commun Informatique
Mél: [EMAIL PROTECTED]| 123, avenue Albert Thomas
| 87060 Limoges cedex
Tel:
Heres some GDB output from my redhat 8.0 box, that
freeradius 1.0.1 is crashing on..
rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded
and linked
rlm_sql (sql): Attempting to connect to [EMAIL PROTECTED]:/radius
rlm_sql (sql): starting 0
rlm_sql (sql): Attempting to
___
| | HOW? | |
-- | RADIUS | --- | /etc/shadow |
|__| |_|
Server 1 Server 2
I suppose there are always ways to achieve whatever you like. But the
Ok, probably the best choice is the proxy option. The only problem
(because I thought about my suggestion) is disk space on server 2.
The NFS solution is another possibility, but sharing that kind of files
could have security problems (not theoretically, but if I forget to do
something...)
On Tue, Feb 01, 2005 at 11:07:54AM +0100, Nicolas Viers - SCI Limoges wrote:
Hello,
how to hide User-Password in radacct logs
There's no standard way. You can patch rlm_detail sources or use
grep -v User-Password
on your detail logs.
As of debug mode, there's also a lot of places in server
On Tue, Feb 01, 2005 at 06:59:36PM +1100, Mitchell, Michael J wrote:
I'm attempting to build freeRADIUS 1.0.1 on Solaris 9 with ucd-snmp
4.2.6
I've been struggling to get the configure script to successfully
recognise ucd-snmp and thus enable it for compilation in freeradius. I'm
on Solaris
FYI
Fedora core 3 already has an rpm for freeradius it may be easier than the
config'ing yourself..
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Sun Shung
Sent: Tuesday, February 01, 2005 4:33 AM
To: freeradius-users@lists.freeradius.org
Subject: Re:
We have been unsuccessful in integrating a wireless environment utilizing a
Windows XP SP2 supplicant, a Cisco 1100 AP, and a freeradius server running
on Solaris 2.8. Specifically, we have been testing the developmental
version 1.0.2 after using the CVS snapshot suggested by Alan. This
Thanks Toby, but using mod_auth_radius is not an option since it is
specifically designed for Apache Webserver, but we are looking for a
general way of connecting to any webserver.
Anyways, I finally succeeded in making freeradius authenticate
properly with apache2. Here goes the correct scenario
I agree - I use Fedora Core and had problems compiling it - if you use 'yum' to
install the rpm package you should be fine.
Cheers
Mike
From: [EMAIL PROTECTED] on behalf of Cris Boisvert
Sent: Tue 01/02/2005 13:34
To: freeradius-users@lists.freeradius.org
Hello,
I have problems on FC1 freeradius 0.9.3 on failover and mysql db's. I use two
mysql db's replication. One master db and slave db.
So when master is down freeradius server go on on the second slave db whit
accounting.
So i think there is a bug in version 0.9.3 or sql/driver/module.
Hello,
I have problems on FC1 freeradius 0.9.3 on failover and mysql db's. I use two
mysql db's replication. One master db and slave db.
So when master is down freeradius server go on on the second slave db whit
accounting.
So i think there is a bug in version 0.9.3 or
Rizwan Khan schrieb:
Thanks Toby, but using mod_auth_radius is not
an option since it is
specifically designed for Apache Webserver,
but we are looking for a
general way of connecting to any webserver.
Does the setup via PAM als support one-time
passwords (i.e. when the user has a
Hi all,
[EMAIL PROTECTED] root]# cd /usr/local/apache/bin[EMAIL PROTECTED] bin]# ./apachectl start[Tue Feb 1 23:43:39 2005] [warn] Loaded DSO libexec/mod_auth_radius.so uses plain Apache 1.3 API, this module might crash under EAPI! (please recompile it with -DEAPI)./apachectl start: httpd started
I was tired of trying to find a quick way to fix this so I ended up
basically formatting the box and reinstalling. Everything works fine now.
Not sure what the problem was but it's now resolved.
Joe H.
On Fri, 28 Jan 2005, Joe H wrote:
On Thu, 27 Jan 2005, Alan DeKok wrote:
Joe H [EMAIL
sorry for starting a sidetrack, but you implicitly indicate that you
compiled CVS pre 1.0.2 successfully under Solaris, especially
the libltdl directory.
Well, we tried several pre-1.0.2 and I think several others, too
and it seems many got into the same trouble with libltdl.
I think some people
When i only connect freeradius to the slave db it works great! Same on only
master db!
I think there is a radiusd.conf problem i find on google more configs
old/and very old but not a working solution.
The fail-over document on the own radius directory is very old from 2000.
Okay thank you for
Does the setup via PAM als support one-time
passwords (i.e. when the user has a
token/chipcard generating new passwords for
every log-in)?
I haven't tried it using one time passwords but since
mod_auth_radius evolved from pam_radius_auth module, so it should work
fine.
Or do you have to
Do you know how to compile pre 1.0.2? (I really have problems!)
Here is how to get 1.0.0 and 1.0.1 to work on Sol 8 / 9.
Requirements:
gcc, gdbm, gmake, libiconv, openssh, openssl, tcp_wrappers, zlib
pkg_get (for openldap)
/etc/profile or /.profile
PATH=/opt/csw/bin:$PATH
Do you know how to compile pre 1.0.2? (I really do have problems!)
Here is how to get 1.0.0 and 1.0.1 to work on Sol 8 / 9.
Requirements:
gcc, gdbm, gmake, libiconv, openssh, openssl, tcp_wrappers, zlib
pkg_get (for openldap)
/etc/profile or /.profile
PATH=/opt/csw/bin:$PATH
Rizwan Khan schrieb:
A user gets authenticated for the first time (just once)
and then the
Auth_info(Cookie) is passed on to other files accessed
under the same
directory/subdir's until the session remains (i.e browser
window is
closed)
I hope ur question was answered!!!
Yes, many
Madhu Dubey [EMAIL PROTECTED] wrote:
Is IAPP (AP registration in ESS etc.) really suppported in Freeradius ?
No.
As always, patches are welcome.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alexander Serkin [EMAIL PROTECTED] wrote:
I need to build a username from CLID + some realm before authentication.
I.e. if no username - add attribute
User-Name = [EMAIL PROTECTED]
to the request and authenticate it then.
Please point me out to the appropriate module if its possible.
If
Craig Spiers [EMAIL PROTECTED] wrote:
0x400ec3e1 in sql_userparse (first_pair=0xbfffc83c, row=0x818ae48,
querymode=1) at sql.c:370
370 if (((row[3][0] == '\'') ||
That's bad. I assume that row[3] is NULL.
This says to me that the schema you're using is not the schema the
[EMAIL PROTECTED] wrote:
We have been unsuccessful in integrating a wireless environment utilizing a
Windows XP SP2 supplicant, a Cisco 1100 AP, and a freeradius server running
on Solaris 2.8. Specifically, we have been testing the developmental
version 1.0.2 after using the CVS snapshot
If I am using the fastusers module and I place a new user record in the
users_fast file do I need to execute a SIGHUP in order for the radiusd
process to load the modified file? I saw that there was a reload
paramater in the fastusers seciton of the radiusd.conf file.
Chris Price
Information
Has anyone tried to use MaxDB with freeradius?
Are the MySQL drivers the same?
Thanks,
--
Jorge
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
somehow two lines did not make it into the doc:
./configure.sh
should contain two more entries:
--with-ltdl-lib=/opt/csw/share/libtool/libltdl
--with-ltdl-include=/opt/csw/share/libtool/libltdl
or wherever find / -name ltdl.* finds the .h file.
Matthias Rumitz
TC Unix / Netzwerke
ADIVA
It appears that Acct-Output-Gigawords and Acct-Input-Gigawords still don't
exist in MySQL and other drivers in Freeradius. Is this accurate?
Has anyone got any recommendations for a radius server that supports these
without using PostgresSQL (very difficult for me at present)? Really, no
Hi all,
I am having a strange issue after upgrading my radius servers from
0.9.3 to 1.0.1. I am running on Redhat and as such have the following
init.d script:
-
#!/bin/sh
#
# radiusd Start the radius daemon.
#
#This program is free software; you
On Feb 1, 2005, at 2:08 PM, Steve Cole wrote:
It appears that Acct-Output-Gigawords and Acct-Input-Gigawords still
don't
exist in MySQL and other drivers in Freeradius. Is this accurate?
Has anyone got any recommendations for a radius server that supports
these
without using PostgresSQL (very
Does this mean... the client ip has to be 1.2.3.4 if not reject
Or if the client ip is this reject?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok
Sent: Monday, January 31, 2005 5:14 PM
To: freeradius-users@lists.freeradius.org
Subject: Re:
What is the best way to accomplish something like that:
(I hope this pseudocode is understandable)
If
Username == bob
and
Password == test
and
(
Calling-Station-Id == 123
or
NAS-IP-Address == 1.2.3.4
or
Another-Check-Attribute == foo
)
Then
Reply-Value = foo
...
On Feb 1, 2005, at 3:58 PM, [EMAIL PROTECTED] wrote:
What is the best way to accomplish something like that:
(I hope this pseudocode is understandable)
If
Username == bob
and
Password == test
and
(
Calling-Station-Id == 123
or
NAS-IP-Address == 1.2.3.4
or
freeradius users,
We noticed that as of in freeradius-1.0.0 and again in 1.0.1 that the
check-radiusd-config script is broken. This is because it used the
-p port option of radiusd, which is deprecated and ignored as of
freeradius-1.0.0.
If you ran check-radiusd-config while radiusd is running
I'd love to know that myself. It was my understanding also that
radeapclient could only do EAP-MD5. I'd desperately love to find a
command line peap or EAP-TTLS client.
On Tue, 25 Jan 2005 15:06:33 +0100 (CET), [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
Ron Wahler schrieb:
There is a test
Jorge Cuevas wrote:
Has anyone tried to use MaxDB with freeradius?
On a older box I have mysql-max-3.23.53a + freeradius up and runnning
and I can not remember that I have to change something to get this working.
--
Gerald
-
List info/subscribe/unsubscribe? See
[EMAIL PROTECTED] wrote:
It is easy to check multiple values for the same attribute type (e.g.
using regexp's with =~) but how can I check if a certain
check-attribute has a certain value and then ignore the remaining
check-attributes?
I've read processing_users_file and thought about
Thanks for the reply Paul!
The (undocumented, as it happens) --with-snmp-include-dir and
--with-snmp-lib-dir options should be able to take care of
having build ucd-snmp in your home directory.
Yep, I tried them... sadly, they don't seem to work for me. I had the
same problem with the LDAP
Chris Parker wrote:
On Feb 1, 2005, at 3:58 PM, [EMAIL PROTECTED] wrote:
What is the best way to accomplish something like that:
(I hope this pseudocode is understandable)
If
Username == bob
and
Password == test
and
(
Calling-Station-Id == 123
or
NAS-IP-Address == 1.2.3.4
or
You shouldn't have to edit rlm_ldap.c to get it to compile. The problem I had
(Solaris 9) was that the configure script did not add the path to the ldap
headers in the rlm_ldap Makefile, even though I had specified
--with-rlm-ldap-include-dir=blah to the configure script.
If you add the
Alan DeKok wrote:
[EMAIL PROTECTED] wrote:
It is easy to check multiple values for the same attribute type (e.g.
using regexp's with =~) but how can I check if a certain
check-attribute has a certain value and then ignore the remaining
check-attributes?
I've read processing_users_file and
On Tue, 01 Feb 2005 23:15:01 +0100, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Jorge Cuevas wrote:
Has anyone tried to use MaxDB with freeradius?
There was another post from a few days ago mentioning that MaxDB works
as-is without any need to change anything. Just recompile after MaxDB
is
On Tuesday 01 February 2005 17:28, Mitchell, Michael J wrote:
FreeRADIUS 1.1.0 supports net-snmp in ucd-compatibility mode.
If you want to patch 1.0.1 to also support this, I've got
patches in the Debian release of FreeRADIUS 1.0.1 which I
could split out if you like.
I don't recall if they
Ahh brilliant! Didn't find that in my searches!
Thanks Kevin!
This is probably what you're looking for:
http://lists.freeradius.org/archives/freeradius-users/2004/10/f
rm00210.html
Kevin Bonner
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thank you. Good point. Anyway, editing necessary.
Looking more into Make.inc I found a few strange things:
freeradius 1.0.1 compiles fine, but pre1.0.2 does not.
Especially those lib (libltdl and such) are defined different
in pre1.0.2 compared to 1.0.1 ... and again the only
way out seems to
[EMAIL PROTECTED] wrote:
The problem seems to be, again, that even one adds
--with-ltdl-lib=/opt/csw/share/libtool/libltdl
--with-ltdl-include=/opt/csw/share/libtool/libltdl
make does not seem to care about it.
I've found this to be the case with several (if not all) of the
--with-BLAH-lib
53 matches
Mail list logo
