Alan DeKok wrote:
Alexander Serkin [EMAIL PROTECTED] wrote:
No. It takes the time that the packet was received. The
Event-Timestamp attribute MAY be a lie.
oops. When and why? Have not seen a lie from cisco NASes yet.
Set the time wrong on the Cisco box, then look at Event-Timestamp.
Set
Hi
I have a range of APs that clients will connect to and then be
authenticated using .1x with freeradius.
Some of the APs have multiple SSIDs and VLANs. I know how to specify
the VLAN to use via freeradius but I can't seem to find an AVP that
will allow me to specify the SSID to use.
Is there
Hello
I want to do the authentication using MYsql on Radius. I was doing it
till now when i ended up with new query of my own. I developed a new
query for authentication which is not allowing me to enter. Help me
out with it.
authorize_check_query = SELECT DISTINCT
Hi Mark,
AFAIK, there's no standard way to specify it individually. You can
specify the Called-Station-Id in the format XX-XX-XX-XX-XX-XX:SSID to
select a particular SSID associated with a particular AP. If your
server allows the wildcarding of match criteria, you could specify
*:SSID for
We noticed a ***MAJOR*** problem with radius server
and logging accounting information to the SQL server.
The problem is, for whatever reason, if the SQL database
server dies and when the database server is restarted and come
back online, the radius server is still unable to continue
to log new
Folks,
I'd like freeradius to authenticate me to an Active directory using
mschapv2. Can it do that currently from the code it seems that it can
only do this for passwords stored locally.
Heres a comment from src/modules/rlm_mschap.c
/*
* Do the MS-CHAP stuff.
*
* This function is
Hi all,
I was hoping someone could explain to me why this very basic radius client
test program does not work. It seems simple enough. Everything's fine
except, the password received by the server is always garbled. I'm using
rad_alloc to create and packet and librad_md5_calc to encrypt the
Hello Martin,
You can use ntlm_auth to authenticate against an AD base.
First, test ntml_auth (part of winbind) from the command line and then, put
your line in radiusd.conf.
Take a look at the default file to see an example of this line.
Regards,
Stéphane
-Message d'origine-
De :
Hi.
Looks like this query will use quite a while to get executed.
What does the debug mode say? Any timeouts?
Regards,
Marcin Jessa
On Fri, 20 May 2005 13:16:20 +0500
Kamran Bukhari [EMAIL PROTECTED] wrote:
Hello
I want to do the authentication using MYsql on Radius. I was doing it
till
This looks like my radgroupcheck -- is that what you are using?
+---+---+++---+
| GroupName | Attribute | op | Value | HuntGroup |
+---+---+++---+
Yes, this is the standard MySQL table layout but with the addition of the
Stéphane,
Thanks for the help.
Martin
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of DELORT Stephane
Sent: 20 May 2005 12:48
To: freeradius-users@lists.freeradius.org
Subject: RE: Active Directory and mschapv2
Hello Martin,
You can use ntlm_auth to
Dear freeradius users,
I would like to use freeradius with the oracle module. Unfortunately,
the distribution I use does not include that module in the rpm.
I have downloaded version 1.0.2 to compile the package myself.
The configure log in modules/../rlm_sql_oracle/config.log complained
Hi all,
Have some questios about accounting.
When Acct-Start arrives, in which cases will freeradius reject or drop
that packet?
When Acct-Stop arrives, in which cases will freeradius reject or drop
that packet?
Any docs ?
The thing is this. I've read rlm_sql.c and found this ...
/*
* If
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Lucas Aimaretto
Sent: Friday, May 20, 2005 5:24 PM
To: freeradius-users@lists.freeradius.org
Subject: questions about accounting functioning
Hi all,
Have some questios about accounting.
what
Arun Mundray [EMAIL PROTECTED] wrote:
I was hoping someone could explain to me why this very basic radius client
test program does not work.
What's wrong with using radclient?
vp1 = (VALUE_PAIR *)malloc(sizeof(VALUE_PAIR));
What's wrong with calling pairmake()?
ppacket-vps = vp1;
Thomas Huber [EMAIL PROTECTED] wrote:
So I downloaded the client SDK from oracle (10.1.0.3) and installed it.
I then ran ./configure --with-rlm-sql-include-dir=/usr/include/oracle/
10.1.0.3/client
Apparently, this is not the right way of doing it.
Could you explain why you think that?
Ming-Ching Tiew [EMAIL PROTECTED] wrote:
The problem is, for whatever reason, if the SQL database
server dies and when the database server is restarted and come
back online, the radius server is still unable to continue
to log new accounting information to it, ie it seems the connection
OK, I've made some progress with this (thanks for the tips), but
so far my script still isn't executing. This is what I have
in radiusd.conf:
exec grabmschap {
wait = yes
program = /usr/local/sbin/radius-local-or-remote-domain.pl
input_pairs = request
output_pairs =
Arun Mundray [EMAIL PROTECTED] wrote:
Thanks for you prompt reply, Alan. I'll follow your advice. The reason I
havent used the pair functions is because although I spotted the API
header, havent spotted any instructions on how they are used?w
Look at how existing code uses them.
This
what accounting are you thinking about? there're some
possibilities.. I assume now mysql with the default setup..
yes, mysql ...
When Acct-Start arrives, in which cases will freeradius
reject or drop that packet?
reject ? probably only if i.e. the client secret is wrong,
the packet is
Thomas Boutell [EMAIL PROTECTED] wrote:
OK, I've made some progress with this (thanks for the tips), but
so far my script still isn't executing. This is what I have
in radiusd.conf:
See scripts/exec-program-wait. It is an example program which
includes simple documentation.
exec
On Thu, 19 May 2005, alan walters wrote:
Please post radiusd -X output. Specifically the part on ldap searches and
where the USERS file is matched.
Relevant part of radius -X
(auth is successful and group correct)
clipping most of it for readability
rad_recv: Access-Request packet
A local user can log on but a user using the default system password file
can not log on. I've look at the debug but I'm not sure I understand the
problem and how to correct it. I believe this is the problem; modcall:
entering group authenticate, modcall[authenticate]: module unix returns
Hi,
I want to have FreeRadius work with an SQL for user validation, time
discounting... I've configured ./configure with experimental-module, make
and make install.
I've entered an sql entry under accounting { } section of radiusd.conf,
I´ve created a file called sqlcounter.conf with:
sqlcounter
John Riggs [EMAIL PROTECTED] wrote:
A local user can log on but a user using the default system password file
can not log on. I've look at the debug but I'm not sure I understand the
problem and how to correct it. I believe this is the problem; modcall:
entering group authenticate,
Hi.
The error you received indicates your radius server cannot connect to any
database.
You can use this database for your setup:
http://www.yazzy.org/configs/linux/freeradius/radius.sql
Cheers,
Marcin Jessa
On Fri, 20 May 2005 16:40:28 -0400
Software Development Group [EMAIL PROTECTED] wrote:
Good Evening all,
I am not sure if anyone has run into this on FreeBSD-4.11 or not,
but I am trying to upgrade from freeradius 1.0.1 to 1.0.2_1
and keep getting errors from the `make` command.
It appears to build just fine without any Database Options,
but my current build has MySQL and
27 matches
Mail list logo
