On Monday 30 January 2006 19:06, Chris Knipe wrote:
Guess I could also use compiled libraries or something...
You can write an module for perl writen with XS language
see man perlxs
--
Best Regards,
Boian Jordanov
SNE
Orbitel - Next Generation Telecom
tel. +359 2 4004 723
tel. +359 2 4004
Hi,
why are encryption schemes for pap required?
it is supposed to be clear-text under all circumstances right???
we can see in radiusd.conf..
# PAP module to authenticate users based on their stored password
^^^
do you want
hi,
is there any simple tool(other than jradius) which can be used as radius
client and which can be used to test
mschap authentication??
if so, please give the packet contents for radius client and the users
file check-items.
--DilipSimha
-
List info/subscribe/unsubscribe? See
Hi,
just short question. Where should I put the
acct-status-type?
is it in users file?
Many thanks
Priscilla
__
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
-
List
Hello,
I use freeradius 1.05 with LDAP.
Now I do not use the RADIUS-LDAP-Schemata - because I think I do not
need it, all teh required Information is provided by the Schema I use (
I think :-) ).
Within the Schema I have an attribute szUserId which I want to return to
the client.
Now. this
DilipSimha.N.M wrote:
hi,
is there any simple tool(other than jradius) which can be used as radius
client and which can be used to test
mschap authentication??
if so, please give the packet contents for radius client and the users
file check-items.
1. run FreeRadius in debugging mode
2.
Ive tried to
insert a semicolon after the first query, but it didnt work, so Im
trying to modify the source code.
If I correctly
understood, I have to modify the file rlm_sql, creating an entry also for the
new defined query (e.g. mac_auth_query).
May I use as sample
postauth_query?
Check out http://www.activestate.com/
They have a couple of products that do what you want.
Laker
--- Chris Knipe [EMAIL PROTECTED] wrote:
Hi,
Is there any way to get rlm_perl to work with binary
code, instead of
source? I currently have a perl script executing
via rlm_perl that does
Hi.
I'd like to declare two different secrets for my radius server listening
on 0.0.0.0/0.
But if I declare two networks in the clients.conf file, like this:
client 0.0.0.0/0 {
secret = secret1
shortname = wildcard1
nastype = other
}
client 0.0.0.0/0 {
secret = secret2
shortname = wildcard2
How to disconnect on SNMP current session on NAS if the user it is authorized
and to be on-line. I think it it is possible to make
1. To use rlm_perl and in parameter acounting will specify a script which to
disconnect on snmp session.
Whether and there are still variants?
-
List
Hi,
Is there a way to configure freeradius to create a new MySQL accounting
database each month? (in example: jan_06_radacct, feb_06_radacct, etc). The
database should be created the first minute of the first day of each month.
This is required for backup/database size.
Thanks!
Edo
-
List
Good day.
I succesfully installed Freeradius_1.0.4 on
Red Hat Enterprise Linux ES release 3 (Taroon Update 3)
Kernel 2.4.21-20.ELsmp on an i686
It is work good.
Now i want to install Freeradius_1.1.0 on the same server and got an error
when do make
My configure (the same was for
You could try using the windows program NTRadPing from http://www.dialways.com/download/.It has a CHAP checkbox. HTH,Patrick
On 1/31/06, Phil Mayers [EMAIL PROTECTED] wrote:
DilipSimha.N.M wrote: hi, is there any simple tool(other than jradius) which can be used as radius client and which can be
You could create an external script. Probably will be easier than
modifying the FreeRADIUS source. Keep radacct for the current table and
create a script that copies that DB over to say jan06_radacct. The
script could be easily run from Cron.
Eduardo Bejar wrote:
Hi,
Is there a way to
Hi,
gmake[6]: Entering directory
`/u01/data/freeradius-1.1.0/src/modules/rlm_dbm'
/u01/data/freeradius-1.1.0/libtool --mode=link gcc rlm_dbm_parser.o
../../lib/li
bradius.a -L/usr/lib -lssl -L/usr/lib -lcrypto -lnsl -lresolv -lpthread -l
gdbm
-o rlm_dbm_parser
gcc rlm_dbm_parser.o -o
CHui [EMAIL PROTECTED] wrote:
Although it seems to work for me, I am not sure about the use of
attribute
Class for tracking user ID would interfere with other operation (like the
one attribute Class was originally designed for)?
It was designed for local sites to do whatever they wanted.
DilipSimha.N.M [EMAIL PROTECTED] wrote:
is there any simple tool(other than jradius) which can be used as radius
client and which can be used to test
mschap authentication??
radclient should really be updated to support MS-CHAP. It's not
hard. And it would be easier to do that than to
Priscilla B [EMAIL PROTECTED] wrote:
just short question. Where should I put the
acct-status-type?
is it in users file?
Huh? What are you trying to do?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Florian Prester [EMAIL PROTECTED] wrote:
Now. this LDAP-attribute (szUsesrId) is mapped by ldap.attrmap to User-ID,
this Radius-attribute (User-ID) is speziufied as an reply-item in the
users-file:
Does the radius client understand it? If not, there's no point in
putting it in LDAP, the
=?ISO-8859-1?Q?Te=F3filo_Ruiz_Su=E1rez?= [EMAIL PROTECTED] wrote:
I'd like to declare two different secrets for my radius server listening
on 0.0.0.0/0.
No.
It's impossible.
And it makes no sense. How does the server decide which secret to
use? Magic? Trial and error?
Alan DeKok.
CHui [EMAIL PROTECTED] wrote:
What should I do to get the Tunnel user name only instead of both send as
reply attribute Class?
Key off of the inner session to set Class.
DEFAULT FreeRADIUS-Proxied-To == 127.0.0.1
Class = %{User-Name},
...
Alan DeKok.
-
List
Yes. I can do that for you.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Use SQL groups based on
huntgroups
J.
--
Jonathan De Graeve
Network/System Administrator
Imelda vzw
Informatica Dienst
015/50.52.98
[EMAIL PROTECTED]
Van: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
Namens Vadimv82 (sent by
Nabble.com)
Verzonden: maandag 30 januari
On 1/31/06, Alan DeKok [EMAIL PROTECTED] wrote:
=?ISO-8859-1?Q?Te=F3filo_Ruiz_Su=E1rez?= [EMAIL PROTECTED] wrote:
I'd like to declare two different secrets for my radius server listening
on 0.0.0.0/0.
And it makes no sense. How does the server decide which secret to
use? Magic? Trial
Jason Frisvold [EMAIL PROTECTED] wrote:
Or am I misunderstanding his initial question?
It looked to me like he was asking how to configure clients of
0.0.0.0/0, with two different shared secrets. He even gave examples
of the config, which reference the client entry.
Alan DeKok.
-
List
On 1/31/06, Benjamin Bennett [EMAIL PROTECTED] wrote:
yes, but that requires defining each client more precisely than /0. For
example x.x.x.x/32 and y.y.y.y/32.
*oh* Ok, gotcha.. That didn't dawn on me as I specify each client
individually.. Just feels more secure that way..
His initial
Hi, I am trying to build the FreeRadius under Fedora
Core 4, I found many info on how to buil FreeRadius on
the Internet, which includes freeradius.org, and I
tried several times and different info from websites
but still without luck.
Anyone has any info with step-by-step on how to build
the
Patrick Bartkus wrote:
You could try using the windows program NTRadPing from
http://www.dialways.com/download/.
It has a CHAP checkbox.
CHAP and MS-CHAP are quite different.
josh.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Fedora Core 4 has prebuild rpm freeradius-1.0.4.-1.FC4.1
yum install freeradius will do it.
Hope this will help,
Min
-Original Message-
From:
[EMAIL PROTECTED]
freeradius.org
[mailto:freeradius-users-bounces+mqiu=globalinternetworking.co
[EMAIL PROTECTED] On Behalf Of Timolthy
Timolthy Keithy [EMAIL PROTECTED] wrote:
Anyone has any info with step-by-step on how to build
the Freeradius from scratch please share or point to
where I can obtain those correct info, I would like to
set it to work with PEAP, LEAP, TLS, and TTLS.
Perhaps you could explain the problems
Alan DeKok wrote:
=?ISO-8859-1?Q?Te=F3filo_Ruiz_Su=E1rez?= [EMAIL PROTECTED] wrote:
I'd like to declare two different secrets for my radius server listening
on 0.0.0.0/0.
No.
It's impossible.
And it makes no sense. How does the server decide which secret to
use? Magic? Trial
Joe Maimon [EMAIL PROTECTED] wrote:
Whats wrong with trial and error?
Yuck.
It also opens the door to any one of umpteen secrets.
I would like to know what the underlying requirements are, as
there's probably a better way of doing this.
Alan DeKok.
-
List info/subscribe/unsubscribe?
I tried to use huntgroups. Imagine i have users in group 'test', and they come from NAS Ip 192.168.4.23.
I tried to put in huntgroups following:
test NAS-IP-Address == 192.168.4.23, NAS-Port-Id == 0-7
Group = test
But if any of this users come from other IP and from Test group, he goes
I tried to use huntgroups. Imagine i have users in group 'test', and they come from NAS Ip 192.168.4.23.
I tried to put in huntgroups following:
test NAS-IP-Address == 192.168.4.23, NAS-Port-Id == 0-7
Group = test
But if any of this users come from other IP and from Test group, he goes
Vadimv82 (sent by Nabble.com) [EMAIL PROTECTED] wrote:
test NAS-IP-Address == 192.168.4.23, NAS-Port-Id == 0-7
^^^
What led you to believe that was accepted by the server?
Group = test
Group is an attribute which looks
Hello,
I have installed freeradius and get the next error
rlm_preprocess: Error reading /etc/raddb/huntgroups
radiusd.conf[971]: preprocess: Module instantiation
failed.
-rw-r--r-- 1 root root 1604 jun 23 2005
/etc/raddb/huntgroups
What must I change??
Alan DeKok wrote:
Joe Maimon [EMAIL PROTECTED] wrote:
Whats wrong with trial and error?
Yuck.
Probably.
It also opens the door to any one of umpteen secrets.
I would like to know what the underlying requirements are, as
there's probably a better way of doing this.
Dont know
Ok, I found in database a table called usergroups, there are users and groupnames they belong to, what are these groups then? Cuz i thought this might have been those groups i assing in huntgroups like:
Group=test
How do i use huntgroups to controll users from different NASes(different IP)?
Joe Maimon [EMAIL PROTECTED] wrote:
Dont know what his requirements are, but the ability to allow any client
in the world to authenticate to my server with any one of X secrets,
thereby allowing me to associate them to client Y as opposed to client Z
is very usefull wherever the IP
comments INLINE
Alan DeKok wrote:
"DilipSimha.N.M" [EMAIL PROTECTED] wrote:
is there any simple tool(other than jradius) which can be used as radius
client and which can be used to test
mschap authentication??
radclient should really be updated to support
Alan DeKok wrote:
Florian Prester [EMAIL PROTECTED] wrote:
Now. this LDAP-attribute (szUsesrId) is mapped by ldap.attrmap to User-ID,
this Radius-attribute (User-ID) is speziufied as an reply-item in the
users-file:
Does the radius client understand it? If not, there's no point in
41 matches
Mail list logo