No. It is IMPOSSIBLE for Auth-Type to be in a RADIUS packet.
I've commented line in users file
#DEFAULT Auth-Type := Digest
But now I've got following message if non-digest message arrive:
rad_recv: Access-Request packet from host 153.19.130.250:46963, id=190,
length=80
User-Name =
Hi allIs there any way that the Radius server could instruct the Acess Point to assign a range of IP Adresses for a specific VLAN. Or this coniguration needs to be done in the Acess Point itself. I couldnt find any option to do this in the Acess Point. btw I use Proxim4000. Pls throw some
GlobeInPhotos wrote:
I've commented line in users file
#DEFAULT Auth-Type := Digest
Finally.
That line? That *was* you setting Auth-Type to Digest.
But now I've got following message if non-digest message arrive:
rad_recv: Access-Request packet from host 153.19.130.250:46963, id=190,
Aleksandar Stojilkovic wrote:
Aleksandar Stojilkovic wrote:
Hello,
My log is full of this kind of errors:
Wed Jul 26 02:55:54 2006 : Error: Discarding duplicate request from
client APMajur:2048 - ID: 27 due to unfinished request 11$
Don't post to the list in HTML. Awful HTML at
radhika putty wrote:
Hi all
Is there any way that the Radius server could instruct the Acess Point
to assign a range of IP Adresses for a specific VLAN. Or this
coniguration needs to be done in the Acess Point itself. I couldnt find
any option to do this in the Acess Point. btw I use
You are absolutly right :) Today in the mornign we set Auth-Type exactly the
same way as you propose :) Now it works.
Thanx
Quoting Phil Mayers [EMAIL PROTECTED]:
GlobeInPhotos wrote:
I've commented line in users file
#DEFAULT Auth-Type := Digest
Finally.
That line? That *was* you
--- James J J Hooper [EMAIL PROTECTED] wrote:
Hi,
We had similar problems. An example of what we put
in the switch config
to get it to work is here:
http://www.bristol.ac.uk/is/computing/advice/networks/documentation/dot1x/cisco.html
... as Josh said - pay particular attention to the
--- James J J Hooper [EMAIL PROTECTED] wrote:
Hi,
We had similar problems. An example of what we put
in the switch config
to get it to work is here:
http://www.bristol.ac.uk/is/computing/advice/networks/documentation/dot1x/cisco.html
... as Josh said - pay particular attention to the
--On Friday, July 28, 2006 02:36:42 -0700 Thai Duong [EMAIL PROTECTED]
wrote:
--- James J J Hooper [EMAIL PROTECTED] wrote:
Hi,
We had similar problems. An example of what we put
in the switch config
to get it to work is here:
--- Thai Duong [EMAIL PROTECTED] wrote:
Attachment is the debug log of freeradius, please
take
a look at it. It's been two weeks and I still can
not
make this work. Deadline is comming, please help.
Regards,
Thai Duong.
Sorry forgot to attach the debug log.
Hi Users
I have been using
FreeRadius-1.1.2 with Mysql database For accounting purpose
only with combination of Sip-Express-Router
So, here what's my problem is some accounting details are very fair but
some are getting very rough data :- that means when call starts it logs
like 4 to 5 records
OK, i guess, i should paste that anyway, so here it is, hope it helps:
rad_recv: Access-Request packet from host 192.168.1.1:2051, id=0, length=121
User-Name = root
NAS-IP-Address = 192.168.1.1
Called-Station-Id = 0016b6016815
Calling-Station-Id = 00130237d9db
And here is the example of sucessful logon with radtest:
radtest bbb badblueboy 192.168.1.129 1 testing123
rad_recv: Access-Request packet from host 192.168.1.129:35640, id=191,
length=55
User-Name = bbb
User-Password = badblueboy
NAS-IP-Address = 255.255.255.255
Hello, as you can see, i must be pretty desperate to register somewhere so i
can ask for help. Anyway, the situation is: i recently set up a freeradius
server with openldap for auth., everything seemed to work great (radtest
returns access-accept ), until i tried to login via notebook and
Hi,I have this error, when i client log in:Fri Jul 28 12:49:55 2006 : Debug: Processing the post-auth section of radiusd.confFri Jul 28 12:49:55 2006 : Debug: modcall: entering group post-auth for request 0
Fri Jul 28 12:49:55 2006 : Debug: modsingle[post-auth]: calling professori (rlm_ippool) for
--- James J J Hooper [EMAIL PROTECTED]
wrote:
Hi,
We had similar problems. An example of what we
put
in the switch config
to get it to work is here:
http://www.bristol.ac.uk/is/computing/advice/networks/documentation/dot1x/cisco.html
... as Josh said - pay particular
ravi reddy [EMAIL PROTECTED] wrote:
So , how can I set the FreeRadius server so that it logs for one call only
one record?.
You fix the NAS to send only one record for one call. The server
does not control how many records are sent for one call. The NAS does.
Or, you write a custom
Stuckzor [EMAIL PROTECTED] wrote:
Hello, as you can see, i must be pretty desperate to register somewhere so i
can ask for help. Anyway, the situation is: i recently set up a freeradius
server with openldap for auth., everything seemed to work great (radtest
returns access-accept ), until i
Elie Hani [EMAIL PROTECTED] wrote:
I have this error in the log file:
rlm_sql: packet has no account status type. [user '', nas x.x.x.x]
...
Any idea?
The NAS is broken, and sending accounting packets that don't follow
the RFC's.
I note also that you were careful to NOT show the
Here are parts of my config as well as parts from debug, and I must be doing
something wrong or missed something.
I am trying to set the NAS-Identifier, since it is not sent in the
access-request packet, and use this later in the post-auth section.
As you can see, later in the post-auth section,
, and refuses to
do so unless the record is more than 3 characters long (rlm_dbm_parser.c,
line 158, inside function 'static int storecontent' as per
freeradius-snapshot-20060728):
static int storecontent (const char * username) {
datum d,k;
int res;
if ( pdb == NULL || concntr
Giuseppina Venezia wrote:
users
DEFAULT Service-Type == Framed-User, Huntgroup-Name == professori,
User-Profile:=employeeType=professor, Pool-Name := professori
Fall-Through = Yes
If the ippool module is saying Pool-Name is not found, then these
entries must not be matching. Run
Duane Cox wrote:
users file (lines 18-21)
DEFAULT NAS-IP-Address == 192.168.0.251, NAS-Identifier := LAB_CCU
Fall-Through = Yes
DEFAULT User-Name =~ ^6[0-9a-f]:[0-9a-f]\{2}:[0-9a-f]\{2}$, Post-Auth-Type
:= waverider
Attribute := Value
Always matches as a check
I am trying to make use of a variable that should be stored
as: %{config:client[%{Packet-Src-IP-Address}].shortname}
Alan discusses it here...
http://lists.cistron.nl/pipermail/freeradius-devel/2005-March/008105.html
states it is in CVS back in MARCH 2005 and I am running v1.1.2
and my client
On 7/28/06, Phil Mayers [EMAIL PROTECTED] wrote:
If the ippool module is saying Pool-Name is not found, then theseentries must not be matching. Run FreeRadius under debugging with the -Xargument, and watch for the bit where it processes the authorize
section - see what entries are matched in the
Duane Cox [EMAIL PROTECTED] wrote:
Alan discusses it here...
http://lists.cistron.nl/pipermail/freeradius-devel/2005-March/008105.html
states it is in CVS back in MARCH 2005 and I am running v1.1.2
It's not in 1.1.2, sorry.
Alan DeKok.
--
http://deployingradius.com - The web
Hi All,
I'm trying to add a user to a vlan based on an ldap attribute. I've checked
out: http://vuksan.com/linux/dot1x/802-1x-LDAP.html annd saw the following
would have to be added to the user's ldap record:
radiusTunnelMediumType: IEEE-802
radiusTunnelType: VLAN
radiusTunnelPrivateGroupId: 2
I'm trying to add a user to a vlan based on an ldap attribute. I've checked
out: http://vuksan.com/linux/dot1x/802-1x-LDAP.html annd saw the following
would have to be added to the user's ldap record:
radiusTunnelMediumType: IEEE-802
radiusTunnelType: VLAN
radiusTunnelPrivateGroupId: 2
Yes
One way to do that is to use LDAP groups. If your users are in
dedicated LDAP groups, then a rule like the following in your users
file will do the trick:
DEFAULT Huntgroup-Name == myAP, Ldap-Group == Engineering
User-Name=`%{User-Name}`,
radiusTunnelMediumType: IEEE-802
Hi All
I have installed rpm freeradius-1.0.4-1.FC4.1 on Fedora core 4, however I have the following problems, whe I use radtest for test my server
radtestkiko kako99 localhost 1812 testing123Sending Access-Request of id 215 to 127.0.0.1:1812 User-Name = vlal User-Password = vita99
On freeradius-1.0.4-1.FC4.1 come with fedora core 4.
I want to authorize either UNIX user (/etc/passwd/) or LDAP user.
/etc/raddb/users file is:
DEFAULT Auth-Type = System
Fall-Through = 1
I success with both LDAP user and UNIX user with /etc/raddb/radiusd.conf
is: authorize {
ldap
31 matches
Mail list logo