[EMAIL PROTECTED]:~/freeradius/raddb$ radiusd -v
radiusd: FreeRADIUS Version 2.0.0-pre0, for host x86_64-unknown-linux-gnu,
built on Jan 29 2007 at 13:36:2
tzieleniewski wrote:
...
modcall: entering group preacct for request 1
Naruszenie ochrony pamięci (translation - memory segmentation
On Wed 07 Feb 2007 07:30, Bernard Ochieng wrote:
Hello All,
I have configured FreeRADIUS to do bandwidth and authentication together
with the BAM server, however the RADIUS does authenticate but it fails on
BAM hence the CPEs are not authenticated and registered by the Access
Points. Anyone
Phil Mayers wrote:
Mikko Husari wrote:
Mikko Husari wrote:
Hi!
im currently running eap-tls with username and password (from ldap), but
now we're having a bunch of stupid wlan-client machines, and we need
an simple mac-auth (from ldap?) to the network. basic idea: (example
Hi!!
I was setting up the sqlcounter module and I needed to set the group parameter
in
the radgroupcheck table in order to set the limit values for sqlcounter. I
found out
that sql module doesn't work correctly. I set the read_groups parameter in the
sql.conf file to 'yes' and despite that the
Bernard Ochieng wrote:
What do you mean by fails on BAM?
BAM does not accept the the authenticated elements from the FreeRADIUS hence
CPEs are not registered to the respective APs.
Perhaps you could try explaining in more detail, and using fewer acronyms.
i.e. BAM? What's that? You
On Thu 08 Feb 2007 05:54, Guilherme Franco wrote:
Hi,
I did run valgrind radiusd -xxx at Wed Feb 7 19:15:08 2007 and at
Wed Feb 7 20:59:04 2007 radiusd DIED.
Afterwards, service radius restart would not work and of lots of
Error: Internal error processing module entry, Error:
tzieleniewski wrote:
I am trying to use radius as the accounting server for Sip proxy.
After i send the Accounting request to radius the radius server brokes down
and informs about memory segmentation fault. Please point me what could be
the reason for this.
Here is the radius debug
Alan,
Thank you for your e-mail in which you have sort more explanation on the
problem.
We have deployed Motorola Canopy network using Access Points(AP) and
Subscriber Modules(SM) to provide fixed wireless broadbadn solution to our
customers. Motorola have a management software known as PrizmEMS
Hello,
I have accouning packet with attributes like:
Acct-Session-Id = 0/0/1/3_01CC
Cisco-AVPair = client-mac-address=000f.ea20.e1ad
Framed-Protocol = PPP
Framed-IP-Address = 192.168.0.235
User-Name = global
Cisco-AVPair = connect-progress=LAN Ses Up
Hi
I sent two ldapentry ldapsearch result and debug. In this ldapsearch there
is clear-text userPassword. anyway i decribe the problem shortly for your
help.
like in howto
authorize {
preprocess
files
ldap
eap
}
authenticate {
ldap
eap
}
ldapsearch result
userpassword=ramazan
Giovanni Lovato wrote:
I'm using FreeRADIUS 1.1.4 compiled from sources on Debian Etch.
I backend against LDAP with hashed password. Now I'm trying to configure
authentication to use with WPA, but it segfaults on calling PAP:
I've committed a fix for that bug, thanks.
Alan DeKok.
--
Hello,
This is my First post on this mailing list, so sorry if I am in the
wrong place!!
I am having problems getting the Radius Serv to validate my VPN clients.
Reading through the mail archives, I have found similar subjects, but
the main difference I have is the fact that I don't have
Victor [EMAIL PROTECTED] writes:
I have accouning packet with attributes like:
Acct-Session-Id = 0/0/1/3_01CC
Cisco-AVPair = client-mac-address=000f.ea20.e1ad
Framed-Protocol = PPP
Framed-IP-Address = 192.168.0.235
User-Name = global
Cisco-AVPair =
Hi!
I have just compiled the latest CVS and whenever I try to start radius I get
the following info:
Configuration file /home/radius/freeradius/raddb/radiusd.conf is globally
readable.
This is because I use the symbolic links to files. Can this restriction be
somehow removed??
Bests
-tomasz
tzieleniewski wrote:
Hi!
I have just compiled the latest CVS and whenever I try to start radius I get
the following info:
Configuration file /home/radius/freeradius/raddb/radiusd.conf is globally
readable.
This is because I use the symbolic links to files. Can this restriction be
robert wrote:
A log sent from the Radius Admin shows that the mschap module fails to
find User-Password (this is how I have understood it!) and refuses to
validate the user.
Yes. The server does not know what the correct password is for the
user, so it can't authenticate the user.
Ask
Hello,
Thank you for the consulting offer Mr. Peter but, as you told, there
seems to be some bugs in the rlm_sql oracle driver.
As everything was good before and now it's breaking, the most probable
cause is the increase in the number of auth users, which brings lots
of acct (0 users in
robert wrote:
A log sent from the Radius Admin shows that the mschap module fails to
find User-Password (this is how I have understood it!) and refuses to
validate the user.
here is the part I am talking about:
FROM Radius log:
auth: type MS-CHAP
Processing the
Guilherme Franco wrote:
As everything was good before and now it's breaking, the most probable
cause is the increase in the number of auth users, which brings lots
of acct (0 users in September 2006 and now with 4000 online users
pumping radacct). The oracle tables are well indexed so the
I write a program to send Access-request packet to the Radius server.
The packet format is as follow:
__
| code = 1 | ID = 1 |Length = 73 ( 0x 00 49 )
|
Hello Mr. Alan,
Thank you for your concern!
Just another message I've seen under /var/log/messages:
kernel: radiusd[1672]: segfault at 0110 rip
002a97de2c1e rsp 007fbfffe340 error 4
Gonna implement radrelay now, then! (I was holding back because I've
seen somewhere in this
Hi,
I am using freeradius for ages, but a boss ask me if it is possible to create an account which is only navigate for a specific website. Yes, it is true. I need an account to navigate for only one site (or set of websites). How can I configure this account?
Thanks.Acepta el reto MSN Premium:
Alan DeKok wrote:
robert wrote:
A log sent from the Radius Admin shows that the mschap module fails to
find User-Password (this is how I have understood it!) and refuses to
validate the user.
Yes. The server does not know what the correct password is for the
user, so it
Phil Mayers wrote:
robert wrote:
A log sent from the Radius Admin shows that the mschap module fails to
find User-Password (this is how I have understood it!) and refuses to
validate the user.
here is the part I am talking about:
FROM Radius log:
auth: type
In my configuration there is also pap in my configuration, i forgot to
write in mail. I resend authentication block in radius.conf
authenticate {
Auth-Type PAP {
pap
}
ldap
eap
}
On 2/8/07, Ramazan Ulker [EMAIL PROTECTED] wrote:
Hi
I sent two ldapentry ldapsearch result and debug. In
On Thu, Feb 08, 2007 at 01:52:18AM +0100, Alan DeKok wrote:
You can run eapol_test directly from FreeRADIUS, but that's not much
better than what you're doing right now.
Huh, I was afraid you might say that :| Alright, thank you Alan.
--
NAME:Dinko.kreator.Korunic
Frank,
That worked! Thank you! Prior to this the Nortel device would just
instatntly kick back an error. By the way, do you have a list of all the
reply-itmes for authenticating (telnetting/ssh) to a Nortel box? In other
words, is there a specific reply-item than controls access (R - R/W
yao guoxian wrote:
I write a program to send Access-request packet to the Radius
server.
This list isn't a general discussion for questions about implementing
RADIUS clients.
You have access to the FreeRADIUS source code, read it to see how
RADIUS should be implemented.
|
Hi!
I am trying to process Accounting request to radius but I get the following
error from sql module:
rlm_sql (sql): Unsupported Acct-Status-Type = 15
I have added the $INCLUDE dictionary.ser line to the dictionary file and the
dictionary.ser file contains the following records:
VALUE
Just curious what the minimum modules required to use Freeradius to
authenticate (not sure if that is the correct terminology) from and
Oracle DB. Keep in mind that I am only planning on querying the DB and
not updating or inserting information for accounting purposes. However,
I wouldn't rule
On Sun, Feb 04, 2007 at 01:20:17PM +0100, Federico Giannici wrote:
Unfortunately it works with PAP only!
With CHAP it gives me rlm_chap: Clear text password not available...
Any suggestion?
You may try to stick with User-Password for now, it's still recognized by
rlm_pap. CVS version of
I didn't meen a mistake, but was wondering if my radiusclient had a
wrong mapping, that requests NT-password instead of
User-password (as an
example)
Here is the output from the radius server:
Ready to process requests.
rad_recv: Access-Request packet from host
Alan DeKok napisa(a):
tzieleniewski wrote:
I am trying to use radius as the accounting server for Sip proxy.
After i send the Accounting request to radius the radius server brokes down and informs about memory segmentation fault. Please point me what could be the reason for this.
Alan DeKok napisa(a):
tzieleniewski wrote:
I am trying to use radius as the accounting server for Sip proxy.
After i send the Accounting request to radius the radius server brokes down and informs about memory segmentation fault. Please point me what could be the reason for this.
Alan DeKok napisa(a):
tzieleniewski wrote:
I am trying to use radius as the accounting server for Sip proxy.
After i send the Accounting request to radius the radius server brokes down and informs about memory segmentation fault. Please point me what could be the reason for this.
Phil Mayers wrote:
Dan Mahoney, System Admin wrote:
My suggestion is that you use a custom schema and queries for your
database - probably a stored procedure. Pass the NAS-IP-Address into
these queries, and return different values based on the nas. Effectively
you move the code that
tzieleniewski wrote:
Hi!
I am trying to process Accounting request to radius but I get the following
error from sql module:
rlm_sql (sql): Unsupported Acct-Status-Type = 15
I have added the $INCLUDE dictionary.ser line to the dictionary file and the
dictionary.ser file contains the
Brian Atkins wrote:
Just curious what the minimum modules required to use Freeradius to
authenticate (not sure if that is the correct terminology) from and
Oracle DB.
The oracle module is required. Not much else.
Which generates an error:
rlm_perl.c: In function
On Thu, 8 Feb 2007, ChristosH wrote:
No, wrong.
You can include any %{check-item} in your query. I didn't have to modify
the code at all, but my queries are PERVERSE. Yours will probably be
simpler.
If you want to give me your proposed database setup and schema, and what
you need to auth
Hello Alan.
Thank you, as you adviced i've changed users file, now it's :
MYDOMAIN\\jose
Tunnel-Type += VLAN,
Tunnel-Medium-Type += IEEE-802,
Tunnel-Private-Group-Id += 3
The Access-Accept part of radiusd -X is now sending the switch the correct
information:
On Thu, 8 Feb 2007, ChristosH wrote:
Phil Mayers wrote:
A stored procedure is one solution to a particular set of problems.
Whether it's appropriate depends on what you're trying to do.
What do you want to achieve? You can certainly vary the reply info based
on NAS without a stored
On Thu, 8 Feb 2007, Oxiel Contreras wrote:
The Access-Accept part of radiusd -X is now sending the switch the correct
information:
modcall[authenticate]: module eap returns ok for request 8
modcall: leaving group authenticate (returns ok) for request 8
Sending Access-Accept of id 1 to
On Thu, 8 Feb 2007, Dow, Corey wrote:
up, and I have it working with a single ADS domain. The problem I've
encountered is performing authentication against multiple ADS domains using
ntlm_auth.
ADS Parent domain netidm.net
ADS Child domain xyz.abc.com
Are you actually trying to authenticate
Hi..
FR:1.1.2
FBSD:6.0
My rlm_perl keep logging error as example below. Everytime this happen
radiusd will hang and DO NOT respond to any request.
But this NEVER happen while running in debug mode and working fine.
rlm_perl is used to load timeout based on certain rules.. u can
Gaddis, Jeremy L. wrote:
The immediate question that comes to mind is Does FreeRADIUS reread its
configuration when it receives a -HUP?.
The immediate answer is have you tried reading the documentation?
Alan DeKok.
--
http://deployingradius.com - The web site of the book
Hi,
My users said the VPN login failed with their Windows Vista.
I enabled freeradius debug. I came across an authentication method,
md5chap in debug output that my freeradius is currently not configured
to support. If the user unselects Require Data Encryption in VPN. It
then works fine.
Can
46 matches
Mail list logo