nikitha wrote:
When the request comes to the radius server, it goes one entry by entry
in users file, ie., It connects to ldap-server-1 with the Ldap-Group
tries from g1 till g20, and then connects to ldap-server-2 with
Ldap-Group from g21' till g50. If the user is part of Ldap-group g50
it
Stephen Bowman wrote:
When using EAP-TLS as the only method in freeradius, is there a way to
define a list of allowed users, perhaps by the CN on their client
certificate?
Or the User-Name attribute, which should be the same as the client CN.
Alan DeKok.
--
http://deployingradius.com
Michael Griego wrote:
Revision 1.79 to src/main/request_list.c
But the code in branch_1_1 looks like the revision 1.79, not 1.78. So
I'm unclear as to why it's an issue.
Maybe something else?
Alan DeKok.
--
http://deployingradius.com - The web site of the book
On Fri 16 Feb 2007 15:52, Max Jonborn wrote:
Hi!
What does the TTY stand for when i do a radwho?
//Max
The same thing it stands for when you type who or w :-)
Cheers
--
Peter Nixon
http://www.peternixon.net/
PGP Key: http://www.peternixon.net/public.asc
-
List info/subscribe/unsubscribe?
On Sat 17 Feb 2007 02:44, Alan DeKok wrote:
P.S. Alan, I would definitely think this (LVS + FreeRADIUS) would
be a good topic for your book
I plan on having a chapter on that, yes. I've been trying to get Xen
installed on a machine, without much luck. (Xen gets part way
Hi all,
I've a Freeradius working fine with mysql. I put my users on table
usergroup and I put the attributes to verification of the authentication
on the table radgroupcheck. (Because I'm making the MAC authentication
and the password is the same for all clients).
Now I need that the
Ok, so I put a list of usernames in the users file with an Auth-Type := EAP
?
Right now, everyone with a valid client certificate is authenticated (nobody
is listed in the users file). Once I start enumerating them in the users
file, will it have an implicit deny all of everyone who isn't in
On Thu, 15 Feb 2007, affora deeb wrote:
but i knew that slackware is the most secure and flexible and greater than
any other os
so what do u think
Sadly, I think you were grossly misinformed.
--
Jeremy L. Gaddis, MCP, GCWN [EMAIL PROTECTED]
LinuxWiz Consulting
Stephen Bowman wrote:
Ok, so I put a list of usernames in the users file with an Auth-Type :=
EAP ?
No. Setting Auth-Type is almost always wrong. In this case, it will
do nothing.
Instead, put the good users into a group (see man rlm_passwd).
Then, reject everyone who isn't in that
9 matches
Mail list logo
