On 2/13/07, Alan DeKok [EMAIL PROTECTED] wrote:
Senandung Mendonan wrote:
Problem: EAP Fails (Doesn't even get to TLS negotiation). In both
cases, we get perpetual Access-Challenge messages sent by
FreeRADIUS, at a very early stage — even before / during the initial
TLS negotiation in
Senandung Mendonan wrote:
radiusReplyItem: cisco-avpair += tunnel-type=VLAN
radiusReplyItem: cisco-avpair += tunnel-medium-type=802 media
radiusReplyItem: cisco-avpair += tunnel-private-group-ID=110
That's wrong. It should just be:
radiusReplyItem: tunnel-type=VLAN
radiusReplyItem:
Hi All
I am a newbie to freeradius. I am trying to use freeradius as an
authentication server along with a WRT54G Linksys (Cisco) access point.
On the client side i have a windows machine where i have enabled PEAP
authentication, through which it asks me for user name and password.
The
Anuj Tripathi wrote:
I am a newbie to freeradius. I am trying to use freeradius as an
authentication server along with a WRT54G Linksys (Cisco) access point.
On the client side i have a windows machine where i have enabled PEAP
authentication, through which it asks me for user name and
Angel L. Mateo wrote:
Hello,
I have running freeradius authenticating against an openldap directory.
In my configuration I have this:
log_auth = yes
...
That doesn't affect the detail file. Hint: those configurations
aren't in the section labelled detail.
But I can see
It still gives the same problem.
Do i need to make some changes in eap.conf ?
What are the minimal changes required for using Freeradius for PEAP
authentication ?
Following is the response that i am getting :
rad_recv: Access-Request packet from host 10.129.20.111:3591, id=0,
length=169
We are using a Cisco ASA Firewall for VPN access (lika a VPN3000).
The RADIUS server should authenticate our users and assign them a
group policy. Somewhere I read that I have to send the CLASS
attribute in the RADIUS reply to assign the grou policy to a user.
When I look at the debug output
Anuj Tripathi wrote:
It still gives the same problem.
No, it doesn't. The output is different.
Do i need to make some changes in eap.conf ?
What are the minimal changes required for using Freeradius for PEAP
authentication ?
See the Wiki.
Following is the response that i am getting
Assuming you have your reply table set up properly the following should
work:
id UserName Attribute Value op
1test.user Class TestGroup ==
I've used this set up for 3 years with both Cisco 3000's and for the
past year with ASA 5000's and it works like a charm.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I think the Auth-Type value is the problem, try to use an entry like
username User-Password = pass
without explicit the Auth-Type value.
but if it works i do not realy understand why it works :)
i'm a freeradius newbie too.
arjuna
-BEGIN
I got this working - Thanks for all the useful posts
in this forum.
now the problem is that when a user logs off of the
windows machine, we still want to be able to manage
the system so we need to put a certificate on the
machine store (not just the user store, personally I
don't like how
Thanks it works now. The problem was a conflict with attributes of an
other vendor.
Is there a possibility in freeradius to configure a kind of attribute
filter for different clients types. At our special case we would like
to return the Class Attribut to our firewall but the attributes
I used radeapclient to test authentification with EAP-MD5
radeapclient -s -x 127.0.0.1 auth testing123 reqAmin.txt
reqAmin.txt :
User-Name = ali
EAP-MD5-Password = ali
NAS-IP-Address = 127.0.0.1
EAP-Code = Response
EAP-Id = 210
EAP-Type-Identity = ali
Message-Authenticator =
Hi,
I'm using freeradius on a SUSE 10 server. I'm using it to authenticate
WPA2 wireless clients to Novell eDirectory. There is a twofold process.
Being a school security is quite an issue.
Each student is issued with a certificate that is used to authenticate
him to the radius server. The
Hi,
I am trying to install Freeradius server on my SUN Solaris 2.8 unix server.
After installed gcc.2.95. During ./configure it gives error below
checking for gmake... no
checking for make... /usr/ccs/bin/make
configure: error: GNU Make is not installed. Please download and install
Hi,
I am trying to install Freeradius server on my SUN Solaris 2.8 unix server.
After installed gcc.2.95. During ./configure it gives error below
checking for gmake... no
checking for make... /usr/ccs/bin/make
configure: error: GNU Make is not installed. Please download and install
El mié, 21-02-2007 a las 13:32 +0100, Alan DeKok escribió:
In 1.1.4, yes. See radiusd.conf, look at the detail section.
But I have 1.1.3 :-(. Is there any way without needing to upgrade?
--
Angel L. Mateo Martínez
Sección de Telemática
Área de Tecnologías de la Información
17 matches
Mail list logo