I don't your problem have anything to deal with simultaneous-use checking...
Indeed, when enabled Sim-Use would REJECT NEW users trying to connect to if the
login used has reached the limit What you say is that new user (same login)
disconnect existing session... This sounds more like
Hi there
There are a lot of places on the net which talk about how PAM cannot
work with CHAP on the RADIUS server.
Will an implementation of freeRADIUS client with CHAP and
PAM(pam_radius_auth) module work?
Please point me to the appropriate link.
Thanks
-Vinay
-
List
Hi all,
I want to setup radius database in mysql I browse through wiki and
found an artical SQL How to http://wiki.freeradius.org/SQL_HOWTO I
went through step by step and when in the last i tried to run radiusd ... I
ended up with following error:
Module: Linked to module rlm_sql
your freeradius seems to be compiled/installed without the mysql extensions
rlm_sql_mysql
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
It seems like your NAS sends accounting Stop for the previous session (nas-port
is different) after receiving the response of of the accounting Start (for the
new session)... this would show your NAS ask the radius to notice a
disconnection hit has decided...
I don't know how netscreen works,
Hi Alan,
Thanks for the pointer to eapol_test.
I was able to test radius for PEAP.
It worked.
Regards
Prasad
On Tue, Nov 18, 2008 at 6:17 PM, Alan DeKok [EMAIL PROTECTED]wrote:
Prasad Parab wrote:
Hi Alan,
Thanks for yot reply.
Bassically i have wireless adapter which has a utility
I'm sorry but how to compile/install it using mysql extensions
rlm_sql_mysql... can u plz guide me.. i cant find any help on internet.
Regards,
Saeed Akhtar
On Thu, Nov 20, 2008 at 1:43 PM, Alexandre Chapellon
[EMAIL PROTECTED] wrote:
your freeradius seems to be compiled/installed without
http://wiki.freeradius.org/index.php/FreeRADIUS_Wiki:FAQ#It_says_.22Could_not_link_..._file_not_found.22.2C_what_do_I_do.3F
Ivan Kalik
Kalik Informatika ISP
Dana 20/11/2008, Saeed Akhtar [EMAIL PROTECTED] piše:
I'm sorry but how to compile/install it using mysql extensions
rlm_sql_mysql... can
Sending Access-Accept of id 148 to 10.249.59.188 port 2155
..
rad_recv: Accounting-Request packet from host 10.249.59.188 port 2155, id=149,
length=78
Acct-Status-Type = Start
Acct-Session-Id = NS-004a
NAS-IP-Address = 10.249.59.188
NAS-Port = 74
try 'yum install freeradius-mysql'
Date: Thu, 20 Nov 2008 13:15:42 +0500From: [EMAIL PROTECTED]: [EMAIL
PROTECTED]: Problem in setting up radius database in sql
Hi all,
I want to setup radius database in mysql I browse through wiki and found
an artical SQL How to
I am using ubuntu 7.04 ... btw link sent by Ivan really worked . thanks
to all.
Regards,
Saeed Akhtar
On Thu, Nov 20, 2008 at 5:58 PM, Saif Aadil [EMAIL PROTECTED] wrote:
try 'yum install freeradius-mysql'
--
Date: Thu, 20 Nov 2008 13:15:42 +0500
From:
Good day.
After testing several options, I got this error:
Does anyone have any suggestions?
thank you very much.
rad_recv: Access-Request packet from host 10.0.31.40 port 1645, id=1,
length=136
User-Name = user
Framed-MTU = 1400
Called-Station-Id = 0019.2fdb.9e00
Hi all,
I'm trying to configurate a basic scenario form EAP-SIM using
wpa_supplicant like client, hostapd like access point and freeradius
like AAA server.
So, I don't know how to configure EAP-SIM in freeradius as default EAP
method.
Could somebody provide me with a configuration for
I install the freeradius and mysql with the rpm packages, in the default way.
nothing special to mention.
在2008-11-20,Saeed Akhtar [EMAIL PROTECTED] 写道:
I'm sorry but how to compile/install it using mysql extensions rlm_sql_mysql...
can u plz guide me.. i cant find any help on internet.
Martin Silvero wrote:
Good day.
After testing several options, I got this error:
Does anyone have any suggestions?
The NAS or the supplicant is ignoring the response from the RADIUS
server. Go fix them.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Edgar Fuß wrote:
I thought this was a FAQ but apparently it isn't.
I have an 1.1.7 FreeRADIUS server up and running with EAP/TLS.
Now, I would like to put clients into different VLANs based on who signed
their certificate.
Is there a way to set the Tunnel-Private-Group-Id attribute based on
Martin MacLeod-Brown wrote:
My current thinking for our wired network is to add the MAC-addresses of
all our desktop machines (2500 PC/laptops) into LDAP with the
MAC-address being both the user name and password.
We would then try FreeRadius and MAC-Authentication - how feasible is
this and
My current radius installation permits radius daemon read-only access to
/etc/shadow. But this introduces security risks.
-rw-r--r-- 1 root root 6514 Nov 18 16:52 /etc/shadow
I have been told to consider MySQL back-end. Is there a way to pull the
existing local users/passwords in MySQL? Or I
Norman Zhang wrote:
My current radius installation permits radius daemon read-only access to
/etc/shadow. But this introduces security risks.
Such as?
-rw-r--r-- 1 root root 6514 Nov 18 16:52 /etc/shadow
I have been told to consider MySQL back-end. Is there a way to pull the
existing
Hello
Our setup is as follows:
Centos 5.2
FreeRADIUS Version 2.0.2
MySQL Version: 4.1.20
We are using FreeRadius for our ADSL users and its working fine.
Except when it comes to working out the usage stats for each user at the end
of each month.
Its easy to do with all sessions
Hello all,
I am trying again with this issue hoping that someone can take a look at
it. I am trying to compile on a RedHat ES5, 64 bits.
Any help will be very much appreciated.
thanks
Olavo
Hi again,
It didn't make . It has returned errors.
.libs/radmin.o: In function `main':
Alan DeKok wrote:
Norman Zhang wrote:
My current radius installation permits radius daemon read-only access to
/etc/shadow. But this introduces security risks.
Such as?
-rw-r--r-- 1 root root 6514 Nov 18 16:52 /etc/shadow
I have been told to consider MySQL back-end. Is there a way to
Norman Zhang wrote:
Good point. I guess the security risk is to do with granting others +r
access to /etc/shadow. Maybe I can
chgrp /etc/shadow shadow
and changing radius.conf to
user = radius
group = shadow
would do the trick.
Which is recommended in the comments in
Except when it comes to working out the usage stats for each user at the end
of each month.
Its easy to do with all sessions that started in the previous month and have
a Stop status.
But it's difficult when a session rolled over to the next month because the
status is Alive.
We're trying to
Olavo wrote:
I am trying again with this issue hoping that someone can take a look
at it. I am trying to compile on a RedHat ES5, 64 bits.
Ah. You probably have 32-bit versions of -lreadline, but not 64-bit
versions.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
So, I don't know how to configure EAP-SIM in freeradius as default EAP
method.
Don't bother. Whatever is the default method, it will get changed to sim
during the negotiation. AFAIK EAP-SIM is supported by default. Add:
sim {
}
to eap.conf supported eap types (like entries for md5 and leap).
Create CRON script which starts 5-10 min after midnight (first day in
the month) and disconnect all active users. Then you will have
AcctStopTime information in your database and you can sum traffic from
previous month...
Tony Spencer wrote:
Hello
Our setup is as follows:
Centos 5.2
Hi,
Actually after I get the errors I have tried torpm -e
readline-devel-5.1-1.1 --allmatches like another user did and it worked.
Then checking my system I can see both libraries 32 and 64
/usr/include/readline
/usr/include/mysql/readline.h
/usr/lib/libreadline.a
/usr/lib/libreadline.so
-Original Message-
From: [EMAIL PROTECTED]
[mailto:freeradius-users-
[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: 20 November 2008 18:30
To: FreeRadius users mailing list
Subject: Re: New entry for Interim packet
Except when it comes to working out the usage stats
I'd rather not disconnect 4,000 users in one go.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:freeradius-users-
[EMAIL PROTECTED] On Behalf Of Marinko
Tarlac
Sent: 20 November 2008 19:02
To: FreeRadius users mailing list
Subject: Re: New entry for Interim packet
Create
Olavo wrote:
Is there a way to change the MakeFile and direct it to find the correct
libraries ?
No. The issue is that the configure script asks the linker on your
system to do something... and the linkers behavior is different for
configure and for make.
Alan DeKok.
-
List
Any suggestions ?
Olavo
-Original Message-
From:
[EMAIL PROTECTED]
s.org
[mailto:[EMAIL PROTECTED]
reeradius.org] On Behalf Of Alan DeKok
Sent: Thursday, November 20, 2008 11:17 AM
To: FreeRadius users mailing list
Subject: Re: Make error
Olavo wrote:
Is
I'm still trying to setup freeradius authentication with oracle stored
procedure.
I have a procedure that return data as i expected it to be returned in
an sqlplus client:
SQL SELECT hss_radcheck_func('[EMAIL PROTECTED]','bas3_SE') FROM DUAL;
HSS_RADCHECK_FUNC('K
CURSOR
Hey,
I know this is a bit off-topic, but I was wondering if anyone on the list might
be able to help with configuring a Cisco Aironet WAP to authenticate wireless
users against a FreeRADIUS server?
Thanks in advance!
Tim Gustafson
SOE Webmaster
UC Santa Cruz
[EMAIL PROTECTED]
831-459-5354
-
Does anybody know about any Linux distro 64 bits that Freeradius will work
for sure ?
Thanks
Olavo
-Original Message-
From:
[EMAIL PROTECTED]
s.org
[mailto:[EMAIL PROTECTED]
reeradius.org] On Behalf Of Alan DeKok
Sent: Thursday, November 20, 2008 11:17 AM
To: FreeRadius
Hello Tony,
If you set you interim update to 5 or 10min you could then run a script at
midnight to send accounting packets to finalize it in the MySQL DB with the
Acct-Terminate-Cause = Admin-Reset; so next interim packet radius will
automatically start a new one. Now here is where it can get
Здравствуйте, Olavo.
Вы писали 20 листопада 2008 р., 22:38:10:
Does anybody know about any Linux distro 64 bits that Freeradius will work
for sure ?
In spring I compiled 2.0.1 on Fedora core 8 - all was OK. Or just use
gentoo - it has 2.0.5 in portage tree marked as stable and 2.1.1
marked as
On Thu, 2008-11-20 at 12:38 -0800, Olavo wrote:
Does anybody know about any Linux distro 64 bits that Freeradius will work
for sure ?
I am using it on CentOS 5.2 x86_64. The freeradius package that comes
with CentOS 5 is old though, I compiled freeradius from source.
--Greg
-
List
Then create script for virtual disconnection :)
Tony Spencer wrote:
I'd rather not disconnect 4,000 users in one go.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:freeradius-users-
[EMAIL PROTECTED] On Behalf Of Marinko
Tarlac
Sent: 20 November 2008 19:02
To: FreeRadius users
I can try, I need a little more detail; Model?(1100,1200) and what method of
authentication were you thinking?
--
Leigh
On Thu, Nov 20, 2008 at 3:02 PM, Tim Gustafson [EMAIL PROTECTED] wrote:
Hey,
I know this is a bit off-topic, but I was wondering if anyone on the list
might be able to
If you are such a nasty provider that won't allow users to roll over
unused allowance into the next period even during the existing session -
simply disconnect them at the time the counter resets (use Login-Time on
users connecting on the last day for instance). Be nasty to the end!
Its not
Try fixing obvious errors:
to_char('Cleartest-Password') as attributes,
Cleartext-Password
to_char(password) as value,
to_char('==') as operator
should be :=
FROM dual
union
SELECT to_number('2') as
See:
http://wiki.freeradius.org/index.php/Cisco#IOS_12.x
It's for wired but shouldn't be far off.
Ivan Kalik
Kalik Informatika ISP
Dana 20/11/2008, Tim Gustafson [EMAIL PROTECTED] piše:
Hey,
I know this is a bit off-topic, but I was wondering if anyone on the list
might be able to help with
Tony Spencer wrote:
I'd rather not disconnect 4,000 users in one go.
In fact, this thing should be done with BRAS functionality.
For example, some BRAS'es has support of restarting of accounting at
least, also there is a prepaid feature, that could be helpful for you.
Also you can use CoA
Hi Leigh
Your script is most useful.
We have interim updates every 2 hours and hadn't implemented anything to
close stale sessions.
So now I've modified your script and will run it every night to look for
sessions where the AcctStatus = Alive and where the updated column, that we
have added
I agree but in my case it was because a package mysql-dev was missing...
when i installed it. everthing went good.
Regards,
Saeed Akhtar
2008/11/20 dgluoyun [EMAIL PROTECTED]
I install the freeradius and mysql with the rpm packages, in the
default way. nothing special to mention.
46 matches
Mail list logo
