Robert White wrote:
Hey,
Or can I make rlm_acct_unique look for Quintum-NAS-Port instead of
just NAS-Port?
Yup, just update modules/acct_unique
HTH
Patric
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Everyone
I think I am getting ahead but now I got the following error:
[pap] WARNING! No "known good" password found for the user. Authentication may
fail because of this.
++[pap] returns noop
No authenticate method (Auth-Type) configuration found for the request:
Rejecting the user
Failed t
Good Day.
Hopying I can get some help.
I have been trying for years now too simply cap users based on data
transferred above 4gb.
It has only been now that I discovered , where the problem lies.
I can log data over 4gb no issue, nas sends gigawords to radius and gets
inserted into db n
Hey,
I keep getting a warning message in my Radius setup...
WARNING: Attribute NAS-Port was not found in request, unique ID MAY be
inconsistent
This is true enough. But I am sending a slightly different attribute:
'Quintum-NAS-Port'. Do I have control over this 'NAS-Port prefix? Or can I
make
> I am configuring a freeradius server (version 2.1.7). I need two listen
> sections, both to authenticate users using the same LDAP server. The
> thing is that I need to do different searches with different filters,
> depending on which listen section is asked. What is the best way to
> configure
>
> Previous round trip ..
>
> User-Name = "kleberl"
> NAS-IP-Address = 192.168.155.123
> NAS-Port-Type = Wireless-802.11
> State = 0x3cce0b1706ad36054f63eeb5f99e1a66
>
> EAP-Message =
> 0x029500591900170301004e6b2cc736e1b009a8b6f35c85b0f9ea9b4543a3be11f7586ffe81fb98b3eb4f61d9112c6a
I am using dialup_admin 1.80 from within the current freeradius 2.1.7
release. freeradius is working fine, and some dialup_admin menu
selections are working correctly. One that isn't is User Statistics.
I have configured dialup admin to not use the 'totacct' table by setting
"general_stats_use_t
'im using 500,
and i have an error 'discarding packet'
and i dont know how fix it
2009/10/15 Alan Buxey
> Hi,
> > What is a good number of max_connections on Mysql to run FreeRadius?
> >
> > i'm using
> >
> > max_connections=500
>
>
>
> 500? wowser. I use 10.
>
> i noted problems if the valu
Hi,
> What is a good number of max_connections on Mysql to run FreeRadius?
>
> i'm using
>
> max_connections=500
500? wowser. I use 10.
i noted problems if the value was over 15 and my SQL queries are very small
and short...i use the offline accounting (buffered-sql) to do the nasty long
up
What is a good number of max_connections on Mysql to run FreeRadius?
i'm using
max_connections=500
--
Att.
Alisson F. Gonçalves
Sistemas de Informação - UFGD
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Working, uses DEFAULT Auth-Type = ntlm_auth in users file:
rad_recv: Access-Request packet from host 10.1.x.y port 1645, id=217,
length=85
User-Name = "myname"
User-Password = "myt0p$3cr...@$$w0rd"
NAS-Port = 1
NAS-Port-Id = "tty1"
NAS-Port-Type = Virtual
> I've been jacking around trying to fix this for several hours - but no
> go. I've RTFM several times, and read several docs such as:
> http://wiki.freeradius.org/Combining_authentication_of_AD_accounts_%28nt
> lm_auth%29_with_accounts_stored_elsewhere
>
>
>
> When I say "fix" - it's always been
Hi again,
Thanks for the help. It is running correctly.
Regards,
Dave
-Original Message-
From:
freeradius-users-bounces+david.sparkes=keymile@lists.freeradius.org
[mailto:freeradius-users-bounces+david.sparkes=keymile@lists.freerad
ius.org] On Behalf Of John Dennis
Sent: Thurs
Thanks for this, and thanks to Bob Franklin to. I have something
working now by selecting on client name and re-writing the User-Name
to append "bcm", then proxying that alone to the NAC servers. This
leaves all the config I had before for my existing domains alone.
I might try the other vir
I've been jacking around trying to fix this for several hours - but no
go. I've RTFM several times, and read several docs such as:
http://wiki.freeradius.org/Combining_authentication_of_AD_accounts_%28nt
lm_auth%29_with_accounts_stored_elsewhere
When I say "fix" - it's always been "broken" - i
> I've upgraded from 2.1.6 to 2.1.7 and the following error is now appearing
> in my debug output.
>
> [/usr/local/etc/raddb/acct_users]:36 WARNING! Check item "Tmp-String-0"
> found in reply item list for user "DEFAULT".This attribute MUST
> go on the first line with the other check items
Hi,
> if (domain is local AND authenticating from a local NAS) then
> authenticate locally by proxy to Bradford Campus Manager
> (Campus Manager will receive the stripped u...@realm as user and
> proxy to the local server address)
> else
> authenticate and return ACK/NACK to re
Hi,
> What I want to do is proxy requests based on being in multiple realms. For
> example:
> Realm1/username.Realm2
so long as the second part with always be username.realm2 (and you dont get
into user.name.realm2 then you can use 2.1.x with unlang to configure what
you need. you need to use a d
On 10/15/2009 09:17 AM, Sparkes, David wrote:
Hi again,
Ok... well I have created the tables using
/etc/raddb/sql/postgresql/schema.sql and populated the tables manually.
However no postgresql.conf file exists in either
/etc/raddb/sql/postgresql or /etc/raddb/postgresql. Have I missed a
packag
--
Craig Campbell
craig.campb...@ccraft.ca
CampbellCraft Consulting Inc
2 Kenny Court
Whitby, Ontario
Canada
L1R 2L8
905 922-2789
__ Information from ESET Smart Security, version of virus signature
database 4509 (20091015) __
The mess
Hi again,
Ok... well I have created the tables using
/etc/raddb/sql/postgresql/schema.sql and populated the tables manually.
However no postgresql.conf file exists in either
/etc/raddb/sql/postgresql or /etc/raddb/postgresql. Have I missed a
package that would include this or should I just creat
Hi there,
Is there a way to get Information out of the
3GPP-GPRS-Negotiated-QoS-profile?
The Attribute is defined in the dictionary as:
ATTRIBUTE 3GPP-GPRS-Negotiated-QoS-profile5 string
The Value of a String might be: 99-0B811F739687877401
To get the encapsulated "Traff
Hello,
I am configuring a freeradius server (version 2.1.7). I need two listen
sections, both to authenticate users using the same LDAP server. The
thing is that I need to do different searches with different filters,
depending on which listen section is asked. What is the best way to
configu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 14/10/2009 14:38, Alan Buxey wrote:
> Hi,
>
>> Hmm, just thought, some vendors may include the information in the RADIUS
>> packet as VSAs (Vendor Specific Attributes).
>>
>> Might be worth running the server in debugging mode (radiusd -X) and see
On 10/15/2009 07:01 AM, Alan DeKok wrote:
Sparkes, David wrote:
I was working through the example to set up PostGres; I just was thrown
when I tried to set up the database ("Setting up the RADIUS database"
section), as I reached these lines:
cd /usr/share/doc/packages/freeradius/doc/examples/
p
Alan DeKok wrote:
Patric wrote:
And 30 seconds later the request is retried and succeeds :)
Is there any way for me to decrease the retry delay?
See the "retry_interval" configuration in the detail listener.
Hi Alan,
Would I be correct in my understanding that I add that here:
Patric wrote:
> And 30 seconds later the request is retried and succeeds :)
> Is there any way for me to decrease the retry delay?
See the "retry_interval" configuration in the detail listener.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
What I want to do is proxy requests based on being in multiple realms. For
example:
Realm1/username.Realm2
Where is Realm1 is "host" AND Realm2 is "some.fqdn" then proxy to
xxx.xxx.xxx.xxx
Specifically what I am doing is trying to use FreeRadius to proxy for AD
Domains. I want to enable host ba
Petr Uzel wrote:
> To be more specific: I work on packaging freeradius server RPM. The
> README explictly states that "This bootstrap script SHOULD be run on
> installation of any pre-built binary package for your OS." I
> understand that it should be ran automatically in the %post section,
> like
Sparkes, David wrote:
> I was working through the example to set up PostGres; I just was thrown
> when I tried to set up the database ("Setting up the RADIUS database"
> section), as I reached these lines:
>
> cd /usr/share/doc/packages/freeradius/doc/examples/
> psql -U radius radius < postgresql
On Thu, 15 Oct 2009, Dean, Barry wrote:
if (domain is local AND authenticating from a local NAS) then
authenticate locally by proxy to Bradford Campus Manager
(Campus Manager will receive the stripped u...@realm as user and
proxy to the local server address)
else
authenti
Hi again,
Radius works fine. I've been using it for a few weeks with no hitches.
I was working through the example to set up PostGres; I just was thrown
when I tried to set up the database ("Setting up the RADIUS database"
section), as I reached these lines:
cd /usr/share/doc/packages/freeradiu
I currently run two virtual servers, one for our local secure wireless
and one for eduroam customers.
The local one receives RADIUS packets from Bradford Campus Manager,
which is responsible for Network Access Control and stamps Auth-OK
replies with the VLAN for the user.
What I want to do
Hi,
> Sorry, I should clarify. I have spent some time looking through the
> docs including, http://wiki.freeradius.org/SQL_HOWTO, but that is the
> wrong version of FreeRadius (1.1.7) and doesn't work.
had a quick look through - seems to be reasonbly fine - which bit didnt work?
whats your issu
Sorry, I should clarify. I have spent some time looking through the
docs including, http://wiki.freeradius.org/SQL_HOWTO, but that is the
wrong version of FreeRadius (1.1.7) and doesn't work.
I was looking for something a bit more up-to-date.
Cheers,
Dave
-Original Message-
From:
free
Hi,
> I would like to get Freeradius working with a PostgreSQL database: are
> there any handy HOWTOs or Tutorials that explain how to do this?
some stuff here:
http://wiki.freeradius.org/Rlm_sql
basically, FreeRADIUS comes with the required SQL schema for RADIUS and
NAS access with SQL (postg
* Sparkes, David [2009-10-15 11:21]:
> I would like to get Freeradius working with a PostgreSQL database: are
> there any handy HOWTOs or Tutorials that explain how to do this?
It's pretty easy, just study the docs and sample configs.
Just a warning: You might run into the same problem as me, s
marco perugini wrote:
> hi list, i use freeradius [v 2.1.1] in wimax context and from yesterday
> this message is driving me crazy: "EAP session matching the State variable".
That's "NO eap session matching..."
> here's the use-case: i do auth and connection all right but if/when i lost my
> co
Hi,
I would like to get Freeradius working with a PostgreSQL database: are
there any handy HOWTOs or Tutorials that explain how to do this?
I am running RedHet EL5.
Relevant Packages:
freeradius2.x86_64 2.1.7-2.el5
installed
freeradius2-libs.x86_64 2.
Hi,
> i have a working setup but following question:
> In my proxy.conf i have one entry with our company nt domain (for wlan auth)
>
>realm ZB {
> type= radius
> authhost= LOCAL
> accthost= LOCAL
>
Alan Buxey wrote:
add a small 'x' ie radiusd -Xx
(this was mentioned on this list a couple of days back)
Arg, Im a dumbass... Sorry I must have missed it :)
Thanks!
Patric
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
> I have been going through debug output for the last couple of days now
> attempting to resolve various configuration problems, and while not
> essential, it would be nice to see how much time has elapsed between a
> request and response for example...
add a small 'x' ie radiusd -Xx
Hello,
i have a working setup but following question:
In my proxy.conf i have one entry with our company nt domain (for wlan auth)
realm ZB {
type= radius
authhost= LOCAL
accthost= LOCAL
strip
On Wed, Oct 14, 2009 at 07:07:59PM +0100, Alan Buxey wrote:
> Hi,
Hello Alan,
thanks for the response.
>
> > I have a question regarding bootstrapping default certificates using
> > bootstrap script in raddb/certs directory.
>
> Ideally once you've used the bootstrap you would remove the script
Hi again,
Alan I have a very small suggestion, if I may - what about adding a
timestamp to the debug output?
I am not familiar with C, so dont know how difficult it would be to
implement though...
I have been going through debug output for the last couple of days now
attempting to resolve va
Tim Sylvester wrote:
Add this line to the home server configuration of Server A (running 2.1.7):
no_response_fail = yes
Hi Tim,
That worked perfectly! Thank you :)
Rejecting request 191 (proxy Id 218) due to lack of any response from
home server xxx.xxx.xxx.xxx port 1813
No response con
Add this line to the home server configuration of Server A (running 2.1.7):
no_response_fail = yes
Tim
> -Original Message-
> From: freeradius-users-
> bounces+tim.sylvester=networkradius@lists.freeradius.org
> [mailto:freeradius-users-
> bounces+tim.sylvester=networkradius@lists
Hi all :)
FreeRADIUS 2.1.7
CentOS 5.2
I am not too sure where to start here so I will describe the symptoms
first:
I have 2 freeradius servers that both receive accounting requests, and
proxy these requests to each other, as well as log these requests to a
detail file.
I have noticed now t
48 matches
Mail list logo