Etienne Pretorius wrote:
Could you please tell me what attributes I should use in the Accounting
section to achieve the following:
if ((Packet-Src-IP-Address != A) (Packet-Src-IP-Address != B)) {
copy-acct-to-home-server-A
copy-acct-to-home-server-B
}
I had hoped
instead
of /var/log/radius/c4france.20100312...
Is the any way to achieve this setup ?
Best regards
Fred
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok wrote:
Etienne Pretorius wrote:
Could you please tell me what attributes I should use in the Accounting
section to achieve the following:
if ((Packet-Src-IP-Address != A) (Packet-Src-IP-Address != B)) {
copy-acct-to-home-server-A
copy-acct-to-home-server-B
}
thank u both, i folowed your advices.
i changed the basedn to *basedn = dc=example,dc=com*
i can* successfully* perform a * ldapsearch -x -b dc=example,dc=com
uid=bernard*
but i got the same result in debug output file
it could be a trivial question but i'im really stuck, don't know why
Hi all;
On the cisco VPN logs i am getting:
1259 03/12/2010 09:52:50.500 SEV=5 PPP/2 RPT=54 90.12.02.113
Group [00-16-55-01-b0-a7] User [federal]
disconnected. Cannot resolve an IP address for remote peer.
THanks
Lucio
From: luciocfgo...@hotmail.com
To:
On Fri, Mar 12, 2010 at 10:26 PM, omega bk omeg...@gmail.com wrote:
thank u both, i folowed your advices.
i changed the basedn to *basedn = dc=example,dc=com*
i can* successfully* perform a * ldapsearch -x -b dc=example,dc=com
uid=bernard*
I beg to differ, you can successfully connect to
yep you're right.
i fixed it
thanks u so much
2010/3/12 Peter Lambrechtsen plambrecht...@gmail.com
On Fri, Mar 12, 2010 at 10:26 PM, omega bk omeg...@gmail.com wrote:
thank u both, i folowed your advices.
i changed the basedn to *basedn = dc=example,dc=com*
i can* successfully* perform a
hi,
i just want to understand.
why [ldap] Added User-Password = test in check items , and how to replace
it by Cleartext-Password.
Is ldap returns password non crypted?
is ldap use 'Auth-Type = Local' ?
cause in my users files i just use this.
DEFAULT Huntgroup-Name == labtest8021x,
Hi,
I did it!!
I edited the many config file with the my old configuration(not replaced!!)
looks like you are forced the authentication type in the SQL
tables to be CAHP. dont do that.
How can I do??
Why should not I do that??
Tks
Il 05/03/2010 20.05, Alan Buxey ha scritto:
hi,
do not
Etienne Pretorius wrote:
expand: %{control:Packet-Src-IP-Address} -
?? Evaluating (%{control:Packet-Src-IP-Address} != XXX.XXX.XXX.XXX)
That isn't what I suggested.
- TRUE
OR when I took the condition verbatim from you:
+- entering group accounting
++? if ((Packet-Src-IP-Address !=
Fred MAISON wrote:
I would like to change daemon log filename to have a MMDD suffix, in
order to have an automatic daily log rotation, but this does not seems
to be supported, as log_file does not seems to expand variables as this
can be done for request logs or acct detail.
It doesn't
Alan DeKok wrote:
Etienne Pretorius wrote:
expand: %{control:Packet-Src-IP-Address} -
?? Evaluating (%{control:Packet-Src-IP-Address} != XXX.XXX.XXX.XXX)
That isn't what I suggested.
- TRUE
OR when I took the condition verbatim from you:
+- entering group accounting
++? if
OK, Alan, It's clear.
Unfortunately, logrotate version on last RedHat/CentOS does not support
MMDD dateext function I can find on Debian ...
I will have to write a postrotate script to do it.
Thanks a lot.
Fred
Date: Fri, 12 Mar 2010 14:04:03 +0100
From: Alan DeKok
Etienne Pretorius wrote:
FreeRadius 2.0.4 Distro: Debian Stable (lenny)
Upgrade.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok wrote:
Etienne Pretorius wrote:
FreeRadius 2.0.4 Distro: Debian Stable (lenny)
Upgrade.
Alan, Thank you for your help. Will do... starting upgrade.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
hello,
i'm trying to work around but i'm stuck.
just want to understand this:
the ldap add *User-Password* = test in check items
where to change this attribute to* Cleartext-Password* to perform pap ?
i tried the password_radius_attribute but nothing
thank you for your help.
-
List
On 03/12/2010 06:44 AM, omega bk wrote:
i just want to understand.
why [ldap] Added User-Password = test in check items , and how to
replace it by Cleartext-Password.
Is ldap returns password non crypted?
is ldap use 'Auth-Type = Local' ?
In the raddb directory is a file called ldap.attrmap.
On 03/12/2010 09:41 AM, omega bk wrote:
hello,
i'm trying to work around but i'm stuck.
just want to understand this:
the ldap add *User-Password* = test in check items
where to change this attribute to* Cleartext-Password* to perform pap ?
You really only need to ask your questions once.
Etienne Pretorius wrote:
Alan DeKok wrote:
Etienne Pretorius wrote:
FreeRadius 2.0.4 Distro: Debian Stable (lenny)
Upgrade.
Alan, Thank you for your help. Will do... starting upgrade.
Upgraded to FreeRadius 2.1.8 Distro: Debian Testing (Sid)
Same error:
+-
On 03/12/2010 09:12 AM, Fred MAISON wrote:
OK, Alan, It's clear.
Unfortunately, logrotate version on last RedHat/CentOS does not support
MMDD dateext function I can find on Debian ...
I will have to write a postrotate script to do it.
dateext is supported on RHEL5 (at least in the 5.4 I
Le vendredi 12 mars 2010 à 10:30 -0500, John Dennis a écrit :
On 03/12/2010 09:12 AM, Fred MAISON wrote:
OK, Alan, It's clear.
Unfortunately, logrotate version on last RedHat/CentOS does not support
MMDD dateext function I can find on Debian ...
I will have to write a postrotate
hello,
just one question. (if you have time :-) )
my client is a windows xp wired 802.1x (native supplicant)
i got user called bernard in opnldap database
trying to authenticate my user through freeradius.
i got this : ( my debug output il too large so i just put the error section)
[ldap]
Etienne Pretorius wrote:
Same error:
Make sure:
a) you're running 2.1.8
b) it's using the dictionaries that come with 2.1.8
It *does* work for a new install.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi !
We have used FreeRadius 1.1.X with sucess for several years and it is
time to upgrade to the vesion 2.
In 1.1.8 we used post_proxy_authorize = yes in proxy.conf
to read the users file after we got a access-accept from
the home server. I know that the post_proxy_authorize is history
in
Hi list,
I have been trying to find out more information regarding the use of the
Simultaneous-Use option for FreeRadius. I have been checking google and most
guides seem to point to /etc/raddb/sql.conf and to uncomment the appropriate
lines. However, I have not been able to find the
Mark wrote:
I have been trying to find out more information regarding
the use of the Simultaneous-Use option for FreeRadius.
I have been checking google
Why?
This *is* documented in the server. See doc/Simultaneous-Use
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Roar Pettersen wrote:
Could anybody tell me how to assign a static ip address after we get a
access-accept ?
In 2.1.8, you can put files.authorize in the post-auth section.
This will cause it to check the users file after authentication.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
27 matches
Mail list logo
