Il 24/11/2010 5.05, Pableus ha scritto:
I have not got the exact number right now. We're still doing tests, so for
now a few clients authenticate with RADIUS, the rest follows as usual.
What catches my attention is that users only have problems when they are
passed to the RADIUS, otherwise do
Hi,
Robert Masters rmast...@bunnings.com.au wrote:
We've been working on using Freeradius on RHEL5.4 to link a Motorola
RFS6000 with Oracle OID.
We've had a number of hiccoughs along the way, and solved most of them -
mainly thanks to the archives of this list.
We are now getting the
So this is interessting because i followed this source taht says that
expiration format is a date...
http://www.mail-archive.com/freeradius-users@lists.freeradius.org/msg60233.html
i will give a try with timestamp.
regards
Le mercredi 24 novembre 2010 à 10:06 +0700, EasyHorpak.com a écrit :
On 24/11/2553 16:41, yzy-oui-fi wrote:
So this is interessting because i followed this source taht says that
expiration format is a date...
http://www.mail-archive.com/freeradius-users@lists.freeradius.org/msg60233.html
i will give a try with timestamp.
regards
Le mercredi 24 novembre 2010 ?
But I still don't understand why the termitation cause is, most of the times,
User-Request.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Problem-with-FreeRADIUS-PPPoE-Mikrotik-tp3277570p3278226.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
HI Paulo,
Thanks for u reply, see below my authenticate and authorize session.
authorize {
preprocess
mschap
ldap
}
authenticate {
Auth-Type LDAP {
ldap
}
Auth-Type MS-CHAP {
mschap
}
}
2010/11/23 Paulo Maia
Hello!
I'm trying to setup network with DHCP Snooping Option 82 functionality
+ Freeradius auth for DHCP requests.
DHCP server which receives DHCP packets from cisco switch dhcp relay
is Mikrotik RouterBoard.
freeradius2-2.1.7-7.el5. Also updated dictionary from new 2.1.10 package
Option 82 works
Hello
On Wed, Nov 24, 2010 at 11:04 AM, Pableus pablodi...@hotmail.com wrote:
But I still don't understand why the termitation cause is, most of the times,
User-Request.
User-Request is sent by the CPE is almost all cases unless there is
a fault with the connection between the CPE and the
What auth method u're trying to use ?
EAP/PEAP ?
Regards ,
On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo oldedua...@gmail.com wrote:
HI Paulo,
Thanks for u reply, see below my authenticate and authorize session.
authorize {
preprocess
mschap
ldap
}
sameer khan wrote:
thanks for reply. i edited the dictionary to add an attribute for
mikrotik. i will be help if you can explain a little further.
The default dictionaries work.
You are having issues because you are not using the default dictionaries.
That's how complex the explanation
On 11/24/2010 03:51 AM, Alexander Clouter wrote:
Hi,
Robert Mastersrmast...@bunnings.com.au wrote:
We've been working on using Freeradius on RHEL5.4 to link a Motorola
RFS6000 with Oracle OID.
We've had a number of hiccoughs along the way, and solved most of them -
mainly thanks to the
where i define this? eap.conf?
sorry, newbie with freeradius.
2010/11/24 Paulo Maia phc.m...@gmail.com
What auth method u're trying to use ?
EAP/PEAP ?
Regards ,
On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo oldedua...@gmail.com wrote:
HI Paulo,
Thanks for u reply, see below my
Thanks this little story was turning me crazy, and as i mentionned it in
subject it is when using mysql. so it seems expiration stored on
wifigator mysql server are wrong.
regards
Le mercredi 24 novembre 2010 à 17:47 +0700, EasyHorpak.com a écrit :
On 24/11/2553 16:41, yzy-oui-fi wrote:
So
Denis Iskandarov wrote:
Hello!
I'm trying to setup network with DHCP Snooping Option 82 functionality
+ Freeradius auth for DHCP requests.
DHCP server which receives DHCP packets from cisco switch dhcp relay
is Mikrotik RouterBoard.
freeradius2-2.1.7-7.el5. Also updated dictionary from new
ok i found this.
sites-enabled/default
eap auth mode.
2010/11/24 Paulo Maia phc.m...@gmail.com
What auth method u're trying to use ?
EAP/PEAP ?
Regards ,
On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo oldedua...@gmail.com wrote:
HI Paulo,
Thanks for u reply, see below my authenticate
So as i understood one of the problems is that Freeradius can't find
username which is in mac-address format.
Beside users file i've added same user to sql base, UI with
daloRADIUS. radius can't find this username there as well.
P.S.: sql+ daloradius are working fine for eap user/pass
Also I did this check from daloradius:
Executed:
echo User-Name='00:0C:42:40:40:38',User-Password= | radclient -c '1'
-n '3' -r '3' -t '3' -x '127.0.0.1:1812' 'auth' 'testing123' 21
Results:
Sending Access-Request of id 3 to 127.0.0.1 port 1812
User-Name = 00:0C:42:40:40:38
rad_recv:
yes . but i have to include in your authorize and authenticate sessions .
What kind of auth ure trying to get ?
Regards ,
On Wed, Nov 24, 2010 at 8:43 AM, Old Eduardo oldedua...@gmail.com wrote:
where i define this? eap.conf?
sorry, newbie with freeradius.
2010/11/24 Paulo Maia
That's what I figured too, but why only happens when I move the
authentication process from the MriktoTik to the RADIUS?
Thanks again
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Problem-with-FreeRADIUS-PPPoE-Mikrotik-tp3277570p3278360.html
Sent from the FreeRadius -
It works ?
On Wed, Nov 24, 2010 at 8:47 AM, Old Eduardo oldedua...@gmail.com wrote:
ok i found this.
sites-enabled/default
eap auth mode.
2010/11/24 Paulo Maia phc.m...@gmail.com
What auth method u're trying to use ?
EAP/PEAP ?
Regards ,
On Wed, Nov 24, 2010 at 7:52 AM, Old
Ok.
DHCP server asking radius what to do with dhcp-request. radius gives
accept if username -mac-address is in it's database, plus adding
framed-ip-address and some other atributes to reply.
as i understood from debug, freeradius can't find username (which is
mac address, and sent in User-Name
I read in many sites, for get ldap auth need mschap, its true?
i try mschap.
2010/11/24 Paulo Maia phc.m...@gmail.com
yes . but i have to include in your authorize and authenticate sessions .
What kind of auth ure trying to get ?
Regards ,
On Wed, Nov 24, 2010 at 8:43 AM, Old Eduardo
no :(
in debug only appears auth type Local
see:
Wed Nov 24 08:30:54 2010 : Debug: +- entering group authorize
Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: calling preprocess
(rlm_preprocess) for request 0
Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: returned from
On 24 Nov 2010, at 3:12 PM, Pableus wrote:
That's what I figured too, but why only happens when I move the
authentication process from the MriktoTik to the RADIUS?
If you insist that this is a Radius problem and not a MikroTik config problem,
you'll need to at least show us the Radius
Do u have NT e LM passowrd attributes in ur LDAP database ? coz if u do u
could try to use EAP/PEAP .
Its easier for windows clients .
Regards ,
On Wed, Nov 24, 2010 at 9:26 AM, Old Eduardo oldedua...@gmail.com wrote:
I read in many sites, for get ldap auth need mschap, its true?
i try
comment everything the users file .
Brasileiro mano ?
On Wed, Nov 24, 2010 at 9:31 AM, Old Eduardo oldedua...@gmail.com wrote:
no :(
in debug only appears auth type Local
see:
Wed Nov 24 08:30:54 2010 : Debug: +- entering group authorize
Wed Nov 24 08:30:54 2010 : Debug:
On Wed, Nov 24, 2010 at 3:51 PM, Alexander Clouter a...@digriz.org.uk wrote:
Robert Masters rmast...@bunnings.com.au wrote:
We've been working on using Freeradius on RHEL5.4 to link a Motorola
RFS6000 with Oracle OID.
What I use, other than just a version of FreeRADIUS from this decade, is
Old Eduardo wrote:
no :(
in debug only appears auth type Local
Stop wasting your time.
You have NOT configured the server correctly, and you have NOT
followed instructions on this list.
see:
Wed Nov 24 08:30:54 2010 : Debug: +- entering group authorize
You've used radiusd -Xx. The
yes i have.
2010/11/24 Paulo Maia phc.m...@gmail.com
Do u have NT e LM passowrd attributes in ur LDAP database ? coz if u do u
could try to use EAP/PEAP .
Its easier for windows clients .
Regards ,
On Wed, Nov 24, 2010 at 9:26 AM, Old Eduardo oldedua...@gmail.com wrote:
I read in many
Paulo Maia wrote:
comment everything the users file .
Wrong answers make life difficult for everyone.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I don't know of a way to do that in dialup_admin, but you could potentially
look at using a trigger on insert in MySQL. That might be problematic
however if you have some users that you don't want to automatically assign
this Expiration to.
Otherwise if the services assigned are simple it might
Denis Iskandarov wrote:
DHCP server asking radius what to do with dhcp-request. radius gives
accept if username -mac-address is in it's database, plus adding
framed-ip-address and some other atributes to reply.
Except that a User-Name is never in a DHCP request.
as i understood from debug,
Hello
I have already installed and configured freeradius in Ubuntu operating system,
how to add users through my MAC address?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Manuel Lamora wrote:
I’m trying to setup the following setup. Wifi-Users should have access
to the Access-Point when connecting with 802.1x (PEAP) and their
Active-Directory-Account. Everything seems to work but clients cannot
connect. I hope that someone could point me to my configuration
Opa e ae blz?
Vou fazer isso amanha, te mandei para teu email todo o diretorio do
freeradius para voce dar uma olhada nos confs, estou ha 3 semanas tentando
fazer essa implementacao e nao consigo cara.
amanha de manha vou la tentar denovo.
obrigado pela forca.
2010/11/24 Paulo Maia
http://technet.microsoft.com/en-us/library/dd560653(WS.10).aspx
microsoft appears to be making steps to kill NTLM as it isn't secure
On Tue, 23 Nov 2010, Phil Mayers wrote:
On 23/11/10 15:43, JR Mayberry wrote:
Is there a preferred method for doing EAP (from Wireless infrastructure)
to
JR Mayberry wrote:
http://technet.microsoft.com/en-us/library/dd560653(WS.10).aspx
microsoft appears to be making steps to kill NTLM as it isn't secure
Read that as people are using it in open source products.
The security issues with NTLM are well known, and haven't changed in
10
On 11/24/2010 06:10 PM, JR Mayberry wrote:
http://technet.microsoft.com/en-us/library/dd560653(WS.10).aspx
microsoft appears to be making steps to kill NTLM as it isn't secure
It is important to distinguish between NTLM-the-wire-protocol, and
ntlm_auth, the Samba helper binary, which
COULD SOMEONE HELP ME TO KNOW WHAT ARE THE FILES THAT SHOULD CHANGE TO VALIDATE
USER THROUGH THE MAC ADDRESS, AND I HAVE ALREADY INSTALLED FreeRADIUS 2.1.10
and am running the server on a Ubuntu operating system, HOW DO YOU ADD USER the
server and validate MAC ADDRESS?
Check that one out: http://lmgtfy.com/?q=rtfm
... unfortunately Ubuntu doesn't serve a preconfigured FreeRADIUS Server
a UserManagement GUI yet ;/ - you may request that ...
Am 24.11.2010 20:34, schrieb Hugo Lúa Garcia:
COULD SOMEONE HELP ME TO KNOW WHAT ARE THE FILES THAT SHOULD CHANGE TO
to prevent tears:
check out /etc/raddb/clients.conf
but now there is now way arround reading the instructions - cause
otherwhise you'll screw it up!
Am 24.11.2010 21:21, schrieb NetOcean:
Check that one out: http://lmgtfy.com/?q=rtfm
... unfortunately Ubuntu doesn't serve a
hi,
not sure why you are shouting. and i believe you asked this already today.
patience.
there are several ways to do this..and it depends on what your NAS
requires..and how you want to manage or implement it.
for example, you could just add the MAC address details to the 'users'
file - as per
It depends on they way your NAS (access point of whatnot) sends the
mac address. some send it as the username/password... some send it
other ways...
On Wed, Nov 24, 2010 at 12:26 PM, Leander S. i...@netocean.de wrote:
to prevent tears:
check out /etc/raddb/clients.conf
but now there is now
I would just like to take this opportunity to thank RedHat for their
wonderfully consistent naming of packages. I just did not *think*, being
so used to RedHat version numbers being way out of sync with reality,
thanks to their backport policy.
(Departs to *fix* things - with prejudice.)
Thanks
??? What about freeradius dialupadmin ??? ;)
Le mercredi 24 novembre 2010 à 21:21 +0100, NetOcean a écrit :
Check that one out: http://lmgtfy.com/?q=rtfm
... unfortunately Ubuntu doesn't serve a preconfigured FreeRADIUS
Server a UserManagement GUI yet ;/ - you may request that ...
Am
I want to log all replies from Radius to my NAS so I edited my sites-enabled
file and uncommented 'reply_log'. I then went to modules/detail and added:
detail reply_log {
detailfile = ${radacctdir}/%{Client-IP-Address}/reply-detail-%Y%m%d
detailperm = 0600
}
Now if i go to my
I have ubuntu and a freeradius server where users need to give high command to
give them high -
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
OK so I used TCPDUMP and it seems that the log is not incorrect... Radius is
only sending the access-accept and nothing else. It should be sending other
attributes but it is not. However, the attributes are included in my main
dictionary file (dictionary.wisp and dictionary.chillispot) - that
48 matches
Mail list logo