Um yes, it's 'encrypted' using the shared secret between the NAS and the
RADIUS server... this is described in RFC 2865.
On 2 Aug 2011, at 07:31, gary wrote:
Hi All
I configure the NAS client as pap method for user authentication.
But through the packet analysis by wireshark it appears
Upgraded freeradius to 2.1.11 (built from source)
This time it brought the whole machine down:
radiusd[8644]: segfault at 00c8 rip 2aad51190cfb rsp
504b8770 error 4
radiusd[16348]: segfault at 00c8 rip 2afffa168cfb rsp
46c00170 error 4
On 2 Aug 2011, at 09:27, Amir Tal wrote:
Upgraded freeradius to 2.1.11 (built from source)
Don't use 2.1.11 it segfaults, checkout the head of the 2.1.X branch in git
-Arran
Arran Cudbard-Bell
a.cudba...@freeradius.org
RADIUS - Half the complexity of Diameter
-
List
Hi All
Thanks very much for your reply.
Best Regards
Gary
- Original Message -
From: Arran Cudbard-Bell
To: FreeRadius users mailing list
Sent: Tuesday, August 02, 2011 2:54 PM
Subject: Re: [freeradius+mysql]pap method
Um yes, it's 'encrypted' using the shared secret
On Tue, Aug 2, 2011 at 2:27 PM, Amir Tal a...@ccc.co.il wrote:
Upgraded freeradius to 2.1.11 (built from source)
This time it brought the whole machine down:
Notice how I DIDN'T suggest upgrading to 2.1.11, but to v2.1.x of git
branch? There's a reason for that, and you just found out the hard
Hi Bjørn,
Could you please resubmit this via GitHub.
http://wiki.freeradius.org/GitHub
Many Thanks,
Arran
On 1 Aug 2011, at 11:16, Bjørn Mork wrote:
This should make it compatible with JUNOSe version 12.1.1
and JUNOS version 11.2.
Signed-off-by: Bjørn Mork bj...@mork.no
---
This is a production server,
What is the latest stable version to use?
Amir.
-Original Message-
From: freeradius-users-bounces+amir=ccc.co...@lists.freeradius.org
[mailto:freeradius-users-bounces+amir=ccc.co...@lists.freeradius.org] On Behalf
Of Fajar A. Nugraha
Sent: Tuesday, August
On 2 Aug 2011, at 12:07, Amir Tal wrote:
This is a production server,
What is the latest stable version to use?
2.1.x head, it'll soon be tagged as 2.1.12. All the dangerous stuff goes on in
the master branch, the 2.1.X branch is relatively stable.
-Arran
Amir.
-Original
Arran Cudbard-Bell a.cudba...@freeradius.org writes:
Hi Bjørn,
Could you please resubmit this via GitHub.
http://wiki.freeradius.org/GitHub
Done. Thanks for the excellent instructions.
One question I didn't find the answer to though: Should I rebase patches
like this for all active
Hi
I am trying to set up the radius server so that it forwards all
accounting packet to a remote radius server without having to wait for
reply.
I set it up using the copy-acct-to-home-server, proxy.conf and detail
files in the modules directory.
I've got one problem however, whenever
Bjørn Mork wrote:
One question I didn't find the answer to though: Should I rebase patches
like this for all active branches (currently master and v2.1.x?) and
send a pull request for each of them? Or should I just send one pull
request based on the master branch and assume that you will
Tonna, Andrew, VF-MT wrote:
I am trying to set up the radius server so that it forwards all
accounting packet to a remote radius server without having to wait for
reply.
Use version 2.1.11 (or git v2.1.x branch), and see src/modules/replicate
Alan DeKok.
-
List info/subscribe/unsubscribe?
Thanks.
Andrew
-Original Message-
From:
freeradius-users-bounces+andrew.tonna=vodafone@lists.freeradius.org
[mailto:freeradius-users-bounces+andrew.tonna=vodafone.com@lists.freerad
ius.org] On Behalf Of Alan DeKok
Sent: Tuesday, August 02, 2011 1:53 PM
To: FreeRadius users mailing
Hi All,
is it possible to send the password from coova-chilli(for example) as
CHAP or MSCHAPv2 format to authenticate the clients on Kerberos through
FreeRADIUS?
Is it possible to do it without plain-text password?
Let me know, please.
Max
-
List info/subscribe/unsubscribe? See
Hi,
Further to my last foray onto the list regarding SoH, I'm looking to
commit the returned SoH info to the radius database using FreeRADIUS'
sql connection.
I could be well off target here, but please humour me, so far I have...
Created a table 'radsoh', and declared this inside sql.conf.
Massimiliano Tommasi wrote:
Hi All,
is it possible to send the password from coova-chilli(for example) as
CHAP or MSCHAPv2 format to authenticate the clients on Kerberos through
FreeRADIUS?
Is it possible to do it without plain-text password?
No.
Alan DeKok.
-
List
Palmer J.D.F. wrote:
Further to my last foray onto the list regarding SoH, I'm looking to
commit the returned SoH info to the radius database using FreeRADIUS'
sql connection.
It's just attributes.
I could be well off target here, but please humour me, so far I have...
Created a table
On 2 Aug 2011, at 15:07, Alan DeKok wrote:
Palmer J.D.F. wrote:
Further to my last foray onto the list regarding SoH, I'm looking to
commit the returned SoH info to the radius database using FreeRADIUS'
sql connection.
It's just attributes.
just use sql xlat...
update request {
Palmer J.D.F. wrote:
Further to my last foray onto the list regarding SoH, I'm looking
to
commit the returned SoH info to the radius database using
FreeRADIUS'
sql connection.
It's just attributes.
just use sql xlat...
update request {
Tmp-String-1 := %{sql:INSERT INTO
Upgraded freeradius to 2.1.11 (built from source)
Don't use 2.1.11 it segfaults, checkout the head of the 2.1.X branch in git
Notice how I DIDN'T suggest upgrading to 2.1.11, but to v2.1.x of git
branch? There's a reason for that, and you just found out the hard
way.
Houston, we have a
On 2 Aug 2011, at 15:44, Palmer J.D.F. wrote:
Palmer J.D.F. wrote:
Further to my last foray onto the list regarding SoH, I'm looking
to
commit the returned SoH info to the radius database using
FreeRADIUS'
sql connection.
It's just attributes.
just use sql xlat...
update request {
Didn't think xlat could do inserts and updates?
I wrote the patch to add the functionality and its been in the server
code for about the past three years :)
Good stuff. :)
The source of rlm_sql.c still states only ...
* sql xlat function. Right now only SELECTs are supported.
We'd
Hello all!
I´m a begineer on radius.
I will install radius on two systems : windows and linux ( each one in a
separate network and
different environments ).
my question : How many concurrent users can be authenticated on radius?
where can I see the radius restrictions ?
Is there a academic
Hi,
my question :� How many concurrent users can be authenticated on radius?
where can I see the radius restrictions ?
concurrent users or authentications per second? once a user authenticates
then they are online for as long as their session before a reauth (unless
session-timeout is
John Dennis wrote:
FreeRADIUS has some problems which other projects have avoided.
Sure. The reasons are pretty straightforward. The contribution from
the community is small. The people who contribute get few rewards, and
lots of arrows. The people who complain don't contribute.
It's
Hello Alan.
Thank you for your support.
At this moment I don´t think if authentications per second matter.
So, I suppose that there aren´t limit for concurrent users...right?
Regards.
On Tue, Aug 2, 2011 at 3:10 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
Hi,
my question :�
On Wed, Aug 3, 2011 at 4:37 AM, ANGEL RICO GUZMAN angel.r...@upaep.mx wrote:
Hello Alan.
Thank you for your support.
At this moment I don´t think if authentications per second matter.
So, I suppose that there aren´t limit for concurrent users...right?
Short version: yes.
Long
I'm new to FreeRADIUS and was initially exploring simple things, such
as add attributes to an Access-Accept message.
My problem is that the perl script is not being able to access (ie
print) values from RAD_REQUEST nor add pairs to RAD_REPLY.
The following script:
*** start of
Hello, I'm working on getting a hotspot set up, and I need the ability
to have a user log themselves out, so that they can connect on another
computer. I have it set up so that the user can enter their
information and have it log them out, but it doesn't disconnect them
from the router, so they
I'm trying to set up switch logons for IT staff. Some will get operator
(limited, read-only) access, some get manager (full) access. I've got two
Active Directory groups that control which access they get.
I've got the ntlm_auth section working with two different instances, one for
each, using
Sorry to reply to my own post, but I think I've found the answer; can
someone let me know if I'm on the right track?
I believe that I should be using ntlm_auth to *only* validate the *password*
in the authenticate section. And then I'll need to configure the LDAP
module and use Ldap-Group as an
31 matches
Mail list logo