Hi,
Thanks this was fixed by commenting out the ::1 entry in /etc/hosts as
we don't intend to run IPv6 on the box
if you dont intend fo run IPv6 on that server then I'd suggest to
turn it off - otherwise you may have no ::1 in /etc/hosts but your IPv6 stack
is running and ALL daemons etc that
Hi,
rad_recv: Access-Request packet from host 127.0.0.1 port 46723, id=155,
length=56
User-Name = test
User-Password = test
NAS-IP-Address = 127.0.0.1
NAS-Port = 0
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
Hi,
How long it take to auth in 802.1X/WPA-enterprise?
depends on the system and what methods etc...but easily under 1 second here
In this simple network model, I have tried to auth using
EAP-TLS(self-certification) and it works good.
By the way, about 18 seconds are taken to auth as follow
Hi,
Just checking in on this, I have plenty of patience. I just don't want to
find myself in a situation down the road where a currently-unknown security
issue or bug in 2.1.4 forces an upgrade, since our current configuration
doesn't seem to work with 2.1.8...
what are you proxying the
Hi,
Hi,
Is it possible to do authorization through the identity in inner tunnel?
check out the authorize {} section in the inner-tunnel virtual server
in FreeRADIUS 2.x - thats what its there for
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I did look there before I sent the first email. I think that I should
add something In authorize section like update request.
well, that all dependds on what you want to achieve. the current listed
modules in tat section all behave as per normal and deal with the basic
yes/no of
Hi,
Alan,
All I want to do is to use inner username to lookup the database table
to authorize.
so long as you call the relevant SQL module in the authorize {} section
of innter-tunnel then the default config will work fine for you.
- once the server is in inner-tunnel (called via EAP) it
Hi,
We tend to use a anonym...@realm identity for the EAP outer ID, in our
current radius server this is defined in a users file and has the format
of anonymous Encrypted-Password=nevermatch is there a similar thing in
freeradius and where should this be defined ?
IIRC, this is just so
Hi,
I thought it should be ttls but I found this to be a little confusing
aye. there are a couple of 'default_eap_type' lines - one for the main
EAP engine..and then entries under a couple of the tunnelled types (eg peap
and ttls)
eap {
default_eap_type = ttls
...
...
}
is correct
Hi,
This is what was confusing me I would have thought I should put ttls
here but I have already defined that as the default eap type, I know
that pap is not a eap-type but that what we are using in the tunnel,
could I put md5 here and configure ldap in the inner-tunnel file ?
yes - you
hi,
radiusd is already running and bound to port 1812 - either stop the current
process
using the relevant tool that started it... eg /sbin/service radiusd stop
or /etc/init.d/radiusd stop or kill it eg killall radiusd
THEN run the daemon in full debug mode
alan
-
List
Hi,
Now to make matters a touch bit more complicated FreeRADIUS changed how
it accessed the clear text password in its set of attributes. In older
versions of FreeRADIUS it was known as User-Password, but that produced
an unfortunate ambiguity and it was later modified to be
Hi,
Hi,
I tried to update from the version 1.1.7 to version 2.x.x but don't work.
I have a working server and i would like update to newer version.
take the default 2.x.x version and dont play with it. ensure it just runs.
then edit its configuration files so that it performs the same
Hi,
First question, is the only way to get Accounting data from FreeRadius
by using one of the supported databases (like msql)? Is there no way to
just cut records to a text file or, ideally, syslog?
the details files - depends how you've configured your server!
they would usually lurk in
Hi,
Samba 4 will be a full member of an AD domain. It will have access to
the NT hashed passwords. It will (presumably) be able to export them
via LDAP, like a real LDAP server.
oooh! yippee!
anyway, regarding initial issue samba 3.4.3 might fix the issue
but it must also be ntoed
Hi,
Where can I find documentation and training material for Free Radius Version
2.10 FreeRADIUS Version 2.1.0, for host x86_64-pc-linux-gnu Ubuntu 9.04.
there should be a doc directory supplied as part of the package -
/usr/share/doc/ ??
This is the only version that is available from
Hi,
Some current settings:
max_request_time = 6
cleanup_delay = 10
max_requests = 1024
max_servers = 5 #threads are used
not enough threads around to do heavy work. i'd suggest that you
you increase the max_servers (and start_servers and max_spare_servers) to eg 128
you may then need to
Hi,
My version of freeradius is Version 2.1.0
upgrade to 2.1.8
[files] users: Matched entry linatest at line 11
++[files] returns ok
WARNING: Please update your configuration, and remove 'Auth-Type = Local'
WARNING: Use the PAP or CHAP modules instead.
FreeRADIUS doesnt lie
i don't have
Hi,
i use ubuntu as radius server
all configuration file is under /etc/freeradius/*
as client i use winxp wired without certificate. just EAP-MSCHAP v2 as
authentication method.
in my users file i put one user like this:
##
linatestAuth-Type = CHAP
Hi,
I'm tryng to use Freeradius 2.x for managing a complex architecture. I use
the 802.1x standard for wireless authentication.
I need to authenticate users that have passwords in different authentication
server whit different protocol (TTLS/PAP or PEAP/MSCHAPv2) and i'd want to
proxy the
Hi,
oh great i compiled the latest = and tryed new configuration great , it
works with my client wired
Thank u so much
congratulations - and thanks.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Hello,
so i would like to redirect my winxp authenticated to VLAN1 and if not
authenticated , this client must be in vlan2
i got a switch cisco
so how to handla this with freeradius?
read the cisco docs on dealing with 802.1X.
you should never use VLAN1 for users - most would
Hi,
I recently upgraded one of our freeradius servers from 1.3.3 to 2.0.4. We
use this for mac authentication for wireless which is working fine and also
ldap authentication for our vpn users.
just to note there was never a 1.3 or a 1.3.3 version of FreeRADIUS. the 1x
train has 1.0.3 or
Hi,
interface FastEthernet0/24
switchport access vlan 100
switchport mode access
dot1x pae authenticator
dot1x port-control auto
dot1x auth-fail vlan 120 = here supposed to send it to vlan 120
spanning-tree portfast
looking okay...do you need to set these global values too?
Hi,
To start FreeRadius in debug mode with time stamps use the command: radiusd
-XX
To shutdown FreeRadius use the command: killall radiusd
in his case its
killall freeradius
I believe..as thats the process name from the netstat
alan
-
List info/subscribe/unsubscribe? See
hi,
do not just dump 1.1.x config onto any 2.x system - simply take the 2.x
and then edit the config to get what you require.
looks like you are forced the authentication type in the SQL
tables to be CAHP. dont do that.
alan
-
List info/subscribe/unsubscribe? See
Hi,
I was wondering if anyone knows if the freeradius version for windows
will run on other windows versions than XP? It shows XP on the site.
I am trying to run it on a Windows 2000 box and when running the debug
batch file I get the error:
//etc/raddb/sql.conf[143]: Line is not in
Hi,
i sucess dpkg-buildpackage (after reinstalling os ubuntu on my server test)
so i installed FreeRADIUS Version 2.1.8 via .deb file ok
so know i tried the same configuration like before, but launching freeradius
-X ireturns
rad_recv: Access-Request packet from host 192.168.20.253
Hi,
including files in directory /etc/freeradius/sites-enabled/
...empty..nothing in there
WARNING: Empty section. Using default return values.
and hence nothing there too!
ensure that you have a virtual server or more defined in the sites-enabled
directory. the default sites should
Hi,
Yes
In the newer version I did not find CA.all file which I needed . Thats is
why I use Older version
why do you need it - noone else doesthey install 2.1.8 etc quite happily.
the 'snapshot' file you are trying to use is a nightly grab of ...well, i think
back then it was CVS
Hi,
i reinstall completely freeradius.
radius.conf is not changed
i just put on the top of users file
omega Cleartext-Password := testing
and run radtest
radtest omega testing 127.0.0.1 1 testing123
Sending Access-Request of id 62 to 127.0.0.1 port 1812
User-Name = omega
Hi,
so i made an update.
you certianly did. i dont know WHAT you are doing or WHY
you re doing it but you have changed other things.
look, its very very obvious
including files in directory /etc/freeradius/sites-enabled/
and then into the system. but thats wierd, because last time,
Hi,
radclient 172.0.0.1:3799 43 testing123
in this command 172.0.0.1 is a server radius but what is 43?
port number. not the daemon port (thats 3799 in the example above)
but NAS port
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Incorrect; in this command 172.0.0.1 is the NAS. RFC 3576 section 2.3
explains what 43 is.
duh - of course. sorry, misread the question as relating to radtest ;-)
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
There is nothing in the bugs file
doc/bugs is a document that explains what to do if come across an
issue - eg segmentation fault. read that document, follow the instructions
and, if something is wrong with the code rather than your OS, the
server code can be fixed (which, I guess, is 'the
Hi,
Everything works up to and including the command line test using ntlm_auth
but after I create the file raddb/modules/ntlm_auth
and make the changes to raddb/sites-enabled/default ,
raddb/sites-enabled/inner-tunnel and the users file I get an error when
running radiusd -X
Error is:
Hi,
Everything works up to and including the command line test using ntlm_auth
but after I create the file raddb/modules/ntlm_auth
and make the changes to raddb/sites-enabled/default ,
raddb/sites-enabled/inner-tunnel and the users file I get an error when
running radiusd -X
can you cut
Hi,
The /etc./raddb/modules/ntlm_auth file:
ntlm_auth {
wait = yes
program = /usr/bin/ntlm_auth --request-nt-key --domain=XXX
--username=%{mschap:User-Name} --password=%{User-Password}
}
that is wrong - I think Phil may have already said this
Hi,
Hi,
Is there a way to determine how many client requests are being received by
the free radius server?
stats. use eg radmin. or just check your detail or SQL logs etc etc.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Or just query your freeradius server using radclient if status server is
enabled, or use radmin (which is not always very stable, i would not
recommend using it... at least with version 2.1.6)
no problems , of note!, with radmin on 2.1.8 (yes, there were problems with
earlier
Hi,
I am not able to use the set or add command when using radmin. Could you
please provide me a pointer on the same.
This is the error which i am getting.
radmin add help
ERROR: You do not have write permission. See mode = rw in
/usr/local/var/run/radiusd/radiusd.sock
the error
Hi,
Hi,
I am unable to locally authenticate a user from users file. Below is the log :
what does the entry in your users file look like?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
[ldap] userPassword - Cleartext-Password == test
note the space at the end. your password is 'test ' not just 'test'
is this deliberate? check your LDAP!
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
[mschap] Told to do MS-CHAPv2 for bernard with NT-Password
[mschap] FAILED: No NT/LM-Password. Cannot perform authentication.
[mschap] FAILED: MS-CHAP2-Response is incorrect
get rid of the NT-Password LDAP hook if you're not using it.
alan
-
List info/subscribe/unsubscribe? See
Hi,
another question?
why not.
how freeradius deal with simultaneous mutiple access?
read the mailing list archives?
read the documents that come with the product?
doc/Simultaneous-Use
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
how can i handle encrypted users's ldap password ?
depends what you want to do
read the docs and you will see what youc an do with what back-end eg
http://deployingradius.com/documents/protocols/compatibility.html
this shows that LDAP is just a basic store of info...you cannot do eg
Hi,
no i don't have AD.
in other word, i cannot use windows xp supplicant EAP-MSCHAPv2 to make the
authentication protocol to authenticate users in openldap database using
ssha1 password, that's right?
correct: http://deployingradius.com/documents/protocols/oracles.html
Hi,
just want to manage accounting on mysql
so i coyed the schema.sql in /etc/freeradius,
did mysql -u root -p accounting schema.sql
and i got this.
ERROR 1064 (42000) at line 17: You have an error in your SQL syntax; check
the manual that corresponds to your MySQL server version
Hi,
I'll try to make Mac Authentication with MySQL backend. But I always rejected.
Mac Authentication only works if I add like the following lines into
the /etc/raddb/users.
90:4 C: E5: 6C: 7E: B6 Auth-Type: = Accept
I use OpenBSD 4.6, FreeRadius 2.1.3 and MySQL 5.0.83.
What should I
Hi,
destination acct_radius { pipe(/var/log/mysql.pipe \
template(UPDATE radacct SET FramedIPAddress =
SUBSTRING_INDEX(SUBSTRING_INDEX('$MSG','on ',-1),' to',1) \
WHERE TIMESTAMPDIFF(SECOND,AcctStartTime,CONCAT('$YEAR-$MONTH-$DAY','
','$HOUR:$MIN:$SEC')) = 180 AND \
Hi,
Mon Mar 15 18:57:09 2010 : Error: Discarding duplicate request from client
ccc port 32768 - ID: 85 due to unfinished request 28810
Mon Mar 15 18:57:14 2010 : Error: Discarding duplicate request from client
ccc port 32768 - ID: 85 due to unfinished request 28810
Mon Mar 15 18:57:19 2010
Hi,
but i noticed that i don't have the real ip address of a workstation
connected.
i got this
+-+-+-+---+-+
| FramedIPAddress | AcctStartTime | AcctStopTime |
CallingStationId
Hi,
Now when I go to the next step and enable this in /etc/raddb/modules/mschap
ntlm_auth = /usr/bin/ntlm_auth --request-nt-key
--username==%{%{Stripped-User-Name}:-%{User-Name:-None}}
--domain=%{%{mschap:NT-Domain}:-OURDOMAIN}
--challenge=%{mschap:Challenge:-00}
Hi,
The purpose of debugging is to allow debugging. This includes
checking passwords.
yep. all too often the issue is an incorrect password - eg a recent
case on this mailing list where the password supplied via LDAP
was wrong.
alan
-
List info/subscribe/unsubscribe? See
Hi,
Could we move clients.conf to mysql table ?
yes.
How to do that ?
its well documented but basically, you need to
1) import the nas.sql so that your MySQL has the right table/structure
2) edit the mysql/dialup.conf make sure that nas_query is not commented
finally, edit
Hi,
The same Problem I am getting My Solaris Servers while starting the radius
server. How can I fix this .
can U give me detailed explanation.
the output is fairly obvious:
/usr/local/etc/raddb/certs/bootstrap: make: not found
/usr/local/etc/raddb/certs/bootstrap: openssl: not
Hi,
from. My Free radius server has a Thawte Certificate installed. I'm not
sure what the message means?
usually a misconfigured client eg they are checking the cert against
the wrong CA or no CA etc.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
After several unsuccessful attempts I could install Freeradius with OpenSSL
support for do ntlm_auth for the users with Active Directory integration. The
problem is, when the windows xp machine try to connect to the wireless
network, Freeradius (or windows xp machine, reallly dont
Hi,
you SAY you are using 2.1.8
but this config
filter =
((objectClass=inetOrgPerson)(uid=%{Stripped-User-Name:-%{User-Name}}))
which leads to this error/warning
[ldap] WARNING: Deprecated conditional expansion :-. See man unlang for
details
was fixed in 2.1.8 (basically, config
Hi,
I was afraid of that.
I looked through the code and it appears as if rlm_sql should populate
nastype along with shortname, secret, etc.
Anyone know why it's not?
it does if the info is there:
SELECT id, nasname, shortname, type, secret FROM ${nas_table}
(in fact, it can also
Hi,
[ntlm_auth] WARNING: Deprecated conditional expansion :-. See man unlang
for details
[ntlm_auth] ... expanding second conditional
you still havent fixed that basic thing - check out the default config from
the 2.1.8 tarball
[ntlm_auth] No MS-CHAP-Challenge in the request.
Hi,
Our network had some change somewhere and now all MySQL insert queries
are failing
someone edited the SQL query and messed it up? use RCS/CVS/GIT or SVN for
code/config control.
'localhost:652027', '', 'QUESCFARM', '0.0.0.0', '0', '10.0.64.10',
'18060', 'oscar_telecom',
Hi,
you still havent fixed that basic thing - check out the default config from
the 2.1.8 tarball
Today I tried unsuccessful to figure out how solve the :- issue. I read
man unlang but I could not find anything...
just read your version and compare it to the supplied default config in
Hi,
The server is in production and we won't upgrade for a while.
but you're willing to patch and recompile the old/obsolete 2.1.3 version?
whats the difference? its pretty much the same situation. go for 2.1.8.
alan
-
List info/subscribe/unsubscribe? See
Hi,
Alan,
Does 2.1.8 have the fix for the problem?
its got many fixes - check the source code.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
but it doesn’t work
yep. that wont work. reason? because you proxied to the
remote RADIUS. it didnt know the user and therefore you got
a reject. once you get a reject then all bets are off with this
config - the 'fail-over' is if there is no answer from the
RADIUS server - at which point
Hi,
As I had thought the issue with the EAP packet was the configuration of Cisco
access-point. I solved this but now I can not authenticate against Windows
2003 AD using ntlm_auth. This is the complete log:
you didnt send enough debug log - the 'party had only just got
started'.
you say
Hi,
Hi
I have problem with password encryption in mysql database:
-
*If i have in database:
1 t...@realm User-Password := test
I get Access Accept.
-
-
*When i have:
2
Hi,
David User-Password==freeradius
you left behind the third option, the only one working:
David User-Password :=freeradius
no. the correct one is
David Cleartext-Password := freeradius
In pre-2.x.x versions of freeradius peap-mschapv2 is handled cleanly
and linearly, is there really
Hi,
1. For each user wishing to authenticate with freeradius, I have added two
attributes in users.conf file. The first attribute is Framed-IP-Address,
while the second is a VSA ipoque-class.
'users' file
2. When the user successfully authenticate with the freeradius, and after
the
Hi,
I'm totally new in Linux, as well as in freeradius...
I've installed version 2.1.8 in Linuxmint 7.
I think everything in installation went ok... I succeed doing:
$ radtest user password 127.0.0.1 10 testing123
with user/password the ones that I use to login in my computer. I get a
Hi,
There are two raddb directories (at least, I have two...):
/usr/share/freeradius-server-2.1.8/raddb
/usr/local/etc/raddb
and having a look at this directory, I found the second raddb directory.
I'm a bit lost with this directories schema in Linux... Is there any reason
to have two
Hi,
I have Radius v1.1.7 working great with eDirectory/LDAP, both running on SLES
10 SP3. Right now we use it to control access to our wireless in the
district, but its sort an all-or-nothing approach right now. What we are
trying to accomplish is to have
two SSIDs - one for students
Hi,
+- entering group accounting {...}
[sql_default] expand: packet has no accounting status type. [user
'%{User-Name}', nas '%{NAS-IP-Address}'] - packet has no accounting status
type. [user 'b...@realm', nas '10.80.10.140']
[sql_default] packet has no accounting status type. [user
Hi,
I'm newbie in FreeRadius, I installed latest version of it and followed the
steps as mentioned in the websites:
http://www.howtoforge.com/authentication-authorization-and-accounting-with-freeradius-and-mysql-backend-and-webbased-management-with-daloradius
and
Hi,
I tested ntlm_auth directly and it works perfectly. Samba and everything else
is all good, I got TTLS and the users files authenticating well as well (so
my cert is good and TLS is good). So it appears as if I’m missing something
in my Freeradius configs that specifically has to do
hi,
the error is seen with near bottom
[mschapv2] +- entering group MS-CHAP {...}
[mschap] No Cleartext-Password configured. Cannot create LM-Password.
[mschap] No Cleartext-Password configured. Cannot create NT-Password.
[mschap] Told to do MS-CHAPv2 for username with NT-Password
[mschap]
Hi,
Here is the log for it without auto header.
!!!
!!!Replacing User-Password in config items with Cleartext-Password.
!!!
!!!
Hi,
apples.com auth's off a mysql db
pears.com auth's off Active Directory
yes. set a virtual server as the server in the proxy.conf
or use unlang to update the realm details and send it to a new
virtual server. that VS will only have the relevant engines
configured in it
alan
-
List
Hi,
for their 5.5 update. They usually follow the Red Hat release by a few
weeks. (Or you might consider installing RHEL :-)
Also you might want to be aware the RHEL 5.5 update contains FreeRADIUS
2.1.7, not 2.1.8 because 2.1.8 was not available when RHEL 5.5 was frozen.
given that 2.1.8
Hi,
Maybe the info about /proc/sys/fs/suid_dumpable should be added to
doc/bugs...
to quote the man page:
/proc/sys/fs/suid_dumpable (since Linux 2.6.13)
The value in this file determines whether core dump files are
produced for set-user-ID or otherwise
Hi,
Another solution is to stabilize FreeRADIUS such that the need for
frequent version upgrades is not necessary. Rather than adding new
features focus on bug elimination. Some projects have a stable branch
and an future branch. The pace of version releases for FreeRADIUS is
brisk.
Hi,
Should I be posting my debug logs to a pastebin rather than sending
them to the whole list?
E-mail's cheap. Paste the text from the logs into the main body of your
e-mail.
agreed. i'm far less likely to fire up a browser to read a log
file when i'm in a mutt session
alan
-
List
Hi,
I believe my next step, according to what Josip Rodin has been kind enough to
point out, is to enable the ntdomain parsing section, which is configured
but commented out in /etc/freeradius/sites-denabled/default.
(It occurrs twice, if I understand correctly the second one is for
Hi,
According to http://wiki.freeradius.org/PopTop though, I shouldn't need to
define a user. The 1.x configuration does not appear to have required this
either. Did it default to using local /etc/passwd or PAM? Did the old
mschap module know to use samba?
Thibault, how does your
Hi,
As an introductory guide for someone who doesn't know which pieces are
necessary among the many, many options, it is clear as mud.
though surely as bad/good as apache2 with its sites-enabled/ and random
billion modules?
alan
PS dont CC someone who is on the list
-
List
Hi,
Yup. It's not that 2.x is bad without status checks, it's that there
is *no way* for anyone to do the right thing without status checks.
agreed - I'm behind status-checks all the way - either native
sattus-check or a user who gets rejected. both work fine for testing
upstream
Hi,
Any other suggestions on where I should look to see why the servers
are marking the upstream servers as Zombie? I failed to mention that
the servers are marking only the accounting port on those servers as
Zombie. Please let me know if you want the 9MB debug or if you have
Hi,
steve Cleartext-Password := testing Service-Type = Framed-User,
Tunnel-Type = VLAN, Tunnel-Medium-Type = IEEE-802,
Tunnel-Private-Group-ID = 2
I have no idea why people keep insisting on doing this, but make
'Tunnel-Private-Group-ID' the VLAN *name*. You are only going to end
Hi,
* is the cipher login/password which comes from CopSpot(or any captive
portal) deciphered before ipcop sends it to freeradius-server? (It's a kind
of question which can not be asked here but ... never know)
if the server says its CHAP then its probably sent as CHAP rather than PAP...
Hi,
Info: ++[mschap] returns ok
Debug: MSCHAP Success
So i assume that the auth. against AD is OK
not if you havent done the EAP inner-tunnel stuff yet - unless you mean
basic authorize has completed.
but then the inner tunnel does something
well, it tries to
Mon Apr 26
Hi,
++[sql] returns ok
!
!!
!!!Replacing User-Password in config items with Cleartext-Password.
!!!
!
!!
!!! Please update your
hi,
the GIT version is guaranteed to compile - its very bleeding edge and work in
progress
...you've got the pre-2.2.0 HEAD versionand theres a few little niggles
that seem to have crept in.
will the 2.1.8 source not do things for you?
alan
-
List info/subscribe/unsubscribe? See
Hi,
This has nothing to do with how many MySQL servers you've got or how
you're doing replication, encryption occurs on a per connection basis
(e.g. connections established via rlm_sql_mysql). rlm_sql_mysql never
opens an encrypted session with it's server because rlm_sql_mysql does
not
Hi,
I am trying to replace the functionality (from sites/enabled/default) of,
ldap_server_1 {
notfound = return
}
with a redundant set of servers. I cannot have
redundant-load-balance {
ldap_server_1 {
Hi,
It means some other process is already listening on that port. The
most usual case is that you already have radius running.
Try running:
ps aux | grep radius
The output should say if you already have radius running.
aye.
netstat -anp
etc should also show you whats on port 1812
Hi,
/usr/local/etc/rc.d/radiusd debug
must ignore /etc/rc.conf radiusd_enable=YES and must act like
/usr/local/etc/rc.d/radiusd one start
huh? is this 'debug' argument/option a special script addition
for your OS?
the command you are running appears to be a generic system start/stop
script
Hi,
After installing Radius. i try to do some exemple.I d'ont know if it is
correct because i'm new in it.
I add on Users:
sonia Auth-Type := Local, User-Password == salut
Reply-Message = Hello, %u,
Reply-Message = are you fine, %u
what version? with anything recent this should work
Hi,
}
rlm_eap: No such sub-type for default EAP type peap
/etc/freeradius/eap.conf[1]: Instantiation failed for module eap
/etc/freeradius/sites-enabled/inner-tunnel[223]: Failed to find module eap.
/etc/freeradius/sites-enabled/inner-tunnel[176]: Errors parsing authenticate
section.
Hi,
yep - the default debian install doesnt have OpenSSL support.
No, only the default build of 2.1.8 from original source on Debian lacks the
libssl-dev build-dependency. The pre-built packages are fine, and that's
yes, thats
1 - 100 of 1488 matches
Mail list logo
