Hi, at the moment i´m planing to build a Network based out of 20 VLAN over 8
Nortel switches. Depending on the given Layout of the Network I need to add
some PC´s to more than one Port based VLAN. Is it posible to give the VLAN
ID over the Radius Server, and is it possible to send more than one
Hi, at the moment i´m planing to build a Network based out of 20 VLAN over 8
Nortel switches. Depending on the given Layout of the Network I need to add
some PC´s to more than one Port based VLAN. Is it posible to give the VLAN
ID over the Radius Server, and is it possible to send more than one
Okay, thanks for the answert, if anyone knows a client software which is
free or cheap and supports this please mail me. I need it for ~300 Clients.
Greeting Armin
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Alan
DeKok
Gesendet: Montag, 22.
Hi, i set up an EAP-TLS based Radius Server an want realize dynamical VLANS
Port based with a Nortel BAystack 470 48T Switch. Is there any possiblility
how i can give more than one VLANID dynamicaly to the switch? Wit one VLAn
it works fine, but how can give a second ore third VLAN ID to th P same
Hi, thanks for your email!Ok, i tried it out but i have some problems. If i use the DWORT String you sent me it has no efekkt. I found an other DWORT Key which Sounds "AuthMode" and with this DWORT he only tries to authentificate with the machine account. Maybe you have made a typing mistake in
Ok, the hole day i tried to get it to work but this time when i install the certificate as a machine zertifikate the radius authentifikation log ends up with this log below.The Certificates where generated with openssl and all works fine as User certificates but not as computer zertificate. I set
Hi, i found this thred yesterday and tried it out to add this OID but it had no effekt...OK maybe i made somthing wrong. Could you describe how you added this oid to your machine zertifikate? Today i built completely new root,server and client certificates depending on the article in
Thanks for the answert Alan, but what do you mean that it should be made more prominent in EAP-Conf? Could you give me detailed instructions how i can get this OID to my certificates?ArminFreeRadius users mailing list freeradius-users@lists.freeradius.org schrieb am 25.08.05 17:35:11:Ben Walding
Hi, I set up freeradius with eap-tls and after I generated my certificates
with TinnyCA and configured it in eap.conf File I get this error
message...Does anyone knows what causes this error?
Thanks Armin
debian:~# freeradius -X -A
Starting - reading configuration files ...
reread_config:
: [EMAIL PROTECTED]
Behalf Of Armin Krämer
Hi, I set up freeradius with eap-tls and after I generated my
certificates with TinnyCA and configured it in eap.conf File
I get this error message...Does anyone knows what causes this error?
Thanks Armin
debian:~# freeradius -X -A
Did you
Hi,
i installed the aktual version of freeradius on a debian
system and generated a CA und server/client certificates with TinyCA2. I want
to authenticate the clients using EAP/TLS. But now i get this output of
freeradius and freeradius freezes at this point. Can someone tell me why
Hmmm... like i said i generated that Certifikate with TinyCA2. If you
generate the certifikates with TinyCA2 ist automatically signs it. I only
have to export the Client Certifikate to PKCS12 format for my XP machine.
Could you tell me what there could go wrong?
Thanks,
Armin
Hi,
I compiled Freeradius out of the 1.05 Sources following the Article of CT
18/2004. I changed out the Original Makefile in
/tmp/freeradius-1.0.5/src/modules/rlm_eap/types/rlm_eap_tls and added the
one which iss hostet by CT-Magazine. The only changes are the 2 added files
with the Openssl
Hi, i searched the whole archive about this Problems
but can not find an real answert to my Problem.
I want Windows XP to authenticate to Freeradius when
before the user Logs on the domain otherwise he would have no network
connection to reach the PDC and the logon fails.
It should be
Does noone have got any
ideahow to solve this problem?
Greetings
Armin
Hi, i searched the whole archive
about this Problems but can not find an real answert to my Problem.
I want Windows XP to authenticate to
Freeradius when before the user Logs on the domain otherwise he would have no
Here, this is the only output of freeradius-X-A when i copy the Certifikate
into the Machine Location in MMC-Computer Certificate and add the root certs
also. What kind of OID is now correct for Machine Certifikate? The normal
Client Authentifikation OID or an other?
Ready to process requests.
Okay, i tested on and found an difference. I attach 2 Files. One is the
output with an normal Client-Certificate the other with an Certifikate with
the OID 1.3.6.1.4.1.311.17.2.
In both cases the Certifikate is rejected with Error in Certifikate A.
The Client Certifikate ist tested as
Sorry, forgotte to attach the files...
Okay, i tested on and found an difference. I attach 2 Files. One is the
output with an normal Client-Certificate the other with an Certifikate with
the OID 1.3.6.1.4.1.311.17.2.
In both cases the Certifikate is rejected with Error in Certifikate A.
The
think this is an Certificate Problem or a Problem of the Freeradius Config?
Greetings Armin
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
Im Auftrag von Armin Krämer
Gesendet: Freitag, 6. Januar 2006 22:21
An: freeradius-users@lists.freeradius.org
Betreff: Noone
Whee can i define that freeradius should look at the ldap database for user
accounts and not at the users list?
Greetings
Armin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
i just got ldap in
my testenvironment working but can someone tell me what the marked line in
the log means? The authentication works fine and i get access to my network?? Or
can i ignore this message?
Greetings
Armin
Starting - reading configuration files ...
reread_config: reading
Oh, im sorry, about htat, thought it would be better to send the whole log
of one authentication for better understanding.
OK, here it is again only the one line:
TLS_accept:error in SSLv3 read client certificate A
Greetings Armin
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
Hi, at the moment i trying to get my ldap authetication working with
redundant ldap directorys.
I made a second ldap modul and the following entry at the authentication
part
Redundant{
ldap1
ldap2
}
I fired up an second ldap directoy which is replicated by first one.
My
Hi, im planing to install my generated root Certifikate via W2k ADS to the Clients. How can i do this via AADS? What do i have to do in ADS and Group Policies?The second question ist that i will have to set a markonto my certifikate at the Trusted RootCertifikate Field at the network Connection
Okay i tried a little and my result is now that my attr_rewirite looks like:
search_string = (host/)
replace_string =
That works to delete the host/ part. But i need a $ appended to the
User-Name. How can i do this?
Mit freundlichen Grüßen
Armin
-Ursprüngliche Nachricht-
Von:
25 matches
Mail list logo
