Hello,
I would like to know if this is possible
Send a Class or Filter-Id attribute to the NAS, with the content
being the names of the LDAP groups to which the user belongs.
Thank you,
denis
How does the NAS expect the group to come back?
Class:
-
List info/subscribe/unsubscribe?
Hello,
I would like to know if this is possible
Send a Class or Filter-Id attribute to the NAS, with the content
being the names of the LDAP groups to which the user belongs.
Thank you,
denis
How does the NAS expect the group to come back?
Class:
Sorry, I guess I hit send
: [testuser/test123] (from client edcenter port 0)
Sending Access-Accept of id 3 to 10.32.2.108:1142
Filter-Id = testgroup1
Finished request 0
-Original Message-
From: Dustin Doris [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 17, 2004 11:12 AM
To: '[EMAIL PROTECTED
Combining both posts.
As Allen said replying to your other post. If the FilterId has a space in
it, you'll need to quote it. Plus what I said about returning multiple
values. It would look like this in ldap as an example:
securityrole: users otherstuff
securityrole: += testgroup1 stuff
okay i'm not really into Win stuff .. ntPassword fields seem crypted since i
can't read them with my eyes, but i think it's just a hash or something. Isn't
it the regular way to store NT passwords ?
anyway, here is my ldap section in radiusd.conf:
ldap {
server = 192.168.1.6
basedn =
Considering running freeradius. I have a special need that just popped
into my lap. I need to set up a radius server that allows for any
arbitrary user with any password to be authenticated by the radius
server. Sounds crazy, but I want to use the server to capture user
information for a
I've had a similar issue on 4.9 and above. I think I just went into
src/modules and rm -fr rlm_smb and then it worked.
On Wed, 30 Jun 2004, Chris Shenton wrote:
I've been trying for a few days to get FreeRADIUS from CVS compiled on
a FreeBSD-4.9 and FreeBSD-5.2 machine. I want to use it to
Hi,
This may look like a reccuring question, but I've checked the
whole mailing list and many other websites but this isn't
clear to me.
I'm currently working on a gateway using a very poor but
strong configuration of free radius.
This gateway has installed the minimal configuration to
What is the debug output? What happens when you try to login to the
router? User denied?
On Fri, 9 Jul 2004, Robert Banniza wrote:
Guys,
We are trying to allow users to authenticate to Cisco 26xx routers using
Freeradius with the rlm_ldap module (OpenLDAP). We would like some of
these
What about radiusd -x?
On Fri, 9 Jul 2004, Robert Banniza wrote:
Here is what we are seeing when a user tries to login:
% Authorization failed.
Connection to host lost.
On Fri, Jul 09, 2004 at 12:42:05PM -0400, Dustin Doris wrote:
What is the debug output? What happens when you try
='tty1'
+rem_addr='10.1.1.162' authen_type=ASCII ser
vice=LOGIN priv=1
On Fri, Jul 09, 2004 at 12:42:05PM -0400, Dustin Doris wrote:
What is the debug output? What happens when you try to login to the
router? User denied?
On Fri, 9 Jul 2004, Robert Banniza wrote:
Guys,
We
I think you had a typo with radclient. It showed
Framed-IP-Address = 10.10.50.1.2
in your capture of the outgoing packet.
On Mon, 12 Jul 2004, Jeff Synnestvedt wrote:
Hello,
I am running accounting on freeradius-1.0.0-pre3. I am using pretty much
the default configuration files
, 2004 at 12:46:46PM -0400, Dustin Doris wrote:
What about radiusd -x. Run Freeradius in debug mode.
On Sun, 11 Jul 2004, Robert Banniza wrote:
Here is the debug output:
2d04h: AAA/MEMORY: create_user (0x20F7E20) user='' ruser='' port='tty1'
+rem_addr='10.1.1.162' authen_type
the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 0 ID 15 with timestamp 40f2e98a
Nothing to do. Sleeping until we see a request.
On Mon, Jul 12, 2004 at 02:29:28PM -0400, Dustin Doris wrote:
You need to do what the debug
I set it up once in the past to test it out against mysql and postgres.
We ended up using mysql in production. Anyway, when setting it up I was
able to do so reading the docs that came with freeradius.
raddb/raddb.conf
- change the INCLUDE to use oraclesql.conf instead of sql.conf
On Fri, 23 Jul 2004, Daniel Epstein wrote:
Greetings all,
We run a freeradius-0.9.3 installation handling authentications for a
number of different NASs on our campus. The RADIUS servers are using
an openldap directory as the primary user credentials store. For a
number of reasons, we
an
expiration, set the expiration for 30 days from the initial login.
Charlie
-Original Message-
From: Dustin Doris [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 17, 2004 6:25 AM
To: [EMAIL PROTECTED]
Subject: Re: 30Day Limit
Check out the rlm_sqlcounter module. Read doc
Hi,
I would like to know if we can run two freeradius instances on the same
server (on different ports of course !)
Yep
If yes, how can I do this ?
Here is how I did it.
**Note: my directory structure is under /usr/local, if your's is different
just modify that.
1. Make two
Is their a way to have Freeradius reply differently based on what NAS Server
sent the request?
Yep.
Example. [EMAIL PROTECTED] will connect throught our national dialup and
get
X-Ascend-Data-Filter == ip in forward tcp est,
X-Ascend-Data-Filter == ip in forward dstip 1.2.3.4/24,
Below should help. If you have more specific questions about squid, I
would check their documentation as they explain it pretty well on how to
do external authentication.
Here is a brief overview on how you can setup squid to use radius
authentication.
In squid.conf under the auth_param
Message-
From: [EMAIL PROTECTED] on behalf of Dustin Doris
Sent: Thu 9/9/2004 7:40 PM
To: [EMAIL PROTECTED]
Cc:
Subject: Re: LDAP (continued...)
My Windows 2000 domain is office.netsystems.pt. The user I'm using is
administrator
-
From: [EMAIL PROTECTED] on behalf of Dustin Doris
Sent: Fri 9/10/2004 1:27 AM
To: [EMAIL PROTECTED]
Cc:
Subject: RE: LDAP (continued...)
On Thu, 9 Sep 2004, sousa.hugo wrote:
I'm using the Domain ADMINISTRATOR account, so it should have access
On Thu, 16 Sep 2004, J.R. Cabanban wrote:
command: radtest arookie localhost 1 sharedsecret
response: rad_recv: Access-Reject packet from host 127.0.0.1:1812, id=61,
length=20
snapshot of radiusd -X -A
rad_recv: Access-Request packet from host 127.0.0.1:32847, id=53,
On Fri, 17 Sep 2004, Lionel Gavage wrote:
Yes but even without it doesn't work. By using the directive listen in the
radiusd.conf file (as indicated in my preceding mail)
radiusd.conf:
bind_address = *
port = 1645
listen {
# IP address on which to listen.
# Allowed
Hello.
I am looking to use rlm_ippool to manage my users IPs. The setup we have
here is kind of unique and wondering if rlm_ippool can accomplish what I
need to do.
We will have a block of say /18 assigned to a particular NAS. During the
radius authentication, we will need to send back two
Dustin Doris [EMAIL PROTECTED] wrote:
We will have a block of say /18 assigned to a particular NAS. During the
radius authentication, we will need to send back two radius attributes of
Framed-IP-Address and Framed-IP-Netmask. However, the Framed-IP-Address
that we need to send back
I have FR set up to auth/acct against MySQL. It appears to work fine in
a high load environment, most of the time.
Very, very occasionally FR appears to mis-process requests from the
NASes.
The NAS will report that an Access-Request has been sent, and an
Access-Accept recieved, but
Dera list:
I´m working with PPP Dial-In connections to a Cisco box with CHAP
authentication. My users are authenticated through Radius server
(freeradius 1.0.1) and the user profiles are load in a MySQL database
created with the script provided in a freeradius.tar.gz file. All is
working
On Thu, 21 Oct 2004, John Simms wrote:
Hi, can anyone tell me where I can get good
documentation for freeradius. I've just installed it
on my linux box and need to configure it and begin
using it for work.
Thanks!
When you tar xvfz the file, look in the raddb dir and read the
Hello FreeRadius list:
I'm having difficulty getting the attr_rewrite module to do...well,
anything.
I have a working RADIUS installation validating off of a mySQL database.
Our existing NASs (Wireless APs) transmit mac addresses as 12 character
lower case letter/number combos - this
Look into the doc directory.
README tells you about Exec-Program and Exec-Program-Wait you can put into
the users file.
variables.txt shows the variables that you can pass to it. Pay attention
to the line with printenv /tmp/exec-program-wait. That will show you
the variables that are actually
It means its being truncated. Try adjusting the snaplen. You should be
able to do -s 0 to make sure you capture the entire packet or you can
specify a length such as -s 1024. Do a man tcpdump and search for
snaplen.
ie: tcpdump -i fxp0 -s 0 udp port 1812
-Dusty Doris
On Tue, 16 Nov 2004,
Hello all,
I've spent quite a long time trying to understand how freeradius works
and trying to get everything I want working.
I am using Openldap since 2001 and I've no problems to understand LDAP
as I wrote many programs around LDAP. In fact I don't understand how
groups are working under
about
ippool and the way it works.
I suppose that the NAS is completely relying on radius for IP delivery.
I'm wondering what happen in case of the failure of the main radius server.
Dom
Dustin Doris a écrit :
Hello all,
I've spent quite a long time trying to understand how freeradius
Dustin Doris a crit :
Hello all,
I've spent quite a long time trying to understand how freeradius
works
and trying to get everything I want working.
I am using Openldap since 2001 and I've no problems to understand
LDAP
as I wrote many programs around LDAP. In fact I don't
Add this to the top of your DEFAULT entries in the users file.
DEFAULT Huntrgroup-Name == dial, Ldap-Group == nodial, Auth-Type :=
Reject
Define what the group attribute is in your radiusd.conf file.
ie: groupname_attribute = radiusgroupname
Define the dial NASes in your huntgroups file
ie:
You can do this.
First setup two different tables for auth. Maybe cedt_authcheck and
ece_authcheck. Setup your permissions to modify those tables
appropriately in mysql.
Then in sql.conf, comment out the authcheck_table variable and create two
new ones.
ie:
cedt_authcheck = cedt_authcheck
Thor Spruyt wrote:
If you're not more specific about what you're trying to accomplish,
I'm afraid nobody can advise you.
Sorry I want to have the freeradius Accounting entry insert into 2
database at the same time.
Where the 1st DB is for log process and the 2nd DB is for some
Thor Spruyt wrote:
If you're not more specific about what you're trying to accomplish,
I'm afraid nobody can advise you.
Sorry I want to have the freeradius Accounting entry insert into 2
database at the same time.
Where the 1st DB is for log process and the 2nd DB is for some
On Thu, 2 Dec 2004, Christian Reeves wrote:
I have an ISP scenario using freeradius 1.0.1. to
authenticate dialup
customers on our single domain. We use a Mysql backend.
We have added a second domain for a national dialup service. A 3rd
party providing the POPS will pass radius
I'm getting segmentation faults when it tried to load the SQL module
after implementing Thor's changes:
bash# radiusd -X
...
...
...
Module: Instantiated realm (suffix)
Segmentation fault
bash#
Configuration:
sql.conf:
sql_acct {
driver = rlm_sql_mysql
}
sql_auth {
I use freeradius to authenticate about 200,000 users for various
services, all connecting to an ldap backend. We use radrelay on our 4
radius servers to send a copy of all accounting data to one server that
stores it in sql. Its been incredibly stable, we've actually never
touched our failover
Hi all
I'm looking to implement a prepaid card type service - I plan on using
Session-Timeout to disconnect the users. How does freeradius keep
track of the time elapsed while connected? I am holding all the info
in SQL - I guess when a user connects it counts down until 0 then
sends the
On Thu, 9 Dec 2004, Michel van Dop wrote:
Hello,
I using freeradius-mysql-0.9.3-1.1 on fedora 1, i connect to mysql server
3.58.x db. It work okay mysql on username and groupname.
My totacct is empty in mysql db. Can anyone tell me how to config this or can
me send a good link with
Hi All,
I am in the process of rebuilding our servers to recent openldap and
freeradius versions in our lab and when done will re-write the ldap howto,
as I know its pretty outdated by now.
Anyway, I've been playing around with using configurable failover for my
ldap setup and ran into an issue.
Do you mean give a user a specific IP address from a pool, or assign a
user to a specific pool?
If its the first, I don't believe you can do that. Rlm_ippool is setup
for dynamic assignment. You could just assign that value in the users
file or sql and then in ippool you set this
override = no
Hello all,
Recently I found that omshell can be use to control the dhcpd server
without restarting the server.
So I'm thinking would there be a way to ask the freeradius to Talk to
omshell when a users auth and assign an ip though omshell.
When the users request the ip from dhcpd server,
I would like to monitor my users(wireless) and I try writing a system and
I'm using table radacct. But value for Calling-Station-Id is not recorded
and we are using DHCP server.All user can get ip address from dhcp but my
radius server doesn't record it. Can anyone help me how to grab
http://www.freeradius.org/rfc/rfc2865.html#Framed-Route
On Mon, 13 Dec 2004, Nirmal wrote:
Hi,
I am using FR-0.9 and MySQL as backend. how can i add
single framed-route for a user ? e.g. i just want to
forward /30 to a user.
what is the exact format for framed-route attribute ?
what i
Grab it for what? You can use the exec module to run a script on those
variables. Is that what you're looking for? Maybe if you explain what
you are trying to do, I can be more helpful.
On Wed, 15 Dec 2004 [EMAIL PROTECTED] wrote:
Hi all,
Can anyone please suggest me how to grab the
Michael Markstaller wrote:
I feel uncomfortable with something happening with logging occured.
When talking about auth this might be ok, for acct it is definitely not.
My opinion is: waht couldn't get logged shouldn't happen and when
replying before *trying* to log this cannot be
I have a radius box set up using 1.0.1. Currently it is doing
authentication and working fine. I am trying to integrate in 802.1x
auth. I have the EAP-TTLS w/ PAP working fine with a users entry of
username User-Password == test, but I am confused how the users
and authorize and authenticate
2004, Joe Raviele wrote:
EAP is in both the authenticate and authorize sections. I still have
not gotten it to work, today I am trying several different
permutations of the users file.
- Joe
On Thu, 16 Dec 2004 08:44:20 -0500 (EST), Dustin Doris
[EMAIL PROTECTED] wrote:
I have a radius
Hi,
I had setup RADIUS server for authentication using EAP + PEAP + MSCHAPv2.
In the users file I declared the user as
Phani User-Password == phani123 Calling-Station-Id == 000d549f5296
Reply-Message = Ur a right user
Do you have a comma in between that in your actual users
When you unpack the source, its in
freeradius-1.0.1/src/modules/rlm_sql/drivers/rlm_sql_mysql
named
db_mysql.sql
On Mon, 20 Dec 2004, Mathias [ISO-8859-1] Röhl wrote:
Hi
after my setup works with an accesspoint and 802.1x I tried to use LDAP
and mysql. AFAIR there must be a script to
I try to setup proxy and realm for freeradius
in my forwarding server, in the proxy.conf file, it
looks like this:
What is setup in radiusd.conf to determine realm? If you are using
something like suffix, then it would determine on the username. ie:
[EMAIL PROTECTED] and your proxy.conf
I'm trying to get freeradius (1.0.1) working with huntgroups and ldap
groups, after toying with this for a few days and searching the mailing
list I still can't seem to make it work, perhaps someone can assist.
huntgroups:
apsdialin NAS-IP-Address == 192.168.1.10
users:
DEFAULT
On Dec 22, 2004, at 12:57 PM, Dustin Doris wrote:
I cliped some of your message and only left the relevant parts. The
packet you show came from the NASIP of 149.28.3.101, not 192.168.1.10.
Is
that your entire huntgroups file you showed? If so, this isn't
matching
the rule
On Dec 22, 2004, at 12:57 PM, Dustin Doris wrote:
I cliped some of your message and only left the relevant parts. The
packet you show came from the NASIP of 149.28.3.101, not 192.168.1.10.
Is
that your entire huntgroups file you showed? If so, this isn't
matching
Hi
I tried to run fr with LDAP and MYSQL. It works with EAP/TLS fine, but
with local Auth in the users file.
Now I added into radiusd.conf
--
authorize {
#
#preprocess
#chap
#mschap
#auth_log
ldap
Yep. Check out man 5 users.
ie:
DEFAULT Calling-Station-Id == 33
Framed-IP-Address = 10.10.10.1
Framed-IP-Netmask = 255.255.255.0
Or you can use a backend to store this information, such as ldap or mysql.
On Wed, 29 Dec 2004, Lito Lampitoc wrote:
Is it
Hi all,
I have one radius server and I want the server ask several database to
authorize the users.
The parameter which determine the database to ask could be the
calledstationid.
Is anybody know how I could do this ?
Setup two mysql configurations in the sql.conf file.
ie:
sql ONE {
Check out doc/configurable_failover after unpacking the source code.
On Wed, 29 Dec 2004, Nader Sayeh wrote:
Hi
I want to configure freeradius with failover option, to write to another
database if the working DB is down or the node goes down.
I usually do that from tnsnames.ora file at the
Does anyone know how to restrict user search to an specific LDAP branch?
the basedn setting in radiusd.conf ldap section.
I want to find in an specific ldap branch if an specific DNIS arrives.
I tried these setting, but when the user is noy found in the specific branch,
the search then
Hi,
Can someone help me out how to do the following?
Before proxying to a specific realm, I want to replace the value of one
attribute with the value of another attribute, no matter what it contains.
--
Regards,
Thor Spruyt
Looking at preproxy_users description in raddb, it looks
Dustin Doris wrote:
Before proxying to a specific realm, I want to replace the value of
one attribute with the value of another attribute, no matter what it
contains.
Looking at preproxy_users description in raddb, it looks like this
might
be what you are after.
Yes indeed
On Thu, 30 Dec 2004, Thor Spruyt wrote:
Dustin Doris wrote:
I was just able to get it working on a test box. Here is what I did.
radiusd.conf
under the files section, make sure you have it setup to read that file
files {
...
preproxy_usersfile = ${confdir}/preproxy_users
On Thu, 30 Dec 2004, Ray Van Dolson wrote:
I'm proxying accounting requests to another Radius server. I'm also saving
accounting records to a local detail file and to an SQL database. What I'd
like to do is log--in a detail-style file (Livingston records), any accounting
records that do
Alan DeKok wrote:
Thor Spruyt [EMAIL PROTECTED] wrote:
It's a pitty, but radrelay can't be used for proxied packets.
Reason is that if the packets are relayed to the backup server, the
backup doesn't know it has already been proxied and will thus proxy
it again. The homeserver should
Im trying to setup our database to have the nas device receive different
attributes based on which device, and group the user is in
User bob in group dialup gets the x-ascend filters when he dials into
huntgroup1
And
User joe in group Wireless gets the RB-Context attribute when he
I am seeing something interesting in freeradius parsing the users file.
It appears that it is giving me a trailing comma error instead of the true
error. I added similar to block group of ISDN in the subject, because
this is related to that thread and it could be an innapproprate
debug message.
On Wed, 5 Jan 2005, Rohaizam Abu Bakar wrote:
YES... it is on one line until Reject... just breaking up while
pasting...
DEFAULT NAS-Port-Type == ISDN ,Connection-Type == UNLIMITED,
Auth-Type := Reject
Reply-Message = Your account has been disabled.
but still
be able to do that.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dustin
Doris
Sent: Wednesday, January 05, 2005 10:39 AM
To: freeradius-users@lists.freeradius.org
Subject: RE: Huntgroup
I apologize about the plain text.
This is what I have
Hi,
I am using freeradius version 0.9.3 on mandrake with mysql.
My radius NAS units are static IP clients and DHCP clients.
All the static IPs are added in clients.conf, and the setup works fine.
My question is how and where do I add DHCP client entries for radius to
authenticate?
from LDAP (Connection-Type) before i can reject it..
As suggested by Kostas... I've to map the Connection-Type (my-own)
attribute... and put files that reading users file after LDAP in authorize
section...
--haizam
- Original Message -
From: Dustin Doris [EMAIL PROTECTED
Okay,
So I am a newbie with just enough knowledge to know this should work, and
have spent a few hours reading all the different cool things
RADIUS does for me. However, I cant get it to do what we need, and I am sure
its lack of experience. I have read the various FAQ's and
help files,
Does the user you have defined in sql.conf have select permissions on the
radius.* tables?
ie:
GRANT SELECT on radius.* to [EMAIL PROTECTED] identified by 'yourpass';
If so, then can you login to mysql with that user and run this query and
copy/paste the actual query and results here.
SELECT
On Thu, 6 Jan 2005, Alan DeKok wrote:
Dustin Doris [EMAIL PROTECTED] wrote:
Anyone know if radsqlrelay is going to be included in 1.0.2 release?
I don't think so. It will be in 1.1.0, though.
Alan DeKok.
-
OK. Thanks for the follow-up.
-Dusty
-
List info/subscribe/unsubscribe
On Thu, 6 Jan 2005, Dustin Doris wrote:
Why don't you make some default entries up front and allow fall-through?
For example.
DEFAULT Huntgroup-Name == x
Reply-Attribute = X
Fall-Through = yes
DEFAULT Huntgroup-Name == y
Reply-Attribute = y
Fall-Through
Hi all,
I am sure I saw somebody ask this recently, but I cannot find it. How
can I setup radius to accept all requests from a particular NAS, based
on the NAS ip address?
DEFAULT NAS-IP-Address == 127.0.0.1, Auth-Type := Accept
change 127.0.0.1 to the nas you want or add that nas to
On Fri, 7 Jan 2005, Cool Man wrote:
Hi ,
My question is how can we send a certain attribute to
NAS based on some information or reply from Remote
Radius server.
My set up looks like
(NAS)--(Local Radius)---(Remote Radius)
Now if I proxy an authentication request to Remote
radius
Hi all,
I am sure I saw somebody ask this recently, but I cannot find it. How
can I setup radius to accept all requests from a particular NAS,
based
on the NAS ip address?
DEFAULT NAS-IP-Address == 127.0.0.1, Auth-Type := Accept
change 127.0.0.1 to the nas you want or add that
On Mon, 10 Jan 2005, Robert Ulbrich wrote:
Hi all,
I am sure I saw somebody ask this recently, but I cannot find it.
How
can I setup radius to accept all requests from a particular NAS,
based
on the NAS ip address?
DEFAULT NAS-IP-Address == 127.0.0.1,
hello,
i'm french and i don't talk very well english. exuse for my mistakes.
I had installed a FreeRadius Server with realms.
But, now i would like to install a secondary freeradius if my primary
freeradius fallback.
For example: if testuser want to auth, and my primary freeradius
hello folks
we are using freeradius since 0.8.x and since 0.9.x we start to use the
rml_sql (mysql) module to store the accounting, now we also use the
mysql db to store the user so the auth and autz also use the rml_sql
module
we had problems since the begining with that module,
On Wed, 12 Jan 2005, Costas Christonis wrote:
GC Hello,
GC Costas Christonis wrote:
Hi to all,
i'm trying to set the telnet access to my users through radius and ldap
server.
What i did untill now is that everyone tha has the attribute
Service-type with the value exec-user can
Hello,
I have an authentication setup involving several realms that are proxied using
freeradius-1.0.1. AuthN works perfectly so far. I just didn't find precise
information about Accounting packets: are they automatically proxied and
following the same rules as AuthN packets? I.e. if a user
Check out doc/configurable_failover, it will show you how to do that.
On Tue, 11 Jan 2005, Christopher Price wrote:
Is it possible to check passwords against an SQL database and an LDAP
database with the same server? If so, how does it work? Does the server
wait for one method to fail and
I think the best way is to open a featurerequest that freeradius converts
signed integers to unsigned integers.
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im
Auftrag von Dustin Doris
Gesendet: Dienstag, 11. Januar 2005 18:19
An: freeradius-users
Hello!
In my understanding this is not the case, all Accounting packets are
treated on our server and I'd have to set up an instance of radrelay for
every realm. If I am right, this would be somewhat inconvenient as I
would have to duplicate a lot information that usually should be
]
[mailto:[EMAIL PROTECTED] On Behalf Of Dustin
Doris
Sent: Tuesday, January 11, 2005 6:41 PM
To: freeradius-users
Subject: Re: zero username length using SQL
Hi All,
i am running freeradius 1.0.1 on RHEL 3 runnng well authenticaring
from MySQL
i want to add a section to let users
Whats radiusd -X show?
On Wed, 12 Jan 2005 [EMAIL PROTECTED] wrote:
Hi, i´m have a problem whit freeradius and mysql.
Some weeks ago i'm turn off the server where freeradius is
running by electric resons. The problem is that when turn on
the server, the radiusd start but it can not connect
Can you bind with that username/password using a command line such as
ldapsearch?
On Wed, 12 Jan 2005, Anderson Alves de Albuquerque wrote:
I only put rootpw teste in my slapd.conf.
I put in slapd.conf 'rootdn cn=root,dc=voip,dc=nce,dc=ufrj,dc=br'
and 'suffix dc=br'.
After I use
Was this a copy/paste? Look below in the radiusd.conf section. You put
in
identify = cn=root...
instead of
identity = cn=root...
That would explain why you are trying to login without a username, as
shown in your debug output.
rlm_ldap: bind as /teste to 146.164.xx.236:389
On Wed, 12 Jan
On Thu, 13 Jan 2005, Costas Christonis wrote:
DD On Wed, 12 Jan 2005, Costas Christonis wrote:
GC Hello,
GC Costas Christonis wrote:
Hi to all,
i'm trying to set the telnet access to my users through radius and ldap
server.
What i did untill now is that everyone tha has the
On Fri, 14 Jan 2005, Sean wrote:
[EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
how do I access the second, third, etc. value for a duplicate attribute
in sql.conf ?
I have read doc/variables.txt and I did not figure out.
Can it be done ?
In the current CVS snapshot. Not in 1.0.1
On Sun, 16 Jan 2005, Emman S. Loloy wrote:
Hi,
i have a problem using Exec-Program-Wait Attribute.. any comments or
suggestion how to fix this problem. here's my configuration.
/tmp/checkras
#!/bin/sh
if [ $1 == 192.168.0.1 ] ; then
exit -1 ; #fail
elif [ $1 == 192.168.0.2 ]; then
Quoting Dustin Doris [EMAIL PROTECTED]:
On Sun, 16 Jan 2005, Emman S. Loloy wrote:
Hi,
i have a problem using Exec-Program-Wait Attribute.. any comments or
suggestion how to fix this problem. here's my configuration.
/tmp/checkras
#!/bin/sh
if [ $1
You just create a new directory and put your configs in it and start with
-d options.
So, say your default directory is /usr/local/etc/raddb
mkdir /usr/local/etc/raddb/proxy
mkdir /usr/local/etc/raddb/main
copy all your radius files from /usr/local/etc/raddb to proxy and main
directory.
edit
Hi,
how can i manage to accept two kind of users:
the first:
premium, may login from serverA and serverB
the second:
normal, may only login from serverB
I thought to manage this by huntgroup-file:
huntgroup-file:
premiumNAS-IP-Address ==
1 - 100 of 228 matches
Mail list logo