Can you please add your mailing list to this service http://markmail.org/
It's way better and pleasure to read list there.
I'm not working with them, just simple user which just discovered this
pleasant way to read mailing lists.
Sincerely.
Denis.
-
List info/subscribe/unsubscribe? See
Hello
i'm using DHCP Option 82 with Freeradius auth.
it uses several fields as username for auth: User-Name, agent-remote-id and
agent-circuit-id.
User-Name is mac address of cdhcp-client, and comes to radius in normal
format aa:bb:cc:dd:ee:ff
agent-remote-id and agent-circuit-id - are combination
octets should work.
i.e. the default configuration works.
Which version are you running, and why did you edit the dictionary files?
As i wrote in my very first post i'm already using octets format in attributes.
default configuration isn't working.
I'm running 2.1.7 on CentOS
Why I'm editing
Thank you very much!
I'll post my result negative/positive and share my experience.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello!
I'm trying to setup network with DHCP Snooping Option 82 functionality
+ Freeradius auth for DHCP requests.
DHCP server which receives DHCP packets from cisco switch dhcp relay
is Mikrotik RouterBoard.
freeradius2-2.1.7-7.el5. Also updated dictionary from new 2.1.10 package
Option 82 works
So as i understood one of the problems is that Freeradius can't find
username which is in mac-address format.
Beside users file i've added same user to sql base, UI with
daloRADIUS. radius can't find this username there as well.
P.S.: sql+ daloradius are working fine for eap user/pass
Also I did this check from daloradius:
Executed:
echo User-Name='00:0C:42:40:40:38',User-Password= | radclient -c '1'
-n '3' -r '3' -t '3' -x '127.0.0.1:1812' 'auth' 'testing123' 21
Results:
Sending Access-Request of id 3 to 127.0.0.1 port 1812
User-Name = 00:0C:42:40:40:38
rad_recv:
Ok.
DHCP server asking radius what to do with dhcp-request. radius gives
accept if username -mac-address is in it's database, plus adding
framed-ip-address and some other atributes to reply.
as i understood from debug, freeradius can't find username (which is
mac address, and sent in User-Name
Hello
I'm trying to do WDS WPA2-EAP TLS authentication of 2 RB600
Simple WDS AP+station without EAP is working.
I've already searched forum for related topics. but they didn't help me.
So what do i have:
2x RB600
CentOS 5.5 = freeradius2-2.1.7-7.el5 + mysql Ver 14.12 Distrib
5.0.77, + daloRADIUS
setup is. Mikrotik WDS AP + Mikrotik WDS Stationso suplicant is
Mikrotik Station
Mikrotik has only EAP-TLS .1x method for authentication
and as i got EAP-TLS is using only certificates for auth.
i'm sure that i have problem configuring eap TLS module.
radius can't retrieve
forgot to mention that my try to make:
heck_cert_cn = %{User-Name} =
entered in users db username same as CN is in certificate with
password supplied during client-cert generation with OpenSSL (A
challenge password []:whatever)
didn't work.
As well as placing my real cert data in this
Why are you trying to change the configuration on the server?
You were already told where the problem was. It's not the server.
If you're not going to read the answers on this list, there's no
reason to post questions.
Sorry , i didn't understood you.
Where i said the answer? Why it's not
I really appreciate your help but i can't understand some things.
okey, let me ask some questions based on your very first answer.
So suplicant sending some wrong packet. or something wrong withs it certificate?
AP configured to use EAP-TLS and passthrough all eap requests to my
freeradius.
Client
My setup:
CentOS 5.5 x32
freeradius2-2.1.7-7.el5
mysql-5.0.77-4.el5_5.3
daloRADIUS 0.9-8 SVN (0.9.-9)
used for 802.1x EAP-TLS and EAP-TTLS (maybe for peap in future as
well) with Ubiquiti and Mikrotik network equipment
setup works perfectly without sql with text conf files.
when creating user in
You have deleted the output which is needed to help you.
Found Auth-Type = MSCHAP
+- entering group MS-CHAP {...}
[mschap] No Cleartext-Password configured. Cannot create LM-Password.
[mschap] No Cleartext-Password configured. Cannot create NT-Password.
So... you haven't told the
Thanks too all of You !
It worked!!!
I saw all the documentations on freeradius, different howtos and forum
threads, but didn't saw this option.
why people didn't wrote about this.
Also one newbie question about this mailing list: How should i answer
on answers of my thread? Put Re:Re: in
16 matches
Mail list logo