Re: freeradius 2.2.0 on Fedora and oracle module

On 10/10/2013 08:39 AM, Puzzel wrote: > I've made configure at top level ./configure > --with-oracle-lib-dir=/usr/lib/oracle/11.2/client64/lib > --with-oracle-include-dir=/usr/include/oracle/11.2/client64 > > Then i made make, but i still can't find rlm_sql_oracle.so file. :/ Try reading the outp

Re: Version 3.0.0 has been released

On 10/07/2013 04:18 PM, Alan DeKok wrote: > After many years of development, the FreeRADIUS team is happy to > announce Version 3 of the world's most popular server. The release was > delayed from June in order to track down and solve a number of > last-minute issues. We'd like to thank all of

Re: What does FR 2.2.2 fix?

On 10/04/2013 06:53 AM, a.l.m.bu...@lboro.ac.uk wrote: > a couple of logic issues that meant case/switch and if() worked different > to 2.x - thats been fixed. I need a clarification. Do you mean worked differently ONLY IN 2.2.1? But 2.2.2 is 100% logic consistent with all 2.x, except 2.2.1? -

Re: LDAP password in log files

On 09/30/2013 02:45 PM, Matthew Ceroni wrote: > Is there any way to prevent FreeRadius from showing the password in > logs (debug logs) when authentication is done via LDAP? > > Current I see : > > rad_recv: Access-Request packet from host 192.168.100.2 port 31011, > id=13, length=129 > User-Name

Re: Active Directory authentication question

On 09/24/2013 10:16 AM, Roberto Carna wrote: > Dear, I'm advancing in the Freeradius + AD authenticationjust a > short question: when I want to make the eapol_test tool, I get this > error: > > # make eapol_test > /usr/bin/ld: cannot find -lnl > collect2: error: ld returned 1 exit status > mak

Re: pap always returns noop for windows dialup authentication

On 09/23/2013 02:07 PM, paul trader wrote: > On Mon, 23 Sep 2013 at 13:31, John Dennis opined: > > JD:You still haven't sent the full debug. > > hi john - thanks for your reply. i sent the output from running radiusd > -X, are you saying i need to run -Xxx and send that

Re: pap always returns noop for windows dialup authentication

On 09/23/2013 01:19 PM, paul trader wrote: > eOn Mon, 23 Sep 2013 at 17:52, Phil Mayers opined: > > PM:It's difficult to say, because the debug you sent has all the useful > PM:bits trimmed out - like the original packet, and the full module > PM:processing chain. You still haven't sent the ful

Re: Active Directory authentication question

On 09/18/2013 11:01 AM, Roberto Carna wrote: > Arran, I have a private CA and I've created the server and client > certs of course...and I've generated the .p12 cert (includind the CA > cert) to install in my Windows 7 clientsit works OK. > > What I mean is that EAP-TLS is easier to me than AD

Re: free radius setup

On 09/10/2013 06:54 PM, Arran Cudbard-Bell wrote: > On the registration page you use to 'activate' users accounts for the > service, you get them to login. Once their password is verified > against OpenLDAP you do an LDAP modify and store the plaintext > version. This is exactly what we did at Uni

Re: free radius setup

On 09/10/2013 02:15 PM, Swenson, Chris wrote: > I understand a bit more why people were bring up plain text passwords now. > > > > My radius server is being presented with peap ms-chapV2 credentials and > I want it to receive authentication from my openldap server. > > It seems that the creden

Re: my Radius goal radius and openldap.

On 09/09/2013 08:46 PM, Swenson, Chris wrote: > Yeah, bit the goal is that it is passed to the server via a secure web > page. The end goal here is getting authenticated users the right to > connect to the secure ssid's. The Aruba wireless controllers are > supposed to do that. If I am way over my

Re: problem with initial setup

On 09/09/2013 12:52 PM, Swenson, Chris wrote: > Thanks for the replies: > Ok, uninstalled #1 and updated to freeradius2 > > radiusd started without a hitch with testing Cleartext-Password := > "password" in users file. > > When I ran radtest testing password localhost 0 testing123 > > Receive

Re: problem with initial setup

On 09/09/2013 12:18 PM, Swenson, Chris wrote: > Hi all, I have not used radius in about 15 years and found a need > recently. I have set up the rpm on a red hat 5.6 server and when I > run radius -X the system starts fine with the expected info. On RHEL5 make sure you install the freeradius2 set o

Re: [ANN] Version 3.0.0-rc1

On 09/06/2013 04:31 PM, stefan.pae...@diamond.ac.uk wrote: > I shall try a RHEL6/CentOS6 compatible build tomorrow or Monday. > > Shouldn't be a problem. John D, I'll update my tag, you guys will probably do > the same. FYI: rc1 is packaged and built for Fedora in rawhide (unreleased latest). At

Re: Auth by NAS-Identifier using unlang

On 08/06/2013 02:31 AM, Alan Buxey wrote: > I assume that's the freeradius2 package rather than freeradius as 1.x > doesn't have unlang The OP said Fedora. Fedora has never had a freeradius2 package (only ever existed in RHEL 5.x). Fedora has had 2.x for many years. So either the OP is using an ex

Re: Auth by NAS-Identifier using unlang

On 08/05/2013 08:49 PM, Joseph Perrin wrote: > Thank you. I now understand. > > A stock install of freeRadius in Fedora, (i.e. via yum), does not > provide a man page for unlang. Had you not helped me, I'd simply not know. Nonsense, the freeradius rpm installs the unlang man page. Please provi

Re: TLS-Client-Cert-Expiration date format

On 07/25/2013 04:50 AM, George Ross wrote: >> Just wondering if anyone knew what the expiration date format was back >> from eap-tls transactions? I have a cert here that expires 23/07/2015 >> and FR gives back "150723132302Z". >> That's a Z on the end..? > >

Re: [ANN] Version 3.0.0-rc0

I've built on Fedora and the unreleased RHEL-7 On RHEL-7 I built on the following architectures: ppc, s390, x86_64, ppc64, i686, s390x All of those built successfully but when I run one of our analysis tools it reports some problems, mostly in the area of multilib (multilib is where you can have

Re: [ANN] Version 3.0.0-rc0

On 07/23/2013 05:18 AM, stefan.pae...@diamond.ac.uk wrote: > Thanks, John. > > I'll use that SPEC as base for CentOS 6.x packages :-) I'm will be making some tweaks to the spec file over the near term. For instance I just realized I make a mistake with the release field in the N-V-R, the package

Re: Free radius version 3.0.0 rco

On 07/23/2013 08:29 AM, John Dennis wrote: > On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote: >> Hi, >> >> I want to download free radius version 3.0.0 rco. Please let me know the >> downlaod link. > > The tarball is available here: > https://git

Re: Free radius version 3.0.0 rco

On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote: > Hi, > > I want to download free radius version 3.0.0 rco. Please let me know the > downlaod link. The tarball is available here: https://github.com/FreeRADIUS/freeradius-server/archive/release_3_0_0_beta1.tar.gz > Also wanted to know

Re: [ANN] Version 3.0.0-rc0

FYI I've packaged this for Fedora and built it for rawhide (rawhide is current development which spawns the next Fedora release). You can download the rawhide packages and/or the SRPM from the Koji build: http://koji.fedoraproject.org/koji/buildinfo?buildID=436791 You probably will not be able t

Re: [ANN] Version 3.0.0-rc0

autotools configure script issue/question: Why is udpfromto disabled by default? I thought udpfromto was necessary for correct operation in some configurations and benign otherwise. I thought the udpfromto option was added to 2.x because the issue was discovered in the middle of the 2.x release st

Re: [ANN] Version 3.0.0-rc0

On 07/17/2013 04:16 PM, Alan Buxey wrote: > Hi > > Don't you have freeradius-utils already. .. which contains radtest etc > which is very useful for admins Yes, my bad, sorry, not enough coffee. John -- jden...@redhat.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/user

Re: [ANN] Version 3.0.0-rc0

On 07/17/2013 12:26 PM, Alan DeKok wrote: > John Dennis wrote: >> The following are installed in either /bin or /usr/sbin but there are no >> corresponding man pages. Every command installed needs to have a man page. >> >> dhcpclient >> radattr > >

Re: [ANN] Version 3.0.0-rc0

I've been going through the packaging effort for 3.0 for Fedora/RHEL. BTW, many thanks to Stefan Paetow who did an initial spec file, Stefan's work has been a big help. I'm coming up with a list of issues as I find them, more to come later, but for now ... 1) The redhat directory is populated wit

Re: ldap

On 06/24/2013 03:15 PM, Julian Macassey wrote: > On 2013-06-24 at 14:32, John Dennis (jden...@redhat.com) wrote: >> You need to configure radius to work with ldap, but you haven't done >> that. You have to uncomment the ldap module from >> /etc/raddb/sites-enabled/defaul

Re: ldap

On 06/24/2013 02:01 PM, Julian Macassey wrote: >> I don't follow what you're doing. Is your radius server on >> 192.168.10.14, the same as your client? > > My radius server is: 192.168.10.16 > > My ldap server is: 192.168.10.14 > >> Because it looks like your >> sending your access-

Re: ldap

On 06/24/2013 12:18 PM, Julian Macassey wrote: > I added in /etc/freeradius/clients.conf: > > client plumgrid-ldap1 { > # # secret and password are mapped through the "secrets" > # file. > secret = > shortname = ldap > # # the following three fields are opt

Re: ldap

The radius server is not seeing any client requests and your client is not getting a response from the server, either you've got the wrong address for the radius server or more likely your firewall is block their communication, this has nothing to do with ldap. Also, I don't see the rlm_ldap modul

Re: ldap

On 06/21/2013 04:34 PM, John Dennis wrote: > On 06/21/2013 04:21 PM, Julian Macassey wrote: >> I am tring to get freeradius working with ldap. >> >> The ldap server is on the same LAN as the RADIUS server. >> >> The local user test works. >> >> I have c

Re: ldap

On 06/21/2013 04:21 PM, Julian Macassey wrote: > I am tring to get freeradius working with ldap. > > The ldap server is on the same LAN as the RADIUS server. > > The local user test works. > > I have configured all files I can think are pertinent. > > In debug mode, I get: > > root#> freeradiu

Re: FreeRADIUS 3.0 : mschap module fails to execute ntlm_auth

On 06/07/2013 10:46 AM, Bjarni Hardarson wrote: > I am sure that the ntlm_auth file is at /usr/bin/ntlm_auth and if i run it > manually with the expanded attributes i get the NT_KEY. > > root@freelab:/#/usr/bin/ntlm_auth --request-nt-key --username=vpntest > --challenge=d9a8b4d1c188ae1b > --nt-

Re: Service Provisioning Using AAA (FreeRadius)

On 06/05/2013 05:29 AM, Prabhpal S. Mavi wrote: Am Dienstag, 4. Juni 2013, 10:45:01 schrieb Russell Mike: Hi List After googling for few days still not so much clear. Therefore, i have decided to implement three *"A"* in three different steps. For now, i only want to use Authorize function of F

Re: freeradius | shared secret is incorrect | unprintable characters in the password

On 06/02/2013 10:00 AM, a.l.m.bu...@lboro.ac.uk wrote: Hi, check the shared secret you have defined in clients.conf on the server. check the shared secret you are using on the client check the server debug logs etc to see WHAT IP the client is coming through - if you are using a localhost addr

Re: FreeRadius Ceritificate Migration

ify by running radiusd under strace (hint: use -o to direct the output to a file and then search for your CA_path) you should see the directory being opened and files being read. If there are permission problems you'll see error information in the strace output. HTH, John -- John Denn

Re: FreeRadius Ceritificate Migration

and confirm your FreeRADIUS config matches it (also verify in the debug output the server is loading what you expect it to load and not something else). -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: FreeRadius Ceritificate Migration

On 05/13/2013 01:46 PM, Mitch Yackobeck wrote: Good afternoon All, I've taken some time over the last couple little while to work with my test environment in getting it upto date and trying out some issues with regards authenticating against multiple certificates on a single SSID for the purpose

Re: Need help with making RPM from v2.x.x branch

uke :-) I assume you built from git, therefore you've got every piece of information you need to figure this out. git log will give you exact information. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.free

Re: Need help with making RPM from v2.x.x branch

{_libdir}/freeradius/rlm_*.so* -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Need help with making RPM from v2.x.x branch

On 05/07/2013 04:46 AM, Fajar A. Nugraha wrote: On Tue, May 7, 2013 at 4:28 AM, John Dennis mailto:jden...@redhat.com>> wrote: These project maintained build configurations are best thought of as "bleeding edge developer stuff". Make some change and you want to t

Re: Need help with making RPM from v2.x.x branch

es in multiple repositories and assuring they all stay in sync doesn't seem justified. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Need help with making RPM from v2.x.x branch

ed upstream and upstream fixed it. If they took the patch verbatim then the error you'll see is something akin to "Previously applied patch or reverse patch". If upstream fixed the issue in some other way the patch simply won't apply. Figuring exactly which lines of code changed and why is the work of a package maintainer. In this case you're assuming that role and you'll have to do that work. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: segfault error

ing priority (-e) 0 file size (blocks, -f) unlimited What am I doing wrong on this? There is information in this bz you may find useful https://bugzilla.redhat.com/show_bug.cgi?id=602567 -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ -

Re: pptpd+freeradius+ldap: which password encryption can I use?

x27;s such that only a select subset of users can see them (e.g. radiusd, root). -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Procautions on upgrading FR from 2.1.10 to 2.2.0

ubscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: compile with ldap support

k of a rpm spec file as a "recipe" for building. If you're not sure what ingredients you need then consult the recipe. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Fwd: How to configure RADIUS +LDAP using SASL/Certificate based binding instead of usernames and passwords

ng (i.e. authenticating radiusd to LDAP), their purpose is to establish a secure tunnel between radiusd and LDAP. You can request the tunnel only be established if certificate based authentication succeeds but a simple bind will still be performed inside the tunnel. HTH, John -- John Dennis

Re: Server dosn't detect any requests except from localhost

a port is completely independent of whether the port is blocked, you have to check both. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Fwd: How to configure RADIUS +LDAP using SASL/Certificate based binding instead of usernames and passwords

ld 1.1.7 version of rlm_ldap and it only supported GSSAPI. HTH, John -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Trying to integrate with LDAP

is a recommended configuration. Until you have these concepts firmly under your grasp you'll likely be frustrated trying to modify the configuration. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradiu

Re: Release of Version 2.2.1

ld get this into the git repo before 2.2.1 goes out the door. I think the fix is fairly minor. Since this just came up about 5 minutes ago I don't have all the details at hand or a patch yet, but I'll do that soon. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveout

Re: EAP-TLS certificate problem

3F8165' AS USERNAME,'Auth-Type' AS Attribute, AAA_GETVALUETOCHECKWITRIBE('001AAD3F8165') AS Value,':=' AS op FROM dual ORDER BY RC_ID [sql] User found in radcheck table Found Auth-Type = Accept Found Auth-Type = EAP Warning: Found 2 auth-types on re

Re: radiusd starts but rejects test user

r messages. It says "no response from server (timed out)" over and over. Clearly this has nothing to do with Radius and is a networking problem. Fix your network. (Hint: the firewall on one of your boxes is blocking port 1812, probably the box with your Radius server). -- John Denni

Re: git question

ote is can be very useful for setting up your .git/config so you don't have to deal with verbose syntax. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Upgrading from FR 2.1.10 to 2.2.x

e on your own to back that up anyway. HTH, John -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Load Balancing Issue

mine it is too slow. I have changed 'max_requests' in radiusd.config. And also remove unnecessary processing on radius server (that is proxying requests). Now tell me what else can I do?? :( For starters try reading Alan's response he so graciously provided to you. -- John Denn

Re: suddenly problem with certificates / error in SSLv3 read client certificate B

the error about incomplete data my best guess is the client files might have be corrupted when the ca command failed. If it were only a CA key change issue you should have just gotten a bad signature verification failure. HTH, John -- John Dennis Looking to carve out IT costs? www.

Re: Freeradius and EAP_TLS Problem:

On 01/23/2013 12:24 PM, John Dennis wrote: On 01/23/2013 04:32 AM, Armin Maier wrote: Hello! I have been using Windows 7, Freeradius 2.1.10 from Debian Squeeze, HP MSM710 WLAN controller and EAP_TLS Computer Certificate Authentication for a log time and worked perfect. I used Certificates

Re: Freeradius and EAP_TLS Problem:

used to sign it it's of no value to me so as long as it's not a public CA it's a safe thing to do) -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: AD Authentication Permissions

arch failed [ldap] ldap_release_conn: Release Id: 0 ++[ldap] returns notfound -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: AD Authentication Permissions

your ldap server to perform lookup's related to users and groups thus the identity you bind as will need permission to view that portion of the ldap tree. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Failure with "TLS authentication" and "Freeradius on Fefora-17"

On 01/08/2013 03:53 PM, Ajay Garg wrote: On Tue, Jan 8, 2013 at 6:45 PM, John Dennis mailto:jden...@redhat.com>> wrote: On 01/08/2013 05:10 AM, Ajay Garg wrote: Could you please specify the order of scripts to be run, so that proper certificates may be gen

Re: Failure with "TLS authentication" and "Freeradius on Fefora-17"

hat the client needs. Now you're going to have to put that information to use. You really do have to invest the energy into learning how the pieces fit together. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http:

Re: Failure with "TLS authentication" and "Freeradius on Fefora-17"

no "server.pem". b) Running JUST "make" generates "server.pem" and "ca.pem", but no "client.pem". My apologies, I thought there was a dependency on server.pem. % make destroycerts % make % make client should do the trick -- John Dennis Look

Re: Failure with "TLS authentication" and "Freeradius on Fefora-17"

work. Make sure you understand the RELATIONSHIP BETWEEN A CERTIFICATE AND IT'S SIGNER (issuing CA) and how that translates to the configuration parameters for each software component (see above). -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Failure with "TLS authentication" and "Freeradius on Fefora-17"

and and redeploy the client cert. Do certs need to be generated differently in Fedora-17 freeradius? -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

rlm_ippool does not create DB and IDX files

r /etc, that violates the rules for what belongs under /etc. Instead /etc/raddb should have this line: db_dir = ${localstatedir}/lib/radiusd This has been reported as a configuration bug for Red Hat in: https://bugzilla.redhat.com/show_bug.cgi?id=891297 The above bug report also contains so

Re: Freeradius stops. Received HUP signal.

fundamental aspect of system administration. Virtually all system daemons have log rotation of some type. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Eduroam & FreeRadius not working so well

urity fixes are one of the benefits of having a valid current subscription. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: share variables in perl script (rlm_perl)

ly because memcached is not listening on an inet socket. Use appropriate ownership and permissions on the socket file. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: share variables in perl script (rlm_perl)

che. memcached is a stand alone process (daemon) that holds a hash table in memory and processes connect to it via sockets (either inet or unix). There are several memcache client language bindings, pretty sure there is one for Perl. Google memcache, you'll find a ton of information about i

Re: LDAP attribute mapping

es. Consistency is a virtue and should be a goal of 3.0 IMHO, it will make using FreeRADIUS easier. A major version upgrade is one of the very few opportunities available to clean up. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubs

Re: CentOS 6.3 and FreeRadius - can't authenticate to Unix

m, it's not designed well and if it ever got replaced I don't think there would be many tears shed. Be that as it may it's still central to most system authentication. John -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: CentOS 6.3 and FreeRadius - can't authenticate to Unix

force Auth-Type in the users file or anywhere else, it's wrong 99% of the time. There is no credible documentation which says to do this. When asking for help follow the instructions by including the full debug output, not snippets. HTH, John -- John Dennis Looking to carve out IT c

Re: Debug Directory

On 10/22/2012 05:55 PM, George Innocent wrote: Hello; I have been running the radius and can only see the radius.log files; what is the directory for debug logs. Debugging info is only written to stdout, never to a log. If you read the documentation you would know that without having to bothe

Re: eap module failed to start

x27;m guessing a new OpenSSL version has deprecated the use of an insecure method that your older p12 file used. You need to generate a new p12 file. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org

Re: FreedRadius mysql Redhat 6.3 missing?

dius-utils -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: .rpmnew files during RPM upgrade

On 10/09/2012 08:57 PM, Fajar A. Nugraha wrote: On Wed, Oct 10, 2012 at 5:39 AM, John Dennis wrote: On 09/11/2012 07:42 AM, Alan DeKok wrote: Jonathan Gazeley wrote: It seems to me that the "broken" behaviour is not with RPM but with FreeRADIUS. Can the regular expression tha

Re: .rpmnew files during RPM upgrade

tring ".bak" It also logs any files it skips which is really handy information to know (including files that previously were skipped for reasons like invalid characters in the filename). -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/su

Re: Upgrade to 2.2.0

On 10/09/2012 11:55 AM, John Horne wrote: On Tue, 2012-10-09 at 11:19 -0400, John Dennis wrote: By using a rpm spec file to build rpms from you'll get all the nasty details of correct building handled for you. There are 2.2 rpms available for Fedora. Just be aware spec files are also tune

Re: Upgrade to 2.2.0

On 10/09/2012 11:19 AM, John Dennis wrote: The process to build a local rpm is detailed in the FreeRADIUS wiki page "Red Hat FAQ" (which apparently has moved, maybe someone can provide a pointer). Ah, found it: http://wiki.freeradius.org/guide/Red-Hat-FAQ Some of the info i

Re: Upgrade to 2.2.0

vial to get all the details of building and installing a system daemon correct, this is why we normally recommend folks use pre-build packages for their distribution. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: RedHat FreeRadius reload or restart?

;s also scheduled to appear in the upcoming Fedora 18. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: RedHat FreeRadius reload or restart?

it's probably in the list archive. Maybe someone else remembers better than I. However, if you use a backend data store (i.e. sql or ldap) to store your user data you won't have to reload your configs, just a suggestion. John -- John Dennis Looking to carve out IT costs? www.redh

Re: getting rejected, please give me some light.

On 10/04/2012 03:10 PM, Eliezer Croitoru wrote: On 10/4/2012 8:18 PM, John Dennis wrote: All the information you need is in the debug output you posted. Did you read it? I have tried but I am unable to understand what is wrong since it's a new language for me. Hint, you need the pap m

Re: rebuilding a FR server

decessor and document what you did and how it works (at the moment it sounds like you're going to have to unravel what your predecessor did, only then can you move forward). -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: getting rejected, please give me some light.

the users file. Do not do that, the server will figure it out. There are no instructions from the FreeRADIUS doc which instructs you to do this. Why did you set it? -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www

Re: freeradius, memory consumption

lass, one that benefits from longer release cycles with a greater focus on stability. John -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: MOTP-AS + Freeradius startup problem

ectly there are a handful of special environment variables that do get passed, but in general the answer is system daemons with root privileges execute in a clean environment. John -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See

Re: Problem with accounting insert into Oracle

e new machine. I don't think that's would account for a SQL error, but you do need to be careful with just copying things around. The other difference is that I switch from Fedora 14 to CentOS 6.3. AL <http://mobiquithings.com/> Le 13 août 2012 à 17:28, John Dennis a écrit : O

Re: Problem with accounting insert into Oracle

On 08/13/2012 11:10 AM, Aurélien Lafranchise wrote: It is strange: it was working well on Freeradius 2.1.10-1 and not on my fresh install 2.1.12-3. Any idea ? Do you have any .rpmnew or .rpmsave files under /etc/raddb? If so the server will try to load them. -- John Dennis Looking to

Re: Segmentation fault in "rlm_pap"

bug reports of segfaults using EAP, they are described in this bugzilla (which includes a stacktrace and debug output). https://bugzilla.redhat.com/show_bug.cgi?id=827858 HTH, John -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscr

Re: Uninstall FreeRadius

On 07/27/2012 01:56 PM, George Innocent wrote: > /usr/local/etc/raddb/clients.conf[174]: Too many closing braces > Errors reading /usr/local/etc/raddb/radiusd.conf Could it be any more obvious? How can one uninstall the Freeradius 2.1.1 from Ubuntu 12 LTS Sorry, I'm left with the impression

Re: libfreeradius vs libradius

On 07/26/2012 09:55 AM, Alan DeKok wrote: John Dennis wrote: What is the (perceived) problem with LGPL? Religious intolerance. :) I'd rather have a BSD licensed library that's *used* by idiot vendors, than an LGPL'd library they're afraid of. Can't it be dual

Re: libfreeradius vs libradius

need for a BSD licensed RADIUS library. Too many vendors "roll their own". And get pretty much everything wrong. What is the (perceived) problem with LGPL? -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http:

Re: Stuck on very basic freeradius setup

ut tells you what file it's reading, read the output. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: FreeRADIUS SQl Ippool problem -

ny point in time. If you don't know how to use source control, stop and learn it. -- John Dennis Looking to carve out IT costs? www.redhat.com/carveoutcosts/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: FreeRadius2 & Krb

using the *2.x* methodology (i.e. virtual servers, unlang, etc.) and test every change. If something breaks along the way, don't worry, it's all under source code control so just roll the change back to a known working point. -- John Dennis Looking to carve out IT costs? www.redhat.co

Re: Linux distro for Freeradius

On 06/02/2012 12:40 PM, Turamarth wrote: To install freeradius una VM what linux distro recommend? im looking for a one that takes low resources from machine, for now the only use for it will be freeradius. Fedora would be a good choice. Just make sure you do a minimal install. -- John

  1   2   3   4   5   6   >