Hi,
# mv raddb raddb-noinst
# mkdir raddb
# touch raddb/all.mk
# make install
that's easy enough, thanks!
Except that it doesn't suffice :-/
INSTALL rlm_utf8.la
INSTALL rlm_always.la
INSTALL rlm_logintime.la
INSTALL rlm_attr_filter.la
INSTALL rlm_soh.la
make: *** No rule to make target
On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote:
Hi,
I want to download free radius version 3.0.0 rco. Please let me know the
downlaod link.
The tarball is available here:
https://github.com/FreeRADIUS/freeradius-server/archive/release_3_0_0_beta1.tar.gz
Also wanted to know
On 07/23/2013 08:29 AM, John Dennis wrote:
On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote:
Hi,
I want to download free radius version 3.0.0 rco. Please let me know the
downlaod link.
The tarball is available here:
On 23 Jul 2013, at 13:38, John Dennis jden...@redhat.com wrote:
On 07/23/2013 08:29 AM, John Dennis wrote:
On 07/23/2013 05:28 AM, manjunath uthappa ponnachana wrote:
Hi,
I want to download free radius version 3.0.0 rco. Please let me know the
downlaod link.
The tarball is available
now i can logon into the switch but i can with all USERS. Where i can
specify who can access to the switch?
I add a rown in the USERS file user Auth-Type := Reject but nothing
change.
thanks
Marco
Marco Aresu
On 23 July 2013 10:06, Martin Kraus lists...@wujiman.net wrote:
On Mon, Jul 22,
On Tue, Jul 23, 2013 at 03:12:33PM +0200, Marco Aresu wrote:
now i can logon into the switch but i can with all USERS. Where i can
specify who can access to the switch?
I add a rown in the USERS file user Auth-Type := Reject but nothing
change.
The first match wins in users file unless the
On 07/23/2013 05:18 AM, stefan.pae...@diamond.ac.uk wrote:
Thanks, John.
I'll use that SPEC as base for CentOS 6.x packages :-)
I'm will be making some tweaks to the spec file over the near term. For
instance I just realized I make a mistake with the release field in the
N-V-R, the package
John Dennis wrote:
I'm also contemplating splitting the doc into it's own subpackage, the
doc is 4.6MB, no reason to install that much data on minimal install
production servers.
Yeah. Most of the docs are RFCs. There's no point in installing
those on minimal servers.
If you update the
On 23/07/13 17:19, Franks Andy (RLZ) IT Systems Engineer wrote:
This will probably be obvious, but I can’t see it!
Looks like a bug - the code here:
https://github.com/FreeRADIUS/freeradius-server/blob/master/src/modules/rlm_ldap/groups.c#L495
...passes NULL for the result argument to
=sath.nhs.uk@lists.freeradiu
s.org] On Behalf Of Phil Mayers
Sent: 23 July 2013 17:53
To: freeradius-users@lists.freeradius.org
Subject: Re: Ldap query in FR3
On 23/07/13 17:19, Franks Andy (RLZ) IT Systems Engineer wrote:
This will probably be obvious, but I can't see it!
Looks like a bug - the code
On 23 Jul 2013, at 17:52, Phil Mayers p.may...@imperial.ac.uk wrote:
On 23/07/13 17:19, Franks Andy (RLZ) IT Systems Engineer wrote:
This will probably be obvious, but I can’t see it!
Looks like a bug - the code here:
now i can logon into the switch but i can with all USERS.
Yes. Because that's how you have configured it. You've set the DEFAULT to
have those abilities. I would recommend reading freeradius resources and buy a
book to discover/understand policies, groups etc
alan
-
List
2013 18:22
To: FreeRadius users mailing list
Subject: Re: Ldap query in FR3
On 23 Jul 2013, at 17:52, Phil Mayers p.may...@imperial.ac.uk wrote:
On 23/07/13 17:19, Franks Andy (RLZ) IT Systems Engineer wrote:
This will probably be obvious, but I can't see it!
Looks like a bug - the code here
Fixed.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I've built on Fedora and the unreleased RHEL-7
On RHEL-7 I built on the following architectures:
ppc, s390, x86_64, ppc64, i686, s390x
All of those built successfully but when I run one of our analysis tools
it reports some problems, mostly in the area of multilib (multilib is
where you can
Subject: Re: Ldap query in FR3
Fixed.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Tekán Dávid wrote:
Don't want to store cleartext password, so i created for every user an
NT-Password as well beyond the MD5-Password, and it appears in the sql
database as well (also checked the queries when it queries the
rad_check table, it's there in the response as well).
You need to
Stefan Winter wrote:
while using radtest, I got some strange results:
# ./radtest swinter testpwd [::1] 123 testing123
radclient: Failed to find IP address for host ::1: Success
It defaults to IPv4.
# ./radtest swinter testpwd ipv6-localhost 123 testing123
radclient: Failed to find IP
Stefan Sticht wrote:
I want to change a FreeRadius server to authenticate a few hosts by their
hostnames.
The hostnames would be stored in a config file.
That's not how RADIUS works.
How could I do this?
You can't.
This is the authentication request:
...
EAP-Message =
On 22 Jul 2013, at 13:32, Stefan Winter stefan.win...@restena.lu wrote:
Hi,
Does radtest not support IPv6? I could have sworn it did IPv6 earlier,
but not totally sure.
ahem
-4 Use IPv4 for the NAS address (default)
-6 Use IPv6 for the
Hi,
Does radtest not support IPv6? I could have sworn it did IPv6 earlier,
but not totally sure.
ahem
-4 Use IPv4 for the NAS address (default)
-6 Use IPv6 for the NAS address
Uh. Sorry.
Still... maybe for a later version... if the
On 22/07/13 13:47, Arran Cudbard-Bell wrote:
It'd be nice to get some feedback from people though... do you think
you'll ever need to record both your NAS IPv4 and IPv6 addresses?
I'm guessing for dual stacking it'd be nice to record
Framed-IP-Address and Framed-IPv6-Prefix, should they both
On 22 Jul 2013, at 14:15, Phil Mayers p.may...@imperial.ac.uk wrote:
On 22/07/13 13:47, Arran Cudbard-Bell wrote:
It'd be nice to get some feedback from people though... do you think
you'll ever need to record both your NAS IPv4 and IPv6 addresses?
I'm guessing for dual stacking it'd be
On Mon, Jul 22, 2013 at 04:44:29PM +0200, Marco Aresu wrote:
here the debug after authentication:
Found Auth-Type = PAP
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group PAP {...}
[pap] login attempt with password secret
[pap] Using CRYPT password
Stefan Winter wrote:
Still... maybe for a later version... if the input looks like an IP
address, guessing the address family isn't all that hard.
Yeah patches? :)
I see that such a -4 -6 option is required for hostnames, but even then
only if they return addresses for both families.
On 22/07/13 14:32, Arran Cudbard-Bell wrote:
On 22 Jul 2013, at 14:15, Phil Mayers p.may...@imperial.ac.uk
wrote:
On 22/07/13 13:47, Arran Cudbard-Bell wrote:
It'd be nice to get some feedback from people though... do you
think you'll ever need to record both your NAS IPv4 and IPv6
Marco Aresu wrote:
i am getting some problem with authorization in free radius
i configured the users file as below :
DEFAULT Auth-Type := System
cisco Auth-Type := System
Service-Type = NAS-Prompt-User
cisco-avpair = shell:priv-lvl=15,
Is it
here the debug after authentication:
Found Auth-Type = PAP
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group PAP {...}
[pap] login attempt with password secret
[pap] Using CRYPT password
Marco Aresu wrote:
here the debug after authentication:
If you're not going to follow instructions, you shouldn't be posting
questions on this list.
Since you're not willing to post the full debug output here, we can't
help you. Go read it yourself.
i don't understand when he tried to
the only file to edit for the authorization is the Users file?
thanks
Marco
Marco Aresu
On 22 July 2013 17:03, Alan DeKok al...@deployingradius.com wrote:
Marco Aresu wrote:
here the debug after authentication:
If you're not going to follow instructions, you shouldn't be posting
i created two users on freeradius server and when i tried to login with the
new user that is not specify in the USERS file i ve got the same error
Authorization Failed
I think that i am editing the wrong USERS file but the directory is
/etc/raddb/users
Marco Aresu
On 22 July 2013 17:19,
Yes it does.
We found the solution by creating a rule that maps all the BSSID related
to some SSID and then we do a specific filter to LDAP, so we did it for
every SSID.
Thanks for the help!
Atenciosamente,
Gustavo Vieira Oliveira
GETIC - Gerência de Tecnologia da Informação
SUSERV -
N
evermind, I figured out a way to do what I needed. Thanks!
Tena Gore
Senior Network Administrator
Technology Support Services
Fairfield-Suisun Unified School District
te...@fsusd.org
707-399-1200
On Mon, Jul 22, 2013 at 11:20 AM, Tena Gore te...@fsusd.org wrote:
Is there a way to tell
Hi,
Is there a way to tell radius to not do something based on the User-Name
containing a $ ? I am doing dynamic VLAN assignment and I'd like to skip
that for computer logins. I looked at unlang and I didn't see a way to
check for a character in a username.
use unlang regex
Hi,
Still... maybe for a later version... if the input looks like an IP
address, guessing the address family isn't all that hard.
unlike your using IPv4 in its IPv6 incantation
What if the NAS started just using the SRC IPv6 address in packets, and
source IP protection was enabled?
Hi,
My guess is dual-stack NAS-RADIUS is going to be rare.
ummm. take a hold on that assertion. the joy of dual-stack deployment
is that you need to ensure your servers are ready on IPv4 and IPv6 -
and as part of that, you need to ensure that your using both methods
in case either your IPv4
FYI I've packaged this for Fedora and built it for rawhide (rawhide is
current development which spawns the next Fedora release).
You can download the rawhide packages and/or the SRPM from the Koji build:
http://koji.fedoraproject.org/koji/buildinfo?buildID=436791
You probably will not be able
Alan,
You've reminded me of a question I've been meaning to ask.
Your previous answer gives an example using the unlang regex syntax, including
the case-insensitive operator at the end. But I was hoping to find an elegant
way to do case-insensitive matching in proxy.conf, where the comments
Go back and read the manual from your nas provider as they should tell you
what attributes they need in the coa payload.
On 23/07/2013 4:50 PM, Muhammad Nadeem mnadeem8...@gmail.com wrote:
hi everybody,,
I wanna implement COA (Change Of Authorization) in freeradius. I have a
live session of a
Hi Muhammad
Try put in a file
Acct-Session-Id=1B1E97C3
User-Name=002682615F4E@test_cpe.com
NAS-IP-Address=2.2.2.2
cat file | radclient -x 2.2.2.2:3799 disconnect 'huaweiaaa'
See how it goes
Send all the output here so we can help
Tiffany
From:
Freeradius does not build from source.
Yes. It does. But you are compiling some random external flavour. Download
the source from freeradius.org and report what happens
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
* Starting FreeRADIUS daemon freeradius
Can't load '/usr/lib/perl5/auto/Authen/Krb5/Simple/Simple.so' for module
Authen::Krb5::Simple: /usr/lib/perl5/auto/Authen/Krb5/Simple/Simple.so:
undefined symbol: PL_thr_key at /usr/lib/perl/5.14/DynaLoader.pm line 184.
Possibly this?
Hello Alan,
Freeradius does not build from source. Yes. It does. But you are
compiling some random external flavour. Download the source from
freeradius.org and report what happens.
my subject line was misleading. I meant that the Debian package is so
broken that it doesn't even compile from
Hello Alan,
Yes. It does. But you are compiling some random external flavour.
Download the source from freeradius.org and report what happens
yes, you're right and I just noticed that the freeradius git tree
contains a Debian folder which build packages which not only compile,
now I try to
Hello Arran,
Can't load '/usr/lib/perl5/auto/Authen/Krb5/Simple/Simple.so' for module
Authen::Krb5::Simple: /usr/lib/perl5/auto/Authen/Krb5/Simple/Simple.so:
undefined symbol: PL_thr_key at /usr/lib/perl/5.14/DynaLoader.pm line 184.
* http://www.perlmonks.org/?node_id=1008893
The
Hello,
* Thomas Glanzmann tho...@glanzmann.de [2013-07-21 18:24]:
hints = /etc/freeradius/mods-config/preprocess/hints
I noticed that the wrong hints file was specified, however after
updating, it still does not work, but the output now looks different:
Ready to process requests.
On 21 Jul 2013, at 17:18, Thomas Glanzmann tho...@glanzmann.de wrote:
Hello Arran,
Can't load '/usr/lib/perl5/auto/Authen/Krb5/Simple/Simple.so' for module
Authen::Krb5::Simple: /usr/lib/perl5/auto/Authen/Krb5/Simple/Simple.so:
undefined symbol: PL_thr_key at
- HINTS does not work the way it did before. Especially this no
longer works for me:
DEFAULT User-Name =~ ^v104([^@]+)
User-Name := %{1}@V104.GMVL.DE
Can you got some debug output or even just the value of the User-Name? It may
just be the escaping is less crazy
Hello Arran,
DEFAULT User-Name =~ ^v104([^@]+)
User-Name := %{1}@V104.GMVL.DE
Can you got some debug output or even just the value of the User-Name?
It may just be the escaping is less crazy than it used to be.
username is: v104\Administrator but radius puts it internally as
Hi,
I put the FreeRadius list on CC because I get technical solution from
here.
the version from freeradius.org works - you need to contact Debian to get them
to fix
their packages.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
While trying that I also build a 3.0 GIT HEAD and there were a few
problems, I trippeled about:
- HINTS does not work the way it did before. Especially this no
longer works for me:
DEFAULT User-Name =~ ^v104([^@]+)
User-Name := %{1}@V104.GMVL.DE
I
Hello Arran,
Can you provide a backtrace please? I'll see if I can fix it.
Program received signal SIGSEGV, Segmentation fault.
0x08052f8a in rad_authenticate (request=0x863f138) at src/main/auth.c:542
542 (auth_item-da-attr ==
PW_USER_PASSWORD)) {
(gdb) bt
On 21 Jul 2013, at 22:33, Thomas Glanzmann tho...@glanzmann.de wrote:
Hello Arran,
Can you provide a backtrace please? I'll see if I can fix it.
Program received signal SIGSEGV, Segmentation fault.
0x08052f8a in rad_authenticate (request=0x863f138) at src/main/auth.c:542
542
Hello Alan,
I bleieve hitns is going the way of the dodo eventually - unlang can
do the work for you eg
if (%{User-Name} =~ ^v104([^@]+) ) {
update request {
%{User-Name} := %{1}@V104.GMVL.DE
}
}
I tried:
server default {
listen {
Hello Arran,
Oh I have a pretty good idea of what's gone on. Could you git pull and
rebuild. You'll probably see an abort this time round.
I did a
git pull
# Wipe the working directory clean
git reset --hard HEAD; git clean -f -x -d
./configure --prefix=/local/freeradius-head; make -j; make
On 21 Jul 2013, at 23:17, Thomas Glanzmann tho...@glanzmann.de wrote:
Hello Arran,
Oh I have a pretty good idea of what's gone on. Could you git pull and
rebuild. You'll probably see an abort this time round.
I did a
git pull
# Wipe the working directory clean
git reset --hard
On 21 Jul 2013, at 23:47, Susan Brown a.cudba...@freeradius.org wrote:
On 21 Jul 2013, at 23:17, Thomas Glanzmann tho...@glanzmann.de wrote:
Hello Arran,
Oh I have a pretty good idea of what's gone on. Could you git pull and
rebuild. You'll probably see an abort this time round.
I
Hello Arran,
Something was caching the pointer to request-password when it
shouldn't have. Should be fixed now.
I pulled the fix and can no longer reproduce the issue, I tried with 100
authentications in a row. Thank you for fixing it.
Cheers,
Thomas
-
List info/subscribe/unsubscribe?
On 20 Jul 2013, at 00:21, Arran Cudbard-Bell a.cudba...@freeradius.org wrote:
On 19 Jul 2013, at 23:17, John Dennis jden...@redhat.com wrote:
I've built on Fedora and the unreleased RHEL-7
On RHEL-7 I built on the following architectures:
ppc, s390, x86_64, ppc64, i686, s390x
All
Daniel Pocock wrote:
Should this code be shared with the client project freeradius-client?
No. The freeradius-client code is pretty bad.
Or is it preferred to build a new client (or shared library) from the
freeradius-server repository eventually?
The client code is already LGPL'd. So
Matthew Schumacher wrote:
When I have a session that didn't get expired in a SQL database, and the
user tries to connect then freeradius correctly checks the nas using the
checkrad script *UNLESS* the nas is no longer defined in the clients.
If the nas is missing, radius doesn't bother to call
John Dennis wrote:
Why is udpfromto disabled by default?
It didn't work in some situations. But that was a while ago.
I thought udpfromto was necessary
for correct operation in some configurations and benign otherwise.
I'd say useful, not necessary. But largely, yes.
I
thought the
On Fri, Jul 19, 2013 at 06:03:31PM +0200, Dario Palmisano wrote:
RADIUS-assigned VLANs are not supported when you enable multiple BSSIDs.
So it seems not to be related to the IOS version, is it?
Is there any way to overcome this somehow, if not...
Do you actually need multiple bssids?
am getting the follow error :
[ldap] bind as cn=User,ou=people,dc=domain,dc=it/Password to
ldapserver:636
[ldap] waiting for bind result ...
[ldap] cn=user,ou=people,dc=domain,dc=it bind to ldapServer:636
failed No such object
[ldap] (re)connection attempt failed
Any idea about
On Thu, Jul 18, 2013 at 11:34:56AM -0500, Matt Zagrabelny wrote:
I've got a similar question that dovetails into this discussion.
Suppose I wanted to reject certain users and wanted the Reply-Message
to be customized per user authenticating, but I want to ensure that I
am not leaking the
Hi,
I am trying to configure eap with some customized certificates, I have
configured eap.config correctly.
But I am getting the error of certificate expired. Although i have the
latest certificates.
certificate has expired. FreeRADIUS has no reason to lie.
check the startup
thanx for you reply, but as i said certificates are ok. Please see this log
[tls] -- User-Name = 0026826172C4@test_cpe.com
[tls] -- BUF-Name = wi-tribe Pakistan Certification Authority
[tls] -- subject = /C=PK/ST=Fedral Capital/L=Islamabad/O=wi-tribe Pakistan
limited/OU=Network
=diamond.ac...@lists.freeradius.orgmailto:freeradius-users-bounces+stefan.paetow=diamond.ac...@lists.freeradius.org
[mailto:freeradius-users-bounces+stefan.paetow=diamond.ac...@lists.freeradius.org]
On Behalf Of Muhammad Nadeem
Sent: 19 July 2013 11:24
To: FreeRadius users mailing list
Subject: Re
Hi,
I´m wondering, if I miss something or why do Info-Messages about
Invalid-Message-Authenticator not appear
in the default radius.log anymore? Even can´t get it with
such messages only appear in debug mode as logging to file could be a DoS
alan
-
List info/subscribe/unsubscribe? See
But it DID appear in earlier versions of freeradius with default settings for
logging.
And I don´t see the difference to something logging Erros like
Error: Ignoring request to authentication address * port 1812 from unknown
client x.x.x.x port 1092
regarding the mentioned DoS problem.
We´re
problem.
We´re using a logfile monitoring for years in order to find misconfigured NAS
of ours.
Seems we cannot do this with freeradius 2.2.0 anymore?
if you dont like how it works and have a local use case, then just change
the code. its only a few lines to log in normal mode rather than only
On 19 Jul 2013, at 14:37, Dario Palmisano dario.palmis...@icgeb.org wrote:
Hello Everybody,
I am configuring my freeradius to be integrated in the EDUROAM federation.
It works when the VLAN (as configured in the accesspoint) is statically
assigned.
Now I would like to implement a
Hi,
I am configuring my freeradius to be integrated in the EDUROAM federation.
It works when the VLAN (as configured in the accesspoint) is statically
assigned.
there are hundreds of sites using this sort of configuration for eduroam - so
its perfectly possible and fine (and standard!) so
On Friday 19 July 2013 15:49:55 Arran Cudbard-Bell wrote:
On 19 Jul 2013, at 14:37, Dario Palmisano dario.palmis...@icgeb.org wrote:
Hello Everybody,
I am configuring my freeradius to be integrated in the EDUROAM
federation. It works when the VLAN (as configured in the accesspoint) is
.
regarding the mentioned DoS problem.
We´re using a logfile monitoring for years in order to find misconfigured NAS
of ours.
Not entirely sure how that's related to DoS. But ok... That's, um, interesting.
Seems we cannot do this with freeradius 2.2.0 anymore?
You can however use
You are right, I know!
On Friday 19 July 2013 15:52:43 a.l.m.bu...@lboro.ac.uk wrote:
Hi,
I am configuring my freeradius to be integrated in the EDUROAM
federation. It works when the VLAN (as configured in the accesspoint) is
statically assigned.
there are hundreds of sites using this
On 19 Jul 2013, at 15:10, Dario Palmisano dario.palmis...@icgeb.org wrote:
On Friday 19 July 2013 15:49:55 Arran Cudbard-Bell wrote:
On 19 Jul 2013, at 14:37, Dario Palmisano dario.palmis...@icgeb.org wrote:
Hello Everybody,
I am configuring my freeradius to be integrated in the EDUROAM
Sorry, but I only wanted to know why the behaviour has changed and if there is
any way to do it by configuration or access it with unlang...
BTW:
If I remove the client completely, log in normal mode says):
Fri Jul 19 16:32:29 2013 : Error: Ignoring request to authentication address *
port 1812
Hi,
The specific configuration works fine I remove the following line from users
file:
Tunnel-Type := VLAN, Tunnel-Medium-Type := IEEE-802, Tunnel-Private-
Group-ID := 218
Tunnel-Type = VLAN,
Tunnel-Medium-Type = IEEE-802,
Tunnel-Private-Group-ID = 218
Hi,
Here you can download the (almost complete) debug log. Near the end I added a
text to make evident when I disconnected.
http://webshare.icgeb.org//data/public/ce2e2ee9fbd84c362fd49b10805b36c8.php?lang=en
please dont ask me to visit random web sites that require to to click on things
If I add the client and use a wrong secret, log says:
Fri Jul 19 16:33:09 2013 : Auth: Login incorrect: [radtestuser] (from client
port 0)
It´s a kind of misleading information, because it has nothing do do with users
login, but with a wrong shared secret on the NAS.
Did the
On Friday 19 July 2013 16:29:57 Arran Cudbard-Bell wrote:
On 19 Jul 2013, at 15:10, Dario Palmisano dario.palmis...@icgeb.org wrote:
On Friday 19 July 2013 15:49:55 Arran Cudbard-Bell wrote:
On 19 Jul 2013, at 14:37, Dario Palmisano dario.palmis...@icgeb.org
wrote:
Hello Everybody,
I
On Friday 19 July 2013 16:54:13 a.l.m.bu...@lboro.ac.uk wrote:
Hi,
The specific configuration works fine I remove the following line from
users file:
Tunnel-Type := VLAN, Tunnel-Medium-Type := IEEE-802, Tunnel-Private-
Group-ID := 218
Tunnel-Type = VLAN,
On Fri, Jul 19, 2013 at 04:20:51PM +0200, Dario Palmisano wrote:
is this a 'fat/autonomous' AP? if so, then only latest firmware can handle
multiple VLANS per 802.1X SSID with multiple BSSIDs present.
This could be the problem, I found something in the Cisco documentation but
was unsure
Dear Arran,
Sorry, about the typo with debug
I looked at the invalid packet counters. Only shows the requests with wrong
shared secrets in rejects-Counter ... Same thing
stats client auth x.x.x.x
requests5
responses 5
accepts 1
rejects
No. It didn´t inlcude a Message-Authneticator attrib...
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
At the end, thanks to the list suggestions I found in the cisco docs the
sentence:
Keep these guidelines in mind when configuring multiple BSSIDs:
RADIUS-assigned VLANs are not supported when you enable multiple BSSIDs.
So it seems not to be related to the IOS version, is it?
Is there any
On 19 Jul 2013, at 16:32, Anja Ruckdaeschel
anja.ruckdaesc...@rz.uni-regensburg.de wrote:
Dear Arran,
Sorry, about the typo with debug
I looked at the invalid packet counters. Only shows the requests with wrong
shared secrets in rejects-Counter ... Same thing
The RADIUS server
I'm sure there was some late in the day ios updates for 1130 series AP this
stuff works with capwap/lwapp 1131 anyway, if MBSSID is not supported with
dynamic vlan assignment so don't use mbssid, use guest mode instead.
alan
-
List info/subscribe/unsubscribe? See
On 15/07/13 23:21, Daniel Pocock wrote:
On 15/07/13 21:51, Alan DeKok wrote:
Daniel Pocock wrote:
I just opened this report against radiusclient-ng in Debian (see below),
can anybody else comment on the situation, in particular, for
compatibility? Is there any urgency for Debian to
On 15/07/13 21:53, Alan DeKok wrote:
Daniel Pocock wrote:
Can anybody comment on which client code should be used for long
extended attributes?
I see that the freeradius-client project predates RFC 6929.
By a LONG ways.
There's no client code for the extended attributes. The RFC
On 19 Jul 2013, at 23:17, John Dennis jden...@redhat.com wrote:
I've built on Fedora and the unreleased RHEL-7
On RHEL-7 I built on the following architectures:
ppc, s390, x86_64, ppc64, i686, s390x
All of those built successfully but when I run one of our analysis tools
it reports
Am Donnerstag, 18. Juli 2013, 07:43:24 schrieb manjunath uthappa ponnachana:
Hi,
Can i know the reason why SNMP support in Free Radius was broken.
SMUX was a old interface between the ucd-snmp Master Agent. Since ucd-snmp
became net-snmp and the modern interface is AgentX, it seems that
On 18 Jul 2013, at 08:43, manjunath uthappa ponnachana
pu_manjun...@rediffmail.com wrote:
Hi,
Can i know the reason why SNMP support in Free Radius was broken.
Kittens! They attacked the source code with their tiny claws and gnashing teeth.
Which is the last version of Free radius
To get by the work of those kittens I set up a remote login to run radmin
commands and parse the output so it is suitable for mrtg. It has worked well
for me.
Arran Cudbard-Bell a.cudba...@freeradius.org wrote:
On 18 Jul 2013, at 08:43, manjunath uthappa ponnachana
Am Donnerstag, 18. Juli 2013, 06:30:19 schrieb Bruce Nunn:
To get by the work of those kittens I set up a remote login to run radmin
commands and parse the output so it is suitable for mrtg. It has worked
well for me.
Ever tried the extend config option of the net-snmp agent?
It executes
Navodit Bhardwaj wrote:
For each Access-Request recieved and authenticated successfully I want
to do following:
1. Verify if Access-Request contains a parameter i.e IMEI of mobile
2. If Not, send Access-Reject. Else,
3. compare IMEI to value in database and assign a 32bit hex number in
val john wrote:
when users logout from the wireless network , i can see following error
in the log
Error: rlm_radutmp: Logout for NAS Wlan1 port 0, but no Login record
IS there any reason for that, how can fix it
Ensure that the NAS sends login records.
Alan DeKok.
-
List
On Thu, Jul 18, 2013 at 10:46 AM, Alan DeKok al...@deployingradius.com wrote:
Navodit Bhardwaj wrote:
For each Access-Request recieved and authenticated successfully I want
to do following:
1. Verify if Access-Request contains a parameter i.e IMEI of mobile
2. If Not, send Access-Reject.
Hi,
To get by the work of those kittens I set up a remote login to run radmin
commands and parse the output so it is suitable for mrtg. It has worked well
for me.
I use the munin plugin to graph auths/accts
alan
-
List info/subscribe/unsubscribe? See
801 - 900 of 59048 matches
Mail list logo
