Hi,
I did a bit more research on this and here is what happens.
When ldap module is configured with start_tls = yes it calls
ldap_start_tls_s() function. With Disallow anonymous
simple bind this call fails and as such the error
rlm_ldap: could not start TLS Inappropriate authentication
is
Hello,
I am newbie with freeradius (and with all radius servers), so maybe
this is a silly question, I am sorry if it is.
I have 1.0.2 running in a debian sarge box.
I am configuring a new radius server to substitute two different radius
already working. We want to
Hi people,
I am still using freeradius 0.9.3 in a server with devian distribution for more than one year. However I have a doubt: Can I use acctSessionId AcctUniqueId attributes in order to crypt the traffic to achieve a safer communications ? If it is so, How do you implement in the system?
Hello all,
My Freeradius server works quite well with system accounts but I must link
an Active Directory database to my server.
So, in view of that, I would have some informations :
[...]
4- If this configuration is impossible, what type of configuration for
freeradius can
I had EXACTLY that error when using a cisco card talking to a cisco
AP1100 and freeradius. I am on XP and not W2K so YMMV but... the
problem is the cisco ADU (Aironet Desktop Utility). If you are using
that to configure your card it just won't do PEAP correctly. If you
switch over and set the
thanks for the reply - multiple source ports is the obvious answer which i
didn't trust was actually specified in the RFCs. The reason for this is that
too often i have seen requests from 1645 to 1645 and not (random-high-port
to 1645) for example.
extendid ID? well some radius servers will
To answer some of my own questions, and maybe someone else's with the same
issues
running 3COM USRHiper equipment.
To get the SNMP_Sessions and BER modules for Perl go to:
http://www.switch.ch/misc/leinen/snmp/perl/dist/SNMP_Session-1.07.tar.gz
After installing these my simultaneous use works.
=?iso-8859-1?B?U2FudGlhZ28gQmFsYWd1ZXIgR2FyY+1h?= [EMAIL PROTECTED] wrote:
I am still using freeradius 0.9.3 in a server
Upgrade to 1.0.2.
However I have a doubt: Can I use acctSessionId AcctUniqueId
attributes in order to crypt the traffic to achieve a safer
communications ?
No.
=?iso-8859-1?Q?Alejandro_Mart=EDnez_Marcos?= [EMAIL PROTECTED] wrote:
I would need an option check_cert_uid instead of check_cert_cn,
because my client certificates don't have a cn. Is it possible at the
moment? In other case, how can we achieve it?
Source code edits.
The TLS module
Sebastian Mauer [EMAIL PROTECTED] wrote:
I already read several messages related on the topic EAP with FreeRadius
and LDAP, but I'm not yet sure because I never found a clear statemant
that this combination will work.
People keep asking this, and the answer is ALWAYS the same.
If you
Tariq Rashid [EMAIL PROTECTED] wrote:
thanks for the reply - multiple source ports is the obvious answer which i
didn't trust was actually specified in the RFCs.
Yes, it's in there.
The reason for this is that too often i have seen requests from 1645
to 1645 and not (random-high-port to
On Fri, 8 Apr 2005, Angel L. Mateo wrote:
Hello,
I am newbie with freeradius (and with all radius servers), so maybe
this is a silly question, I am sorry if it is.
I have 1.0.2 running in a debian sarge box.
I am configuring a new radius server to substitute two different
Sylvain Clerc [EMAIL PROTECTED] wrote:
1- I must work in eap-ttls mode (with md5 in the tunneled encryption), is
it compatible with Active Directory?
No.
2- Is it possible to link the database only with the configuration files of
freeradius (like radiusd.conf)?
I have no idea what you
silvia troselj [EMAIL PROTECTED] wrote:
How can I find out how many octets are transfered
between 2005-04-06 14:38:39 and 2005-04-06 23:59:59
and 2005-04-07 00:00:00 and 2005-04-07 10:01:19?
The NAS should send this information. If it doesn't, you can't get
it.
Alan DeKok.
-
List
Juan Nin [EMAIL PROTECTED] wrote:
Maybe we should back-port some fixes, and release 1.0.3. 1.1.0 is
still a ways off, due to various craziness.
that would be great!
is this just an idea, or you've decided it?
if so, any idea on aprox. realesa date for 1.0.3? :)
Some time in the
Alan DeKok wrote:
if so, any idea on aprox. realesa date for 1.0.3? :)
Some time in the future.
I really need to execute an external script
I have another radius running freeradius-0.9.3 on other server which is
executing external scripts, so I guess the bug wasn't present on
previous
Juan Nin [EMAIL PROTECTED] wrote:
I have another radius running freeradius-0.9.3 on other server which is
executing external scripts, so I guess the bug wasn't present on
previous versions
would it be to crazy to downgrade?
I would suggest using the fixed code from CVS. You should be
Juan Nin [EMAIL PROTECTED] wrote:
I have another radius running freeradius-0.9.3 on other server which is
executing external scripts, so I guess the bug wasn't present on
previous versions
would it be to crazy to downgrade?
I would suggest using the fixed code from CVS. You should
Dustin Doris [EMAIL PROTECTED] wrote:
Is the same bug present in external programs when running with rlm_perl?
Hmm... I don't think so.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok schrieb:
Sebastian Mauer [EMAIL PROTECTED] wrote:
I already read several messages related on the topic EAP with FreeRadius
and LDAP, but I'm not yet sure because I never found a clear statemant
that this combination will work.
People keep asking this, and the answer is
Hello People.
I m new in Freeradius, and i've been searching some
"howto" to configure freeradius and Active Directory. I guessthis is
possible through ldap.
I know that i need configure the
rlm_ldap.
Please send me the firsts steps to begin
it.
regards.
Christian Souza
Sebastian Mauer wrote:
Thanks for that answer, but lately I found out some more. The Password
*is *as clear/plain-text in the LDAP and the authentication works when
using EAP-TTLS with GTC or MSCHAPv2 for example. It's only not working
when using PEAP as EAP-flavour and this is what's confusing me
Has anyone out there written the appropriate SQL glue to get FreeRADIUS to talk
to an Emerald database?
(Emerald is an ISP management package made by IEA Software. It's intended to be
used with RadiusNT, but since all the data are stored in a fairly easy-to-use
Microsoft SQL Server database,
On Thu, Apr 07, 2005 at 02:05:04PM -0400, Alan DeKok wrote:
Juan Nin [EMAIL PROTECTED] wrote:
also, another issue that worries me is that if I change my
authentication method on /etc/raddb/users so as to be the following:
Ah... That's a bug in the run external program code. It's fixed
24 matches
Mail list logo