Hello freeradius-users,
I have some radius instances started by name (radiusd -n xyz
-d /opt/freeradius/xyz/etc/raddb), which by default generate log files
as /var/log/radius/xyz.log.
I would like to change daemon log filename to have a MMDD suffix, in
order to have an automatic daily log
...@deployingradius.com
Subject: Re: radiusd log filename
To: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Message-ID: 4b9a3bc3.7020...@deployingradius.com
Content-Type: text/plain; charset=ISO-8859-1
Fred MAISON wrote:
I would like to change daemon log filename to have a MMDD
Le vendredi 12 mars 2010 à 10:30 -0500, John Dennis a écrit :
On 03/12/2010 09:12 AM, Fred MAISON wrote:
OK, Alan, It's clear.
Unfortunately, logrotate version on last RedHat/CentOS does not support
MMDD dateext function I can find on Debian ...
I will have to write a postrotate
Hello freeradius-users,
I search a way to ignore phase1 identity and avoid ldap access during
phase1 for EAP-PEAP/mschapv2
I try to migrate a freeradius V1 eap + ldap instance to freeradius
V2.1.8. (+1200 NAS, many kind of AP mostly Cisco, all sort of
supplicants on XPSP2/SP3, MacOSX, unknown
logged as well as access-accept ?
Best regards,
Fred MAISON
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Le lundi 03 mai 2010 à 16:58 +0200, Alan DeKok a écrit :
Fred MAISON wrote:
With this setup, access-accept are logged, but access-reject does not
seems to be logged.
Is this the normal behaviour ?
Yes. See Post-Auth-Type Reject. This is documented in the same file:
sites
Hello freeradius-users,
In many cases, when there is no attributes in request to differenciate
the kind of NAS and if we need to build a reply with NAS-Dependant
(AVPAIR) attributes, the only solution is to affect the huntgroup by
checking again the NAS-IP-Address in preprocessing.
I would like
Le lundi 03 mai 2010 à 18:29 +0100, Alexander Clouter a écrit :
Fred MAISON fred.mai...@gmail.com wrote:
[snipped[
For example :
dictionnary :
ATTRIBUTE My-Nas-Type 3000string
clients.conf :
client c1 {
ipaddress = 10.1.1.1
My-Nas-Type
Hello Freeradius-Users,
Is there any way to reference hostname (in fact hostname -s) in
configuration files, in order to have identical configuration files tree
on both a normal and a backup freeradius 2.1.8 server ?
For example, to manage differents listen addresse on normal and
backup :
Great !
Thanks, Alan.
Le jeudi 20 mai 2010 à 13:39 +0200, Alan DeKok a écrit :
Fred MAISON wrote:
Is there any way to reference hostname (in fact hostname -s) in
configuration files, in order to have identical configuration files tree
on both a normal and a backup freeradius 2.1.8 server
Software) tunneled to a
Juniper UAC device.
I try to avoid my actual proxy setup where a specific real is tunneled
to UAC. The problem is that end-users can bypass UAC proxying by simply
changing their domain identity ...
Best regards
Fred MAISON
-
List info/subscribe/unsubscribe? See http
Le lundi 24 mai 2010 à 11:49 +0200, Alan DeKok a écrit :
Fred MAISON wrote:
Is there any way to proxy freeradius unsupported eap-type to an external
radius ?
EAP does not allow this.
By the time EAP has decided on an EAP type, the EAP conversation is
well underway. Changing it mid
Pull update spec files, etc. from RedHat into the redhat/ directory.
Does this mean freeradius 2.1.9 can now been rebuild again from your
standard 2.1.9 source tree, thus making Freeradius RedHat FAQ a bit
obsolete ?
Best regards,
Fred MAISON
-
List info/subscribe/unsubscribe? See http
Fred MAISON wrote:
Yes, JUAC is an inner EAP protocol, inside ttls or peap.
Then you should be able to proxy it by just proxying the inner tunnel
data.
Yes, how can I do that ? May I activate proxy-inner-tunnel site along
with inner-tunnel site ?
EAP-JUAC EAP-Type seems to be 254. May
ftp://ftp.freeradius.org/pub/radius/
Le mardi 25 mai 2010 à 10:43 +0200, Bjørn Mork a écrit :
Hmm, this release doesn't seem to be tagged in the v2.1.x branch on
git://git.freeradius.org/freeradius-server.git
Am I looking at the wrong repository (again)?
Bjørn
-
List
Hello all,
I encounter difficulties to check for a radiusgroupname via LDAP by not
using file /etc/raddb/users, as this seems to be difficult to avoid ldap
checks for anonymous identities if default config is modified.
I must service eap-peap and eap-ttls with mschapv2.
How can i make checks on
) - TRUE
++- entering if (Ldap-Group != wireless) {...}
+++[control] returns noop
+++[reject] returns reject
++- if (Ldap-Group != wireless) returns reject
} # server inner-tunnel
[peap] Got tunneled reply code 3
Le mardi 01 juin 2010 à 15:23 +0200, Alan DeKok a écrit :
Fred MAISON wrote:
How can
{
if ( !(Ldap-Group == wireless )) {
fail
}
Le mardi 01 juin 2010 à 16:03 +0200, Alan DeKok a écrit :
Fred MAISON wrote:
I surely misunderstand something : in my test :
User is found on ldap in group wireless, but (Ldap-Group != wireless)
evaluates to TRUE
to proxy to for a particular real.
Best regards,
Fred MAISON
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
regards,
Fred MAISON
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
son I can rsync configurations between my differents servers, just
excluding local.conf in rsync ...
So, this is not a freeradius problem.
Thanks anyway for you help.
Best regards,
Fred MAISON
Le mercredi 02 juin 2010 à 13:25 -0400, John Dennis a écrit :
On 06/02/2010 12:54 PM, Fred MAISON wrote
Hello,
I would appreciate to get an account on the wiki.
Best regards,
Fred MAISON
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
CentOS5.5 x86_64.
Best regards
Fred MAISON
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
at 0038 rip 0040fde8 rsp
7fff3b994e50 error 4
Unfortunately, I have not been able to find the date of the issue ...
Does this seems to you a known issue ?
If not, what may I do to further investigate ?
Best regards
Fred MAISON
-
List info/subscribe/unsubscribe? See http
Ho Phil,
Could you explain the interest of un-named server ?
Best regards,
Fred
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
He are my libtool versions :
libtool-2.2.6-15.5.el6.x86_64
libtool-ltdl-2.2.6-15.5.el6.x86_64
libtool-ltdl-devel-2.2.6-15.5.el6.x86_64
regards,
Fred MAISON
Le lundi 07 novembre 2011 à 13:23 -0500, Francois Gaudreault a écrit :
Hi,
It works for me on CentOS 6, I am using the same .spec
, Francois Gaudreault a écrit :
I just tested using my spec, and it works perfectly (I have the same
libtool packages).
Did you change something in the spec?
On 11-11-07 3:36 PM, Fred MAISON wrote:
Hi,
He are my libtool versions :
libtool-2.2.6-15.5.el6.x86_64
libtool-ltdl-2.2.6-15.5.el6
checkout v2.x.x ?
Does a tar cvfj could be OK ?
Best regards ,
Fred MAISON
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Le mardi 12 mars 2013 à 18:08 +0100, Staffan Meijer a écrit :
I uncommented the eth0 line in the configuration file when radtest did
not work with the original.
Using the original configuration file I get;
Listening on authentication address * port 1812
and
linux-vdis:/etc/raddb #
29 matches
Mail list logo