Do you need RPM? Can you not just build and install from the source?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Alan,
I'm trying it now, compile from source and generated rpm. But now i stuck
at 2 dependencies. Hmm, can you show me how to build and install from
source? Any link? Isn't that still need dependencies?
libpcap-devel is needed by freeradius-server-2.2.0-0.x86_64
sqlite3-devel is needed by
Hi All,
i just wanted to know, is there anyway i can still use 1.1.7 and have the
ability to check empty Calling-Station-Id? It can used any method as long
it worked.
I already tried install / compile but a lot of dependencies i cant find it
at the DVD / ISO and also from Novell repo i could not
On Fri, Mar 15, 2013 at 8:47 PM, Danny Kurniawan
danny.kurnia...@fairchildsemi.com wrote:
Hi Alan,
I'm trying it now, compile from source and generated rpm. But now i stuck
at 2 dependencies. Hmm, can you show me how to build and install from
source? Any link? Isn't that still need
Danny Kurniawan wrote:
I already tried install / compile but a lot of dependencies i cant find
it at the DVD / ISO and also from Novell repo i could not find it too.
$ grep pcap suse/*
suse/freeradius.spec:BuildRequires: libpcap-devel
Edit that file, and delete the line. FreeRADIUS doesn't
Thanks Alan. Let me try that.
PS : i will prepare a hammer too, but to bad the server is in US while i'm
in Singapore :)
If this not going to work, i will give up and ask to install brand new SLES
11 that support 2.1.1.
Thanks
Danny
On Fri, Mar 15, 2013 at 9:49 PM, Alan DeKok
Update :
It works like charm :)
I removed the sql3lite and libpcap, and i can compile and install it just
fine. And the Radius is works.. *well i haven't really testing it in PROD,
but at least it can accept connecting and unlang.
Thanks Alan, really2 appreciate that.
Have a good weekend.
Thanks a lot for your reply.
Yes i got it working. However one more question :
what is the operator used to check if the value is empty ?
if(control:Calling-Station-Id == ){
reject
}
*not working for above
So i tried to make sure if the user LDAP attribute for CallingStationID was
On 14.03.2013 07:28, Danny Kurniawan wrote:
Thanks a lot for your reply.
Yes i got it working. However one more question :
what is the operator used to check if the value is empty ?
if(control:Calling-Station-Id == ){
reject
}
if(!control:Calling-Station-Id) {
reject
Thanks Olivier.
yes previous message has been resolved. Thanks a lot. Let me try your
suggestion.
-Danny
On Thu, Mar 14, 2013 at 2:41 PM, Olivier Beytrison oliv...@heliosnet.orgwrote:
On 14.03.2013 07:28, Danny Kurniawan wrote:
Thanks a lot for your reply.
Yes i got it working. However
On Thu, Mar 14, 2013 at 5:28 PM, Danny Kurniawan
danny.kurnia...@fairchildsemi.com wrote:
Thanks a lot for your reply.
Yes i got it working. However one more question :
what is the operator used to check if the value is empty ?
if(control:Calling-Station-Id == ){
reject
}
Hi All,
All of the suggestion works fine :)
So just wondering, will this unlang method works for radius 1.x version? If
its not working, what is the method that i can use in that version?
Thanks
Danny
On Thu, Mar 14, 2013 at 2:58 PM, Fajar A. Nugraha l...@fajar.net wrote:
On Thu, Mar 14,
Just to add in,
I have tested and i know it works to compare it by enabled the checkval
inside radius.conf
But now how can i check if the value of the CallingStationID is not empty?
In Radius 2.x i can use the unlang below, but in Radius 1.x it's failed
when i tried that.
Also i have enabled
So is anyone know how to do the following in the FreeRadius 1.1.7 ?
if(control:Calling-Station-Id == ){
reject
}
I just want to reject the packet if the Control (or maybe check) is empty
or has no value. I could not afford to upgrade at this time as it's a
native freeradius comes
Danny Kurniawan wrote:
So is anyone know how to do the following in the FreeRadius 1.1.7 ?
if(control:Calling-Station-Id == ){
reject
}
You don't. Version 1 doesn't suppot unlang.
I just want to reject the packet if the Control (or maybe check) is
empty or has no value. I
Thanks Alan.
I have read some article about compiling our own rpm. I only concern about
the --edir integration.
So is there any input for me whether after i upgrade using the rpm that i
build my self, can i still using it with edir? As i saw somewhere article
that said make sure you used --edir
Danny Kurniawan wrote:
I have read some article about compiling our own rpm. I only concern
about the --edir integration.
Add that to the suse files. Look for the script running configure.
So is there any input for me whether after i upgrade using the rpm that
i build my self, can i still
Hi All,
Sorry for this beginner question again. I have read the wiki i will need
some hint from any of you:
1. So which files that i need to download from
http://freeradius.org/download.html ? Version 2.2.0: tar.gz OR
Version 2.2.0: tar.bz2 ?
2. So after i download one of them just copy it here
On Fri, Mar 15, 2013 at 10:52 AM, Danny Kurniawan
danny.kurnia...@fairchildsemi.com wrote:
Hi All,
Sorry for this beginner question again. I have read the wiki i will need
some hint from any of you:
1. So which files that i need to download from
http://freeradius.org/download.html ?
Thanks in advance for all the explanation. I will spent more time on
learning on it for sure, it's just the requirement need me to learn it on
practical way *this task handed over to me not in a good timely manner and
yet they want it fast :)
Again i believe thats not an excuse for me not to read
So basically i found this old 2008 case :
Feb 27, 2008; 6:13pm Re: Radius MAC filtering with EAP-PEAP
[image: Alan
DeKok-2]http://freeradius.1045715.n5.nabble.com/template/NamlServlet.jtp?macro=user_nodesuser=106330
11708 posts
Era wrote:
Could you please assist me to find my fault. I
checkval can helpful when you need to apply NAS-identifier
Calling-Station-Id - FR attributes.
checkval calledstationid {
item-name = Called-Station-Id
check-name = Called-Station-Id
data-type = string
notfound-reject = no
}
checkval nasidentifier {
Hi Russel,
Thanks for that. However it seems the check-name cant even populated. as
you can see from my log file.
+- entering group authorize {...}
++[preprocess] returns ok
rlm_checkval: Item Name: Calling-Station-Id, Value: A0-88-B4-0F-C3-D8
rlm_checkval: *Could not find attribute named
Hi Dan,
What Reject ? And MAC address listed where? Are you working around MAC
authentication? FR MAC auth is working for me, I use CoovaChilli as NAS.
0.) MAc address would exist as user in MySQL DB or file
1.) Configure NAS to send MAC-Addr as username to Freeradius
2.) And do the following at
Hi Russel,
So we have LDAP auth here. At this time it works fine. But now we want to
added 2 auth, so for example like we want to check the valid user id /
password from LDAP and also the MAC address listed from the user attribute
in the LDAP.
The ldap attribute mapped properly :
checkItem
Danny Kurniawan wrote:
Hi Russel,
So we have LDAP auth here. At this time it works fine. But now we want
to added 2 auth, so for example like we want to check the valid user id
/ password from LDAP and also the MAC address listed from the user
attribute in the LDAP.
The ldap attribute
Thanks Alan, let me try that. So basically you are also saying that i don't
need to enable / use checkval module in the siteavailable/default ?
So the Goal here is to have 802.1X PEAP + MAC authentication at the same
time. User connect to wireless AP, prompted for user name password, then
the
Danny Kurniawan wrote:
Thanks Alan, let me try that. So basically you are also saying that i
don't need to enable / use checkval module in the siteavailable/default ?
I fail to understand the reason for this question. I gave you an
answer. Instead of doing what I said, your first response
Hi,
I'm very sorry if that consider as rude. I said that i will try that and i
just want to make sure i didn't need to use checkval as i already enabled
it. So what i want to do is disabled it and try the solution.
Again, apologize for this misunderstanding.
Thanks Best Regards,
Danny
On Thu,
On 13/03/2556 14:53, Danny Kurniawan
wrote:
Hi All.
I found this error when enabled checkval
rlm_checkval: Could not find attribute named Calling-Station-Id
in check pairs
++[checkval] returns notfound
Hi Alan,
I tried to put that command in the /siteAvailable/Default after the LDAP
called and receive this error :
Expected string or numbers at: )
/etc/raddb/sites-enabled/default[62]: Errors parsing authorize section.
}
I also commented back the checkval module.
Thanks
Danny
On Wed, Mar 13,
So this the content of sites-available/default
#
# The ldap module will set Auth-Type to LDAP if it has not
# already been set
ldap
if (control:Calling-Station-Id != %{Calling-Station-Id})
{
reject
}
#
# Enforce daily limits on time spent logged
On Thu, Mar 14, 2013 at 4:44 PM, Danny Kurniawan
danny.kurnia...@fairchildsemi.com wrote:
if (control:Calling-Station-Id != %{Calling-Station-Id})
{
reject
}
IIRC the parser is picky on where the curly braces are located. Look at
Alan's example again, and see man unlang
33 matches
Mail list logo