Hi,
i dont have any information in session section in radius.log just one
line:
# Executing section session from file
/usr/local/etc/raddb/sites-enabled/default
# Executing section post-auth from file
/usr/local/etc/raddb/sites-enabled/default
debug log.
radiusd -X
alan
Hi,
session {
if ({%sql:select findout_cuncurrent_session_for_a_user_result
('%{User-Name}','%{NAS-IP-Address}','%{Called-Station-Id}','%{Calling-Station-Id}')}
== Deny) {
update control {
Pool-Name := Exceeded-Concurrent-Session
}
}
}
What is the
i dont have any information in session section in radius.log just one line:
# Executing section session from file
/usr/local/etc/raddb/sites-enabled/default
# Executing section post-auth from file
/usr/local/etc/raddb/sites-enabled/default
On Tue, Mar 26, 2013 at 3:47 AM,
Hi,
Hi all,
I want to configure the free radius to return access-
reject based on the value of a particular column in database .
How do i do that ??? please help
probably with a bit of unlang like
if(%{sql:SELECT group FROM `table` where
Hi,
http://dpaste.com/833344/
please send error message to the list...ie the plain text, do not use
such web services if you want support (1 - this is email, text
is easy to read just posted, 2 - I receive an email with some random
link in it. do I trust that link? hell no I dont)
alan
-
Hi,
luckily I still use lynx ;-)
We use a sql base to get the info of the users.
well, thats the problem. you dont.
ensure you call 'sql' in the correct places in the inner-tunnel
virtual server (EAP requests get sent to the inner-tunnel - you probably
only have sql defined in your default
Return rlm_module_updated
alan
--
This smartphone uses free WiFi around the world with eduroam, now that's what I
call smart.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I am too much a newbie to understand what you are suggesting.
Should I replace: return RLM_MODULE_OK with: return RLM_MODULE_UPDATED
in the perl script?
On Tue, Oct 9, 2012 at 11:33 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
Return rlm_module_updated
alan
--
This smartphone uses free WiFi
On 09/10/12 23:32, Andrew Precht wrote:
to: module = /etc/raddb/sjpl.pl
Also, in the perl file I have uncommented the line: func_authenticate
= authenticate
Next, in /etc/raddb/sites-enabled/default I added perl to the
authenticate {} section.
Your problem is that the script is just wrong.
On 10/10/12 18:30, Andrew Precht wrote:
Found Auth-Type = perl
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group perl {...}
rlm_perl: perl_embed:: module = /etc/raddb/sjpl.pl , func =
authenticate exit status= Undefined subroutine main::get called at
OK. I think I've got the script fixed.
But, I'm now getting: Denied access by RADIUS
Here is my debug:
Starting - reading configuration files ...
including configuration file /etc/raddb/radiusd.conf
including configuration file /etc/raddb/proxy.conf
including configuration file
Andrew,
It appears that the problem is in your perl script:
++[perl] returns reject
Failed to authenticate the user.
Using Post-Auth-Type Reject
You need to fix your script. You can run it by hand with perl -d to
see how it behaves, or insert print statements in it, etc., until it
works
Well I'm back...
I have changed the module line in /etc/raddb/modules/perl, from:
module = ${confdir}/example.pl
to: module = /etc/raddb/sjpl.pl
Also, in the perl file I have uncommented the line: func_authenticate
= authenticate
Next, in /etc/raddb/sites-enabled/default I added perl to the
Hi,
I've setup a new virtual FR 2.1.12 server on centos6. I have got the
new server setup per
the docs at freeradius.org. Radtest locally and NtradPing remotely are
working.
Now, I need FR to use a Perl script to authenticate against a proprietary DB.
I have put in a bit of time
Thanks Alan,
I'm off for the weekend, I will give this a try on Tuesday.
On Fri, Oct 5, 2012 at 3:04 PM, alan buxey a.l.m.bu...@lboro.ac.uk wrote:
Hi,
I've setup a new virtual FR 2.1.12 server on centos6. I have got the
new server setup per
the docs at freeradius.org. Radtest locally and
Hi,
Keep getting this error message when running make in my /raddb/certs
directory I reinstalled openssl but to no avail. Any thoughts?
/usr/bin/openssl ca -batch -keyfile ca.key -cert ca.pem -in server.csr
-key `grep output_password ca.cnf | sed 's/.*=//;s/^ *//'` -out
hi,
not sure why you are shouting. and i believe you asked this already today.
patience.
there are several ways to do this..and it depends on what your NAS
requires..and how you want to manage or implement it.
for example, you could just add the MAC address details to the 'users'
file - as per
Hi,
After installing Radius. i try to do some exemple.I d'ont know if it is
correct because i'm new in it.
I add on Users:
sonia Auth-Type := Local, User-Password == salut
Reply-Message = Hello, %u,
Reply-Message = are you fine, %u
what version? with anything recent this should work
with timestamp +51
Ready to process requests.
Date: Tue, 4 May 2010 13:57:55 +0100
From: a.l.m.bu...@lboro.ac.uk
To: freeradius-users@lists.freeradius.org
Subject: Re: your mail
Hi,
After installing Radius. i try to do some exemple.I d'ont know if it is
correct because i'm new in it.
I
On 05/04/2010 09:20 AM, dorra aa wrote:
sonia Auth-Type := Local, User-Password == salut
Don't set the Auth-Type, that's documented in many places, it's not in
the example http://deployingradius.com/documents/configuration/pap.html
User-Password == salut
Is also incorrect, the documented
Hi,
as your free support channel I would suggest that you read the errors
that you are having
n Sep 28 05:01:23 2009 : Error: Dropping conflicting packet from client
private-network-2:45456 - ID: 102 due to unfinished request 73062
09/28/2009 03:09 PM, Alan Buxey:
FreeRADIUS can handle several hundred AAA per second without issues..but you
put something
in its way that is slow - LDAP lookup,
kidding troll
LDAP lookup is always fast ;-)
Slowness is only for relational stuff
/
--
Architecte Informatique chez
@lists.freeradius.org
[mailto:freeradius-users-bounces+kamil=extendbroadband@lists.freeradius.
org] On Behalf Of Alan Buxey
Sent: Monday, September 28, 2009 3:10 PM
To: FreeRadius users mailing list
Subject: Re: your mail
Hi,
as your free support channel I would suggest that you read the errors
Hi,
Hello
At my sql.conf : # number of sql connections to make to server
num_sql_socks = 20
my db is windows based, queries are pretty fast.
Is there specific configuration that I can check?
I recall a long time back having a problem when mysql was given that many
sockets
from
At my sql.conf : # number of sql connections to make to server
num_sql_socks = 20
my db is windows based, queries are pretty fast.
Is there specific configuration that I can check?
Do a debug of server startup. Can you connect to the database at all? If
not, check connection settings
Of Ivan Kalik
Sent: Monday, September 28, 2009 3:44 PM
To: FreeRadius users mailing list
Subject: RE: your mail
At my sql.conf : # number of sql connections to make to server
num_sql_socks = 20
my db is windows based, queries are pretty fast.
Is there specific configuration that I can
:44 PM
To: FreeRadius users mailing list
Subject: RE: your mail
At my sql.conf : # number of sql connections to make to server
num_sql_socks = 20
my db is windows based, queries are pretty fast.
Is there specific configuration that I can check?
Do a debug of server startup. Can you
Hi,
Hello,
Could someone let me know if I can insert a new NAS in the following
format
insert into nas values('','xx.xx.xx.112/29','shortname',)
you can use sucha netmask to cover a rangebut they'll all
then use the same secret and be identified by the same shortname.
...jyst
Hello Allan,
Thank you for your reply.
ensure your netmask etc are correct
:-)) I hope so. I was giving it like this (IP address
plus slash 29: 10.1.1.112/29)
My trouble was I did not know if I could use 10.1.1.112/29
as nasname.
Thank you all.
Cheers
Irina
==
Hi,
Hi,
I use radclient for disconnect users:
Acct-Session-Id={ACTSESSION}\nUser-Name={MYUSERNAME}\nX-Ascend-Session-Svr-
Key={SESSIONKEY}\nNAS-IP-Address=10.0.5.1 | radclient -x 10.0.5.1:3799
disconnect 123;
you're telling the NAS about itself (NAS-IP-Address) - perhaps it doesnt like
that
Hi,
unsubscribe
please either re-read the vrey first email you recieved when joining
this list, or simply read the email headers of any email
that comes from this list - both will tell you how to unsubscribe.
any decent email client will understand the list headers and
will enable you to
Hi,
I am trying to setup freeradius 1. I have chap authentication working with
mysql but pap authentication will not work with mysql. This is what I
receive from the nas when someone trys to connect.
radius.conf does not contain the full sql details - eg sql.conf,
the required SQL backend
32 matches
Mail list logo
