Hi,
I had a working FreeRadius 1.1.6 installation and running XP Pro SP3
with EAP/TLS on an Ethernet-Port. I use Linksys switches as
authenticators. I think since end December (after I went into the xmas
holidays) the Radius-Auth stopped working. I changed nothing at the
Freeradius-Server. I
Alexandros Gougousoudis wrote:
I had a working FreeRadius 1.1.6 installation and running XP Pro SP3
with EAP/TLS on an Ethernet-Port. I use Linksys switches as
authenticators. I think since end December (after I went into the xmas
holidays) the Radius-Auth stopped working. I changed nothing at
On 01/03/2011 09:40 AM, Alexandros Gougousoudis wrote:
Hi,
I had a working FreeRadius 1.1.6 installation and running XP Pro SP3
That's really old. Upgrade.
with EAP/TLS on an Ethernet-Port. I use Linksys switches as
authenticators. I think since end December (after I went into the xmas
Alan DeKok schrieb:
See if your certificate has expired.
Nope, that was the first I've checked. Server and client-cert are still
valid. It seems, that no XP client (even some old SP2 clients) can logon
anymore, Ubuntu can.
Is there some possibility to force a Login OK as a
On 01/03/2011 11:09 AM, Alexandros Gougousoudis wrote:
Alan DeKok schrieb:
See if your certificate has expired.
Nope, that was the first I've checked. Server and client-cert are still
valid. It seems, that no XP client (even some old SP2 clients) can logon
anymore, Ubuntu can.
Is there
Hi Phil,
Phil Mayers schrieb:
To be clear, all windows clients fail? But other clients succeed?
Exactly, Ubuntu can authenticate, all XP not.
It is possible a windows update has removed the intermediate
certificate from the client(s). IIRC Microsoft have done this in the
past, expecting the
On Jan 3, 2011, at 4:40 AM, Alexandros Gougousoudis wrote:
I think since end December (after I went into the xmas holidays) the
Radius-Auth stopped working.
First, I know almost nothing regarding EAP. However, I wanted to mention that
many of the root certificates have been updated to
Hi JDL,
that's a good point, I didn't think about that. But it's not my problem,
I have 4096 keylength. It should be ok.
thx
Alex
JDL schrieb:
December. My understanding was that this was only to affect new certificates,
however, since certificates are involved in the EAP process, you
, but this morning:
Jan 3 08:04:32 dns1 radiusd[22737]: Invalid user: [xx/no User-Password
attribute] (from client port 0 cli xx-xx-xx-xx-xx-xx)
Jan 3 08:04:36 dns1 radiusd[22737]: [auth_log] rlm_detail: Couldn't open file
/var/log/radius/radacct/x.x.x.x/auth-detail-20110103: Too many open files
-xx-xx-xx-xx)
Jan 3 08:04:36 dns1 radiusd[22737]: [auth_log] rlm_detail: Couldn't
open file /var/log/radius/radacct/x.x.x.x/auth-detail-20110103: Too many
open files
That's bad...
I checked 'lsof -p' against the running radiusd and the line count of it's
output was 1054. Other than
Alan DeKok wrote:
The odd thing is that the code which writes that file does:
open file
write data
close file
It's a little hard to understand how those files are left open.
Never mind... reading the man pages would be a good idea.
I've pushed a fix to the git
When I have had problem in the past. (With IAS and windows Clients) A good test
was always use the cert as a ssl cert and try and go tot the website to see if
IE errors on the cert.
Thank you
Andrew Paternoster
Screwloose Software
S (03) 9095-7290 (03) 9095-7299
11-15 HighTech Place,
On Mon, 3 Jan 2011, Alan DeKok wrote:
Never mind... reading the man pages would be a good idea.
I've pushed a fix to the git repository, branch v2.1.x.
Thanks much for the speedy fix. Only one authentication thus far, but
that seems to have done the trick.
Jason
--
Jason Englander
Hello,
I got answere what should I do that the freeradius will work with centile.
Can you help me out where can I customized this settings?
Thanks!!!
miha
Currently, there is a password matching issue because the User-Password
encoding is different during the Authentication from the
14 matches
Mail list logo