On 03/25/2011 10:09 PM, Robert Roll wrote:
If you just want to split username@realm into username and realm, you
should be able to use this in authorize section
if (%{request:User-Name} =~ /^(.*)@/) {
update request {
On 03/25/2011 09:45 PM, Robert Roll wrote:
Note that in the above the Realm is quite useful, but there is NO need to
actually do proxy, so really no REAL need to get into the proxy.conf ?
This is a good reason to use unlang rather than realm. realm is
designed for proxying, always gets
Alan DeKok al...@deployingradius.com wrote:
are there any plans to add logging to *remote* syslog servers to the
rlm_linelog module? Would be kinda cute; we want to log authentication
results to a central statistics collection host - and going through
re-send on the local syslog instance is a
Hi ,
I am following the link
http://deployingradius.com/documents/configuration/active_directory.html to
integrate AD with freeradius
I have done configuration changes as per the attached files
Now when i run the radtest
radtest user password localhost 0 testing123
I get Accept
hi,
if you take the default FreeRADIUS 2.x config and just follow that active
directory
guide, then it just works - you dont need to use exec ntlm_auth or
anything...just configure the mschap module (which has an ntlm_auth line to be
configured)
alan
-
List info/subscribe/unsubscribe? See
Thank You ! This is very good information...
I did NOT realize that user@undefinedRealm would NOT
preserve Realm. That does make a hugh difference...
I did read your other post, and am really NOT adverse to making use of
unlang. I did start to read a little about policy.conf and like the
I'm using freeradius with coova-chilli. Works fine and dandy, but
I'm trying to enforce some policy which I can do with some scripts,
but it would be much cleaner to do with radius (IMHO).
What I want to happen is when user session timeout or bandwidth restriction
has been hit, update a
ok, how would that be? how do I not use the freeradius NAS-Port as the key?
acct_unique is a module?
acct_unique {
key = User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address,
NAS-Port
}
I just remove the the NAS-Port-up of the keys?
John
2011/3/25 Alan Buxey
On Sat, 2011-03-26 at 15:01 -0500, Marc Phillips wrote:
I'm using freeradius with coova-chilli. Works fine and dandy, but
I'm trying to enforce some policy which I can do with some scripts,
but it would be much cleaner to do with radius (IMHO).
What I want to happen is when user session
Why not define a trigger in the database to run the additional query or
a function that can perform the necessary checks and the execute a
query.
I'll take a look at some triggers and stored procedures to go along
with it. Would be useful for cleaning up stuff anyway (running
radius and
10 matches
Mail list logo
