On Tue, Dec 13, 2011 at 1:54 PM, Shweta Khadse shwe...@gmail.com wrote:
Thankyou Alan!
You gave us an idea about how we can set ok to return a default ok for the
section.
We tested with our second approach as below and thrilled that it works/
This ensures radius returns ok even if the
On Tue, Dec 13, 2011 at 2:25 PM, Shweta Khadse shwe...@gmail.com wrote:
Hi Fajar
Yes we REALLY tested it :)
A quick glance says the OK block will always
be used is what we wanted! Because this block is critical.
Are you SURE that's what you want?
redundant {
ok
sql1
sql2
}
is
On Thu, Dec 8, 2011 at 9:51 AM, Nick Khamis sym...@gmail.com wrote:
Hello Everyone,
I tried to compile FreeRADIUS with LDAP support however, rlm_ldap has
not been compiled.
Are libldap-2.4-2 libldap-dev not sufficent? Do I need to install OpenLDAP?
Try libldap2-dev. That's what on
On Thu, Dec 8, 2011 at 8:18 PM, Zeus V Panchenko z...@ibs.dn.ua wrote:
since you reply i was trying several times to do that ... though i do
not use nither twitter nor github, i registered with github and trying
to authenticate on http://wiki.freeradius.org
but each time i fail with:
2011/12/8 Mustafa Reşit Şahin resitsa...@gmail.com:
My makefile.in file
RLM_LIBS = @itap_ldflags@ -L/home/resit/radius/lib/
/home/resit/radius/lib/print.so
shouldn't it be -lprint instead of /home/resit/radius/lib/print.so?
--
Fajar
-
List info/subscribe/unsubscribe? See
On Fri, Dec 9, 2011 at 4:11 AM, Michel Bulgado mic...@casa.co.cu wrote:
After the user to authenticate and connect to wireless, I noticed that the
table RadAcct was empty, probing the inner-tunnel file found this:
There are no accounting Requests inside of EAP-TTLS or PEAP tunnels.
What
On Fri, Dec 9, 2011 at 9:39 AM, mic...@casa.co.cu wrote:
Michel Bulgado mic...@casa.co.cu escribió:
On 12/08/2011 04:26 PM, Fajar A. Nugraha wrote:
On Fri, Dec 9, 2011 at 4:11 AM, Michel Bulgadomic...@casa.co.cu wrote:
After the user to authenticate and connect to wireless, I noticed
2011/12/9 Толик Шавловский tolik_shavlov...@mail.ru:
freebsd# ping git.freeradius.org
PING git.freeradius.org (88.190.25.44): 56 data bytes
64 bytes from 88.190.25.44: icmp_seq=0 ttl=48 time=48.211 ms
64 bytes from 88.190.25.44: icmp_seq=1 ttl=48 time=48.253 ms
64 bytes from 88.190.25.44:
On Wed, Dec 7, 2011 at 4:11 PM, Сергей Усов us...@pomorsu.ru wrote:
Hi
I try to configure authentication via ntlm_auth to check the user group. All
authentication attempts are rejected
What does the debug log say when the authentications are rejected?
--
Fajar
-
List
On Wed, Dec 7, 2011 at 11:02 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
SELECT id, username, attribute,
value, op FROM radcheck WHERE username = 'KeepAliveUserNameAndPassword'
ORDER BY id
SELECT groupname FROM radusergroup
WHERE username = 'KeepAliveUserNameAndPassword'
On Thu, Dec 8, 2011 at 3:57 AM, suggestme samanaupadh...@hotmail.com wrote:
Thank you all for the suggestions.
I have already installed FreeRadius 2.1.12 which I am running, an I have got
ldap in file /usr/local/etc/raddb/modules/ldap; I have gone through it and I
am still not sure where the
On Thu, Dec 8, 2011 at 6:11 AM, lint l...@pillclan.com wrote:
Alan, here is the output of everything with a failed request:
Did you read this?
Module: Linked to module rlm_chap
Module: Instantiating module chap from file /etc/raddb/modules/chap
Module: Linked to module rlm_mschap
Module:
On Thu, Dec 8, 2011 at 9:26 AM, lint l...@pillclan.com wrote:
I made backups of the files in modules before I
modified them, as I always do with configuration files. I didn't realize
that FreeRADIUS loads all modules. I will move the backups to my home
directory and try again tomorrow
2011/12/8 Толик Шавловский tolik_shavlov...@mail.ru:
Hi,
mysql use freeradius;
Database changed
mysql select * from radcheck;
++-+++--+
| id | username | attribute | op | value |
On Tue, Dec 6, 2011 at 3:01 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
Hi,
i have the problem with packet management running on freebsd:
FreeBSD# pkg_add -r freeradius-mysql-1.1.8_4.tbz
Error: Unable to get
2011/12/6 Толик Шавловский tolik_shavlov...@mail.ru:
Hi,
thanks for your answer.
but your link
http://www.freebsd.org/cgi/ports.cgi?query=freeradiusamp;stype=allamp;sektion=net
has th anly fr-mysql version:
freeradius-mysql-1.1.8_4
i need freebsd FR version with mysql.
(1) Try 2.1.12,
On Tue, Dec 6, 2011 at 3:54 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
I used version 2.1.12 and it didn't have mysql driver .
Then build the package yourself. It shouldn't bee too hard.
I you had used Ubuntu, I can give you the link for the latest package.
But since you use
On Tue, Dec 6, 2011 at 7:22 PM, john decot johnde...@yahoo.com wrote:
Thanks for the reply. I am also trying same but couldn't compare with the
field on the database as Expiration attribute use character value. I wish
someone give me any idea on comparing those parameter inside database.
On Tue, Dec 6, 2011 at 9:59 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
freeradius-2.1.12 depends on executable: gmake - found
=== freeradius-2.1.12 depends on file: /usr/local/bin/perl5.12.4 - found
==
Hi, freeradius2 has error while installing under freebsd.
On Tue, Dec 6, 2011 at 10:31 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
but i want to build from /usr/ports,
Then ask ports maintaners. Really.
beacause such freeradisu propose mysql
module. freeradius-2.1.2 form source doesn't include mysql module.
How did you reach that
On Tue, Dec 6, 2011 at 10:51 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
Dear Fajar,
i failed to intergate FR + mysql, i was informed that my FR is without mysql
module.
then why didn't you ask that in the first place? It'd save lots of time.
i am in process of building
On Wed, Dec 7, 2011 at 5:31 AM, Houston-III, Lester L
lester.l.houston-...@boeing.com wrote:
Hello,
I’m trying to force reauthentication of my strongswan IPSec clients where
EAP-TLS is being used, but nothing seems to work. Now, this is something
that I would like to do on a per-client
On Wed, Dec 7, 2011 at 1:15 PM, mic...@casa.co.cu wrote:
google search and it turns out all the variations I have encountered are
implementing freeradius with PEAP TLS and mysql which should generate
certificates and then configure the client and in turn install these
certificates to the
On Mon, Dec 5, 2011 at 12:25 AM, Aceror aceror2...@yahoo.es wrote:
This is what I did. Exec inside the post-auth.
So you have libpam-radius-auth installed and configured correctly? If
so, you should already have it working properly, right? what do you
need mutt for?
--
Fajar
-
List
On Sun, Dec 4, 2011 at 5:49 PM, Piotr piotr.1...@interia.pl wrote:
I changed type of authentication,on cisco asa, to PAP:
ASA(config)# sh run all | begin tunnel-group l2tp-ipsec ppp-attributes
tunnel-group l2tp-ipsec ppp-attributes
authentication pap
no authentication chap
no
On Sat, Dec 3, 2011 at 6:23 PM, Hitesh Vinzoda hiteshvinz...@yahoo.com wrote:
Hi all,
I get this working now. Thanks a lot to you guys. Now i want to test one
more feature, i.e. Is there a way where we can set the accounting updates to
be triggered at a specific time of a day e.g. everynight
On Sun, Dec 4, 2011 at 1:59 AM, Aceror aceror2...@yahoo.es wrote:
I will like to recive a email when someone login into my server,I
thought using mutt + freeradius but no result about
mutt -s Un usuario ha entrado en la red myem...@domin.com | freeradius
-X
That's not what freeradius is for.
On Fri, Dec 2, 2011 at 3:28 PM, Johan Meiring jmeir...@pcservices.co.za wrote:
On 2011/12/02 09:52 AM, Alan DeKok wrote:
I've done tests with 50K requests/s for days straight. My smartphone
could do 200 requests/s.
I must say, freeradius running on a smartphone is quite cool!
Yes, it
On Fri, Dec 2, 2011 at 3:37 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
Dear Alan,
i added Simultaneous-Use = 1 to user profile in users file.
Did you read the doc? Or the reply I sent earlier?
It requires MORE than just that.
--
FAN
-
List info/subscribe/unsubscribe? See
. But again, you need to
store accounting data for it to work.
--
Fajar
02 декабря 2011, 12:43 от Fajar A. Nugraha l...@fajar.net:
On Fri, Dec 2, 2011 at 3:37 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
Dear Alan,
i added Simultaneous-Use = 1 to user profile in users
2011/12/1 Guillermo W. Llanes Suárez gwill...@uci.cu:
El 01/12/2011 3:49, Alan DeKok escribió:
Because you edited the configuration and broke it.
Don't do that.
thanks alan, the main problem when I try to authenticate a client EAP (PEAP)
against the radius server when it attempts to
On Fri, Dec 2, 2011 at 6:41 AM, David Peterson
dav...@wirelessconnections.net wrote:
Sigh, I wish I knew. I was hoping it would make sense to someone on this
list.
My best GUESS would be Acct-Interim-Interval
For example, when using chillispot, Acct-Interim-Interval (if you use
it) must be
On Fri, Dec 2, 2011 at 2:31 PM, tolik_shavlov...@mail.ru
tolik_shavlov...@mail.ru wrote:
Hi,
i need your help in configuration freeradius for no simultaneous use.
simultanouse use limit is somewhat ... awkward.
So, i need one active user per login/password.
I configured user as follow:
On Thu, Dec 1, 2011 at 3:58 AM, Jim Pazarena j...@paz.bz wrote:
Ahh. the FreeBSD docs indicate that the default for password encryption
is MD5.
Now I need to learn how to use MD5 within freeradius.
Suggestions would be most appreciated.
FR should support MD5 just fine. Take a look at
On Tue, Nov 29, 2011 at 3:57 PM, Alan DeKok al...@deployingradius.com wrote:
Alexandre Chapellon wrote:
I don't understand what you mean by writing a detailed state
machine... state machine?
Write down what the server receives, and what you want to do with it.
The server receives
On Tue, Nov 29, 2011 at 5:33 PM, Alan DeKok al...@deployingradius.com wrote:
Fajar A. Nugraha wrote:
For comparison purposes, we currently implement some config and db
schema modifications to better handle accounting packets. For example:
- always return ok on accounting packets that the NAS
On Mon, Nov 28, 2011 at 4:27 PM, Bhanu Vegesna bhanu.vege...@gmail.com wrote:
I was able to run the server by changing the port in innertunnel to
18120 But still i am getting the following error
Ignoring EAP-Type/tls because we do not have OpenSSL support.
Did you read the message?
The
On Mon, Nov 28, 2011 at 6:51 PM, Ali Majdzadeh ali.majdza...@gmail.com wrote:
Also plz note that auth.pl forks another exec program per authenticated user
(named calc) and will live till user stopped. So if I’ve 20.000 online
users, I’ve also 20.000 calc process.
The most obvious question is
On Tue, Nov 29, 2011 at 4:03 AM, Vikash Gounder
vikash.goun...@acu.edu.au wrote:
Hi Fajar,
Thanks so much for replying.
The debug log for local test against AD is attached:
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Listening on command
On Tue, Nov 29, 2011 at 6:29 AM, Vikash Gounder
vikash.goun...@acu.edu.au wrote:
So in this case what changes do I need to make in order for it to work.
Sorry am bit lost right now.
http://deployingradius.com/documents/configuration/active_directory.html
--
Fajar
-
List
On Sun, Nov 27, 2011 at 7:47 PM, Edgar Fuß e...@math.uni-bonn.de wrote:
Define your own [attributes]. That's why the dictionary files are editable.
Is there a private name space for that (i.e., X-*) that is guaranteed not to
conflict with future official attribute names?
You should be able
On Mon, Nov 28, 2011 at 8:29 AM, Bogi Aditya b...@imtelkom.ac.id wrote:
thanks Alan
I found the problem was in the attribute field
where I put Cleartext-Password based on the wiki :
http://wiki.freeradius.org/SQL-HOWTO
The example should be correct. From
On Mon, Nov 28, 2011 at 9:40 AM, Bogi Aditya b...@imtelkom.ac.id wrote:
thanks Fajar
I've tried :
# radtest -t mschap usertest passtest localhost:1812 0 testing123
Sending Access-Request of id 13 to 127.0.0.1 port 1812
User-Name = usertest
NAS-IP-Address = 10.1.1.28
On Mon, Nov 28, 2011 at 12:29 PM, Vikashgounder
vikash.goun...@acu.edu.au wrote:
From the local radtest I can see, it is authenticating fine but when testing
... and where is the debug log for that?
with a wpa device, this is the error m getting on the debug log:
It's quite informative,
On Fri, Nov 25, 2011 at 4:15 PM, Jakub Pech jakub.p...@spinoco.com wrote:
Is there anything else then ldap.attrmap that should be set up for sending
vendor specific attributes from LDAP?
Let's try something basic. Were you able to see the attribute (and its
value) when you do ldap query for
On Fri, Nov 25, 2011 at 4:42 PM, Bhanu Vegesna bhanu.vege...@gmail.com wrote:
listen {
type = auth
ipaddr = 127.0.0.0
port = 1812
Failed binding to authentication address 127.0.0.0 port 1812 as server
inner-tunnel: Address already in use
On Fri, Nov 25, 2011 at 5:14 PM, Jakub Pech jakub.p...@spinoco.com wrote:
Dne 25.11.11 10:23, Fajar A. Nugraha napsal(a):
Is there anything else then ldap.attrmap that should be set up for
sending
vendor specific attributes from LDAP?
Let's try something basic. Were you able to see
On Thu, Nov 24, 2011 at 7:30 PM, Jakub Pech jakub.p...@spinoco.com wrote:
Hi,
See the ldap.attrmap file. This is documented.
I sent the rows I've added to ldap.attrmap in my previous mail. Is there
anything wrong??
Normally an ldap attribute will be translated as a radius check or
reply
On Thu, Nov 24, 2011 at 9:43 PM, Jakub Pech jakub.p...@spinoco.com wrote:
Hi,
Normally an ldap attribute will be translated as a radius check or reply
item, not both (which is what you did).
First I had only radius check. I added radius reply later while testing.
I'm almost sure that that is
On Thu, Nov 24, 2011 at 11:49 PM, Edgar Fuß e...@math.uni-bonn.de wrote:
- identify
- authenticate
- authorize
Ah, thanks! I understand the process much better now, replacing the section
names (authorize, authenticate, post-auth) with what you gave (identify,
authenticate, authorize).
On Wed, Nov 23, 2011 at 11:21 PM, Edgar Fuß e...@math.uni-bonn.de wrote:
My recommendation to anybody who asks this question [...],
is to think of authorisation being separate from generating the reply.
Do I understand you correctly in that you only recommend to /think/ that way,
not that
On Thu, Nov 24, 2011 at 1:04 AM, Nataniel Klug listas.n...@cnett.com.br wrote:
I am having a problem. The problem is I was trying to use
MySQL and SQLIPPOOL but I had many problems with IP allocation and release so
I choose to try PostgreSQL and it worked really fine in every
On Wed, Nov 23, 2011 at 4:38 AM, Nate open...@aivector.com wrote:
I'm running the following,
Centos 5.7
openVPN 2.2.1
pam_radius 1.3.17
I've installed the /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so into
What are you trying to achive?
If you simply want to authenticate openvpn users
On Wed, Nov 23, 2011 at 12:40 PM, Nate open...@aivector.com wrote:
In any case, openvpn-related integration issues is better suited on
openvpn list/forum. This list is more suitable for problems related to
freeradius (hint: if you haven't had the need to run FR in debug mode
then most likely
On Tue, Nov 22, 2011 at 4:31 AM, Jim Pazarena j...@paz.bz wrote:
I do not see any line in the radiusd.conf file which references users.
It's not. It's in raddb/modules/files.
Ah. I had my users file in raddb
NOT in raddb/modules
So I moved it to modules,
You shoulnd'nt.
On Tue, Nov 22, 2011 at 12:05 PM, Harshavardhan Ch
harshavardhan...@intelligraphics.com wrote:
Hello sir,
while activating the free radius server with eap
authentication via vmware virtual machine i got error like Failed binding
to authentication address 192.168.1.102 port
On Mon, Nov 21, 2011 at 3:29 AM, Wegener, Norbert
norbert.wege...@atos.net wrote:
Yes, this is around the configuration in a larger production environment.
In this case here I wanted to see how much of that load can be put on an
embedded system.
Not directly related to your problem, but:
-
On Mon, Nov 21, 2011 at 12:10 AM, Angelica Delgado
angelicadel...@gmail.com wrote:
Yes it is active directory. If it needs to be configured different when
using AD?
Since you said We configured ldap module to connect to our Active
Directory as a ldap server. This is currently working, you
On Mon, Nov 21, 2011 at 8:52 AM, Duong Manh Truong
ngoahotanglon...@gmail.com wrote:
What i did is that: With each user (Uid) , i created multiple userpassword
attribute values,
then, while authenticating, OpenLDAP will compare the input password with
all the created password values --one by
On Sat, Nov 19, 2011 at 11:27 AM, Dom dvers...@tekcorner.ca wrote:
I was wondering if there was a open source billing system available to
manage our DSL customers
From the limited screenshots I saw, daloradius seems to be the closes
thing. Last time I tried I can't set it up properly though,
On Fri, Nov 18, 2011 at 3:02 AM, Enrique Llanos Vargas
ellan...@gmail.com wrote:
I
don't find a way to make it work with eap+tls:
I don't really want to use TLS, so if you help me to disable TLS, it'll be
fine for me.
You want to make it work with eap+tls, but you don't really want to
use
On Fri, Nov 18, 2011 at 6:20 PM, Duong Manh Truong
ngoahotanglon...@gmail.com wrote:
Hi,
Thanks for your reply :)
I have a better news that: By using OpenLDAP for FR Authen Authorization
= I can configure multiple passwords for each user (Uid)
and use 1 of those passwords for successfully
On Tue, Nov 15, 2011 at 4:00 PM, Duong Manh Truong
ngoahotanglon...@gmail.com wrote:
Hi all,
I have encounter with an issue and can not find the solution after several
days of thinking :(
I set up FreeRadius Mysql successfully, testing with some account ok,
but my real case: Lot of my users
On Wed, Nov 16, 2011 at 5:44 AM, Ski Mountain
ski_the_mount...@yahoo.com wrote:
Yes I have already edited the
freeradius/sites-available/default
Did you edit the right file? If you did, sql would show up on the
debug log. The correct file (based on your debug output) should be
On Wed, Nov 16, 2011 at 6:54 AM, jared r r spiegel j...@ice-nine.org wrote:
it seems like i want to use a fallback server in the home_server_pool,
where that fallback server would just 'ok' accounting or otherwise toss it
in the trash, but after a few iterations of trying to make this work
On Wed, Nov 16, 2011 at 11:37 AM, Angelica Delgado
angelicadel...@gmail.com wrote:
We want to configure eap-ttls with freeradius. Currently, we have
freeradius with ldap authentication. The ldap that we are using is Active
Directory. We want to know if there is good site that we can follow
On Wed, Nov 16, 2011 at 12:57 PM, Angelica Delgado
angelicadel...@gmail.com wrote:
We configured ldap module to connect to our Active Directory as a ldap
server. This is currently working. Do we need to change this configuration
in order to start using eap-ttls?
err ... no, but unless you
On Mon, Nov 14, 2011 at 4:55 PM, IT Support supp...@cetemmsa.com wrote:
Thanks
I will try it, but debian doesn't have the binary package with the
latest version and I do compile the sources.
Not really. You could use my Ubuntu ppa from
https://launchpad.net/~freeradius/+archive/stable
On Sat, Nov 12, 2011 at 7:49 PM, JennyBlunt jennyshoeh...@me.com wrote:
Thanks for the help, that's very useful. I can get the time in there now but
have a question about getting our access-period out.
In post-auth, I've tried this query to get the access-period out:
if (!
On Sat, Nov 12, 2011 at 2:43 AM, JennyBlunt jennyshoeh...@me.com wrote:
I'm looking at your query and am a bit lost as to what I should use for the
attributes.
Say I wanted 24 hour voucher - expires exactly 24 hours after first login. I
need to give the user some attribute in the db of 86400
On Sat, Nov 12, 2011 at 2:55 AM, Paul Heil paul.h...@gmail.com wrote:
Fri Nov 11 18:31:49 2011 : Error: /etc/freeradius/sites-enabled/
inner-tunnel[32]: Error binding to port for 127.0.0.1 port 18120
Can anybody suggest how to fix this issue?
(1) run it as root
(2) make sure nothing else
On Sat, Nov 12, 2011 at 5:51 AM, Paul Heil paul.h...@gmail.com wrote:
According to lsof, nothing is using port 1820. (netstat shows the same)
$lsof -i :1820
(shrug)
Something in your setup is broken then. The default debian/ubuntu
package should work just fine.
You can either try to
On Fri, Nov 11, 2011 at 8:29 AM, Gary Gatten ggat...@waddell.com wrote:
I agree with Jake, in that I *think* it would be possible to have a plugin or
whatever interface with LDAP/AD in the same manner ntlm_auth does. I don't
think one *needs* a cleartext password, but does need some way to
On Wed, Nov 9, 2011 at 6:42 PM, walter harms wha...@bfs.de wrote:
Can someone point me to a documentation that explains
how to setup that realms ?
raddb/proxy.conf That is the *only* place to configure realms, and it
is well documented.
i found:
http://linux.die.net/man/5/rlm_realm
On Thu, Nov 10, 2011 at 9:27 AM, Det Det det.explo...@yahoo.com wrote:
Hi,
Where do I put this piece of code? Can I do this invocation in the authorize
block? Or is it something I put in the radiusd.conf?
man unlang
Requests are processed through virtual servers (including the default
one),
On Wed, Nov 9, 2011 at 11:55 PM, walter harms wha...@bfs.de wrote:
What do you mean by realms should be equal? What is m2m?
equal = the realms will differ in names only, not in configuration
m2m = machine to machine - no user interaction
radius doesn't really care whether it's a no user
On Thu, Nov 10, 2011 at 10:37 AM, snan4love snan4l...@hotmail.com wrote:
First of all,i have to say sorry,i know this topic maybe not related to
FR.But I guess here is the best place to find out the answer.
No, it's not
Enviroment: Fedora 14 + 2 AP(set to WPA_PSK).
On the Fedora 14,i use
On Wed, Nov 9, 2011 at 5:11 AM, Erik heideb...@gmail.com wrote:
I've read in prior posts where you said that checkrad should
initiate regardless if the radutmp or mysql modules were used.
I really don't recommend using radutmp. And if you use sql, there's no
need to use checkrad. Simultanous
On Tue, Nov 8, 2011 at 5:47 AM, Gary T. Giesen gie...@snickers.org wrote:
I made the change to the configuration, watch the server go a little
nuts with writing SQL to the database, and then it stops, and I'm
still stuck with a detail.work file that's not getting processed...
As usual, if
On Sat, Nov 5, 2011 at 6:41 AM, Ivan Matala ivanmat...@gmail.com wrote:
freeradius runs if i use this
radiusd -x -f
In debug mode FR will run as the user that runs it (e.g. root).
In normal mode, if run as root, it will switch to the user specified
on radiusd.conf
On Fri, Nov 4, 2011 at
On Sat, Nov 5, 2011 at 1:58 PM, Ivan Matala ivanmat...@gmail.com wrote:
yes. i already set user = root
group = root
and i still get permission denied. tnx
Then look for other source of permission problems, e.g. selinux.
Really, there's a reason why the default setup does NOT run as root.
If
On Sat, Nov 5, 2011 at 6:01 PM, Ivan Matala ivanmat...@gmail.com wrote:
looks like i figured the problem. i think my freeradius has upograded
to version 2
(more advanced, yet its confusing. cant get pam auth to work)
by the way im using freeradius 1.6 (my favorite) .
is it hard to migrate
On Fri, Nov 4, 2011 at 8:20 PM, Arran Cudbard-Bell
a.cudba...@freeradius.org wrote:
On 4 Nov 2011, at 12:55, Miha Zoubek wrote:
Sorry for bothering you.
Is not radius client part of freeradius?
No, radclient is part of FreeRADIUS
@Arran: I think Miha is referring to
On Fri, Nov 4, 2011 at 7:50 PM, tonimanel
antoniofernan...@fabergames.com wrote:
Hi everybody,
Anybody can tell me something about this? I can't believe that if in
copy-acct-to-home-server file specifies That way, each server has the same
set of information, and can make the same decision
On Fri, Nov 4, 2011 at 8:53 PM, Miha Zoubek m...@softnet.si wrote:
Just curies do you maybe know if I can get radclient working with
freeswitch?
@Fajar I was trying to use with freeswitch as is written
on http://wiki.freeswitch.org/wiki/Mod_rad_auth.
But I am getting a few error s which I am
On Tue, Nov 1, 2011 at 12:42 PM, gary gary.y...@browan.com wrote:
I read freeradius how-to it recommand use only user name as authentication.
No it doesn't.
read as below:
If you're stripping all domain name elements from usernames via realms,
remember NOT to include the domain name elements
On Mon, Oct 31, 2011 at 3:11 PM, Sergio NNX sfhac...@hotmail.com wrote:
Ciao.
Just wondering if FR supports IPv6 addresses
Sure it does. If you want it to listen on both ipv4 and ipv6, just add
extra listen blocks
listen {
ipv6addr = ::
port = 0
type = auth
}
listen {
On Mon, Oct 31, 2011 at 5:23 PM, gary gary.y...@browan.com wrote:
Hi Fajar
I think the secondname field may be realm instead of.
First rule before asking anything: make SURE you know what you want.
When you're not even sure, how can others help you?
I am thinking this in case without proxy,
On Mon, Oct 31, 2011 at 11:19 PM, Sergio NNX sfhac...@hotmail.com wrote:
Cool, what can i do about it? I'm new to FR so I don't know how to implement
a rule or something like that. Can you provide an example or an url where I
can find more info?
Just edit them.
You could put everyting on one
On Mon, Oct 31, 2011 at 9:48 PM, andreapepa
andrea.p...@trentinonetwork.it wrote:
So...i've followed the instructions on this link.(
http://wiki.freeradius.org/Build#Building+Debian+packages )..but
compilation give me this error, libssl-dev is installed:
libtool: compile: gcc -g -O2 -O2
On Tue, Nov 1, 2011 at 9:07 AM, gary gary.y...@browan.com wrote:
From the login page,user can type his name and select pull-down option for
the realm and then send to FR server for authentication.
for example, gary@domain1 and gary@domain2 come from different company and
both in same
On Tue, Nov 1, 2011 at 10:25 AM, tohaikmeng tohaikm...@live.com wrote:
Is there anyway for me to retrieve the Client hostname as configured in
raddb/clients.conf shown in the example below.
client www.abc.com {
secret = password
}
Try %{Client-Shortname}
--
Fajar
-
List
On Sun, Oct 30, 2011 at 7:39 PM, JennyBlunt jennyshoeh...@me.com wrote:
How do I create a group which provides access for a preset amount of time,
for instance one day, week or month. I've tried by using expiration but
don't think thats right. Will the noreset parameter do this?
In our
On Sun, Oct 30, 2011 at 9:59 PM, JennyBlunt jennyshoeh...@me.com wrote:
that's what I was trying to get to - am happy to set an expiration upon first
login - just wanted to see if I could achieve the desired with the built in
functions etc.
You really need to make sure you know EXACTLY what
2011/10/31 gary gary.y...@browan.com:
Hi there
Is it possible to add check field in radcheck table?
Short answer: yes
Long answer: yes, but you need to have sufficient knowledge about how
FR works and how to design SQL queries. If you don't even know where
the queries are stored, then I
On Fri, Oct 28, 2011 at 1:18 PM, Andreas Rudat ru...@endstelle.de wrote:
Am 27.10.2011 22:57, schrieb Alan DeKok:
Andreas Rudat wrote:
if I connect to my radius server, I don't need my password anymore, also
if I restart radius or my workstation. But why?
The PC caches the credentials.
On Fri, Oct 28, 2011 at 1:46 PM, Andreas Rudat ru...@endstelle.de wrote:
sorry for that. I use 802.1x
802.1 wired? wireless?
and I'm wondering if I connect again
What do you mean by connect again? unplug the cable and plug it
again? Trun off the wireless adapter and turn it on again? Logout
On Thu, Oct 27, 2011 at 8:19 PM, Daniel Menezes lis...@dmnzs.com.br wrote:
Fajar,
I had radutmp and SQL commented out in account {}.
I don't know why, a possible mistake.
After mark radutmp and restart freeradius I don't see new errors in log.
So you mean radutmp was the root cause of your
On Fri, Oct 28, 2011 at 4:32 AM, Matthew Arguin
matt.arg...@currensee.com wrote:
Thanks Phil. question on that. in the deployment of ldap that we have in
place the users password attribute is 'userPassword'. looking at the ldap
attribute file and various online results, is the authentication
On Wed, Oct 26, 2011 at 3:07 PM, tonimanel
antoniofernan...@fabergames.com wrote:
Now, I don't have clear why configuring proxy.conf and implementing
copy-acct-to-home-server, accounting packets have different times(I know
that these are using different timestamp).
That's the way it is.
You
501 - 600 of 980 matches
Mail list logo
