Hi, Tbis is the answer to the first question. You need to use the command 'radiusd -X -f' (giving options is upto you) (If the shell says command not found, locate it using 'locate radiusd') Note: * You have to run from 'root'.
On Thu, 2003-12-18 at 10:20, [EMAIL PROTECTED] wrote: > Send Freeradius-Users mailing list submissions to > [EMAIL PROTECTED] > > To subscribe or unsubscribe via the World Wide Web, visit > http://lists.cistron.nl/mailman/listinfo/freeradius-users > or, via email, send a message with subject or body 'help' to > [EMAIL PROTECTED] > > You can reach the person managing the list at > [EMAIL PROTECTED] > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Freeradius-Users digest..." > > > Today's Topics: > > 1. Version 0.9.3 (Byron) > 2. Re: freeradius mysql simultaneous-use question URGENT (Soujanya Rao) > 3. RE: Version 0.9.3 (Justin Williams) > 4. RE: Sending accounting info to Oracle (Dourty, Brian R. (IATS)) > 5. Re: Version 0.9.3 (sudol) > 6. semaphore not initialized - Question on how to implement (David Watson) > 7. Undeliverable mail--"background" (postmaster) > 8. RE: Please help me (It is very Urgent) (Ripunjay Bararia) > 9. Re: Freeradius-Users digest, Vol 1 #2640 - 7 msgs (Shashidhara S Bapat) > > --__--__-- > > Message: 1 > From: "Byron" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Subject: Version 0.9.3 > Date: Wed, 17 Dec 2003 14:43:14 -0700 > Reply-To: [EMAIL PROTECTED] > > I am running on a Linux server, can anyone tell me how to start radius?? > What is the command?? My old one that I already tried is raddb -c -s no > luck.. > > Thank You > Byron > Next~Quest 2000 > "Your Home Town Internet Access Provider" > For all your Web Needs. > Web Hosting --- Web Design --- Dedicated Service > Co Location --- Networking --- Computer Upgrades > New Computers > http://www.whitemtns.com > http://www.nextquest2000.com > (928) 537-8049 > 1-800-447-9158 > IM: byronwhitemtns > Yahoo IM: rott4411 > > > > --__--__-- > > Message: 2 > Date: Wed, 17 Dec 2003 13:50:56 -0800 (PST) > From: Soujanya Rao <[EMAIL PROTECTED]> > Subject: Re: freeradius mysql simultaneous-use question URGENT > To: [EMAIL PROTECTED] > Reply-To: [EMAIL PROTECTED] > > --0-1860740659-1071697856=:26277 > Content-Type: text/plain; charset=us-ascii > > 'sql' is listed in the accounting section. Anyway I figured out that I was testing > it incorrectly using NTRadping for I was testing for double logins by using > Accounting (start/stop) as the Request type instead of using Authentication Request > as the request type. I have successfully tested it and it works well now :) Thanks! > Soujanya > > From: "Alan DeKok" <[EMAIL PROTECTED]> > > To: [EMAIL PROTECTED] > > Subject: Re: freeradius mysql simultaneous-use question URGENT=20 > > Date: Tue, 16 Dec 2003 16:33:11 -0500 > > Reply-To: [EMAIL PROTECTED] > >=20 > > Soujanya Rao <[EMAIL PROTECTED]> wrote: > > > Can anyone tell me where I am going wrong? This is urgent and I am > > > clueless as to what else needs to be done.=20 > >=20 > > Ensure that 'sql' is listed in the 'accounting' section. > >=20 > > Run: radiusd -X > >=20 > > Alan DeKok. > > > > --------------------------------- > Do you Yahoo!? > New Yahoo! Photos - easier uploading and sharing > --0-1860740659-1071697856=:26277 > Content-Type: text/html; charset=us-ascii > > <DIV>'sql' is listed in the accounting section. Anyway I figured out that I was > testing it incorrectly using NTRadping for I was testing for double logins by using > Accounting (start/stop) as the Request type instead of using Authentication > Request as the request type. I have successfully tested it and it works well now :) > Thanks!</DIV> > <DIV>Soujanya</DIV> > <DIV> </DIV> > <DIV>From: "Alan DeKok" <<A href="http://us.f206.mail.yahoo.com/ym/[EMAIL > PROTECTED]&YY=26465&order=down&sort=date&pos=0&view=a&head=b">[EMAIL > PROTECTED]</A>><BR>> To: <A href="http://us.f206.mail.yahoo.com/ym/[EMAIL > PROTECTED]&YY=26465&order=down&sort=date&pos=0&view=a&head=b"><FONT > color=#0000ff>[EMAIL PROTECTED]</FONT></A><BR>> Subject: Re: freeradius mysql > simultaneous-use question URGENT=20<BR>> Date: Tue, 16 Dec 2003 16:33:11 > -0500<BR>> Reply-To: <A href="http://us.f206.mail.yahoo.com/ym/[EMAIL > PROTECTED]&YY=26465&order=down&sort=date&pos=0&view=a&head=b"><FONT > color=#0000ff>[EMAIL PROTECTED]</FONT></A><BR>>=20<BR>> Soujanya Rao <<A > href="http://us.f206.mail.yahoo.com/ym/[EMAIL > PROTECTED]&YY=26465&order=down&sort=date&pos=0&view=a&head=b">[EMAIL > PROTECTED]</A>> wrote:<BR>> > Can anyone tell me where I am going wrong? > This is urgent and I am<BR>> > clueless as to what else needs to be > done.=20<BR>>=20<BR>> Ensure that 'sql' is listed in the > 'accounting' section.<BR>>=20<BR>> Run: radiusd > -X<BR>>=20<BR>> Alan DeKok.<BR></DIV><p><hr SIZE=1> > Do you Yahoo!?<br> > <a > href="http://pa.yahoo.com/*http://us.rd.yahoo.com/evt=21260/*http://photos.yahoo.com";>New > Yahoo! Photos - easier uploading and sharing</a> > --0-1860740659-1071697856=:26277-- > > > --__--__-- > > Message: 3 > From: "Justin Williams" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Subject: RE: Version 0.9.3 > Date: Wed, 17 Dec 2003 16:54:24 -0500 > Reply-To: [EMAIL PROTECTED] > > radiusd > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Byron > Sent: Wednesday, December 17, 2003 4:43 PM > To: [EMAIL PROTECTED] > Subject: Version 0.9.3 > > > I am running on a Linux server, can anyone tell me how to start radius?? > What is the command?? My old one that I already tried is raddb -c -s no > luck.. > > Thank You > Byron > Next~Quest 2000 > "Your Home Town Internet Access Provider" > For all your Web Needs. > Web Hosting --- Web Design --- Dedicated Service > Co Location --- Networking --- Computer Upgrades > New Computers > http://www.whitemtns.com > http://www.nextquest2000.com > (928) 537-8049 > 1-800-447-9158 > IM: byronwhitemtns > Yahoo IM: rott4411 > > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > > > --__--__-- > > Message: 4 > Subject: RE: Sending accounting info to Oracle > Date: Wed, 17 Dec 2003 15:55:32 -0600 > From: "Dourty, Brian R. \(IATS\)" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > > I've found a way to test the accounting portion and just wanted to post > it here. > > echo "User-name=3D xxxx, NAS-Port-Id =3D 1, Acct-Session-Id =3D 10000, > Acct-Status-Type =3D 1, Password =3D xxxxxx" | radclient hostname acct > sharedsecret > > Acct-Status-Type =3D 1 starts the accounting. Nas-Port-Id is an = > arbitrary > number, as is Acct-Session-Id. > > echo "User-name=3D xxxx, NAS-Port-Id =3D 1, Acct-Session-Id =3D 10000, > Acct-Status-Type =3D 2, Password =3D xxxxxx" | radclient hostname acct > sharedsecret > > Acct-Status-Type =3D 1 stops the accounting. > > And yes...It works! We have freeradius-0.9.3 working on RHEL 3.0 using > RH's freeradius RPM and sending accounting info to Oracle. > Authentication happens via pam. We had to build the rlm_sql_oracle > driver from the freeradius-0.9.3.src.rpm because redhat didn't include > it or the mysql, postgresql, or unixodbc drivers in their rpm. This > involved modifiy the spec file and of course, installing the oracle > client.=20 > > Brian Dourty > > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Dourty, > Brian R. (IATS) > Sent: Wednesday, December 17, 2003 2:49 PM > To: [EMAIL PROTECTED] > Subject: RE: Sending accounting info to Oracle > > Oliver, > > Thanks for your reply. That makes sense now. Since I'm using the radtest > utility to do my testing and not our actual NAS I won't see any > accounting info. Duh... I used the radclient utility to send an acct > request and I see in interacting with the accounting module now. Guess > its time to point our NAS at it for some real testing. Sorry to waste > your time.=20 > > Thanks again, > > Brian D.=20 > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Oliver > Graf > Sent: Wednesday, December 17, 2003 2:27 PM > To: [EMAIL PROTECTED] > Subject: Re: Sending accounting info to Oracle > > On Wed, Dec 17, 2003 at 01:45:55PM -0600, Dourty, Brian R. (IATS) wrote: > > Shouldn't I see a call to the accounting module that tries to dump=20 > > accounting info to oracle? > > Why? You only show us Access-Requests in your debug output. Where are > the Accounting-Requests radiusd should log? Did you configure your NAS > to send them? > > Oliver. > > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html > > > > > --__--__-- > > Message: 5 > Date: Wed, 17 Dec 2003 16:51:48 -0600 (CST) > From: sudol <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Re: Version 0.9.3 > Reply-To: [EMAIL PROTECTED] > > On Wed, 17 Dec 2003, Byron wrote: > > > I am running on a Linux server, can anyone tell me how to start radius?? > > What is the command?? My old one that I already tried is raddb -c -s no > > luck.. > > > > Thank You > > Byron > > Next~Quest 2000 > > "Your Home Town Internet Access Provider" > > For all your Web Needs. > > Web Hosting --- Web Design --- Dedicated Service > > Co Location --- Networking --- Computer Upgrades > > New Computers > > http://www.whitemtns.com > > http://www.nextquest2000.com > > (928) 537-8049 > > 1-800-447-9158 > > IM: byronwhitemtns > > Yahoo IM: rott4411 > > > > > > - > > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > > > > > Here is how I start radius on my redhat 9.0 box > > /etc/rc.d/init.d/radiusd start > > Hope this helps. > > !BrianSudol > > > > --__--__-- > > Message: 6 > To: [EMAIL PROTECTED] > From: David Watson <[EMAIL PROTECTED]> > Subject: semaphore not initialized - Question on how to implement > Date: Wed, 17 Dec 2003 19:04:28 -0800 > Reply-To: [EMAIL PROTECTED] > > I'm trying to run freeradius on an OS X machine and I have been reading > threads relating to issues people have had over the years when > receiving a message saying: > > ERROR: Failed to initialize semaphore: Function not implemented > > Running radiusd -X works fine on OS X but doing rc.radiusd start or > just radiusd gives the error. I'm guessing that the -X parameter gives > realtime logging information probably doesn't use semaphores as it may > only be a single thread. > > I have downloaded the BSD code for semaphores and copied libsem.a and > the associated .h, .c and .o files to the /src/main directory. I've > gone into the Makefile and edited the libs line to look like this as > per the message at > http://www.mail-archive.com/[EMAIL PROTECTED]/ > msg04260.html (I think there was a typo in the original message and I > interpreted it to really be this). > > LIBS += -lradius $(SNMP_LIBS) libsem.a > > Implementing this change or the alternate one suggested on the above > link has not changed the situation. > > I am not an expert with linking libraries. OS X with developer tools > does have a semaphore.h file located in /usr/include. I would guess > that there may be a dynamic library somewhere in the OS. Could this be > conflicting with the BSD implementation I downloaded? What is the > process to get this to link properly? > > Dave Watson > > > > --__--__-- > > Message: 7 > Date: Wed, 17 Dec 2003 22:18:08 -0500 (EST) > From: postmaster <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > Subject: Undeliverable mail--"background" > Reply-To: [EMAIL PROTECTED] > > > > --Z03c7vi9hk0IkE40FB008og > Content-Type: text/html; > Content-Transfer-Encoding: quoted-printable > > <HTML>ALERT!<BR><BR>This e-mail, in its original form, contained one or more > attached files that were infected with a virus, worm, or other type of security > threat. This e-mail was sent from a Road Runner IP address. As part of our > continuing initiative to stop the spread of malicious viruses, Road Runner scans all > outbound e-mail attachments. If a virus, worm, or other security threat is found, > Road Runner cleans or deletes the infected attachments as necessary, but continues > to send the original message content to the recipient. Further information on this > initiative can be found at http://help.rr.com/faqs/e_mgsp.html.<BR><BR>Please be > advised that Road Runner does not contact the original sender of the e-mail as part > of the scanning process. Road Runner recommends that if the sender is known to you, > you contact them directly and advise them of their issue. If you do not know the > sender, we advise you to forward this message in its entirety (including full > headers) to the ! > Road Runner Abuse Department, at [EMAIL PROTECTED] > > <HEAD></HEAD><BODY> > > <FONT>The following mail can't be sent to [EMAIL PROTECTED]:<br> > <br> > From: [EMAIL PROTECTED]<br> > To: [EMAIL PROTECTED]<br> > Subject: background<br> > The attachment is the original mail</FONT></BODY></HTML> > > --Z03c7vi9hk0IkE40FB008og > Content-Type: text/plain; > name="DELETED0.TXT" > Content-Transfer-Encoding: base64 > Content-ID: <C42x8P3zd2M1> > > ZmlsZSBhdHRhY2htZW50OiBocmVmLnNjcg0KDQpUaGlzIGUtbWFpbCBpbiBpdHMgb3JpZ2lu > YWwgZm9ybSBjb250YWluZWQgb25lIG9yIG1vcmUgYXR0YWNoZWQgZmlsZXMgdGhhdCB3ZXJl > IGluZmVjdGVkIHdpdGggdGhlIFczMi5LbGV6LkhAbW0gdmlydXMgb3Igd29ybS4gVGhleSBo > YXZlIGJlZW4gcmVtb3ZlZC4NCkZvciBtb3JlIGluZm9ybWF0aW9uIG9uIFJvYWQgUnVubmVy > J3MgdmlydXMgZmlsdGVyaW5nIGluaXRpYXRpdmUsIHZpc2l0IG91ciBIZWxwICYgTWVtYmVy > IFNlcnZpY2VzIHBhZ2VzIGF0IGh0dHA6Ly9oZWxwLnJyLmNvbSwgb3IgdGhlIHZpcnVzIGZp > bHRlcmluZyBpbmZvcm1hdGlvbiBwYWdlIGRpcmVjdGx5IGF0IGh0dHA6Ly9oZWxwLnJyLmNv > bS9mYXFzL2VfbWdzcC5odG1sLiANCg== > --Z03c7vi9hk0IkE40FB008og > > Content-Type: application/octet-stream; > name=prodImage[72].jpg > Content-Transfer-Encoding: base64 > Content-ID: <C42x8P3zd2M1> > > /9j/4AAQSkZJRgABAQEASABIAAD/2wBDAAUDBAQEAwUEBAQFBQUGBwwIBwcHBw8LCwkMEQ8S > EhEPERETFhwXExQaFRERGCEYGh0dHx8fExciJCIeJBweHx7/2wBDAQUFBQcGBw4ICA4eFBEU > Hh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh4eHh7/wAAR > CAC8AJ0DASIAAhEBAxEB/8QAHAABAAMBAQEBAQAAAAAAAAAAAAUGBwQCAwEI/8QAPRAAAgED > AgMFBQcBBwUBAAAAAQIDAAQRBRIGITEHEyJBUWFxgZGhFDJCUrHB0SMVM4KSwuHwFmJy0uLx > /8QAGgEBAAMBAQEAAAAAAAAAAAAAAAECBAMFBv/EACsRAAICAQQBAgUEAwAAAAAAAAABAhED > BBIhMUFR8DNhcdHhEyIjkYGx8f/aAAwDAQACEQMRAD8A/sulKUApSlAKUpQClK/CaA/aiOIt > dtNFWI3KyMZchAo5HHt+NOIuJNG0Cze51S+jgVRnbnLt7lHM1Q9T14cXC2nhtZYLXuy0Ikxv > JJ6keXQcqrKVItslW6uCxHjeMcxp0pX13/7VY9E1CLVNOhvoQVWQE7T1HPFZs8Oy1fI8W2vn > wzxuvDU1nputiOLTbmZo4bjGDE55gN6gnPPyqkZ88iMXJ0jW6V8ra5huYVmt5EliYZV0YEH4 > ivqOddSopSlAKUpQClKUApSlAKUpQClK/G99ARnEWvafoVo1zfzbAFLBQMkgVi3EXaxr+pXM > 8OlW402zAVEZ1zK7M2Bz8hj41YuLL+PVNcvpWxNDbKQi+RwcAfMGqXBpkdqkonHeiW7Z5Ruz > uXYCPdiqNvpHo6XFjSuatnrVtEuruS5nW/DTRIBl13mRyMkkk/L0q48PwPBpVqMqrKg5Yzg+ > lVHRbeSxs7QPPM8c0r3Ds7btqAHAPn6VddGmFzpsMwxhs4+BI/aqTtqyuqctqi/B1vmRSDjJ > GM1U+OdGXU7K3hldVjSQnl6kYH81bcYqF4hRnCYHJBu+ORiqJ00Z9O3HImiA0jU9f4Xa3Nnd > ZEmUkiU5iYry3YPQn2VeeHe0qa6Nst/pRRJdweWJs7GBx0PXPvqgXz95qFpZruYx6kS4X8u3 > PP2c6lrIQxRvbHrlypHqDmu0pNGzKoTjbXP/AE2y0uYrq3S4t5FeJxlWHnX2qi9lV7K8V5ZS > SFlXbNHk9AwwR8x9avVXTs82S2uhSlKEClKUApSlAKUpQCuHXrtbDRr2+c4W3t3lP+FSf2ru > qqdrdz9m4A1QZwZou5Ht3cqFoLdJIybhWV7jTLwSZM6SRK3tbAZv1NRvEE7xTylHZ1dpN6qf > u/0zt/SvOn6kNOuXldSy3NxnIHIOqAY+PKuCy1EX6ymdcd7Ic+zK5/cfKojTPYcJQm5I7NNu > 5nt5U06JhLZrHazxufvbueQPd+lXHhDV7KXTlgd47ZxK6ojEAHxHp9apcsJtNRguRN3Us18g > nJPhkjI8B+B/WpbhaEremNokkj72dJVJ3blD8mHtxzzUTjZ1zY4ZMbv/AB9jQpFCgbiBnp7a > q2tXTR29zdsSQtvI/d+YA6Yr7XMC2OnhZ7maeyjbvIpd+GiIOQpx1FVO8mnu47eW6Z4YZdPn > aNsYBI6A+32VSMH6GbT6aCblutHvTm2X0147EtPIkyE/l2dPpXdoUplvlkdnKxSAc+hLcifr > UFNdobVY84ljiijlX0k2fwRUzoTOIpGZSjMivg11miJrl19C+dnci2/FjW28Ze2ddoPowNaZ > WPcIXEidotmFBZCsiOwPIEgYH0rYarB2jBnjtl9RSlKscRSlKAUpSgFKUoBWf9uFyE4fsrTP > O5u0XHngHnWgGs77VVE2r6RGTkRh3x7yP4odMVKabMyvtKaLTo5lB3fa5HIP/jgfpXBpmiyP > w/p+qLuijuZ5OQHUjGP1HyNW/WmVbKIODkyM2PLpU9quiPD2SaU8C7JLRVmcAZwHzu5f4gfh > UKj0Z6htc+SjtbKLQRXMW9TyVT1X1Ue48xUfw7q01pc3NrcOokil7yCQ5G9TyINWWBVnYNco > Nu5FZW8mxncPhUBxBbm/ju0UL3ZmKpOTjCjGfjyNSnwatOlJbJdMsWoXdtNGkz5WHcsksLDl > uUg8vXnUHfXGbOBI7X7xK2rPyVTnJ9vXqeXTlXvT0kt7G3BlZtrt1OcRjngk+fTnXZrVpDHD > eapbssgazJtsjIgJznFWuiicYOirabazSzO8pzlygc9ZHP3nPvOAPYK0LiPTxZcT/YxhQ9jE > wx7FCn6rVM4YvJb7i230657tTFPBGoUYDocEN789a07tWjjtuIdMvcYMsEkXv24NUdtUzhl4 > y0vPJEaAxi4100sM75FCkeuDnPyrY6xbTpF/tzS5RyZZYmz7zj962moiqMGZ2xSlKscRSlKA > UpSgFKUoAazbtJJk4jhUNju7cH9a0g9Kyfji4EvaBd2hJAisA5I9uAP3odcSuRXdS2zRqTOx > b7xUHkBWq8SOlv2ez5wFFmqj4gAfrWM6qjJqJVSSZO5iI9p5VrvaLmLhGKzC7hLLFE3sA8X+ > mqw6NeeNOHPD/BksOoS3V7avbozRgSE8vvbRtB+lekeGLRIrERd6ZlaTHnu5k/PNdMOlTW0I > uowUkitWBRT97LZrzf8Ac28NjHvCGa33AnkQRgke/rU1bo9FShtSj77IywkhEEsEMciEMfvt > 4jt5kn44FdNnczzWXczQSRLOjRNG/kTnzqvXN4dOvTIE+0NOBPK4/KOSoPaTirtpoW9tmEaF > biN1Mit58gTikqXJE1su1afNkNDpi2HFOhXiMN0d1AC/TehOMH4gfKtL7abbvrPR5MkFbtl5 > ejRN/FZ9xHlIe6Q7mik7yI+e5SH2/Q1pvG8kepcG6ffp4lMsUw+Kn+ataZgyOSlGbM8RZUkt > Zo3wUSNun5WBreE5gH1FYguSmxNu5YiMZ59a223bdDGw6FQfpVU7M+pvcrPpSlKkzClKUApS > lAKUpQA9KyHji6s7Tju/afwvLbwpuPQ5yAK11ulY12n2kV7xNeEy7AEjDH0AOarNWjRpfiUz > l06yXVOMbC3MRKC8R290fi/arn2vXv2fTbSAOEMjsckgYOMDr7TVf7E1k1LU7nUpEbZbx7Vd > hjczH/1A+ddnaTImo8SraMqyx2cIJQ9NxIOfgMVL+Rokks8Yy6RXEv7mS2lDKFuIYwEJ+7IM > cwarfEMg12WNsd3CoDKyn+7mU8s+w9KttxZF4bpWYJG21o3UdDVe1Gxmea5ywkSVVWaIdcAn > xCrxdm/E8akq99EREss72Yey7lIBvkU88ydEUezzq1aWO7zAJCsyIp3eRx5VBxb11G3QS99b > QR/0yfvO55DPur3e3Fzp63sroJI1jBV1Piz5ijVqmXyJzlS98k/r7wQRS3TKhAkjEo8wTyB+ > tWHRb1b7seB5k2kndt6qA4/ZhVKvLcXtnNcXzZXvkO1Wx4FAOTU32QmW54P4j0t8MSvfRgD1 > BH+kVXpGHNBfpqV9NH1ae0jtmAaINnGSwzg/rWvaY27T7Y56xL+grEntI7vSopVjWRiCu/HR > lrb7BQlnAg5hY1H0rnC+bM2qjFJNM+9KUroZBSlKAUpSgFKUPSgIrirUxpeh3F1kCQLtjz+Y > 9KwQW15DeSSXN9NJ35+0XAnbOI18vPGTk1tXHmkXms2EFva7SqOXcFsE8uWKyDXLDUtK1Jf7 > Y025ie7OJZzziRB+EHpz9KsnR6ehjFp88l+7HtSjksNRZ4xAJWF0iE8wmNvP/KPnVUmvJNRv > brUowWLzF+ZwSN3T5V1cJTGz4V4j1tGEi3AS2tgnVFPh+XPNVPS7yeDSij4EgYjkc55jIFVk > k0zrHB/NJru0XB2Pczu+DCy5x6VUY76O9uxfWzuFBKxv5N6qR76l769aeC+S2bDCJQVPLHKo > G0xZwRIIe9WaDvZ4gPENx+8PdUx9DRCGxW+/wdFgwuNXlmWPupFGzuj+fzb3YxXdKI50vLdu > cZQAMfzY51C6GxaZu5ujPLLySXPNIx5n2+XwqXjmEsF33sfdKdqx8+ZGSAfjzqzb7IyxqX9E > ZqusLZzQ20H9SUu2+HHNgBjPw6/CrP2CXBTXZYpW3C6gOM+ZwG/mqhbWKXF9fTWwZrsW7Mty > 45AFjlB/zzqycM3Q0zVrG6jiEbW4D7ByBG3aR8jUPyVzwTw7EuT6cZC+0q71eysZlSKLfPEC > MkEE/tWt8Aai2qcH6VeuytI9sgkKnI3AYP1FZFxPqNreRzXMl1F3lzBnkwySTzFWrsAuJbbT > L/QLi5hma2naaHu/JHYnHw5dPWq15MmpSliXFNGo0pSh5opSlAKUpQClKUAwPSubUrG01Czk > s722juLeQYeORcqR7q6aUHRl3HWkadw3oVrpGkxPDDc3nfuhctgKByGfLpyrPYIEuJZ7eUGM > iV3iPrzXmK0Xtdcvq8CpgvDa7gD/ANzf/NZHDqV5bXE9pdZkt2uHeGTPNcgHbn0on4PZ0UJT > imuy53UCyLcyQoiXAiw4x97l1qC0pbu4urmPUTGrW7KsEsQxjl0Ps54qUhujNqcsRkxIka5B > 6YNebbu0kuXQ7zJ43Q8yUJxkD2V0S5LS3L9r+RXtMMdrqF74TB/UJumxhVA8lPtOal7WZpln > Zh/ebPCPwLk4HvqvAsLi8jlkMljE/fBiMmU/hT28+VTUKfZTbI8mbiQ7rg+RbqV+FQuTXqIJ > K3379/0d/DCR/Yr+NyDHhVG3qhPOvlc/bIdTumtpMSWwQpgZL4w2PkMV8NDeOC5v5YXyZZok > eMn73IfXnXTcM8fERMIEqFWIXPPIA/mqsyyTb9/I3vTEtJLKG4ht4UE0av4UAzkZrqWONWLL > GqsepA51FcHyd5wzp5/LCE/y8v2qXqDxJKnQpSlCBSlKAUpSgFKUoBQ0r8NAZV2kg3XFM8Ct > jdAsefTln/VWaa/bTQYwEMPepHJy5qSuFYfHlWicYOlzxPeg58Mu3I8sD/aqncW5NncvN0Gw > qpOeSvn9askme1opuFHZ9i7qQzbd0ohGHHVqrOpTXv8A1D9niZLaSKMG3dj4XYAbkb3gg1b5 > 58xLEMYMQ2t6VFX+nWuoLI08SyKSCx/FGwAAYenSp4bLYsji7kio2n2yfVJbiVB3ZmVhHtxt > mPIL7hjNWu92W/dRr444kcmTzZ8dag47S8sgRJdJJm4iWFs5Lgnm/vAzUtrEsMK2xBKwSkRQ > qPxE/wDBUI16uSlSXR7jsCsxniz3ouBIqdN20Dl9K/NJ1GHUnnl2PbTyTNGI2GCGG3P6VL2j > I1pE2ThpXII9ef8AFQM8YttTsrxj3caGaQrjmXPIZ+dUqmzLbml6rj/f2Nz7P3zoWwtnbK3y > POrJVG7IZpJNGuVkBG2bln0xyq80TtHjZouORpilKVJzFKUoBSlKAUpSgFeXr1XiY7ULeQGa > AwjiDUSNbvHDFlkvTtJ8hvK/sai725Mhkt4gf7iXB8twPSuXipy19NglQYxLn272OfrXwt5T > Jqissw7oGWMR9Scrndj0zmpjwqPo8eJKEZ/Um7V+/sbaflmWMIB6E9f3r8SQPOywMN6OwZW6 > SKPT5VGaDLI+j2yR5M8LNGFI9W6/LNdlpfaabhbITp9pRsgeYJ6//lQ1xaOW1q/Jy3MMEYmm > nJjV2KpH5xry3n5cvjXz1ydrqHTY2URytcJJEmOiKC2fYTiverNGmoJLdzb4ZMo6j8oxj/Mf > 0rl1NHa8F0HeSRHO8noCFPhHuHX2mrXwapQ3KLfv5ff8k1ok6Lpdo8xGwh3Yn8Jyai9SvY7i > 50yF1bMjjBI5HJPn8K/La3Wd4JwJIoZLL+qh+7uPTI8q57K1jbWbVd5eOC3R0D9Q3PB+pqtH > Haoty8m1dksiPZXmzP3xnPxFXqs67I90Ml1btjLQxuef4gSD+taLQ8PP8R0KUpQ4ilKUApSl > AKUpQCuLXpxbaNeTk42QOR78Gu2oviixuNS0iWztpBG0mASR1GeYoSu+TBNeli+123hDRzxP > BnH4vw160KE2+kRTzJ47eQBuXlnafpVg1zs34mvWAtUto4oZxLEGlAYkD1GQOdWLhvs+vCjr > rs0YgkXDQwuSxPqW5Y+FTZ689TjWJRiyj2MSQG6SLxYd2QflU+dVWe1MUjyxr3Virnv52Pil > fPPb54/it+m7POF5JjKLS4jJxuEdzIA2PXnWadr1hDovEFvb2MCQ20sY7uIDChj1P0pfqdNF > qVLLtXn1KlHbyXl9bpD3klq5R2c9UwcLn08/nUwkaTukMK+EyzA4HIcsDNfGWwWF9LZWk3Ry > CVwGxuAIJBA/MARWt23ZzoUapJp81xDE5aQAvvzu59T76J12NVqoRdLx0UK3iWGIlo1KLbgN > k8jURqlvHDOl3jaAIw2Bnw5Na4OAbHuJInvbh94wTgDl6VzXXZxZTM5Go3CBtoA2A7ce+oTM > kNVFO2yudi+sxXvEN5bYKOiSBVIIJXcpBrXqpPD/AAHDo3E8Ot2987MkLQyKyAd4pxjp5ggV > dqGXUShKbcOhSlKHAUpSgFKUoBSlKAUpSgFKUoBVD7V+F7/iKTTZbCBJWtS5ZWcLknGOvkMZ > q+V+GhfHkeOSlHswU8K8UaXeRm+sJbhrg+OWL+oAcjw8ugxnma2rhtJ49Dso7lGSVIVVlPUY > HnXf51+gc6F82d5nclyftKUocRSlKAUpSgFKUoD/2T== > --Z03c7vi9hk0IkE40FB008og-- > > > --__--__-- > > Message: 8 > From: "Ripunjay Bararia" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Subject: RE: Please help me (It is very Urgent) > Date: Thu, 18 Dec 2003 09:55:32 +0530 > Reply-To: [EMAIL PROTECTED] > > hi, > Try using Auth-Type := LOCAL, and make a normal user in your Linux machine > and then use that password to login to the server > > Ripunjay > > > > > -----Original Message----- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] Behalf Of Shashidhara > > S Bapat > > Sent: Wednesday, December 17, 2003 12:43 PM > > To: Free Radius Mailing group > > Subject: Please help me (It is very Urgent) > > > > > > Hello All, > > I am a new user to this mailing list. I am using Radius server to see > > how does it authenticate. > > I am running freeradius on Linux machine and it is connected to a AP600 > > (Access Point) through which users are connected. Users are running on > > Windows 2000 Professional. Following are the configuration I have done: > > > > file - "clients.conf": > > # 192.168.100.7 is the IP address of my Access Point (wireless) (AP600) > > # which supports RADIUS. > > 192.168.100.7/24 { > > secret = abcde > > shortname = AP-600LAB > > } > > > > file - "users": > > # TECH4 is the name of the wireless client (machine name) which is > > # running on Windows. > > TECH4 Auth-Type := EAP, User-Password == "password" > > Reply-Message = "Hello, %u" > > > > > > I think the problem is with the 'user' part. I dont know which > > 'Auth-Type' I have to use. Please help me in my settings. > > Please let me know what modifications I have to do to make it working. > > > > FYI: The 'radtest' is working fine. > > > > -- > > =-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-= > > --Best Regards, > > Shashi. > > =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= > > > > > > - > > List info/subscribe/unsubscribe? See > > http://www.freeradius.org/list/users.html > > > > > > --__--__-- > > Message: 9 > Subject: Re: Freeradius-Users digest, Vol 1 #2640 - 7 msgs > From: Shashidhara S Bapat <[EMAIL PROTECTED]> > To: Free Radius Mailing group <[EMAIL PROTECTED]> > Organization: Envision Network Technologies Private ltd > Date: 18 Dec 2003 10:20:57 +0530 > Reply-To: [EMAIL PROTECTED] > > Hi All, > Thanks for the reply. I have setup EAP. Even then It was not working. > > > > On Wed, 2003-12-17 at 19:00, [EMAIL PROTECTED] > wrote: > > Send Freeradius-Users mailing list submissions to > > [EMAIL PROTECTED] > > > > To subscribe or unsubscribe via the World Wide Web, visit > > http://lists.cistron.nl/mailman/listinfo/freeradius-users > > or, via email, send a message with subject or body 'help' to > > [EMAIL PROTECTED] > > > > You can reach the person managing the list at > > [EMAIL PROTECTED] > > > > When replying, please edit your Subject line so it is more specific > > than "Re: Contents of Freeradius-Users digest..." > > > > > > Today's Topics: > > > > 1. RE: There are no DB handles to use! skipped 0, tried to connect 0 (Ripunjay > > Bararia) > > 2. Please help me (It is very Urgent) (Shashidhara S Bapat) > > 3. Re: PEAP problem - HELP PLEASE ([EMAIL PROTECTED]) > > 4. Problem with rlm_ippool & PW_STATUS_ACCOUNTING_ON/OFF (suxiang) > > 5. migrate PAP to CHAP for LDAP (Rohaizam Abu Bakar) > > 6. Re: Please help me (It is very Urgent) (Julius Igugu) > > 7. CVP3000 VSA Dictionary (Spetzler, Arne (DZ-SH)) > > > > -- __--__-- > > > > Message: 1 > > From: "Ripunjay Bararia" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Subject: RE: There are no DB handles to use! skipped 0, tried to connect 0 > > Date: Wed, 17 Dec 2003 11:53:39 +0530 > > Reply-To: [EMAIL PROTECTED] > > > > hi, > > thanks for the great feedback, > > > > now all tables are InnoDB > > everything was working fine, till I upgraded to the latest CVS src of > > 16-Dec-2003, and ran ground.... > > just to check > > now the radius keeps on dying on me.. have not been able to check it out but > > > > some of the interesting thing that I found in radiusd.log > > > > Wed Dec 17 01:29:50 2003 : Error: Dropping conflicting packet from client > > XXXXXXXXX:52730 - ID: 234 due to unfinished request 76121 > > > > above message repeating about 40-50 times and then the radiusd died > > > > now I have downgraded to 0.9.3 and trying to find out if the problem still > > exists > > no changes were done in any configuration files > > > > Ripunjay > > > > > -----Original Message----- > > > From: [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED] Behalf Of Kostas > > > Kalevras > > > Sent: Tuesday, December 16, 2003 1:53 AM > > > To: [EMAIL PROTECTED] > > > Subject: RE: There are no DB handles to use! skipped 0, tried to connect > > > 0 > > > > > > > > > On Tue, 16 Dec 2003, Ripunjay Bararia wrote: > > > > > > > thanks Alan, for the comment, > > > > > > > > My SQL server and FR are running on the same box, > > > > will separating them be a good idea, > > > > I need to do AAA for about 1500 concurrent users > > > > what kind of a machine would I need for FR > > > > and how much load will it put on the MySQL server > > > > so that I can scale both of the machines accordingly > > > > > > > > currently both are running on > > > > > > > > P-IV 2.6 > > > > Intel 856 based board > > > > 512MB DDR 266Mhz > > > > 9.1GB X 2 SCSI disks > > > > > > The hardware is more than adequate. And there's no need to separate them. > > > > > > Read doc/tuning_guide and especially the section on the sql module. > > > In general for mysql EXPLAIN SELECT is your friend. Run all the > > > SELECT queries > > > (and also transform all the UPDATE queries to corresponding > > > SELECT queries) > > > through an EXPLAIN SELECT statement to see how many candidate > > > rows are there. > > > Example outputs: > > > > > > mysql> explain select * from radacct where acctstoptime is null; > > > +---------+------+---------------+--------------+---------+------- > > > +------+-------------+ > > > | table | type | possible_keys | key | key_len | ref > > > | rows | Extra > > > | > > > +---------+------+---------------+--------------+---------+------- > > > +------+-------------+ > > > | radacct | ref | AcctStopTime | AcctStopTime | 8 | const > > > | 315 | Using > > > > > > ^^^^^^^^^^^^^ > > > where | > > > +---------+------+---------------+--------------+---------+------- > > > +------+-------------+ > > > 1 row in set (0.02 sec) > > > > > > mysql> explain select * from radacct where acctstoptime = > > > '2003-12-15 21:00:00'; > > > +---------+------+---------------+--------------+---------+------- > > > +------+-------------+ > > > | table | type | possible_keys | key | key_len | ref > > > | rows | Extra > > > | > > > +---------+------+---------------+--------------+---------+------- > > > +------+-------------+ > > > | radacct | ref | AcctStopTime | AcctStopTime | 8 | const > > > | 1 | Using > > > > > > ^^^^^^^^^^^^^ > > > where | > > > +---------+------+---------------+--------------+---------+------- > > > +------+-------------+ > > > > > > > > > The rows and possible_keys columns are important. If you see that > > > the candidate > > > rows are more than a few, or that an index is never used (for example: > > > > > > mysql> explain select * from radacct where acctterminatecause = > > > 'User-Request'; > > > +---------+------+---------------+------+---------+------+-------- > > > +-------------+ > > > | table | type | possible_keys | key | key_len | ref | rows | Extra > > > | > > > +---------+------+---------------+------+---------+------+-------- > > > +-------------+ > > > | radacct | ALL | NULL | NULL | NULL | NULL | 971518 > > > | Using where > > > | > > > +---------+------+---------------+------+---------+------+-------- > > > +-------------+ > > > 1 row in set (0.00 sec) > > > > > > then you should either rearrange your queries to use a proper > > > index (like using > > > the acctuniqueid column in the accounting_stop query) or add a > > > corresponding > > > index. > > > > > > If you are using MySQL 3.X maybe you should think of moving to > > > 4.X and to the > > > InnoDB tables (instead of MyISAM which have global instead of per > > > row locking). > > > > > > Hope the above was helpful. > > > > > > > > > > > > > > > thanks > > > > Ripunjay Bararia > > > > > > > > > -----Original Message----- > > > > > From: [EMAIL PROTECTED] > > > > > [mailto:[EMAIL PROTECTED] Behalf Of > > > Alan DeKok > > > > > Sent: Monday, December 15, 2003 10:19 PM > > > > > To: [EMAIL PROTECTED] > > > > > Subject: Re: There are no DB handles to use! skipped 0, tried > > > to connect > > > > > 0 > > > > > > > > > > > > > > > "Ripunjay Bararia" <[EMAIL PROTECTED]> wrote: > > > > > > --- radius.log begin --- > > > > > > Mon Dec 15 12:30:23 2003 : Info: rlm_sql (sql): There are no DB > > > > > handles to > > > > > > use! skipped 0, tried to connect 0 > > > > > > > > > > Find out why your SQL database is slow. > > > > > > > > > > Alan DeKok. > > > > > > > > > > - > > > > > List info/subscribe/unsubscribe? See > > > > > http://www.freeradius.org/list/users.html > > > > > > > > > > > > > > > > > - > > > > List info/subscribe/unsubscribe? See > > http://www.freeradius.org/list/users.html > > > > > > > -- > > Kostas Kalevras Network Operations Center > > [EMAIL PROTECTED] National Technical University of Athens, Greece > > Work Phone: +30 210 7721861 > > 'Go back to the shadow' Gandalf > > > > - > > List info/subscribe/unsubscribe? See > > http://www.freeradius.org/list/users.html > > > > > > > > -- __--__-- > > > > Message: 2 > > Subject: Please help me (It is very Urgent) > > From: Shashidhara S Bapat <[EMAIL PROTECTED]> > > To: Free Radius Mailing group <[EMAIL PROTECTED]> > > Organization: Envision Network Technologies Private ltd > > Date: 17 Dec 2003 12:43:09 +0530 > > Reply-To: [EMAIL PROTECTED] > > > > Hello All, > > I am a new user to this mailing list. I am using Radius server to see > > how does it authenticate. > > I am running freeradius on Linux machine and it is connected to a AP600 > > (Access Point) through which users are connected. Users are running on > > Windows 2000 Professional. Following are the configuration I have done: > > > > file - "clients.conf": > > # 192.168.100.7 is the IP address of my Access Point (wireless) (AP600) > > # which supports RADIUS. > > 192.168.100.7/24 { > > secret = abcde > > shortname = AP-600LAB > > } > > > > file - "users": > > # TECH4 is the name of the wireless client (machine name) which is > > # running on Windows. > > TECH4 Auth-Type := EAP, User-Password == "password" > > Reply-Message = "Hello, %u" > > > > > > I think the problem is with the 'user' part. I dont know which > > 'Auth-Type' I have to use. Please help me in my settings. > > Please let me know what modifications I have to do to make it working. > > > > FYI: The 'radtest' is working fine. > > > > -- > > =-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-= > > --Best Regards, > > Shashi. > > =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= > > > > > > > > -- __--__-- > > > > Message: 3 > > Date: Wed, 17 Dec 2003 09:36:57 +0100 (MET) > > Subject: Re: PEAP problem - HELP PLEASE > > From: [EMAIL PROTECTED] > > To: [EMAIL PROTECTED] > > Reply-To: [EMAIL PROTECTED] > > > > Thanks everyone for your help, > > yes Brian, you are right, i made a mistake when I wrote my users entry in > > the last mail! I wanted to say: > > > > ourson User-password = "testtest" > > > > In fact your right for the = which is better to be renplaced by == here. > > But in reallity, I didn't put any space on my user paswword.... > > I tried to put this entry: > > > > ourson User-Password == "a" > > Reply-Message = " YYYYYEEEESSSSSSSSSS, %u" > > > > With this, I tought that if authentication were bad, my reply message > > won't appear, isn't it right? > > But in fact, I have already the same error, but in response I have my > > reply message! It's very strange. > > here are my last logs : > > > > .... > > rad_check_password: Found Auth-Type EAP > > auth: type "EAP" > > modcall: entering group authenticate for request 0 > > rlm_eap: Identity does not match User-Name, authentication failed. > > rlm_eap: Failed in handler > > modcall[authenticate]: module "eap" returns invalid for request 0 > > modcall: group authenticate returns invalid for request 0 > > auth: Failed to validate the user. > > Login incorrect: [ourson/<no User-Password attribute>] (from client AP1 > > port 37 cli 000af49c507f)Delaying request 0 for 1 seconds > > Finished request 0 > > Going to the next request > > --- Walking the entire request list --- > > Waking up in 1 seconds... > > --- Walking the entire request list --- > > Waking up in 1 seconds... > > --- Walking the entire request list --- > > Sending Access-Reject of id 113 to 192.168.1.2:3186 > > Reply-Message = " yyyyyyyyyyyyyyyyyyyyyyyyyyyyyeeeeeessssssssss!!!!" > > Waking up in 4 seconds... > > --- Walking the entire request list --- > > Cleaning up request 0 ID 113 with timestamp 3fdf0ed2 > > Nothing to do. Sleeping until we see a request. > > > > I really don't understand how radiusd can say : "Identity does not match > > User-Name, authentication failed" and [ourson/<no User-Password > > attribute>] ... It seems that no password is sent from my supplicant..?? > > > > I tried to do radtest from another unix machine and it works : > > > > ... > > rad_recv: Access-Request packet from host 192.168.1.1:32769, id=85, length=58 > > User-Name = "ourson" > > User-Password = "a" > > NAS-IP-Address = 255.255.255.255 > > NAS-Port = 10 > > modcall: entering group authorize for request 6 > > modcall[authorize]: module "preprocess" returns ok for request 6 > > modcall[authorize]: module "chap" returns noop for request 6 > > rlm_eap: No EAP-Message, not doing EAP > > modcall[authorize]: module "eap" returns noop for request 6 > > rlm_realm: No '@' in User-Name = "ourson", looking up realm NULL > > rlm_realm: No such realm "NULL" > > modcall[authorize]: module "suffix" returns noop for request 6 > > users: Matched ourson at 97 > > modcall[authorize]: module "files" returns ok for request 6 > > modcall[authorize]: module "mschap" returns noop for request 6 > > modcall: group authorize returns ok for request 6 > > auth: type Local > > auth: user supplied User-Password matches local User-Password > > radius_xlat: ' YYYYYEEEESSSSSSSSSS, ourson' > > Sending Access-Accept of id 85 to 192.168.1.1:32769 > > Reply-Message = " YYYYYEEEESSSSSSSSSS, ourson" > > Finished request 6 > > Going to the next request > > --- Walking the entire request list --- > > Cleaning up request 5 ID 170 with timestamp 3fdf22be > > Waking up in 6 seconds... > > > > I think that freeradius is well configured and it must be a windows or > > Access Point problem, don't you think so? > > Please if someone knows or just have an idea, tell me !! > > > > > > > > > > > > > > > > > > > > > > -- __--__-- > > > > Message: 4 > > Date: Wed, 17 Dec 2003 16:43:39 +0800 > > From: suxiang <[EMAIL PROTECTED]> > > To: [EMAIL PROTECTED] > > Subject: Problem with rlm_ippool & PW_STATUS_ACCOUNTING_ON/OFF > > Reply-To: [EMAIL PROTECTED] > > > > When radiusd received a request of accounting on/off from NAS, ippool > > cannot free IP that have been allocated to radclient via NAS. > > I see the file rlm_ippool.c and find it doesn't deal with this request > > of accounting on/off. > > Why? And How can I free those pathetic IP? > > > > > > > > > > > > -- __--__-- > > > > Message: 5 > > From: "Rohaizam Abu Bakar" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Subject: migrate PAP to CHAP for LDAP > > Date: Wed, 17 Dec 2003 18:21:12 +0800 > > Reply-To: [EMAIL PROTECTED] > > > > This is a multi-part message in MIME format. > > > > ------=_NextPart_000_0097_01C3C4CA.8CF7E500 > > Content-Type: text/plain; > > charset="iso-8859-1" > > Content-Transfer-Encoding: quoted-printable > > > > > > How can i migrate PAP authentication method to CHAP using existing LDAP = > > data ?? > > > > Tested below: > > > > - In radiusd.conf under ldap module: > > > > password_header =3D "{clear}" > > password_attribute =3D radiusCHAPPassword [mapped to = > > CHAP-Password] > > =3D> added radiusCHAPPassword in LDAP entry=20 > > > > > > Although at first its detect Auth-Type =3D CHAP... then rlm_ldap still = > > complaining needing "User-Password" > > > > > > > > > > ######### debug MODE#################### > > > > rad_recv: Access-Request packet from host 10.1.1.1:16941, id=3D30, = > > length=3D51 > > User-Name =3D "haizamchap" > > CHAP-Password =3D 0xf47dcdd9b0c307fc682539df2704ac6a20 > > modcall: entering group authorize for request 0 > > modcall[authorize]: module "preprocess" returns ok for request 0 > > rlm_chap: Setting 'Auth-Type :=3D CHAP' > > modcall[authorize]: module "chap" returns ok for request 0 > > rlm_realm: No '@' in User-Name =3D "haizamchap", looking up realm = > > NULL > > rlm_realm: Found realm "NULL" > > rlm_realm: Adding Stripped-User-Name =3D "haizamchap" > > rlm_realm: Proxying request from user haizamchap to realm NULL > > rlm_realm: Adding Realm =3D "NULL" > > rlm_realm: Authentication realm is LOCAL. > > modcall[authorize]: module "suffix" returns noop for request 0 > > users: Matched DEFAULT at 43 > > modcall[authorize]: module "files" returns ok for request 0 > > modcall[authorize]: module "mschap" returns noop for request 0 > > rlm_ldap: - authorize > > rlm_ldap: performing user authorization for haizamchap > > radius_xlat: '(uid=3Dhaizamchap)' > > radius_xlat: 'ou=3DPeople,dc=3Djaring,dc=3Dmy' > > ldap_get_conn: Got Id: 0 > > rlm_ldap: attempting LDAP reconnection > > rlm_ldap: (re)connect to 127.0.0.1:389, authentication 0 > > rlm_ldap: bind as = > > cn=3DSysadmin,ou=3DApplications,dc=3Djaring,dc=3Dmy/xxxxxxxx to = > > 127.0.0.1:389 > > rlm_ldap: waiting for bind result ... > > rlm_ldap: performing search in ou=3DPeople,dc=3Djaring,dc=3Dmy, with = > > filter (uid=3Dhaizamchap) > > rlm_ldap: checking if remote access for haizamchap is allowed by = > > dialupAccess > > rlm_ldap: Password header not found in password haizamchap for user = > > haizamchap > > rlm_ldap: looking for check items in directory... > > rlm_ldap: Adding radiusCHAPPassword as CHAP-Password, value haizamchap & = > > op=3D21 > > rlm_ldap: looking for reply items in directory... > > rlm_ldap: Adding radiusFramedCompression as Framed-Compression, value = > > Van-Jacobson-TCP-IP & op=3D11 > > rlm_ldap: Adding radiusFramedMTU as Framed-MTU, value 1500 & op=3D11 > > rlm_ldap: Adding radiusFramedProtocol as Framed-Protocol, value PPP & = > > op=3D11 > > rlm_ldap: Adding radiusServiceType as Service-Type, value Framed-User & = > > op=3D11 > > rlm_ldap: user haizamchap authorized to use remote access > > ldap_release_conn: Release Id: 0 > > modcall[authorize]: module "ldap1" returns ok for request 0 > > modcall: group authorize returns ok for request 0 > > rad_check_password: Found Auth-Type LDAP > > auth: type "LDAP" > > modcall: entering group Auth-Type for request 0 > > rlm_ldap: - authenticate > > rlm_ldap: Attribute "User-Password" is required for authentication. = > > Cannot use "CHAP-Password". > > modcall[authenticate]: module "ldap1" returns invalid for request 0 > > modcall: group Auth-Type returns invalid for request 0 > > auth: Failed to validate the user. > > > > > > > > > > --haizam > > ------=_NextPart_000_0097_01C3C4CA.8CF7E500 > > Content-Type: text/html; > > charset="iso-8859-1" > > Content-Transfer-Encoding: quoted-printable > > > > <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> > > <HTML><HEAD> > > <META http-equiv=3DContent-Type content=3D"text/html; = > > charset=3Diso-8859-1"> > > <META content=3D"MSHTML 6.00.2800.1126" name=3DGENERATOR> > > <STYLE></STYLE> > > </HEAD> > > <BODY bgColor=3D#ffffff> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>How can i migrate PAP authentication = > > method to CHAP=20 > > using existing LDAP data ??</FONT></DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>Tested below:</FONT></DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>- In radiusd.conf under ldap = > > module:</FONT></DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>password_header =3D = > > "{clear}"<BR>password_attribute =3D=20 > > radiusCHAPPassword [mapped to=20 > > CHAP-Password]</FONT></DIV> > > <DIV><FONT face=3DArial size=3D2> = > > =3D> added=20 > > radiusCHAPPassword in LDAP entry </FONT></DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>Although at first its detect Auth-Type = > > =3D=20 > > CHAP... then rlm_ldap still complaining needing=20 > > "User-Password"</FONT></DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>######### debug=20 > > MODE####################</FONT></DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>rad_recv: Access-Request packet from = > > host=20 > > 10.1.1.1:16941, id=3D30, = > > length=3D51<BR> =20 > > User-Name =3D "haizamchap"<BR> = > > > > CHAP-Password =3D 0xf47dcdd9b0c307fc682539df2704ac6a20<BR>modcall: = > > entering group=20 > > authorize for request 0<BR> modcall[authorize]: module = > > "preprocess"=20 > > returns ok for request 0<BR> rlm_chap: Setting 'Auth-Type :=3D=20 > > CHAP'<BR> modcall[authorize]: module "chap" returns ok for request = > > > > 0<BR> rlm_realm: No <A href=3D"mailto:'@'">'@'</A> in = > > User-Name=20 > > =3D "haizamchap", looking up realm NULL<BR> rlm_realm: = > > Found=20 > > realm "NULL"<BR> rlm_realm: Adding Stripped-User-Name = > > =3D=20 > > "haizamchap"<BR> rlm_realm: Proxying request from user = > > > > haizamchap to realm NULL<BR> rlm_realm: Adding Realm = > > =3D=20 > > "NULL"<BR> rlm_realm: Authentication realm is = > > LOCAL.<BR> =20 > > modcall[authorize]: module "suffix" returns noop for request=20 > > 0<BR> users: Matched DEFAULT at 43<BR> =20 > > modcall[authorize]: module "files" returns ok for request 0<BR> =20 > > modcall[authorize]: module "mschap" returns noop for request = > > 0<BR>rlm_ldap: -=20 > > authorize<BR>rlm_ldap: performing user authorization for=20 > > haizamchap<BR>radius_xlat: = > > '(uid=3Dhaizamchap)'<BR>radius_xlat: =20 > > 'ou=3DPeople,dc=3Djaring,dc=3Dmy'<BR>ldap_get_conn: Got Id: = > > 0<BR>rlm_ldap: attempting=20 > > LDAP reconnection<BR>rlm_ldap: (re)connect to 127.0.0.1:389, = > > authentication=20 > > 0<BR>rlm_ldap: bind as = > > cn=3DSysadmin,ou=3DApplications,dc=3Djaring,dc=3Dmy/xxxxxxxx to=20 > > 127.0.0.1:389<BR>rlm_ldap: waiting for bind result ...<BR>rlm_ldap: = > > performing=20 > > search in ou=3DPeople,dc=3Djaring,dc=3Dmy, with filter = > > (uid=3Dhaizamchap)<BR>rlm_ldap:=20 > > checking if remote access for haizamchap is allowed by = > > dialupAccess<BR>rlm_ldap:=20 > > Password header not found in password haizamchap for user=20 > > haizamchap<BR>rlm_ldap: looking for check items in = > > directory...<BR>rlm_ldap:=20 > > Adding radiusCHAPPassword as CHAP-Password, value haizamchap &=20 > > op=3D21<BR>rlm_ldap: looking for reply items in = > > directory...<BR>rlm_ldap: Adding=20 > > radiusFramedCompression as Framed-Compression, value Van-Jacobson-TCP-IP = > > &=20 > > op=3D11<BR>rlm_ldap: Adding radiusFramedMTU as Framed-MTU, value 1500 = > > &=20 > > op=3D11<BR>rlm_ldap: Adding radiusFramedProtocol as Framed-Protocol, = > > value PPP=20 > > & op=3D11<BR>rlm_ldap: Adding radiusServiceType as Service-Type, = > > value=20 > > Framed-User & op=3D11<BR>rlm_ldap: user haizamchap authorized to use = > > remote=20 > > access<BR>ldap_release_conn: Release Id: 0<BR> modcall[authorize]: = > > module=20 > > "ldap1" returns ok for request 0<BR>modcall: group authorize returns ok = > > for=20 > > request 0<BR> rad_check_password: Found Auth-Type = > > LDAP<BR>auth: type=20 > > "LDAP"<BR>modcall: entering group Auth-Type for request 0<BR>rlm_ldap: - = > > > > authenticate<BR>rlm_ldap: Attribute "User-Password" is required for=20 > > authentication. Cannot use "CHAP-Password".<BR> = > > modcall[authenticate]:=20 > > module "ldap1" returns invalid for request 0<BR>modcall: group Auth-Type = > > returns=20 > > invalid for request 0<BR>auth: Failed to validate the user.</FONT></DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2></FONT> </DIV> > > <DIV><FONT face=3DArial size=3D2>--haizam</FONT></DIV></BODY></HTML> > > > > ------=_NextPart_000_0097_01C3C4CA.8CF7E500-- > > > > > > > > > > -- __--__-- > > > > Message: 6 > > Date: Wed, 17 Dec 2003 02:36:06 -0800 (PST) > > From: Julius Igugu <[EMAIL PROTECTED]> > > Subject: Re: Please help me (It is very Urgent) > > To: [EMAIL PROTECTED] > > Reply-To: [EMAIL PROTECTED] > > > > --0-1052063747-1071657366=:64870 > > Content-Type: text/plain; charset=us-ascii > > > > did you setup eap? > > > > Shashidhara S Bapat <[EMAIL PROTECTED]> wrote: > > Hello All, > > I am a new user to this mailing list. I am using Radius server to see > > how does it authenticate. > > I am running freeradius on Linux machine and it is connected to a AP600 > > (Access Point) through which users are connected. Users are running on > > Windows 2000 Professional. Following are the configuration I have done: > > > > file - "clients.conf": > > # 192.168.100.7 is the IP address of my Access Point (wireless) (AP600) > > # which supports RADIUS. > > 192.168.100.7/24 { > > secret = abcde > > shortname = AP-600LAB > > } > > > > file - "users": > > # TECH4 is the name of the wireless client (machine name) which is > > # running on Windows. > > TECH4 Auth-Type := EAP, User-Password == "password" > > Reply-Message = "Hello, %u" > > > > > > I think the problem is with the 'user' part. I dont know which > > 'Auth-Type' I have to use. Please help me in my settings. > > Please let me know what modifications I have to do to make it working. > > > > FYI: The 'radtest' is working fine. -- =-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-= --Best Regards, Shashi. =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
