I have upgrade my libs, but when execute dpkg-buildpackage -uc
-b(under root privilege), some error show out:
.....
dpkg-buildpackage: source maintainer is Paul Hampson <[EMAIL PROTECTED]>
dpkg-buildpackage: host architecture is i386
debian/rules clean
dh_testdir
rm -f stamp-build debian/{files,substvars} debian/*.debhelper libltdl/stamp-h1
[ -f Make.inc ] && make distclean || true
dh_clean
rm -rf /home/software/freeradius-1.0.5/debian/freeradius
for modname in krb5 ldap mysql iodbc postgresql; do \
rm -rf
/home/software/freeradius-1.0.5/debian/freeradius-${modname}{,.substvars};
\
done
[ -f config.sub.dist ] && rm config.sub && mv config.sub.dist config.sub || true
[ -f config.guess.dist ] && rm config.guess && mv config.guess.dist
config.guess || true
dpatch deapply-all
/bin/bash: line 1: dpatch: command not found
make: *** [unpatch] Error 127
any idea?
2005/12/2, darkblue <[EMAIL PROTECTED]>:
> hi,
>
> sorry to boring you.
> according to your comment.
> I encounter such error:
> sccgd:/home/software/freeradius-1.0.5# dpkg-buildpackage -b -uc
> dpkg-buildpackage: source package is freeradius
> dpkg-buildpackage: source version is 1.0.5-0
> dpkg-buildpackage: source maintainer is Paul Hampson <[EMAIL PROTECTED]>
> dpkg-buildpackage: host architecture is i386
> dpkg-checkbuilddeps: Unmet build dependencies: debhelper (>= 4.1.68)
> libltdl3-dev libpam0g-dev libpq-dev | postgresql-dev
> libmysqlclient12-dev | libmysqlclient-dev libgdbm-dev | libgdbmg1-dev
> libldap2-dev libsasl2-dev libsnmp5-dev | libsnmp4.2-dev libiodbc2-dev
> libkrb5-dev libssl-dev libtool1.4 | libtool (< 1.5) snmp autotools-dev
> dpkg-buildpackage: Build dependencies/conflicts unsatisfied; aborting.
> dpkg-buildpackage: (Use -d flag to override.)
>
> I also use the -d flag, but failed.
> any suggestion?
>
>
> 2005/11/23, Nicolas Baradakis <[EMAIL PROTECTED]>:
> > King, Michael wrote:
> >
> > > Ignore the freeRADIUS package. Due to license restrictions, it cannot
> > > contain the binaries for OpenSSL. We have to use the source.
> >
> > Indeed.
> >
> > > Download the latest release of freeRADIUS
> > >
> > > Unzip freeRADIUS
> > > Tar -zxvf freeradius-1.0.5.tar.gz
> > >
> > > Switch to the directory
> > > then
> > >
> > > ./configure --disable-shared
> > > make
> > > make install
> >
> > I don't recommend this method to the Debian users, because it
> > confuses dpkg about the files installed on the system and it's
> > not possible to uninstall the files later. I think it's a lot
> > better to build FreeRADIUS from sources using dpkg-buildpackage.
> >
> > $ tar zxf freeradius-1.0.5.tar.gz
> > $ cd freeradius-1.0.5
> > $ fakeroot dpkg-buildpackage -b -uc
> > $ sudo dpkg -i ../freeradius_1.0.5-0_i386.deb
> >
> > > You can look at my notes if you want:
> > > http://www.mpking.com/articles.php?lng=en&pg=55
> >
> > Please add a note about dpkg-buildpackage, too.
> >
> > --
> > Nicolas Baradakis
> >
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
> >
>
>
> --
> He is nothing
>
--
He is nothing
2005/11/27, Alhagie Puye <[EMAIL PROTECTED]>:
> Thanks Dusty. That's very helpful.
>
> I have one little problem. I was hoping someone can shed some light on
> it.
>
> For the Active Directory security, I need to specify the username as
> "Domain\user" instead of just "user" for the identity in radiusd.conf
>
> "[EMAIL PROTECTED]" doesn't seem to work.
>
> Here is the output:
>
> rad_recv: Access-Request packet from host 192.168.42.1:50667, id=146,
> length=57
> User-Name = "user"
> User-Password = "password"
> NAS-IP-Address = 255.255.255.255
> NAS-Port = 1
> Processing the authorize section of radiusd.conf
> modcall: entering group authorize for request 4
> modcall[authorize]: module "preprocess" returns ok for request 4
> modcall[authorize]: module "chap" returns noop for request 4
> modcall[authorize]: module "mschap" returns noop for request 4
> rlm_realm: No '@' in User-Name = "apuye", looking up realm NULL
> rlm_realm: No such realm "NULL"
> modcall[authorize]: module "suffix" returns noop for request 4
> rlm_eap: No EAP-Message, not doing EAP
> modcall[authorize]: module "eap" returns noop for request 4
> users: Matched entry DEFAULT at line 153
> modcall[authorize]: module "files" returns ok for request 4
> rlm_ldap: - authorize
> rlm_ldap: performing user authorization for apuye
> radius_xlat: '(uid=apuye)'
> radius_xlat: 'dc=ad,dc=puyenet,dc=com'
> rlm_ldap: ldap_get_conn: Checking Id: 0
> rlm_ldap: ldap_get_conn: Got Id: 0
> rlm_ldap: attempting LDAP reconnection
> rlm_ldap: (re)connect to orion.puyenet.com:389, authentication 0
> rlm_ldap: bind as
> [EMAIL PROTECTED],ou=users,dc=ad,dc=puyenet,dc=com/password to
> orion.puyenet.com:389
> rlm_ldap: waiting for bind result ...
> rlm_ldap: LDAP login failed: check identity, password settings in ldap
> section of radiusd.conf
> rlm_ldap: (re)connection attempt failed
> rlm_ldap: search failed
> rlm_ldap: ldap_release_conn: Release Id: 0
> modcall[authorize]: module "ldap" returns fail for request 4
> modcall: group authorize returns fail for request 4
> Finished request 4
> Going to the next request
> --- Walking the entire request list ---
> Waking up in 6 seconds...
> --- Walking the entire request list ---
> Cleaning up request 4 ID 146 with timestamp 4388ab87
> Nothing to do. Sleeping until we see a request.
>
> The radiusd.conf file looks like this for the ldap section:
> ldap {
> server = "orion.puyenet.com"
> # identity = "cn=admin,o=My Org,c=UA"
> identity =
> "[EMAIL PROTECTED],ou=users,dc=ad,dc=puyenet,dc=com"
> password = password
> #basedn = "o=My Org,c=UA"
> basedn = "dc=ad,dc=puyenet,dc=com"
> filter = "(uid=%{Stripped-User-Name:-%{User-Name}})"
> # base_filter = "(objectclass=radiusprofile)"
>
>
> Thanks in advance.
>
> Alhagie Puye - Network Engineer
> Datawave Group of Companies
> (604)295-1817
>
> > >-----Original Message-----
> > >From: [EMAIL PROTECTED]
> > >[mailto:[EMAIL PROTECTED] On
> > >Behalf Of Dusty Doris
> > >Sent: November 25, 2005 9:43 AM
> > >To: FreeRadius users mailing list
> > >Subject: RE: Freeradius How to integrate Active
> > >Directory[ADIntegrationWindowsXP NTLM Tutorial]
> > >
> > >
> > >> So, the question again is if the VPN Concentrator is only sending
> > >> username and password, do I need ntml_auth or ms-chap? FreeRADIUS
> > >> doesn't have any usernames and password and will query Active
> > >> Directory for the actual authentication.
> > >>
> > >> Thanks,
> > >>
> > >
> > >If the packet is merely containing plaintext username and
> > >password, then you can probably just use rlm_ldap against AD
> > >and hit it directly. Just need to setup a user with read
> > >access to the directory to do the initial bind with and
> > >search of the user for authorization. Then the user will be
> > >authenticated by doing a bind against AD with the
> > >username/password in the packet.
> > >
> > >BTW - I use freeradius w/ ldap for cisco VPN concentrators
> > >as well, although its openldap instead of AD. To pass back
> > >the class attribute, you must modify ldap.attrmap and
> > >specify the reply item of Class to match what you call it in
> > >the directory.
> > >
> > >eg:
> > >
> > >replyItem Class radiusClass
> > >
> > >Then in the directory, you have
> > >
> > >dn: cn=someuser,...
> > >...
> > >radiusClass: "OU=myvpngroup;"
> > >
> > >So, for AD, you'll need to extend the schema and add an
> > >attribute for this. Or if you already have something that
> > >you can use, just modify ldap.attrmap to know what it is.
> > >
> > >-Dusty Doris
> > >-
> > >List info/subscribe/unsubscribe? See
> > >http://www.freeradius.org/list/users.html
> > >
>
>
> Disclaimer: This message (including any attachments) is confidential, may be
> privileged and is only intended for the person to whom it is addressed. If
> you have received it by mistake please notify the sender by return e-mail and
> delete this message from your system. Any unauthorized use or dissemination
> of this message in whole or in part is strictly prohibited. E-mail
> communications are inherently vulnerable to interception by unauthorized
> parties and are susceptible to change. We will use alternate communication
> means upon request.
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
--
He is nothing
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
