Re: must define username in radius client???
thanks paul i do that, the client sends request and the server accepts it and send response. the client receives this access accept response but login failed. if i define the username without the password in client system, login will be successful. do you know what's the problem? please tell me if you know what should i do now thank you very much yours motlagh On 2/21/12, Paul A. Procacci wrote: > Assuming ssh (you didn't specify), you only need to setup the shared secret > between machines. The rest is handled by pam/login as normal (ala "auth > sufficient pam_radius.so") > > cat /etc/radius.conf > > auth 10.5.21.4:1645 "SuperSkret" 3 2 > auth 10.5.21.5:1645 "SuperSkret" 3 2 > > ~Paul > > On Tue, Feb 21, 2012 at 11:24:03AM +0330, saeedeh motlagh wrote: >> hello guys, >> i wanna have authentication via radius server. in my local network, >> one system is radius server and the others are clients. the server is >> running well. when a client login, it sends an access-request to the >> server. if the user name and password are defined in the server, the >> server sends back the access-accept to client. if the user name is >> defined in the client, the login is successful but if this user name >> is not defined in the client, the login failed and say "login >> incorrect" although the client receives access-accept from the server. >> i wanna know if there is any way to have authentication successfully >> without defining any user name in the client system? >> yours, >> ___ >> freebsd-net@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-net >> To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org" > > > > This message may contain confidential or privileged information. If you are > not the intended recipient, please advise us immediately and delete this > message. See http://www.datapipe.com/legal/email_disclaimer/ for further > information on confidentiality and the risks of non-secure electronic > communication. If you cannot access these links, please notify us by reply > message and we will send the contents to you. > ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Re: must define username in radius client???
Assuming ssh (you didn't specify), you only need to setup the shared secret between machines. The rest is handled by pam/login as normal (ala "auth sufficient pam_radius.so") cat /etc/radius.conf auth 10.5.21.4:1645 "SuperSkret" 3 2 auth 10.5.21.5:1645 "SuperSkret" 3 2 ~Paul On Tue, Feb 21, 2012 at 11:24:03AM +0330, saeedeh motlagh wrote: > hello guys, > i wanna have authentication via radius server. in my local network, > one system is radius server and the others are clients. the server is > running well. when a client login, it sends an access-request to the > server. if the user name and password are defined in the server, the > server sends back the access-accept to client. if the user name is > defined in the client, the login is successful but if this user name > is not defined in the client, the login failed and say "login > incorrect" although the client receives access-accept from the server. > i wanna know if there is any way to have authentication successfully > without defining any user name in the client system? > yours, > ___ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org" This message may contain confidential or privileged information. If you are not the intended recipient, please advise us immediately and delete this message. See http://www.datapipe.com/legal/email_disclaimer/ for further information on confidentiality and the risks of non-secure electronic communication. If you cannot access these links, please notify us by reply message and we will send the contents to you. ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
must define username in radius client???
hello guys, i wanna have authentication via radius server. in my local network, one system is radius server and the others are clients. the server is running well. when a client login, it sends an access-request to the server. if the user name and password are defined in the server, the server sends back the access-accept to client. if the user name is defined in the client, the login is successful but if this user name is not defined in the client, the login failed and say "login incorrect" although the client receives access-accept from the server. i wanna know if there is any way to have authentication successfully without defining any user name in the client system? yours, ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"