Auth-Type Failed

2002-05-18 Thread Erich Zigler 

modcall: group authorize returns ok
auth: No Auth-Type configuration for the request, rejecting the user
auth: Failed to validate the user.

This happens when I try to authenticate a user.

Any thoughts?

-- 
And I can't even begin to describe what a joy it is to work with a real
metal case, with swing-out drive bays, that was designed for easy access
and not built by the lowest-bidding Malaysian Monkey On Crack. -- Adam
J. Thornton 


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

checkrad with redback

2002-05-18 Thread maohua0831 

hi all 
  here i' again,i'm now use redback as a nas(sms1800) ,when i read  the 
doc\Simultanous-use,i konw that i should enter somthing in files 'naslist' and 
'naspassword',ok i entered but The type (3rd) field in the file /etc/raddb/naslist 
hasn't redback option,what's the matter?does checkrad support redback with snmpget? 
i'm now use freeradius4.0. need your help,thanks for any help,you are so kind. 


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Two questions about Postgresql

2002-05-18 Thread Erich Zigler 

I'm currently trying to implement Postgresql and Freeradius-0.5 on FreeBSD 
4.5.

In reading the archives I heard about a patch that was supposed to fix a lot 
of problems, if someone could please send that to me I would greatly 
appreciate it.

My other question, is I have created the database and the tables, but what am 
I supposed to populate it with? Am I supposed to populate the dictionary 
files? If so, how? Also what data and the like should I put in which table? 

Is there a frontend for this, or am I just really missing the 
boat/documentation?

-- 
Unix doesn't prevent you from doing something stupid because that would 
prevent me from doing something clever.


-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Cisco 340 & WinXP

2002-05-18 Thread Wayne Ying-Jui Lee 

Hello, Artur,

I also have no problem using EAP/MD5 with FreeRADIUS,
but I use another vendor's AP.

authorize {
preprocess
eap
.
}

authenticate {
.
eap
}


- Original Message - 
From: "Artur Hecker" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Saturday, May 18, 2002 10:04 PM
Subject: Re: Cisco 340 & WinXP


> hello ken!
> 
> could you possibly post here your authenticate and authorize sections
> and one user entry ?
> and: what does it say in your case after issuing the challenge to the
> eap request?
> 




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: How to: Administratively drop dial-in user via SNMP

2002-05-18 Thread Toni Mueller 


Hi,

On Mon, May 13, 2002 at 05:13:58PM -0500, Chris Parker wrote:
> invokes the 'pm_reset' utility ( available from www.portmasters.com ).

> /usr/local/bin/pm_reset $IP $PW $TTY

oki, but if you are already there, a utility like this can be coded
using Perl and Net::Telnet as well (I didn't look at that utility  yet).

> 
>http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121t/121t3/dt_asmib.htm

Good information, thanks. Does anyone beside me have severe
difficulties accessing the technical info on Cisco's site?
For me, the glamour parts load well, but the content parts
often yield errors and/or take very long to load.


Best,
--Toni++

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

email trouble - please ignore

2002-05-18 Thread Alexandre Strube 

not receiving e-mails for a while. Just testing it on a foreigner server . Please 
ignore this one.



  As opiniões formuladas neste e-mail são de caráter
  exclusivamente pessoal. Minha opinião não necessariamente
representa a opinião do meu Moto Grupo nem da empresa onde
trabalho.

Mene Sakkhet ur-seveh
  Alexandre Ganso - Diretor Steel Goose Moto Group
6, 7 e 8 de setembro - Aniversario 10 anos Steel Goose - Ouro Branco - MG
500 Four Vermelha
[EMAIL PROTECTED]
  ICQ# 3778773



-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Cisco 340 & WinXP

2002-05-18 Thread Artur Hecker 

hello ken!

could you possibly post here your authenticate and authorize sections
and one user entry ?
and: what does it say in your case after issuing the challenge to the
eap request?


thank you


Ken Roser wrote:
> 
> I haven't found any problems using EAP/MD5 with Win XP.  I've been using the
> 4/23/2002 CVS snapshot.
> 


-- 
Artur Hecker Groupe Accès et Mobilité
[EMAIL PROTECTED]Département Informatique et Réseaux
+33 1 45 81 750746, rue Barrault 75634 Paris cedex 13
http://www.infres.enst.fr  ENST Paris

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

entries in the 'users' file

2002-05-18 Thread Ruslan A Dautkhanov 

Hi all,

Is it possible to locate multiple entries in a DB, like
we can do in the 'users' file:

dailu1   Auth-Type := Local, Some-Attr <= 100
 Callback-Number = "9,5512"

dialu1   Auth-Type := Local, Some-Attr >= 700
 Callback-Number = "9,5533"


In this example I mean to reply Callback-Number depend on
Some-Attr value. I can't map this example to rlm_sql! See:
The DB schema for the radcheck and radreply tables:

CREATE TABLE radcheck  (
  id SERIAL,
  UserName VARCHAR(30) DEFAULT '' NOT NULL,
  Attribute VARCHAR(30),
  Value VARCHAR(40),
  op VARCHAR(2));

CREATE TABLE radreply  (
  id SERIAL,
  UserName VARCHAR(30) DEFAULT '' NOT NULL,
  Attribute VARCHAR(30),
  Value VARCHAR(40),
  op VARCHAR(2));


And the following INSERT's must be executed for imitataion
the first entry of the users file for user 'dialu1':

INSERT INTO radcheck (UserName,Attribute,Value,op) VALUES
('dialu1','Auth-Type','Local',':=');
INSERT INTO radcheck (UserName,Attribute,Value,op) VALUES
('dialu1','Some-Attr','100',  '<=');
INSERT INTO radreply (UserName,Attribute,Value,op) VALUES
('dialu1','Callback-Number','9,5512','=');

Isn't it? I not sure, maybe 'Fall-Through' should be added also.

But the problems starts when I want to add the second entry of
the 'users' file - the DB's schema HAVE NOT any columns to
determinate
isolated entries. If I misunderstood smth, please correct me.
I offer to add additional column, for example,  EntryID
:Integer,
which will devide several independent entries of the 'users' file.
Is it true, that rlm_sql is not real substitution of the 'users'

file? Thanks for any useful information or suggestions.



Thanks. Ruslan



smime.p7s
Description: S/MIME Cryptographic Signature

Help on freeRadius

2002-05-18 Thread Michael Fuller 

Hi All,

I have configured Radius authentication for our Cisco routers using
freeRadius and Openldap. I used the AA authentication ... command on the
cisco router to do this. The system is working fine, and I am able to
authenticate users against the freeradius server with openldap.

Now, I want to configure aaa authorisation for the cisco routers. How do I
configure freeRadius and openldap to permit telnet access only to a few
users, and deny telnet to the rest ?

Many thanks for the help

Michael Fuller.


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html