Online Users Process for VOIP

2002-08-15 Thread Hooman Amini 
Hi everybody,I am going to implement online users watch in my voip origination system.Online users are the users after card verification and start calling process.Because of special computation, I am using an external program for both authentication and accounting using exec-program-wait in freeradius.Considering this situation,Is it feasibly to usefreeradius checkrad or I had better to manage start record and stop record manually through external programs? What should I consider if I try to use chechrad as online users checker?Regards,HoomanDo You Yahoo!?
HotJobs, a Yahoo! service - Search Thousands of New Jobs

RE: Howto on EAP/MD5 with Windows XP

2002-08-15 Thread Chung Yun Liang 

Sorry, pls ignore this message, I am trying how to reply a message. Thanks.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

EAP/TLS with Windows XP cannot work

2002-08-15 Thread Chung Yun Liang 

Dear all,

I am trying on EAP/TLS with Windows XP. I use Aironet 350 series as the 
wireless LAN adapter and Access Point. The Radius server is FreeRadius.

When I try to connect to the network, Windows XP prompt me a message Windows 
was unable to find a certificate to log you on to the network ...

I have import a certificate into the current user and anoher copy for the 
local computer. The certificates are issued by in-house CA.

Please advise me on this. Thanks.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: EAP/TLS with Windows XP cannot work

2002-08-15 Thread Artur Hecker 

hi

are you sure that the certificates correspond to the certificates of the
server? did you include the necessary extended key usage field? are
you familiar with the ken roser FAQ?



Chung Yun Liang wrote:
 
 Dear all,
 
 I am trying on EAP/TLS with Windows XP. I use Aironet 350 series as the
 wireless LAN adapter and Access Point. The Radius server is FreeRadius.
 
 When I try to connect to the network, Windows XP prompt me a message Windows
 was unable to find a certificate to log you on to the network ...
 
 I have import a certificate into the current user and anoher copy for the
 local computer. The certificates are issued by in-house CA.
 
 Please advise me on this. Thanks.
 
 -
 List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-- 
_
Artur Hecker Groupe Accès et Mobilité
hecker[at]enst[dot]fr Département Informatique et Réseaux
+33 1 45 81 750746, rue Barrault 75634 Paris cedex 13
http://www.infres.enst.fr  ENST Paris

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Possible bugfix for authentication in rlm_mysql.c

2002-08-15 Thread Alan DeKok 

Frank Cusack [EMAIL PROTECTED] wrote:
 Thanks, I've committed something along those lines.  It would be great
 if you could test it.
 
...  
 - if (inst-config-authenticate_query){
 + if (*inst-config-authenticate_query){

  If 'authenticate_query' is NULL, then there's a problem.

  On further inspection, why does SQL have an authenticate query?  I
thought that we had removed the authentication section from SQL.

  Alan DeKok.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

IP pool

2002-08-15 Thread Matias Ezequiel Fabiano 


Hello,

When I start the radius daemon and users try to authenticate, the server
only assigns one IP address (172.25.6.3), and therefore only one user can
use the service at the same time.
The users file looks like this:

DEFAULT Auth-Type := Local, User-Password == adgj
Service-Type == Framed-User,
Framed-IP-Address = 172.25.6.2+,

Is the IP pool well defined? Thanks for the answers


La   información  contenida  en  este  correo  es  para  uso exclusivo de
los destinatarios  del  mismo. Está prohibido a  las personas o entidades
que no sean los destinatarios de este correo, realizar cualquier tipo de
modificación, copia o distribución del mismo.
Si  Ud. recibe este correo por error, tenga a  bien notificar al emisor y
eliminarlo.

This email is confidential and intended solely for the use of the
individual to whom it is addressed. Any views or opinions presented are
solely those of the author  and do not necessarily represent those of
Personal. If you are not the intended recipient, be advised that you have
received this email in error and that any use, dissemination, forwarding,
printing, or copying of this email is strictly prohibited. If you have
received this email in error please contact the sender.(Embedded image
moved to file: pic01866.pcx)



pic01866.pcx
Description: Binary data

Re: freeradius installation considerations

2002-08-15 Thread Ilguiz Latypov 


On Thu, 15 Aug 2002, Marcel wrote:

 The only way I am thinking is that they have to start
 a browser and just serve to
 http://www.whatever.they.want.com and a basic homepage
 shows up to authenticate themafter they are
 authenticated they will be forwarded to the homepage
 the enteredor they are denied of course.

This can be done by employing the port forwarding feature of Linux 
Netfilter and other OS'es similar tools.  I heard of the NoCat open source 
project at 

http://nocat.net/

There is also a paper on a similar design at

http://www.nas.nasa.gov/Groups/Networks/Projects/Wireless/index.html

Ilguiz



- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Query before I choose freeradius

2002-08-15 Thread Shawn O'Shea 


 The way we do this is kind of new in postfix. You can specify that postfix
 looks at a mysql database and tables for the users and passwords. The only
 catch is that users must have unique usernames and they needs to have the
 same user/pass combo for dialup and email. I think the catch is actually a
 benefit, but it could be taken otherwise.

This can also be done with an LDAP backend, as that is exactly what we do
at my company (POP/IMAP users and RADIUS dialups authenticate against the
same LDAP backend).

-Shawn


Shawn K. O'Shea
Sr. Unix Administrator
DSL.net, Inc.


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Thanks

2002-08-15 Thread Keith Ballard 

Thanks all for answering my questions about whether freeradius is the thing
for me, it would seem it is!

No doubt I'll be back when I get stuck installing/configuring it.

Regards,
Keith


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: Thanks

2002-08-15 Thread Aaron T. Weiker 

Before asking be sure to check out the FAQ on the webpage as well as
reading all of the configuration files thoroughly. There is also a doc
section in the source code which is extremely useful as well.

Just like anything else new, take your time and let it soak in.
freeradius can do just about anything you want it to do, it's just a
matter of trying to put the piece in the right way.


Aaron Weiker

-Original Message-
From: Keith Ballard [mailto:[EMAIL PROTECTED]] 
Sent: Thursday, August 15, 2002 2:36 PM
To: [EMAIL PROTECTED]
Subject: Thanks


Thanks all for answering my questions about whether freeradius is the
thing for me, it would seem it is!

No doubt I'll be back when I get stuck installing/configuring it.

Regards,
Keith


- 
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Ascend dictionary addition

2002-08-15 Thread Alan DeKok 

JJ Foote [EMAIL PROTECTED] wrote:
 The dictionary.ascend file (as of v0.7) contains an attribute called 
 Ascend-Shared-Profile and its corresponding values.  The dictionary 
 does not, however, contain the related attribute 
 Ascend-Max-Shared-Users.  This attribute was added in Ascend's TAOS 
 version 9.1.  The appropriate line in the dictionary file is:

  Added, thanks.

  Alan DeKok.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html