Re: Prompt user for callback number - TXT
On Tue, 16 Dec 2003 at 11:19 (+0100), RĂ¼ther Milan wrote: RM> How can I force freeradius server to prompt the user for its RM> callback number? When a user dials in you want them to be prompted to their username, password and callback number? You can't. FreeRADIUS does not talk to the user. The NAS talks to the user and sends authentication packets to the FreeRADIUS server. RM> I cannot use %i variable because i need make out two phone number RM> (1st call-in 2nd callback) FreeRADIUS (like all RADIUS servers) can only work with the information that is provided to it. Michael ---------- Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED] Hartwick Communications Consulting (519) 396-7719 Kincardine, ON, CA http://www.hartwick.com -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: USRHYPER thru accounting into a tizzy
On Thu, 19 Jun 2003 at 08:24 (-0400), Jeff Sullivan wrote:
JS> Accounting is going to Postgres. Rebooted a hyper and radius was
JS> showing
JS>
JS> Thu Jun 19 04:48:09 2003 : Error: rlm_sql (sql): Couldn't update SQL
JS> accounting for Acct On/Off packet - ERROR: parser: parse error at or
JS> near "'2003-06-19 04:48:09'" at character 102
The accounting_onoff_query in postgresql.conf prior to is wrong and
won't work. You can update to the latest CVS version which has a fix
or just replace that query with the following:
accounting_onoff_query = "UPDATE ${acct_table1} SET AcctStopTime='%S', A
cctSessionTime=date_part('epoch'::text, ('%S'::timestamp without time zone - Acc
tStartTime::timestamp without time zone)), AcctTerminateCause='%{Acct-Terminate-
Cause}', AcctStopDelay = %{Acct-Delay-Time:-0} WHERE AcctSessionTime=0 AND AcctS
topTime IS NULL AND NASIPAddress= '%{NAS-IP-Address}' AND AcctStartTime <= '%S'"
Michael
--
Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED]
Hartwick Communications Consulting (519) 396-7719
Kincardine, ON, CA http://www.hartwick.com
--
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Upcomming FreeRadius 0.9 release
Sorry about the cross post, but the same information applies to both
lists. :)
On Wed, 11 Jun 2003 at 17:27 (+0300), Peter Nixon wrote:
PN> to get any remaining bugs ironed out before we release 0.9 in
PN> a few weeks time.
I have recently (Monday) upgraded a few machines to the latest CVS
version at the time. I had a couple of problems with it. The first
problem was with the SQL query with postgres.
The following query in postgresql.conf did not work with the versions
of postgres in use (7.2.3, and 7.3.2).
accounting_onoff_query = "UPDATE ${acct_table1} SET AcctStopTime='%S', A
cctSessionTime=extract(epoch from (timestamp('%S') - timestamp(AcctStartTime))),
AcctTerminateCause='%{Acct-Terminate-Cause}', AcctStopDelay = %{Acct-Delay-Time
:-0} WHERE AcctSessionTime=0 AND AcctStopTime IS NULL AND NASIPAddress= '%{NAS-I
P-Address}' AND AcctStartTime <= '%S'"
I changed it to:
accounting_onoff_query = "UPDATE ${acct_table1} SET AcctStopTime='%S', A
cctSessionTime=extract(epoch from timestamp '%S' - AcctStartTime), AcctTerminat
eCause='%{Acct-Terminate-Cause}', AcctStopDelay = %{Acct-Delay-Time:-0} WHERE Ac
ctSessionTime=0 AND AcctStopTime IS NULL AND NASIPAddress= '%{NAS-IP-Address}' A
ND AcctStartTime <= '%S'"
and FreeRADIUS stopped generating an error. I don't know if it still
has the desired affect though. Someone with more Postgres experience
should look this over and decide what the correct fix is.
The other problem I had was a segmentation fault while reading the
clients file. In specific in clients_free. Since I was on the clock
for a customer getting it setup I didn't take a lot of time to
troubleshoot it. The fix that I used was to comment out lines 765 to
771 and just skip over the clients file. Not a perfect fix but it
worked well.
Unfortunately, since my customer was paying me to fix his problem I
don't have a lot of helpful information. If anyone has specific
questions I will try to answer them the best I can.
Since the clients file is deprecated would it make sense to have
FreeRADIUS throw a warning when it tried to use it so it could be
removed in the future after given the users ample opportunity to
migrate? The same goes for naslist and realms.
Michael
--
Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED]
Hartwick Communications Consulting (519) 396-7719
Kincardine, ON, CA http://www.hartwick.com
--
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: detail file
On Tue, 26 Nov 2002 at 15:55 (+1100), Tim Fraser wrote: TF> can someone let me know where to look to change the newer default filename TF> of the detail files where they have a filename as detail-date .. which radiusd.conf is the file you want to edit. It defaults to living in /usr/local/etc/raddb as I recall. Michael -- Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED] Hartwick Communications Consulting (519) 396-7719 Kincardine, ON, CA http://www.hartwick.com -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
FreeRadius 0.8 and PostgreSQL 7.2.3
Hi, I am attempting to use PostgreSQL 7.2.3 as a backend for FR 0.8. I have used MySQL before but have very little experience with PostgreSQL. It looks like it connects just fine: rlm_sql (sql): Driver rlm_sql_postgresql (module rlm_sql_postgresql) loaded and linked rlm_sql (sql): Attempting to connect to radius@localhost:/radius rlm_sql (sql): starting 0 rlm_sql (sql): Attempting to connect rlm_sql_postgresql #0 rlm_sql (sql): Connected new DB handle, #0 rlm_sql (sql): starting 1 rlm_sql (sql): Attempting to connect rlm_sql_postgresql #1 rlm_sql (sql): Connected new DB handle, #1 rlm_sql (sql): starting 2 rlm_sql (sql): Attempting to connect rlm_sql_postgresql #2 rlm_sql (sql): Connected new DB handle, #2 rlm_sql (sql): starting 3 rlm_sql (sql): Attempting to connect rlm_sql_postgresql #3 rlm_sql (sql): Connected new DB handle, #3 rlm_sql (sql): starting 4 rlm_sql (sql): Attempting to connect rlm_sql_postgresql #4 rlm_sql (sql): Connected new DB handle, #4 Module: Instantiated sql (sql) but when I through a query at it: rlm_sql (sql): sql_set_user escaped user --> 'username' radius_xlat: 'SELECT id,UserName,Attribute,Value,Op FROM radcheck WHERE Usernam e = 'username' ORDER BY id' rlm_sql (sql): Reserving sql socket id: 3 rlm_sql_postgresql: query: SELECT id,UserName,Attribute,Value,Op FROM radcheck W HERE Username = 'username' ORDER BY id rlm_sql_postgresql: PostgreSQL Query failed Error: no connection to the server rlm_sql_getvpdata: database query error rlm_sql (sql): SQL query error; rejecting user rlm_sql (sql): Released sql socket id: 3 modcall[authorize]: module "sql" returns fail This looks to me like the connection is being lost somewhere (or maybe not established). Obviously the username has been changed to protect the innocent. If I copy and paste the query into psql I get the expected results. I have read over the documentation, and the error that is being thrown looks like it is coming from the PostgreSQL library. I have even searched on google but didn't find the exact error that I am receiving. Any ideas? Michael ---------- Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED] Hartwick Communications Consulting (519) 396-7719 Kincardine, ON, CA http://www.hartwick.com -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: different variable for detailfile
On Mon, 29 Oct 2001 at 16:05 (-0500), Matt Rose wrote:
MR> In radiusd.conf is there any way to have
MR>
MR> detailfile = ${radacctdir}/%{Client-HostName}/detail
MR>
MR> instead of:
MR>
MR> detailfile = ${radacctdir}/%{Client-IP-Address}/detail
As I recall you can get the server to lookup the name by setting:
hostname_lookups = yes
The other option would be to use:
detailfile = ${radacctdir}/%C/detail
if I am reading the code right in my current caffeine deprived state.
:)
Michael
----------
Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED]
Hartwick Communications Consulting (519) 396-7719
Kincardine, ON, CA http://www.hartwick.com
--
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Using a different passwd/shadow file?
On Tue, 2 Oct 2001 at 15:46 (-0300), Juan Carlos Castro y Castro wrote: JCCyC> Could I specify more that 64K users in a passwd file with that? With JCCyC> UIDs > 65536? Not sure on that one. I haven't needed a passwd file quite that large before. I would think that it would work since I don't believe the code looks at UID's, but I have not checked the code to verify this. If your operating systems fgetpwent() call support larger UID's then I think it should work with the caching turned off, but again I haven't tried it. Michael ---------- Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED] Hartwick Communications Consulting (519) 396-7719 Kincardine, ON, CA http://www.hartwick.com -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Using a different passwd/shadow file?
On Tue, 2 Oct 2001 at 10:26 (-0400), [EMAIL PROTECTED] wrote: > Robert Divko <[EMAIL PROTECTED]> wrote: > > How can I use a different passwd/shadow file combo > > than the system file for User Authentication in freeradius-02? > > You can't. I don't thenk even the latest CVS snapshot allows for > that. The current CVS allows you to specify a different passwd, shadow and group file. The group was made to work yesterday, but the rest had been working prior to that. I have been using that feature for a little while now. The group changes are still fairly new so may not be the most stable, but have been working in a production environment for close to 18 hours. Michael ---------- Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED] Hartwick Communications Consulting (519) 396-7719 Kincardine, ON, CA http://www.hartwick.com -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Daily Two Times Login Restriction
On Sat, 8 Sep 2001 at 05:09 (-), moinul hossain wrote: mh> Thank you for your reply. Now I am restricting login time by edit users file mh> in raddb directory. following is the example user arena can login daily mh> from 9:00 am to 11:00am mh> mh> arena Login-Time = Al0900-2200 mh> Fall-Through = 1 arena Login-Time := "Al0900-1100,Al2200-2330" Fall-Through = 1 mh> What will be the syntax if I want to give arena another time login access mh> from 22:00 to 23:30. Now I am not sure if you need another check item (Auth-Type etc.), but that should work for the two login times. Michael ---------- Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED] Hartwick Communications Consulting (519) 396-7719 Kincardine, ON, CA http://www.hartwick.com -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Daily Two Times Login Restriction
On Fri, 7 Sep 2001 at 19:17 (-), moinul hossain wrote: mh> Please do me a favour. Is it possible to arrange 2 Login times daily. one mh> from 0900AM to 0930 Am and another from 1000PM to 1030PM it will be really mh> appreciated. Something like: DEFAULT Auth-Type := System, Current-Time := "Al0900-0930" Reply-Items DEFAULT Auth-Type := System, Current-Time := "Al2200-2230" Reply-Items DEFAULT Auth-Type := Reject Reply-Message = "Go away" should do what I think you want. Michael ---------- Michael J. Hartwick, VE3SLQ [EMAIL PROTECTED] Hartwick Communications Consulting (519) 396-7719 Kincardine, ON, CA http://www.hartwick.com -- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
