Re: Freeradius as a proxy to Windows IAS - not solved after all :-(

2007-08-01 Thread Arran Cudbard-Bell
Hugh Messenger wrote:
 Clive Gould said:
   
 I have installed freeradius 1.1.7 and get the appended message when I try
 to use it as a proxy between a Linux/Moodle/PHP radius client and a
 Windows IAS server. The shared secrets are definitely the same.
 

 [snip]

   
 Received Access-Accept packet from client 10.200.0.2 port 1812 with
 invalid signature (err=2)!  (Shared secret is incorrect.) Dropping packet
 without response.
 

 Have you actually retyped the secret in FR (or better yet, copy and paste
 from your Moodle config)
(check for trailing spaces) :)
  and restarted the service?  Sometimes our eyes can
 deceive us, and even on close inspection, we can see what we expect to see,
 not what is actually there.
   
Moodle as in the VLE (Virtual Learning Environment) ? Didn't know that 
supported RADIUS Authentication..
It's most likely that they've used the authentication framework classes 
from the pecl repository, and I know for a fact that , that uses the 
standard RADIUS extension which works just fine ...

If you want I've got a very simple php RADIUS auth class you can test 
with your proxy server just to make sure it's not a bug in Moodle, 
mangling up strings from the configuration database or some other weird 
Moodle thing..

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: Radius proxy: Assertionfailed problem

2007-08-01 Thread Janne Peltonen
On Tue, Jul 31, 2007 at 07:44:40PM -0400, Alan DeKok wrote:
 Janne Peltonen wrote:
  I seem to be getting errors such as
  
   Tue Jul 31 11:50:23 2007 : Error: Assertion failed in request_list.c, line 
  1012
   Which version?  1.1.7 doesn't have an assertion on that line, and it
 has a LOT of fixes over earlier versions.

1.1.3, from RHEL 5 (or, to be exact, Centos 5). I'll have a go with
1.1.7. Thanks. :)


--Janne
-- 
Janne Peltonen [EMAIL PROTECTED]
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: Freeradius as a proxy to Windows IAS - reserved characters in shared secret?

2007-08-01 Thread clive gould
Hi

I've just been doing some research on the net and found this link on
the GNU radius client reference page:

http://www.gnu.org/software/radius/manual/html_chapter/radius_13.html#SEC262

It looks as if the radtest client has reserved characters.

Does anyone know if this applies to shared secrets with the Freeradius
server as well???

Thanks

Clive
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: Freeradius as a proxy to Windows IAS - reserved characters in shared secret?

2007-08-01 Thread clive gould
Hi

Thanks once again for all the advice :-)

Does anyone know if there some characters that are reserved i.e cannot
be used in secret keys with a freeradius server. If so what are they?

I've been experimenting with the radtest client and the freeradius
server using local unix validation with interesting results.

1) If I use a secret key (16+ characters and the same key in both the
radtest client and freeradius clients.conf) that contains pure alpha
characters the key is accepted and authorisation is successful.

2) If I use a secret key (similar to the one set on the IAS server)
containing characters such as $\[ then the key is rejected and
authorisation is unsuccessful. I have tried enclosing the key in
single and double quotes, but the key is still rejected.

Hopefully getting nearer to a solution...

Thanks very much

Clive
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: freeradius and mysql

2007-08-01 Thread Peter Nixon
On Wed 01 Aug 2007, zahra bahar wrote:
 Hi
  I am new in radius, I want to use sql for accounting in freeradius. for
 creating tables  of radius I use # mysql -u root -p  mysql.sql
  after entering password there is this error:

You are using the wrong pipe.. Use  instead

  ERROR 1064(42000) at line 1:you have an error in your sql syntax,...
   use the ql.sal rlm_sql Freeradius sql module.

  I don't know the reason of this error.

http://wiki.freeradius.org/SQL_HOWTO


-- 

Peter Nixon
http://peternixon.net/
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


billing freeradius

2007-08-01 Thread zahra bahar
Hi,
 I want to use freeraidus in billing. what module do this ? how could I do this?
 Is there any document for using freeradius for billing?
 thanks
 
   
-
Luggage? GPS? Comic books? 
Check out fitting  gifts for grads at Yahoo! Search.- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

freeradius and mysql

2007-08-01 Thread zahra bahar
Hi
 I am new in radius, I want to use sql for accounting in freeradius. for 
creating tables  of radius I use
 # mysql -u root -p  mysql.sql
 after entering password there is this error:
 
 ERROR 1064(42000) at line 1:you have an error in your sql syntax,...
  use the ql.sal rlm_sql Freeradius sql module.
 
 I don't know the reason of this error.
 
   
-
Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV. - 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: freeradius and mysql

2007-08-01 Thread Stefan Winter
 # mysql -u root -p  mysql.sql
  after entering password there is this error:

  ERROR 1064(42000) at line 1:you have an error in your sql syntax,...
   use the ql.sal rlm_sql Freeradius sql module.

  I don't know the reason of this error.

You want to feed the commands from the file mysql.sql to the mysql command? 
Then you must use , not . I.e.:

mysql -u root -p  mysql.sql

Also, IIRC the mysql.sql script does only create the tables, not the database 
itself. So, first create a database called radius, and then make your 
client use this database to execute the commands:

mysql -u root -p radius  mysql.sql

Greetings,

Stefan Winter

-- 
Stefan WINTER

Stiftung RESTENA - Réseau Téléinformatique de l'Education Nationale et de 
la Recherche
Ingenieur Forschung  Entwicklung

6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg
E-Mail: [EMAIL PROTECTED]     Tel.:     +352 424409-1
http://www.restena.lu                Fax:      +352 422473


signature.asc
Description: This is a digitally signed message part.
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: freeradius and mysql

2007-08-01 Thread tnt
And the error is?

Ivan Kalik
Kalik Informatika ISP


Dana 1/8/2007, zahra bahar [EMAIL PROTECTED] piše:

Hi
 I am new in radius, I want to use sql for accounting in freeradius. for 
 creating tables  of radius I use
 # mysql -u root -p  mysql.sql
 after entering password there is this error:

 ERROR 1064(42000) at line 1:you have an error in your sql syntax,...
  use the ql.sal rlm_sql Freeradius sql module.

 I don't know the reason of this error.


-
Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV.


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re[2]: Freeradius as a proxy to Windows IAS - reserved characters in shared secret?

2007-08-01 Thread Claudiu Filip
Hi clive,

Wednesday, August 1, 2007, 11:10:41 AM, you wrote:
 2) If I use a secret key (similar to the one set on the IAS server)
 containing characters such as $\[ then the key is rejected and

  Character Escape from Alcatraz, a classic movie with Clint Eastwood..
  Be careful with character escaping and bash cli (always use single
  quotes to pass to radtest what you want).
  Also avoid ${foo} as a secret
  
  client 127.0.0.1 { secret = \044{prefix} }
  radtest gigi kent 127.0.0.1 1 '/radiusd' = OK!! ($prefix = /radiusd)
  
  client 127.0.0.1 { secret = \\testing123 }
  radtest gigi kent 127.0.0.1 1 '\testing123' = OK
  radtest gigi kent 127.0.0.1 1 \testing123 = OK (because bash does not 
expand \t)
  radtest gigi kent 127.0.0.1 1 \\testing123 = OK (because bash expands \\t 
to \t)
  radtest gigi kent 127.0.0.1 1 '\\testing123' = NOT ok

  client 127.0.0.1 { secret = $\[ }
  radtest gigi kent 127.0.0.1 1 '$[' = OK
  
  client 127.0.0.1 { secret = $\\[ }
  radtest gigi kent 127.0.0.1 1 '$\[' = OK

  Have fun!

  
Best regards,

Claudiu Filip
@: [EMAIL PROTECTED]
Http://www.globtel.ro
T:+40344880100
F:+40344880113


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Failed to validate user

2007-08-01 Thread abhishek singh
Hi,

 I am trying to establish EAP-TLS communication. My client having
certificate ( [EMAIL PROTECTED]) sends HELLO to free radius, via a pass
through server having IP address 172.25.13.61. Free radius gets the hello
via pass through server and bails out saying it fails to authenticate user.

 I think i am making some mistake in configuration files. Any help will be
appreciated.

Rgds,



Starting - reading configuration files ...
reread_config:  reading radiusd.conf
Config:   including file: /usr/local/etc/raddb/proxy.conf
Config:   including file: /usr/local/etc/raddb/clients.conf
Config:   including file: /usr/local/etc/raddb/snmp.conf
Config:   including file: /usr/local/etc/raddb/eap.conf
Config:   including file: /usr/local/etc/raddb/sql.conf
 main: prefix = /usr/local
 main: localstatedir = /usr/local/var
 main: logdir = /usr/local/var/log/radius
 main: libdir = /usr/local/lib
 main: radacctdir = /usr/local/var/log/radius/radacct
 main: hostname_lookups = no
 main: snmp = no
 main: max_request_time = 30
 main: cleanup_delay = 5
 main: max_requests = 1024
 main: delete_blocked_requests = 0
 main: port = 0
 main: allow_core_dumps = no
 main: log_stripped_names = no
 main: log_file = /usr/local/var/log/radius/radius.log
 main: log_auth = no
 main: log_auth_badpass = no
 main: log_auth_goodpass = no
 main: pidfile = /usr/local/var/run/radiusd/radiusd.pid
 main: user = (null)
 main: group = (null)
 main: usercollide = no
 main: lower_user = no
 main: lower_pass = no
 main: nospace_user = no
 main: nospace_pass = no
 main: checkrad = /usr/local/sbin/checkrad
 main: proxy_requests = yes
 proxy: retry_delay = 5
 proxy: retry_count = 3
 proxy: synchronous = no
 proxy: default_fallback = yes
 proxy: dead_time = 120
 proxy: post_proxy_authorize = no
 proxy: wake_all_if_all_dead = no
 security: max_attributes = 200
 security: reject_delay = 1
 security: status_server = no
 main: debug_level = 0
read_config_files:  reading dictionary
read_config_files:  reading naslist
Using deprecated naslist file.  Support for this will go away soon.
read_config_files:  reading clients
read_config_files:  reading realms
radiusd:  entering modules setup
Module: Library search path is /usr/local/lib
Module: Loaded exec
 exec: wait = yes
 exec: program = (null)
 exec: input_pairs = request
 exec: output_pairs = (null)
 exec: packet_type = (null)
rlm_exec: Wait=yes but no output defined. Did you mean output=none?
Module: Instantiated exec (exec)
Module: Loaded expr
Module: Instantiated expr (expr)
Module: Loaded PAP
 pap: encryption_scheme = crypt
 pap: auto_header = yes
Module: Instantiated pap (pap)
Module: Loaded CHAP
Module: Instantiated chap (chap)
Module: Loaded MS-CHAP
 mschap: use_mppe = yes
 mschap: require_encryption = no
 mschap: require_strong = no
 mschap: with_ntdomain_hack = no
 mschap: passwd = (null)
 mschap: ntlm_auth = (null)
Module: Instantiated mschap (mschap)
Module: Loaded System
 unix: cache = no
 unix: passwd = (null)
 unix: shadow = (null)
 unix: group = (null)
 unix: radwtmp = /usr/local/var/log/radius/radwtmp
 unix: usegroup = no
 unix: cache_reload = 600
Module: Instantiated unix (unix)
Module: Loaded eap
 eap: default_eap_type = tls
 eap: timer_expire = 60
 eap: ignore_unknown_eap_types = no
 eap: cisco_accounting_username_bug = no
rlm_eap: Loaded and initialized type md5
rlm_eap: Loaded and initialized type leap
 gtc: challenge = Password: 
 gtc: auth_type = PAP
rlm_eap: Loaded and initialized type gtc
 tls: rsa_key_exchange = no
 tls: dh_key_exchange = yes
 tls: rsa_key_length = 512
 tls: dh_key_length = 512
 tls: verify_depth = 0
 tls: CA_path = (null)
 tls: pem_file_type = yes
 tls: private_key_file = /root/temp/freeradius- 1.1.6/raddb/certs/cert-
srv.pem
 tls: certificate_file = /root/temp/freeradius-1.1.6/raddb/certs/cert-
srv.pem
 tls: CA_file = /root/temp/freeradius-1.1.6/raddb/certs/demoCA/cacert.pem
 tls: private_key_password = whatever
 tls: dh_file = /root/temp/freeradius-1.1.6/raddb/certs/dh
 tls: random_file = /root/temp/freeradius-1.1.6/raddb/certs/random
 tls: fragment_size = 1024
 tls: include_length = yes
 tls: check_crl = no
 tls: check_cert_cn = (null)
 tls: cipher_list = DEFAULT
 tls: check_cert_issuer = (null)
rlm_eap_tls: Loading the certificate file as a chain
rlm_eap: Loaded and initialized type tls
 mschapv2: with_ntdomain_hack = no
rlm_eap: Loaded and initialized type mschapv2
Module: Instantiated eap (eap)
Module: Loaded preprocess
 preprocess: huntgroups = /usr/local/etc/raddb/huntgroups
 preprocess: hints = /usr/local/etc/raddb/hints
 preprocess: with_ascend_hack = no
 preprocess: ascend_channels_per_line = 23
 preprocess: with_ntdomain_hack = no
 preprocess: with_specialix_jetstream_hack = no
 preprocess: with_cisco_vsa_hack = no
 preprocess: with_alvarion_vsa_hack = no
Module: Instantiated preprocess (preprocess)
Module: Loaded realm
 realm: format = suffix
 realm: delimiter = @
 realm: ignore_default = no
 realm: ignore_null = no
Module: Instantiated realm (suffix)

Re[2]: Freeradius as a proxy to Windows IAS - reserved

2007-08-01 Thread clive gould
Brilliant Thanks Claudia :-)))

Putting the shared secret in single quotes

'se\cret'

in radclient and in double quotes with the backslash escaped in
clients.conf and proxy.conf

se\\cret

worked fine with the radtest and what's more this now works too:

Linux VLE ---FreeRadiusMicrosoft IAS

Thank-you !!!

Clive



Message: 5
Date: Wed, 1 Aug 2007 13:26:35 +0300
From: Claudiu Filip [EMAIL PROTECTED]
Subject: Re[2]: Freeradius as a proxy to Windows IAS - reserved
   characters in   shared secret?
To: FreeRadius users mailing list
   freeradius-users@lists.freeradius.org
Message-ID: [EMAIL PROTECTED]
Content-Type: text/plain; charset=us-ascii

Hi clive,

Wednesday, August 1, 2007, 11:10:41 AM, you wrote:
 2) If I use a secret key (similar to the one set on the IAS server)
 containing characters such as $\[ then the key is rejected and

 Character Escape from Alcatraz, a classic movie with Clint Eastwood..
 Be careful with character escaping and bash cli (always use single
 quotes to pass to radtest what you want).
 Also avoid ${foo} as a secret

 client 127.0.0.1 { secret = \044{prefix} }
 radtest gigi kent 127.0.0.1 1 '/radiusd' = OK!! ($prefix = /radiusd)

 client 127.0.0.1 { secret = \\testing123 }
 radtest gigi kent 127.0.0.1 1 '\testing123' = OK
 radtest gigi kent 127.0.0.1 1 \testing123 = OK (because bash does
not expand \t)
 radtest gigi kent 127.0.0.1 1 \\testing123 = OK (because bash
expands \\t to \t)
 radtest gigi kent 127.0.0.1 1 '\\testing123' = NOT ok

 client 127.0.0.1 { secret = $\[ }
 radtest gigi kent 127.0.0.1 1 '$[' = OK

 client 127.0.0.1 { secret = $\\[ }
 radtest gigi kent 127.0.0.1 1 '$\[' = OK

 Have fun!
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: billing freeradius

2007-08-01 Thread Claudiu Filip
Hi zahra,
Wednesday, August 1, 2007, 1:02:58 PM, you wrote:

 I want to use freeraidus in billing.

Be more specific.
If you are thinking of freeraiders Billing Land Rover show, some of
us spent time looking at NAS-car.
Someone on this list is using freeradius for the birds billing and
freeradius is the best solution to keep track of your black
woodpeckers, even if each woodpecker strikes its bill against the tree
8k-12k times a day.
I currently run freeraidus for billing chocolates and icecreams to my
children. My dad runs freeraidus to charge me for beers and
car expenses.

 what module do this ?

Most of them, but you will probably use the _accounting_ of 1 or 2 of
them. I guess your next question will be how could I do accounting?

 how could I do this?

Oh, here is the next question.
We (the guy with the birds and me) will HELP you, not TEACH you.
Please read the docs first.


  Is there any document for using freeradius for billing?

How did you subscribe here?
My advice is:

= post a reply with what are you trying to bill (please be explicit
about the equipments and technologies involved)
= after you get a yes, you can do that with freeradius, start
reading the docs.
= create a config and see if you have a working version
= if something is not working, search the archives of this list.
probably 90% of your questions would be answered 90 times before by the
9 guys most active on the list since '99.


Regards,


Claudiu Filip
@: [EMAIL PROTECTED]
Http://www.globtel.ro
T:+40344880100
F:+40344880113


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


PEAP, switch, FR and MS-AD as user profile and vlan storage

2007-08-01 Thread Hangjun He
Hi,


I would like to know if I can use FreeRADIUS for:

PEAP, switch, FR  and MS-Active Directory as user profile and vlan storage

If so, can someone please shed some light/pointers ?
Any info is highly appreciated.

Thank you.
   
-
抢注雅虎免费邮箱3.5G容量,20M附件! - 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Freeradius + postgresql for cisco voip

2007-08-01 Thread nix lynx
Dear all, 

I have successfully configured freeradius and posgtgresql sql according to doc 
that is in freeradius bundle.  My cisco vsa is also inserted in the database.  
Now the problem here is how to retrieve the data from the database.  Is there 
any pre-made front end of this kind of things?  I need to calculate 
daily/weekly/monthly voip CDR.

One more thing can i insert my syslog cisco CDR to above database?

thanking you,

regards,
nik


   
-
Ready for the edge of your seat? Check out tonight's top picks on Yahoo! TV. - 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: PEAP, switch, FR and MS-AD as user profile and vlan storage

2007-08-01 Thread Martin Gadbois
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hangjun He wrote:
 Hi,
 
 
 I would like to know if I can use FreeRADIUS for:
 
 PEAP, switch, FR  and MS-Active Directory as user profile and vlan storage
 

PEAP: Yes
MS-AD: Yes

See several post in this mailing list, and the FreeRadius Wiki: it is
all in there.
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO


- --
== +-+
Martin Gadbois | Please answer by yes or no.|
Sr. SW Designer| Uncooperative user waste precious CPU time |
Colubris Networks Inc. | -- The Andromeda Strain, M. Crichton, 1969  |
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFGsHfp9Y3/iTTCEDkRAqk1AJ4usaKN1+WwuhVzPaMxS0GMDcGWhACgo922
OFTaDLAzb6/2gOoVBR3QYew=
=KXBf
-END PGP SIGNATURE-
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Freeradius - MySQL Update problem

2007-08-01 Thread musoket
Hello,

Let me start off by saying I am new to this list and not very accomplished in
freeradius administration.

I am running a freeradius-1.1.0-19.6 setup to gather VoIP accounting
information from a Cisco AS5350 router and insert this information into a
mysql-5.0.18-16 database. The OS is SuSE Linux 10.1.

I am having trouble populating the MySQL database with a certain attribute
'h323-remote-address'. A tail of the radius logs shows me that this attribute
is being received by radius. It however does not appear in the database. I
have tried altering the mysql statements in sql.conf to insert the value of
this attribute in a field that was previously being populated with something
else - to ensure that the sql statement is correct - (of the same type - i.e.
varchar(32)) but that field stops being populated after the changes. I have
also tried it with a field that was previously not being populated, with no
success. The value is supposed to be an IP address.

 

Could someone please help me?

 

Thanks and regards,

 

Timothy

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Freeradius + postgresql for cisco voip

2007-08-01 Thread Claudiu Filip
Hi nix,
Wednesday, August 1, 2007, 2:56:13 PM, you wrote:
 inserted in the database.  Now the problem here is how to retrieve
 the data from the database.  Is there any pre-made front end of this
 kind of things?  I need to calculate daily/weekly/monthly voip CDR.

Daily run at 12:01 can be something like
#!/bin/bash
DAY=`date -d yesterday +%Y/%m/%d`
psql -d voipdb -c SELECT count,sum... WHERE h323connecttime  '$DAY 00:00' | 
mail -s Daily traffic for $DAY [EMAIL PROTECTED]


Replace h323connecttime with h323disconnecttime or h323setuptime for
the info you need or the db index used.

For weekly use
date -d last week +%Y/%m/%d 00:00
and for monthly use
date -d last month +%Y/%m/%d 00:00


If you need to sumarize by destinations (let say first 3 digits), you
can change the SELECT into something like
SELECT substr(CalledStationId, 0, 3), count( GROUP BY
substr(CalledStationId, 0, 3);


This is not the complex and powerful front end you were looking for,
but maybe it gives you an ideea to make yourself exactly what you
need.

 One more thing can i insert my syslog cisco CDR to above database?

Yes, you can do that. Pay attention to duplicates.
It will be better to create a unique index based on h323-conf-id,
called-station-id and a timestamp.
Check for relevant info between syslog entries and db.

Good luck,

Claudiu Filip
@: [EMAIL PROTECTED]
Http://www.globtel.ro
T:+40344880100
F:+40344880113




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: Freeradius - MySQL Update problem

2007-08-01 Thread Peter Nixon
On Wed 01 Aug 2007, [EMAIL PROTECTED] wrote:
 Hello,

 Let me start off by saying I am new to this list and not very accomplished
 in freeradius administration.

 I am running a freeradius-1.1.0-19.6 setup to gather VoIP accounting
 information from a Cisco AS5350 router and insert this information into a
 mysql-5.0.18-16 database. The OS is SuSE Linux 10.1.

 I am having trouble populating the MySQL database with a certain attribute
 'h323-remote-address'. 

Add a field to the radacct table, and add modify the sql query to add the 
attribute you wish into the field you added. It will just work..

-- 

Peter Nixon
http://peternixon.net/
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: Freeradius as a proxy to Windows IAS - reserved characters in shared secret?

2007-08-01 Thread Alan DeKok
clive gould wrote:
 I've just been doing some research on the net and found this link on
 the GNU radius client reference page:
 
 http://www.gnu.org/software/radius/manual/html_chapter/radius_13.html#SEC262

 It looks as if the radtest client has reserved characters.

  The characters are *escaped*, not *reserved*.

 Does anyone know if this applies to shared secrets with the Freeradius
 server as well???

  The shared secrets in FreeRADIUS have *no* reserved characters.  They
*can* be double-quoted strings, with all of the usual conditions for
escaping characters.

  This is less of a FreeRADIUS-specific issue than a standard Unix way
of doing things.

  Alan DeKok.
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


sql failover doubt

2007-08-01 Thread Francesco Cristofori
Hi all,
I set up sql failover using the redundant feature as stated in the 
documentation, but I still have a doubt.
When I start freeradius if all mysql backend servers are up everything goes 
fine.
If one server is down, radiusd complains because it is unable to create the 
corresponding module: is there a way to avoid this behavior?

Thanks in advance,
Francesco Cristofori.

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


Re: Freeradius - MySQL Update problem

2007-08-01 Thread Claudiu Filip
Hi musoket,

Wednesday, August 1, 2007, 3:17:15 PM, you wrote:
 I am having trouble populating the MySQL database with a certain
 attribute ‘h323-remote-address’. A tail of the radius logs shows me
 that this attribute is being received by radius. It however does not

How does your INSERT look like?
AFAIK, in logs you get something like
   h323-remote-address = h323-remote-address=re.mo.te.ip
You should use the %{h323-remote-address} variable


Regards,

Claudiu Filip
@: [EMAIL PROTECTED]
Http://www.globtel.ro
T:+40344880100
F:+40344880113




- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


how to change reply message.(Password has expired)

2007-08-01 Thread Marwan Sultan
Hello All,

Im on freeradius Latest, and FreeBSD, ChilliSpot.

When an account of my users expires, and he tries to log in again,
the HotSpotlogin script will reply with a message says Password Has 
Expired

How would I change this to Account has Expired
I guess its somewhere in freeradius, Please correct me if im wrong.

Thank you in advance.

Marwan

_
FREE pop-up blocking with the new MSN Toolbar - get it now! 
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


=?gb2312?q?=BB=D8=B8=B4=A3=BA=20Re:=20PEAP, =20switch, =20FR=20=20and=20MS-?= AD as user profile and vlan storage

2007-08-01 Thread Hangjun He
 Thanks.
   I want to get user's user-profile and vlan from AD after user 
authenticate successfully.
   Now I can authenticate OK from AD. But I donot if I can get user-profile 
and vlan information.
   
Hangjun
  

Martin Gadbois [EMAIL PROTECTED] 写道:
  -BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hangjun He wrote:
 Hi,
 
 
 I would like to know if I can use FreeRADIUS for:
 
 PEAP, switch, FR and MS-Active Directory as user profile and vlan storage
 

PEAP: Yes
MS-AD: Yes

See several post in this mailing list, and the FreeRadius Wiki: it is
all in there.
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO


- --
== +-+
Martin Gadbois | Please answer by yes or no. |
Sr. SW Designer | Uncooperative user waste precious CPU time |
Colubris Networks Inc. | -- The Andromeda Strain, M. Crichton, 1969 |
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFGsHfp9Y3/iTTCEDkRAqk1AJ4usaKN1+WwuhVzPaMxS0GMDcGWhACgo922
OFTaDLAzb6/2gOoVBR3QYew=
=KXBf
-END PGP SIGNATURE-
- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


   
-
抢注雅虎免费邮箱3.5G容量,20M附件! - 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html