Re: mysql configuration for version 2.1.8
On Thu, Feb 25, 2010 at 2:22 PM, Pratik Shrestha pratik...@gmail.com wrote: Hello to all, I am using the latest version 2.1.8 and I am newbie. I was trying to configure sql (mysql) for this version, but I did not find any configuration help from any source. Where did you look? See doc/rlm_sql Or (if you install from RPM) /usr/share/doc/freeradius-2.1.6/rlm_sql -- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dictionary help
Alan DeKok wrote: Hmm... the code in rlm_preprocess checks if the attribute is string type. I don't see why this is necessary. See line 155 (or so) in src/modules/rlm_preprocess/rlm_preprocess.c. I've saw the source and now i understand, but, i don't know much of C and don't know if problem is solvable? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. And do you know any site that describes the configuration for 2.1.8 with mysql? Pratik On Thu, Feb 25, 2010 at 3:31 PM, Fajar A. Nugraha fa...@fajar.net wrote: On Thu, Feb 25, 2010 at 2:22 PM, Pratik Shrestha pratik...@gmail.com wrote: Hello to all, I am using the latest version 2.1.8 and I am newbie. I was trying to configure sql (mysql) for this version, but I did not find any configuration help from any source. Where did you look? See doc/rlm_sql Or (if you install from RPM) /usr/share/doc/freeradius-2.1.6/rlm_sql -- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
Pratik Shrestha wrote: Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. Have you bothered reading the documentation and config files that come with the server? Read raddb/sql.conf. It's explained. And do you know any site that describes the configuration for 2.1.8 with mysql? I'm continually amazed at the number of people who spend hours googling for solutions, instead of reading the documentation that comes with the server. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dictionary help
Igor Smitran wrote: I've saw the source and now i understand, but, i don't know much of C and don't know if problem is solvable? Yes. Delete the line containing PW_TYPE_STRING, and change the previous line to: if ((dattr = dict_attrbyname(newattr)) != NULL) { Then re-compile install. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
On Thu, Feb 25, 2010 at 3:47 PM, Pratik Shrestha pratik...@gmail.com wrote: Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. where did you find rad.sql? From /etc/raddb/sql.conf: # Configuration for the SQL module # # The database schemas and queries are located in subdirectories: # # sql/DB/schema.sql Schema # sql/DB/dialup.conf Basic dialup (including policy) queries # sql/DB/counter.conf counter # sql/DB/ippool.conf IP Pools in SQL # sql/DB/ippool.sql schema for IP pools. # # Where DB is mysql, mssql, oracle, or postgresql. And do you know any site that describes the configuration for 2.1.8 with mysql? doc/rlm_sql and sql.conf is the best source. -- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
Thanks...I have already configured. Pratik On Thu, Feb 25, 2010 at 3:53 PM, Alan DeKok al...@deployingradius.comwrote: Pratik Shrestha wrote: Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. Have you bothered reading the documentation and config files that come with the server? Read raddb/sql.conf. It's explained. And do you know any site that describes the configuration for 2.1.8 with mysql? I'm continually amazed at the number of people who spend hours googling for solutions, instead of reading the documentation that comes with the server. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dictionary help
Alan DeKok wrote: Yes. Delete the line containing PW_TYPE_STRING, and change the previous line to: if ((dattr = dict_attrbyname(newattr)) != NULL) { Then re-compile install. Just what i thought bu wasn't sure. Can we expect this to be changed permanently in future releases? Thank you for your help. Igor - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Update from 1.1.7 to 2.x
Hi, I tried to update from the version 1.1.7 to version 2.x.x but don't work. I have a working server and i would like update to newer version. How can I do? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Different LDAP group authentication with different IPs
Hello all I want to run only one radiusd (no virtual server) to support my scenario, and it is like below: From IP x.x.x.1 - Only Allow LDAP Group A to access From IP x.x.x.2 - Only Allow LDAP Group B to access from the doc/ldap_howto.txt, it seems not working I've found in mailing lists, and the proper solution is to use huntgroups and users file. But in freeradius 2.1.x, it's not recommended to use users to do so... Is there any good solution for this sceranio? Thanks a lot stephon - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Update from 1.1.7 to 2.x
Hi, Hi, I tried to update from the version 1.1.7 to version 2.x.x but don't work. I have a working server and i would like update to newer version. take the default 2.x.x version and dont play with it. ensure it just runs. then edit its configuration files so that it performs the same policies/duties and tasks as your previous 1.1.7 version. you cannot just dump the configs over the top. 2.x.x has many new options which you will discover as you read through the configuration files..stuff that 1.1.x never had and new ways of working that 1.1.x never had (modules and virtual-servers being key examples) alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Authcheck table and groupreply table on two different databases
Hello everybody, I’ll present myself as a new subscriber; my name is Paolo, I’m from Italy and I work as sysadm at Università di Urbino. The easy think, the question: it’s possible to setup authcheck_table into a database/host and both groupcheck_table, groupreply_table into a different database/host? Now I’ll try to explain the goal, else if that will be not as easy. Ad maybe someone will lead me to a working solution. Maybe will lead to a quite different approach. We have, of course, down there some nice application to manage things, like student, staff etc.; those applications do have their own proprietary databases and they’re authoritative on fields like anagraphics and else usernames and passwords. In an effort to clean that nightly mess of batch scripts transferring credentials around, we decided to leave data where they live, into authoritative databases. It’s easy to pull username/password from a proprietary database, just know where fields are; but I cannot alter the database’s structure and I need some group related radius attributes, say Session-Timeout. I know what the group is, I just ran a query on a student account so the group is stud. I need now to pass ‘stud’ to an authorize_group_reply_query, but must be on a different database. Any hint? And thanks in advance. Paolo. -- View this message in context: http://old.nabble.com/Authcheck-table-and-groupreply-table-on-two-different-databases-tp27714401p27714401.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Problems with NoCatAuth+RADIUS+LDAP
Hi my name is Sergio Ormeño, i am from Chile, and i with some partners are trying to create a Captive portal with NoCatAuth+RADIUS+LDAP and we have problems with the conection between RADIUS+LDAP with a radtest everything if fine and the packet is accepted, but in the login page of NoCat dosn`t log, here are the log of the radtest -X after a try with the login of NoCat [r...@ldap nocat]# radiusd -X FreeRADIUS Version 2.1.8, for host i686-pc-linux-gnu, built on Jan 21 2010 at 11:30:47 Copyright (C) 1999-2009 The FreeRADIUS server project and contributors. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. You may redistribute copies of FreeRADIUS under the terms of the GNU General Public License v2. Starting - reading configuration files ... including configuration file /usr/local/etc/raddb/radiusd.conf including configuration file /usr/local/etc/raddb/proxy.conf including configuration file /usr/local/etc/raddb/clients.conf including files in directory /usr/local/etc/raddb/modules/ including configuration file /usr/local/etc/raddb/modules/passwd including configuration file /usr/local/etc/raddb/modules/smsotp including configuration file /usr/local/etc/raddb/modules/detail including configuration file /usr/local/etc/raddb/modules/digest including configuration file /usr/local/etc/raddb/modules/mschap including configuration file /usr/local/etc/raddb/modules/cui including configuration file /usr/local/etc/raddb/modules/acct_unique including configuration file /usr/local/etc/raddb/modules/inner-eap including configuration file /usr/local/etc/raddb/modules/wimax including configuration file /usr/local/etc/raddb/modules/exec including configuration file /usr/local/etc/raddb/modules/perl including configuration file /usr/local/etc/raddb/modules/krb5 including configuration file /usr/local/etc/raddb/modules/smbpasswd including configuration file /usr/local/etc/raddb/modules/sql_log including configuration file /usr/local/etc/raddb/modules/mac2ip including configuration file /usr/local/etc/raddb/modules/attr_rewrite including configuration file /usr/local/etc/raddb/modules/ippool including configuration file /usr/local/etc/raddb/modules/pap including configuration file /usr/local/etc/raddb/modules/chap including configuration file /usr/local/etc/raddb/modules/always including configuration file /usr/local/etc/raddb/modules/echo including configuration file /usr/local/etc/raddb/modules/pam including configuration file /usr/local/etc/raddb/modules/expiration including configuration file /usr/local/etc/raddb/modules/checkval including configuration file /usr/local/etc/raddb/modules/ntlm_auth including configuration file /usr/local/etc/raddb/modules/sradutmp including configuration file /usr/local/etc/raddb/modules/sqlcounter_expire_on_login including configuration file /usr/local/etc/raddb/modules/attr_filter including configuration file /usr/local/etc/raddb/modules/otp including configuration file /usr/local/etc/raddb/modules/realm including configuration file /usr/local/etc/raddb/modules/files including configuration file /usr/local/etc/raddb/modules/etc_group including configuration file /usr/local/etc/raddb/modules/radutmp including configuration file /usr/local/etc/raddb/modules/detail.log including configuration file /usr/local/etc/raddb/modules/linelog including configuration file /usr/local/etc/raddb/modules/logintime including configuration file /usr/local/etc/raddb/modules/detail.example.com including configuration file /usr/local/etc/raddb/modules/ldap including configuration file /usr/local/etc/raddb/modules/counter including configuration file /usr/local/etc/raddb/modules/preprocess including configuration file /usr/local/etc/raddb/modules/unix including configuration file /usr/local/etc/raddb/modules/expr including configuration file /usr/local/etc/raddb/modules/mac2vlan including configuration file /usr/local/etc/raddb/modules/policy including configuration file /usr/local/etc/raddb/eap.conf including configuration file /usr/local/etc/raddb/policy.conf including files in directory /usr/local/etc/raddb/sites-enabled/ including configuration file /usr/local/etc/raddb/sites-enabled/default including configuration file /usr/local/etc/raddb/sites-enabled/control-socket including configuration file /usr/local/etc/raddb/sites-enabled/inner-tunnel main { allow_core_dumps = no } including dictionary file /usr/local/etc/raddb/dictionary main { prefix = /usr/local localstatedir = /usr/local/var logdir = /usr/local/var/log/radius libdir = /usr/local/lib radacctdir = /usr/local/var/log/radius/radacct hostname_lookups = no max_request_time = 30 cleanup_delay = 5 max_requests = 1024 pidfile = /usr/local/var/run/radiusd/radiusd.pid checkrad = /usr/local/sbin/checkrad debug_level = 0 proxy_requests = yes log { stripped_names = no auth = yes
Re: Different LDAP group authentication with different IPs
Search and you shall recieve http://lists.freeradius.org/mailman/htdig/freeradius-users/2009-November/msg1.html That's how I it, and until anyone finds a better way... On Thu, Feb 25, 2010 at 11:11 PM, Stephon Chen step...@gmail.com wrote: Hello all I want to run only one radiusd (no virtual server) to support my scenario, and it is like below: From IP x.x.x.1 - Only Allow LDAP Group A to access From IP x.x.x.2 - Only Allow LDAP Group B to access from the doc/ldap_howto.txt, it seems not working I've found in mailing lists, and the proper solution is to use huntgroups and users file. But in freeradius 2.1.x, it's not recommended to use users to do so... Is there any good solution for this sceranio? Thanks a lot stephon - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Problems with NoCatAuth+RADIUS+LDAP
Sergio Ormeño wrote: Hi my name is Sergio Ormeño, i am from Chile, and i with some partners are trying to create a Captive portal with NoCatAuth+RADIUS+LDAP and we have problems with the conection between RADIUS+LDAP with a radtest everything if fine and the packet is accepted, but in the login page of NoCat dosn`t log, here are the log of the radtest -X after a try with the login of NoCat Nocatauth is sending an empty Access-Request. It's broken. Fix it. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html