Re: mysql configuration for version 2.1.8
On Thu, Feb 25, 2010 at 2:22 PM, Pratik Shrestha pratik...@gmail.com wrote: Hello to all, I am using the latest version 2.1.8 and I am newbie. I was trying to configure sql (mysql) for this version, but I did not find any configuration help from any source. Where did you look? See doc/rlm_sql Or (if you install from RPM) /usr/share/doc/freeradius-2.1.6/rlm_sql -- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dictionary help
Alan DeKok wrote: Hmm... the code in rlm_preprocess checks if the attribute is string type. I don't see why this is necessary. See line 155 (or so) in src/modules/rlm_preprocess/rlm_preprocess.c. I've saw the source and now i understand, but, i don't know much of C and don't know if problem is solvable? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. And do you know any site that describes the configuration for 2.1.8 with mysql? Pratik On Thu, Feb 25, 2010 at 3:31 PM, Fajar A. Nugraha fa...@fajar.net wrote: On Thu, Feb 25, 2010 at 2:22 PM, Pratik Shrestha pratik...@gmail.com wrote: Hello to all, I am using the latest version 2.1.8 and I am newbie. I was trying to configure sql (mysql) for this version, but I did not find any configuration help from any source. Where did you look? See doc/rlm_sql Or (if you install from RPM) /usr/share/doc/freeradius-2.1.6/rlm_sql -- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
Pratik Shrestha wrote: Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. Have you bothered reading the documentation and config files that come with the server? Read raddb/sql.conf. It's explained. And do you know any site that describes the configuration for 2.1.8 with mysql? I'm continually amazed at the number of people who spend hours googling for solutions, instead of reading the documentation that comes with the server. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dictionary help
Igor Smitran wrote:
I've saw the source and now i understand, but, i don't know much of C
and don't know if problem is solvable?
Yes. Delete the line containing PW_TYPE_STRING, and change the
previous line to:
if ((dattr = dict_attrbyname(newattr)) != NULL) {
Then re-compile install.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
On Thu, Feb 25, 2010 at 3:47 PM, Pratik Shrestha pratik...@gmail.com wrote: Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. where did you find rad.sql? From /etc/raddb/sql.conf: # Configuration for the SQL module # # The database schemas and queries are located in subdirectories: # # sql/DB/schema.sql Schema # sql/DB/dialup.conf Basic dialup (including policy) queries # sql/DB/counter.conf counter # sql/DB/ippool.conf IP Pools in SQL # sql/DB/ippool.sql schema for IP pools. # # Where DB is mysql, mssql, oracle, or postgresql. And do you know any site that describes the configuration for 2.1.8 with mysql? doc/rlm_sql and sql.conf is the best source. -- Fajar - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: mysql configuration for version 2.1.8
Thanks...I have already configured. Pratik On Thu, Feb 25, 2010 at 3:53 PM, Alan DeKok al...@deployingradius.comwrote: Pratik Shrestha wrote: Thanks. But is the database schema has changed from previous version? In previous version there used to be mysql.sql or db_mysql.sql. In this version I found rad.sql, cui.sql and so on. Have you bothered reading the documentation and config files that come with the server? Read raddb/sql.conf. It's explained. And do you know any site that describes the configuration for 2.1.8 with mysql? I'm continually amazed at the number of people who spend hours googling for solutions, instead of reading the documentation that comes with the server. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: dictionary help
Alan DeKok wrote:
Yes. Delete the line containing PW_TYPE_STRING, and change the
previous line to:
if ((dattr = dict_attrbyname(newattr)) != NULL) {
Then re-compile install.
Just what i thought bu wasn't sure.
Can we expect this to be changed permanently in future releases?
Thank you for your help.
Igor
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Update from 1.1.7 to 2.x
Hi, I tried to update from the version 1.1.7 to version 2.x.x but don't work. I have a working server and i would like update to newer version. How can I do? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Different LDAP group authentication with different IPs
Hello all I want to run only one radiusd (no virtual server) to support my scenario, and it is like below: From IP x.x.x.1 - Only Allow LDAP Group A to access From IP x.x.x.2 - Only Allow LDAP Group B to access from the doc/ldap_howto.txt, it seems not working I've found in mailing lists, and the proper solution is to use huntgroups and users file. But in freeradius 2.1.x, it's not recommended to use users to do so... Is there any good solution for this sceranio? Thanks a lot stephon - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Update from 1.1.7 to 2.x
Hi, Hi, I tried to update from the version 1.1.7 to version 2.x.x but don't work. I have a working server and i would like update to newer version. take the default 2.x.x version and dont play with it. ensure it just runs. then edit its configuration files so that it performs the same policies/duties and tasks as your previous 1.1.7 version. you cannot just dump the configs over the top. 2.x.x has many new options which you will discover as you read through the configuration files..stuff that 1.1.x never had and new ways of working that 1.1.x never had (modules and virtual-servers being key examples) alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Authcheck table and groupreply table on two different databases
Hello everybody, I’ll present myself as a new subscriber; my name is Paolo, I’m from Italy and I work as sysadm at Università di Urbino. The easy think, the question: it’s possible to setup authcheck_table into a database/host and both groupcheck_table, groupreply_table into a different database/host? Now I’ll try to explain the goal, else if that will be not as easy. Ad maybe someone will lead me to a working solution. Maybe will lead to a quite different approach. We have, of course, down there some nice application to manage things, like student, staff etc.; those applications do have their own proprietary databases and they’re authoritative on fields like anagraphics and else usernames and passwords. In an effort to clean that nightly mess of batch scripts transferring credentials around, we decided to leave data where they live, into authoritative databases. It’s easy to pull username/password from a proprietary database, just know where fields are; but I cannot alter the database’s structure and I need some group related radius attributes, say Session-Timeout. I know what the group is, I just ran a query on a student account so the group is stud. I need now to pass ‘stud’ to an authorize_group_reply_query, but must be on a different database. Any hint? And thanks in advance. Paolo. -- View this message in context: http://old.nabble.com/Authcheck-table-and-groupreply-table-on-two-different-databases-tp27714401p27714401.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Problems with NoCatAuth+RADIUS+LDAP
Hi my name is Sergio Ormeño, i am from Chile, and i with some partners are
trying to create a Captive portal with NoCatAuth+RADIUS+LDAP and we have
problems with the conection between RADIUS+LDAP with a radtest everything if
fine and the packet is accepted, but in the login page of NoCat dosn`t log,
here are the log of the radtest -X after a try with the login of NoCat
[r...@ldap nocat]# radiusd -X
FreeRADIUS Version 2.1.8, for host i686-pc-linux-gnu, built on Jan 21 2010
at 11:30:47
Copyright (C) 1999-2009 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
You may redistribute copies of FreeRADIUS under the terms of the
GNU General Public License v2.
Starting - reading configuration files ...
including configuration file /usr/local/etc/raddb/radiusd.conf
including configuration file /usr/local/etc/raddb/proxy.conf
including configuration file /usr/local/etc/raddb/clients.conf
including files in directory /usr/local/etc/raddb/modules/
including configuration file /usr/local/etc/raddb/modules/passwd
including configuration file /usr/local/etc/raddb/modules/smsotp
including configuration file /usr/local/etc/raddb/modules/detail
including configuration file /usr/local/etc/raddb/modules/digest
including configuration file /usr/local/etc/raddb/modules/mschap
including configuration file /usr/local/etc/raddb/modules/cui
including configuration file /usr/local/etc/raddb/modules/acct_unique
including configuration file /usr/local/etc/raddb/modules/inner-eap
including configuration file /usr/local/etc/raddb/modules/wimax
including configuration file /usr/local/etc/raddb/modules/exec
including configuration file /usr/local/etc/raddb/modules/perl
including configuration file /usr/local/etc/raddb/modules/krb5
including configuration file /usr/local/etc/raddb/modules/smbpasswd
including configuration file /usr/local/etc/raddb/modules/sql_log
including configuration file /usr/local/etc/raddb/modules/mac2ip
including configuration file /usr/local/etc/raddb/modules/attr_rewrite
including configuration file /usr/local/etc/raddb/modules/ippool
including configuration file /usr/local/etc/raddb/modules/pap
including configuration file /usr/local/etc/raddb/modules/chap
including configuration file /usr/local/etc/raddb/modules/always
including configuration file /usr/local/etc/raddb/modules/echo
including configuration file /usr/local/etc/raddb/modules/pam
including configuration file /usr/local/etc/raddb/modules/expiration
including configuration file /usr/local/etc/raddb/modules/checkval
including configuration file /usr/local/etc/raddb/modules/ntlm_auth
including configuration file /usr/local/etc/raddb/modules/sradutmp
including configuration file
/usr/local/etc/raddb/modules/sqlcounter_expire_on_login
including configuration file /usr/local/etc/raddb/modules/attr_filter
including configuration file /usr/local/etc/raddb/modules/otp
including configuration file /usr/local/etc/raddb/modules/realm
including configuration file /usr/local/etc/raddb/modules/files
including configuration file /usr/local/etc/raddb/modules/etc_group
including configuration file /usr/local/etc/raddb/modules/radutmp
including configuration file /usr/local/etc/raddb/modules/detail.log
including configuration file /usr/local/etc/raddb/modules/linelog
including configuration file /usr/local/etc/raddb/modules/logintime
including configuration file /usr/local/etc/raddb/modules/detail.example.com
including configuration file /usr/local/etc/raddb/modules/ldap
including configuration file /usr/local/etc/raddb/modules/counter
including configuration file /usr/local/etc/raddb/modules/preprocess
including configuration file /usr/local/etc/raddb/modules/unix
including configuration file /usr/local/etc/raddb/modules/expr
including configuration file /usr/local/etc/raddb/modules/mac2vlan
including configuration file /usr/local/etc/raddb/modules/policy
including configuration file /usr/local/etc/raddb/eap.conf
including configuration file /usr/local/etc/raddb/policy.conf
including files in directory /usr/local/etc/raddb/sites-enabled/
including configuration file /usr/local/etc/raddb/sites-enabled/default
including configuration file
/usr/local/etc/raddb/sites-enabled/control-socket
including configuration file /usr/local/etc/raddb/sites-enabled/inner-tunnel
main {
allow_core_dumps = no
}
including dictionary file /usr/local/etc/raddb/dictionary
main {
prefix = /usr/local
localstatedir = /usr/local/var
logdir = /usr/local/var/log/radius
libdir = /usr/local/lib
radacctdir = /usr/local/var/log/radius/radacct
hostname_lookups = no
max_request_time = 30
cleanup_delay = 5
max_requests = 1024
pidfile = /usr/local/var/run/radiusd/radiusd.pid
checkrad = /usr/local/sbin/checkrad
debug_level = 0
proxy_requests = yes
log {
stripped_names = no
auth = yes
Re: Different LDAP group authentication with different IPs
Search and you shall recieve http://lists.freeradius.org/mailman/htdig/freeradius-users/2009-November/msg1.html That's how I it, and until anyone finds a better way... On Thu, Feb 25, 2010 at 11:11 PM, Stephon Chen step...@gmail.com wrote: Hello all I want to run only one radiusd (no virtual server) to support my scenario, and it is like below: From IP x.x.x.1 - Only Allow LDAP Group A to access From IP x.x.x.2 - Only Allow LDAP Group B to access from the doc/ldap_howto.txt, it seems not working I've found in mailing lists, and the proper solution is to use huntgroups and users file. But in freeradius 2.1.x, it's not recommended to use users to do so... Is there any good solution for this sceranio? Thanks a lot stephon - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Problems with NoCatAuth+RADIUS+LDAP
Sergio Ormeño wrote: Hi my name is Sergio Ormeño, i am from Chile, and i with some partners are trying to create a Captive portal with NoCatAuth+RADIUS+LDAP and we have problems with the conection between RADIUS+LDAP with a radtest everything if fine and the packet is accepted, but in the login page of NoCat dosn`t log, here are the log of the radtest -X after a try with the login of NoCat Nocatauth is sending an empty Access-Request. It's broken. Fix it. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
