Re: RE: variable expansions in Reply-Message
Thanks, Tim,
> > when using FreeRADIUS 1.1, I could store RADIUS replies like
> > Reply-Message := "Hello, %u", and get the %u expanded to the username
> > in the reply. After upgrading to FreeRADIUS 2.1, this doesn't seem
> > to work anymore, the reply contains the unexpanded %u. Has this
> > feature been removed, or do I have to configure it explicitly?
>
> Isidor,
>
> Check the man page for unlang -- man unlang -- for current details on
> strings and variables.
>
> For User-Name, try: > Reply-Message := "Hello, %{User-Name}"
>
I also tried %{User-Name}, but it made no difference.
The problem with the unlang manpage is that it doesn't make it
very clear _when_ the expansions are processed. Variables are
definitely expanded before the SQL server receives queries, as the
query templates use variables. I get the impression that the
expansions are not processed anymore on the SQL results.
Best regards,
Isidor
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Centos Yum Packages
Hi List Just wondering how to install Freeradius on Centos 5.4 using YUM now that the "Tech preview" is over for redhat. Thanks -- Andrew Paternoster Senior System Engineer GPK Computers Pty Ltd T 1300 854 223 F 1300 854 228 Did you know that you can now log faults just by sending an email to supp...@gpk.net.au --- The information contained in or accompanying this e-mail is intended only for the use of the stated recipient and may contain information that is confidential and/or privileged. If the reader is not the intended recipient or the agent thereof, you are hereby notified that any dissemination, distribution or copying of this e-mail is strictly prohibited and may constitute a breach of confidence and/or privilege. If you have received this e-mail in error, please notify us immediately. Any views or opinions presented are those solely of the author and do not necessarily represent those of GPK Computers Pty Ltd.. Warning: Although the company has taken reasonable precautions to ensure no viruses are present in this e-mail, the company cannot accept responsibility for any loss or damage arising from the use of this e-mail or attachments --- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: variable expansions in Reply-Message
> when using FreeRADIUS 1.1, I could store RADIUS replies like
> Reply-Message := "Hello, %u", and get the %u expanded to the username
> in the reply. After upgrading to FreeRADIUS 2.1, this doesn't seem
> to work anymore, the reply contains the unexpanded %u. Has this
> feature been removed, or do I have to configure it explicitly?
Isidor,
Check the man page for unlang -- man unlang -- for current details on
strings and variables.
For User-Name, try: > Reply-Message := "Hello, %{User-Name}"
Tim
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
variable expansions in Reply-Message
Hi, when using FreeRADIUS 1.1, I could store RADIUS replies like Reply-Message := "Hello, %u", and get the %u expanded to the username in the reply. After upgrading to FreeRADIUS 2.1, this doesn't seem to work anymore, the reply contains the unexpanded %u. Has this feature been removed, or do I have to configure it explicitly? Best regards, Isidor Zeuner - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: cannot get core dump of crashing freeradius
On Fri, Apr 16, 2010 at 12:05:38PM +0200, Alan DeKok wrote: > Jakob Hirsch wrote: > > Anyways, I really want to find out what's going wrong, so I wanted to > > get core dumps of these crashes. Only that I just don't get them. > > > So what's missing? The only indication of the crash is this line in syslog: > > > >> Apr 10 17:57:19 kernel: [12268615.000288] freeradius[14846]: > >> segfault at 73818 ip 7f0cb40e875e sp 7fff9c6304c0 error 4 in > >> libfreeradius-radius-2.1.8.so[7f0cb40d1000+1f000] > > > > (This is debian lenny x86_64, btw.) > > > > Any hints? > > doc/bugs. You'll need symbols to find out what's going on. For Debian users you can recommend installing the symbols from the package freeradius-dbg See also http://packages.debian.org/freeradius-dbg -- 2. That which causes joy or happiness. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: No Auth in Debian Lenny
On Sat, Apr 17, 2010 at 11:14:59AM -0500, Jonathan Hutchins wrote: > On Saturday 17 April 2010 01:51:22 am Alan DeKok wrote: > > > Post the debug log, as suggested in the FAQ, README, INSTALL, "man" > > page, and daily on this list. > > Attached. > > Are there any issues with freeradius and samba's tdbsam password backend? > > Basically I've added the client to the clients file and turned on mppe, > that's > about the extent of the configuration. You haven't enabled anything in /etc/freeradius/sites-enabled/ which means the server isn't told what to actually *do* with the modules and clients :) You need to find one of the default virtual host configs in /etc/freeradius/sites-available/ that suits you, and then symlink it into the ...-enabled directory. You can also copy it into a new file and symlink/enable that. Also make sure the right autorization sections within the virtual host reference the mppe module if you need it. -- 2. That which causes joy or happiness. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Authenticate computers with their hostnames
On 04/16/2010 10:37 PM, Difan Zhao wrote: Users file: host/neteng-sp1.gtcorp.com Auth-Type := Accept That won't work I think. The hosts are expecting to do EAP/PEAP+MS-CHAP (or EAP-TLS) and you'll need appropriate server-side auth mechanisms to issue the correct challenge/response values. That is, you need to setup auth against their machine account credentials or certificates. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
