Re: problems with authorization PEAP - EAP-MSCHAPv2 clients
I am not an expert on this but I think here is the problem. Under *eap*
you have this:
eap ###
eap {
default_eap_type = md5
timer_expire = 60
ignore_unknown_eap_types = no
cisco_accounting_username_bug = no
I think you want to change it to:
eap ###
eap {
default_eap_type = *mschapv2*
timer_expire = 60
ignore_unknown_eap_types = no
cisco_accounting_username_bug = no
That seem to work for me. Give it a try. I have test FR 2.1.1 with that
configuration. Client is Win XP SP3
Lukas Lisa wrote:
Hello,
I would like to authorize windows clients access to 3com Baseline
Switch 2948 SFP against FreeRADIUS server 2.0.5.
Windows are cofigured to use PEAP - EAP-MSCHAPv2.
Server certificate was created with bootstrap script (xpextensions
are included).
I tried windows xp sp3 and linux (wpa_supplicant) client and both
cause the same server output and authorization can't pass.
Testing tools eapol_test, radeapclient and jRadiusSimulator can pass
all tests fine.
EAP - MD5 Challenge works fine.
Attaching radiusd.conf and radius -X output.
Thanks for help.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: AW: Dialup admin questions
To fix your warning about mktime(), edit the file function.php3, go to
line 95 and the function should look like this.
function date2time($date)
{
list($day,$time)=explode(' ',$date);
$day = explode('-',$day);
$time = explode(':',$time);
#$timest =
mktime($time[0],$time[1],$time[2],$day[1],$day[2],$day[0]);
$timest = mktime(0,0,0,$day[1],$day[2],$day[0]);
return $timest;
}
I had the same problem and that was the fix for me. Good luck..
[EMAIL PROTECTED] wrote:
1. Can I see the statistics or aren't they passed, too?
They will come up once you connect to the accounting.
2. Is there an alternative with which I can edit the configuration files etc
via webinterface?
You can use things like OpenOffice if it is installed and you connect via
KVM or VNC. Normally you connect with ssh (putty) and use joe or such
text editors. Chap from daloRadius used to post here some time ago. You
can try that and see.
3. How can I fix this warning message:
Warning: mktime() expects parameter 1 to be long, string given in
/usr/share/freeradius-dialupadmin/lib/functions.php3 on line 95
That's something to do with php. That extension is .php3 so it probably
wasn't updated for quite some time.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Install error
Won't it be easier for you to just download the source, compile and install? You will be chasing lot's of rpm dependencies if you don't have all your packages install under RHEL. Just a thought. else, you can check this site for your missing rpm package. http://rpmfine.net if you are lucky, you will find some RHEL package. John Dennis wrote: Olavo Dietrich wrote: Thanks John, Do I need a RH subscription for this or the repo name is not right ? # yum --enablerepo fedora-development install freeradius Loading rhnplugin plugin Loading security plugin This system is not registered with RHN. RHN support will be disabled. Error getting repository data for fedora-development, repository not found You didn't say this was RHEL, Fedora != RHEL, there is no fedora-development repository for RHEL. I suggest you follow the instructions for building from an srpm then. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Install error
Oops!! Wrong URL http://rpmfind.net Sorry about that. Madwifi Wireless wrote: Won't it be easier for you to just download the source, compile and install? You will be chasing lot's of rpm dependencies if you don't have all your packages install under RHEL. Just a thought. else, you can check this site for your missing rpm package. http://rpmfine.net if you are lucky, you will find some RHEL package. John Dennis wrote: Olavo Dietrich wrote: Thanks John, Do I need a RH subscription for this or the repo name is not right ? # yum --enablerepo fedora-development install freeradius Loading rhnplugin plugin Loading security plugin This system is not registered with RHN. RHN support will be disabled. Error getting repository data for fedora-development, repository not found You didn't say this was RHEL, Fedora != RHEL, there is no fedora-development repository for RHEL. I suggest you follow the instructions for building from an srpm then. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
unable to write 'random state' when starting freeradius
Has anyone come across this error? This happens when I start freeradius for the first time. Platform: RedHat ES 4.0 Version: FreeRadius 2.1.1 I have highlighted the message in read. It doesn't matter if I run this command as root. Thanks for you help. AM sudo ./radiusd - Fri Oct 3 14:34:04 2008 : Info: FreeRADIUS Version 2.1.1, for host i686-pc-linux-gnu, built on Oct 3 2008 at 14:30:11 Fri Oct 3 14:34:04 2008 : Info: Copyright (C) 1999-2008 The FreeRADIUS server project and contributors. Fri Oct 3 14:34:04 2008 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A Fri Oct 3 14:34:04 2008 : Info: PARTICULAR PURPOSE. Fri Oct 3 14:34:04 2008 : Info: You may redistribute copies of FreeRADIUS under the terms of the Fri Oct 3 14:34:04 2008 : Info: GNU General Public License v2. Fri Oct 3 14:34:04 2008 : Info: Starting - reading configuration files ... Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/radiusd.conf Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/proxy.conf Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/clients.conf Fri Oct 3 14:34:04 2008 : Debug: including files in directory /usr/local/freeradius-2.1.1/etc/raddb/modules/ Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/attr_filter Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/always Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/expiration Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/digest Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/echo Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/exec Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/detail.log Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/sradutmp Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/wimax Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/checkval Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/acct_unique Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/preprocess Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/linelog Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/mac2vlan Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/counter Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/etc_group Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/ippool Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/radutmp Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/pap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/krb5 Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/mac2ip Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/detail.example.com Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/ldap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/files Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/passwd Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/inner-eap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/mschap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/expr Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/detail Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/attr_rewrite Fri Oct 3 14:34:04 2008 : Debug: including configuration file
unable to write 'random state' on startup
Has anyone come across this error? This happens when I start freeradius for the first time. Platform: RedHat ES 4.0 Version: FreeRadius 2.1.1 I have highlighted the message in read. It doesn't matter if I run this command as root. Thanks for you help. Sorry if this is posted twice. AM sudo ./radiusd - Fri Oct 3 14:34:04 2008 : Info: FreeRADIUS Version 2.1.1, for host i686-pc-linux-gnu, built on Oct 3 2008 at 14:30:11 Fri Oct 3 14:34:04 2008 : Info: Copyright (C) 1999-2008 The FreeRADIUS server project and contributors. Fri Oct 3 14:34:04 2008 : Info: There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A Fri Oct 3 14:34:04 2008 : Info: PARTICULAR PURPOSE. Fri Oct 3 14:34:04 2008 : Info: You may redistribute copies of FreeRADIUS under the terms of the Fri Oct 3 14:34:04 2008 : Info: GNU General Public License v2. Fri Oct 3 14:34:04 2008 : Info: Starting - reading configuration files ... Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/radiusd.conf Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/proxy.conf Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/clients.conf Fri Oct 3 14:34:04 2008 : Debug: including files in directory /usr/local/freeradius-2.1.1/etc/raddb/modules/ Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/attr_filter Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/always Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/expiration Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/digest Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/echo Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/exec Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/detail.log Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/sradutmp Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/wimax Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/checkval Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/acct_unique Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/preprocess Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/linelog Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/mac2vlan Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/counter Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/etc_group Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/ippool Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/radutmp Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/pap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/krb5 Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/mac2ip Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/detail.example.com Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/ldap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/files Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/passwd Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/inner-eap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/mschap Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/expr Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/detail Fri Oct 3 14:34:04 2008 : Debug: including configuration file /usr/local/freeradius-2.1.1/etc/raddb/modules/attr_rewrite Fri Oct 3 14:34:04 2008 : Debug: including
Re: unable to write 'random state' when starting freeradius
Hi John, Thanks for the response, here is my settings. I am basically running this as root since am just testing right now. In my radiusd.conf the user/group is commented out. # #user = radius #group = radius And the permission on the certs directory is 770 [EMAIL PROTECTED] sbin]# ls -ld ../etc/raddb/certs *drwxrwx--- 2 root root 4096 Oct 3 18:00 ../etc/raddb/certs* [EMAIL PROTECTED] sbin]# I've also tried the same thing on ubuntu and I have the same error message. AM John Dennis wrote: Madwifi Wireless wrote: Has anyone come across this error? This happens when I start freeradius for the first time. Platform: RedHat ES 4.0 Version: FreeRadius 2.1.1 random_file = /usr/local/freeradius-2.1.1/etc/raddb/certs/random What are the ownership and permissions and ownership on the directory /usr/local/freeradius-2.1.1/etc/raddb/certs? Do they match the user and group specified in /usr/local/freeradius-2.1.1/etc/radiusd.conf? Assuming the user/group is either radius or radiusd the does the directory permissions allow an owner or group to write into that directory? For example it should be something this (this example assumes installation with prefix=/usr): sudo ls -ld /etc/raddb/certs drwxrwx--- 2 root radiusd 4096 2008-09-25 15:29 /etc/raddb/certs - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
