AW: Problem connecting to a router via RADIUS Server authentication
Make sure you have the same shared secret configured on your linksys router and in your clients.conf looks like this: # Linksys client 192.168.6.15 { secret = whatever shortname = myRouter nastype = other } replace whatever with the secret key. -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von prajakta choudhari Gesendet: Mittwoch, 23. Mai 2007 14:34 An: freeradius-users@lists.freeradius.org Betreff: Problem connecting to a router via RADIUS Server authentication Hi all: I have configured the radius server . I have a linksys router with wireless security as RADIUS enabled and laptop that connects to the linksys router. whenever i try connecting to the router i get the folloing message on the machine wiht the radius server. the clients.conf has the secret key as testing123 . In which other file do i have to put the same key. Cleaning up request 4 ID 0 with timestamp 46543306 Nothing to do. Sleeping until we see a request. rad_recv: Access-Request packet from host 192.168.6.15:2050, id=0, length=129 Received packet from 192.168.6.15 with invalid Message-Authenticator! (Shared secret is incorrect.) Dropping packet without response. Cud someone throw light on this issue Thank you Prajakta Choudhari __ Yahoo! India Answers: Share what you know. Learn something new http://in.answers.yahoo.com/ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
AW: SIP UAC authentication using Digest-HA1 and Ldap
Thanks ... installing FreeRadius 1.1.3 worked already best rgds -Karel Stadler auth: type digest Processing the authenticate section of radiusd.conf modcall: entering group authenticate for request 0 rlm_digest: Converting Digest-Attributes to something sane... Digest-User-Name = mueller Digest-Realm = foo.net Digest-Nonce = 46497e22121167d5bfdf63eaf1220e60f5d17626 Digest-URI = sip:10.10.10.1 Digest-Method = REGISTER A1 = mueller:foo.net: (using Digest-HA1) A2 = REGISTER:sip:10.10.10.1 H(A1) = 8e041f49c9e4a473d58c0f7700e7049d H(A2) = b9c28ec285e7b5681206ce08fc51eb73 KD = 8e041f49c9e4a473d58c0f7700e7049d:46497e22121167d5bfdf6feaf7220e60f5d17626:b9c28ec285e7b5681206ce08fc51eb73 EXPECTED cbaf47e1e8e97c7c13796798fef3bb7f RECEIVED cbaf47e1e8e97c7c13796798fef3bb7f modcall[authenticate]: module digest returns ok for request 0 modcall: leaving group authenticate (returns ok) for request 0 Sending Access-Accept of id 29 to 127.0.0.1 port 32773 Finished request 0 Going to the next request -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Alan DeKok Gesendet: Freitag, 11. Mai 2007 16:27 An: FreeRadius users mailing list Betreff: Re: SIP UAC authentication using Digest-HA1 and Ldap Stadler Karel wrote: How can this be solved and please don't say tell the server what the password is. I need to know how it can be configured. We're using FreeRadius Version 1.0.1. Install 1.1.6. I'm amazed at the flood of recent posts from people who have versions that are *years* out of date. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
SIP UAC authentication using Digest-HA1 and Ldap
Hello We have a setup with Active Directory and there we used a field for the Digest-HA1 hash (testpurpose). This field contains a md5-hashed value of username:realm:password. FreeRadius is configured to do a Ldap query to the AD and pullout this value, which works very well. I've configured the ldap.attrmap for checkItem Digest-HA1 ADFIELD and commented out the password_attribute= in modules{} as described on a FreeRadius Wiki. Now the problem is that FreeRadius produces this error. rlm_digest: Configuration item User-Password is required for authentication. How can this be solved and please don't say tell the server what the password is. I need to know how it can be configured. We're using FreeRadius Version 1.0.1. best rgds -Karel Stadler --- rad_recv: Access-Request packet from host 127.0.0.1:33040, id=237, length=196 User-Name = [EMAIL PROTECTED] Digest-Attributes = 0x0a09737461646c6572 Digest-Attributes = 0x01087073692e6368 Digest-Attributes = 0x022a343634343735353636376136383965393834373832373930303739653336346331 31396365346630 Digest-Attributes = 0x04147369703a3132392e3132392e3139322e3234 Digest-Attributes = 0x030a5245474953544552 Digest-Response = 2f9bcef76be40b7a3a2c78367ae24e8b Service-Type = IAPP-Register Sip-URI-User = mueller NAS-Port = 5060 NAS-IP-Address = 127.0.0.1 Processing the authorize section of radiusd.conf modcall: entering group authorize for request 0 hints: Matched DEFAULT at 37 modcall[authorize]: module preprocess returns ok for request 0 modcall[authorize]: module chap returns noop for request 0 modcall[authorize]: module mschap returns noop for request 0 rlm_digest: Converting Digest-Attributes to something sane... Digest-User-Name = mueller Digest-Realm = foo.net Digest-Nonce = 4644755667a689e984782790079e364c119ce4f0 Digest-URI = sip:10.10.10.24 Digest-Method = REGISTER rlm_digest: Adding Auth-Type = DIGEST modcall[authorize]: module digest returns ok for request 0 rlm_realm: Request already proxied. Ignoring. modcall[authorize]: module suffix returns noop for request 0 rlm_eap: No EAP-Message, not doing EAP modcall[authorize]: module eap returns noop for request 0 users: Matched DEFAULT at 8 modcall[authorize]: module files returns ok for request 0 rlm_ldap: - authorize rlm_ldap: performing user authorization for mueller radius_xlat: '(sAMAccountName=mueller)' radius_xlat: 'ou=users,ou=foo,dc=m,dc=foo,dc=net' rlm_ldap: ldap_get_conn: Checking Id: 0 rlm_ldap: ldap_get_conn: Got Id: 0 rlm_ldap: attempting LDAP reconnection rlm_ldap: (re)connect to 129.129.193.110:389, authentication 0 rlm_ldap: bind as cn=mueller,ou=users,ou=foo,dc=m,dc=foo,dc=net/PaSw0R$D to 10.10.10.110:389 rlm_ldap: waiting for bind result ... rlm_ldap: Bind was successful rlm_ldap: performing search in ou=users,ou=foo,dc=m,dc=foo,dc=net, with filter (sAMAccountName=mueller) rlm_ldap: looking for check items in directory... rlm_ldap: Adding title as Digest-HA1, value 8e041f49c9e4a473d58c0f7700e7049d op=21 rlm_ldap: looking for reply items in directory... rlm_ldap: user mueller authorized to use remote access rlm_ldap: ldap_release_conn: Release Id: 0 modcall[authorize]: module ldap returns ok for request 0 modcall: group authorize returns ok for request 0 rad_check_password: Found Auth-Type Digest auth: type digest Processing the authenticate section of radiusd.conf modcall: entering group authenticate for request 0 rlm_digest: Configuration item User-Password is required for authentication. modcall[authenticate]: module digest returns invalid for request 0 modcall: group authenticate returns invalid for request 0 auth: Failed to validate the user. Delaying request 0 for 1 seconds Finished request 0 Going to the next request --- Walking the entire request list --- Waking up in 1 seconds... --- Karel Stadler Network Technician Paul Scherrer Institute CH-5332 Villigen Switzerland --- PGP KeyId:0x1B740D81 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
AW: Cisco VPN3005 group auth
Just configure the group on the concetrator as external. Then on the freeradius create a user with the same name. IMPORTANT: Use the attribute VPN IPSec-Authentication == 1 if you like to authenticate them through radius. Here are the other possible values: 0=None 1=Radius 2=Ldap 3=NT Domain 4=SDI 5=Internal (on the vpn concentrator) 7=Kerberos/Activedirectory best rgds -Karel -Ursprüngliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von John Sorel Gesendet: Mittwoch, 18. Mai 2005 16:19 An: freeradius-users@lists.freeradius.org Betreff: Cisco VPN3005 group auth I have a Cisco VPN concentrator and am trying to get group authentication working with the FreeRadius server. User authentication works fine but the radius server doesn't seem to care what group the user logs in with. Does anyone have a similar working setup? If I configure the group on the concentrator to be external then the radius server is asked to authenticate the group but not the user. If I configure the group on the concentator to be internal then the group is authenticated on the concentrator and the user is passed to the radius server but there is no matchup between the group and the user. John Sorel Network Engineer Upromise, Inc. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Dialup Admin - Can't see any mysql record
@Kostas I'm still trying to get this work. Now I get closer to the problem. have a look at show_groups.php3. Everything is fine until line 64. while( $row = @da_sql_fetch_array($search,$config) ){ $row returns 0 on my server, altough there are 6 rows. Even the debug result says there are 6 row's. function @da_sql_fetch_array is using a function called array_change_key_case Is this a problem with our PHP version ? We have 4.1.2 best rgds -Karel -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Stadler Karel Sent: Donnerstag, 8. Juli 2004 14:44 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record I download and used the snippet from 2004-07-08 adjusted the config. No success so far. Version we use: Apache/1.3.23 mysql Ver 11.16 Distrib 3.23.49 By the way, still got Fatal error: Cannot redeclare xlat() in /opt/radius/dialup_admin/lib/xlat.php3 on line 2 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kostas Kalevras Sent: Donnerstag, 8. Juli 2004 13:54 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record On Thu, 8 Jul 2004, Stadler Karel wrote: It happens with all pages. This is the sql_debug if one presses Show Groups: DEBUG(SQL,MYSQL DRIVER): Query: SELECT COUNT(*) as counter,groupname FROM usergroup GROUP BY groupname; DEBUG(SQL,MYSQL DRIVER): Query Result: Num rows:: 6 But there is nothing on the page. I 've tested the CVS version myself and it works just fine. So try checking your configuration again. What is our installation (mysql,apache versions?) Also, when pressing Online Users I get: DEBUG(SQL,MYSQL DRIVER): Query: SELECT * FROM nas ; Fatal error: Cannot redeclare xlat() in /opt/radius/dialup_admin/lib/xlat.php3 on line 2 Those problems have been fixed in the CVS. Thanks a lot -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kostas Kalevras Sent: Mittwoch, 7. Juli 2004 19:56 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: @Kostas Kalevras: sql_debug is enabled. I see dialup admin can connect to mysql radius db. Sometimes (Show Groups Button) it says. Returning 6 rows. But i don't see any row returning. While using the new CVS snippet, the only thing i did not upgrade is to use the changed mysql scheme's. I saw some fields changed. For example: in userinfo.sql Name changed to Admin. But i don't think this is the problem. Can you help ? Does this happen with all the pages or only with specific ones? Are the sql queries run correct? best rgds Karel -Original Message- From: [EMAIL PROTECTED] To: '[EMAIL PROTECTED]' Sent: 07.07.04 17:12 Subject: Re: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: Just downloaded and tried the latest CVS snippet from dialup_admin. I'm not using the http_credentials (#sql_use_http_credentials: yes) to connect to the radius database. Instead I use the same mySQL User as before. But dialup admin does not show one single record (f.e.: our radacct table has about 25 records) But I see, it connects to the DB. Enable sql_debug to see what's happening. I saw, there's a new file called username.mappings and I added my name, since we use htpasswd. But, it still doesn't work. Any ideas are welcome ? --- Karel Stadler Network Technican Paul Scherrer Institute CH-5332 Villigen Switzerland --- PGP KeyId:0x1B740D81 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info
FW: Dialup Admin - Can't see any mysql record
Ok, for me the solution is either to upgrade to php 4.2 or not to use this php function. thanks anyway. I suggest to mention the required PHP version in the howto. rgds -Karel -Original Message- From: Stadler Karel Sent: Freitag, 9. Juli 2004 10:36 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record @Kostas I'm still trying to get this work. Now I get closer to the problem. have a look at show_groups.php3. Everything is fine until line 64. while( $row = @da_sql_fetch_array($search,$config) ){ $row returns 0 on my server, altough there are 6 rows. Even the debug result says there are 6 row's. function @da_sql_fetch_array is using a function called array_change_key_case Is this a problem with our PHP version ? We have 4.1.2 best rgds -Karel -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Stadler Karel Sent: Donnerstag, 8. Juli 2004 14:44 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record I download and used the snippet from 2004-07-08 adjusted the config. No success so far. Version we use: Apache/1.3.23 mysql Ver 11.16 Distrib 3.23.49 By the way, still got Fatal error: Cannot redeclare xlat() in /opt/radius/dialup_admin/lib/xlat.php3 on line 2 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kostas Kalevras Sent: Donnerstag, 8. Juli 2004 13:54 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record On Thu, 8 Jul 2004, Stadler Karel wrote: It happens with all pages. This is the sql_debug if one presses Show Groups: DEBUG(SQL,MYSQL DRIVER): Query: SELECT COUNT(*) as counter,groupname FROM usergroup GROUP BY groupname; DEBUG(SQL,MYSQL DRIVER): Query Result: Num rows:: 6 But there is nothing on the page. I 've tested the CVS version myself and it works just fine. So try checking your configuration again. What is our installation (mysql,apache versions?) Also, when pressing Online Users I get: DEBUG(SQL,MYSQL DRIVER): Query: SELECT * FROM nas ; Fatal error: Cannot redeclare xlat() in /opt/radius/dialup_admin/lib/xlat.php3 on line 2 Those problems have been fixed in the CVS. Thanks a lot -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kostas Kalevras Sent: Mittwoch, 7. Juli 2004 19:56 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: @Kostas Kalevras: sql_debug is enabled. I see dialup admin can connect to mysql radius db. Sometimes (Show Groups Button) it says. Returning 6 rows. But i don't see any row returning. While using the new CVS snippet, the only thing i did not upgrade is to use the changed mysql scheme's. I saw some fields changed. For example: in userinfo.sql Name changed to Admin. But i don't think this is the problem. Can you help ? Does this happen with all the pages or only with specific ones? Are the sql queries run correct? best rgds Karel -Original Message- From: [EMAIL PROTECTED] To: '[EMAIL PROTECTED]' Sent: 07.07.04 17:12 Subject: Re: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: Just downloaded and tried the latest CVS snippet from dialup_admin. I'm not using the http_credentials (#sql_use_http_credentials: yes) to connect to the radius database. Instead I use the same mySQL User as before. But dialup admin does not show one single record (f.e.: our radacct table has about 25 records) But I see, it connects to the DB. Enable sql_debug to see what's happening. I saw, there's a new file called username.mappings and I added my name, since we use htpasswd. But, it still doesn't work. Any ideas are welcome ? --- Karel Stadler Network Technican Paul Scherrer Institute CH-5332 Villigen Switzerland --- PGP KeyId:0x1B740D81 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras
RE: Dialup Admin - Can't see any mysql record
It happens with all pages. This is the sql_debug if one presses Show Groups: DEBUG(SQL,MYSQL DRIVER): Query: SELECT COUNT(*) as counter,groupname FROM usergroup GROUP BY groupname; DEBUG(SQL,MYSQL DRIVER): Query Result: Num rows:: 6 But there is nothing on the page. Also, when pressing Online Users I get: DEBUG(SQL,MYSQL DRIVER): Query: SELECT * FROM nas ; Fatal error: Cannot redeclare xlat() in /opt/radius/dialup_admin/lib/xlat.php3 on line 2 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kostas Kalevras Sent: Mittwoch, 7. Juli 2004 19:56 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: @Kostas Kalevras: sql_debug is enabled. I see dialup admin can connect to mysql radius db. Sometimes (Show Groups Button) it says. Returning 6 rows. But i don't see any row returning. While using the new CVS snippet, the only thing i did not upgrade is to use the changed mysql scheme's. I saw some fields changed. For example: in userinfo.sql Name changed to Admin. But i don't think this is the problem. Can you help ? Does this happen with all the pages or only with specific ones? Are the sql queries run correct? best rgds Karel -Original Message- From: [EMAIL PROTECTED] To: '[EMAIL PROTECTED]' Sent: 07.07.04 17:12 Subject: Re: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: Just downloaded and tried the latest CVS snippet from dialup_admin. I'm not using the http_credentials (#sql_use_http_credentials: yes) to connect to the radius database. Instead I use the same mySQL User as before. But dialup admin does not show one single record (f.e.: our radacct table has about 25 records) But I see, it connects to the DB. Enable sql_debug to see what's happening. I saw, there's a new file called username.mappings and I added my name, since we use htpasswd. But, it still doesn't work. Any ideas are welcome ? --- Karel Stadler Network Technican Paul Scherrer Institute CH-5332 Villigen Switzerland --- PGP KeyId:0x1B740D81 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Dialup Admin - Can't see any mysql record
I download and used the snippet from 2004-07-08 adjusted the config. No success so far. Version we use: Apache/1.3.23 mysql Ver 11.16 Distrib 3.23.49 By the way, still got Fatal error: Cannot redeclare xlat() in /opt/radius/dialup_admin/lib/xlat.php3 on line 2 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kostas Kalevras Sent: Donnerstag, 8. Juli 2004 13:54 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record On Thu, 8 Jul 2004, Stadler Karel wrote: It happens with all pages. This is the sql_debug if one presses Show Groups: DEBUG(SQL,MYSQL DRIVER): Query: SELECT COUNT(*) as counter,groupname FROM usergroup GROUP BY groupname; DEBUG(SQL,MYSQL DRIVER): Query Result: Num rows:: 6 But there is nothing on the page. I 've tested the CVS version myself and it works just fine. So try checking your configuration again. What is our installation (mysql,apache versions?) Also, when pressing Online Users I get: DEBUG(SQL,MYSQL DRIVER): Query: SELECT * FROM nas ; Fatal error: Cannot redeclare xlat() in /opt/radius/dialup_admin/lib/xlat.php3 on line 2 Those problems have been fixed in the CVS. Thanks a lot -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kostas Kalevras Sent: Mittwoch, 7. Juli 2004 19:56 To: '[EMAIL PROTECTED]' Subject: RE: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: @Kostas Kalevras: sql_debug is enabled. I see dialup admin can connect to mysql radius db. Sometimes (Show Groups Button) it says. Returning 6 rows. But i don't see any row returning. While using the new CVS snippet, the only thing i did not upgrade is to use the changed mysql scheme's. I saw some fields changed. For example: in userinfo.sql Name changed to Admin. But i don't think this is the problem. Can you help ? Does this happen with all the pages or only with specific ones? Are the sql queries run correct? best rgds Karel -Original Message- From: [EMAIL PROTECTED] To: '[EMAIL PROTECTED]' Sent: 07.07.04 17:12 Subject: Re: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: Just downloaded and tried the latest CVS snippet from dialup_admin. I'm not using the http_credentials (#sql_use_http_credentials: yes) to connect to the radius database. Instead I use the same mySQL User as before. But dialup admin does not show one single record (f.e.: our radacct table has about 25 records) But I see, it connects to the DB. Enable sql_debug to see what's happening. I saw, there's a new file called username.mappings and I added my name, since we use htpasswd. But, it still doesn't work. Any ideas are welcome ? --- Karel Stadler Network Technican Paul Scherrer Institute CH-5332 Villigen Switzerland --- PGP KeyId:0x1B740D81 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dialup Admin - Can't see any mysql record
Just downloaded and tried the latest CVS snippet from dialup_admin. I'm not using the http_credentials (#sql_use_http_credentials: yes) to connect to the radius database. Instead I use the same mySQL User as before. But dialup admin does not show one single record (f.e.: our radacct table has about 25 records) But I see, it connects to the DB. I saw, there's a new file called username.mappings and I added my name, since we use htpasswd. But, it still doesn't work. Any ideas are welcome ? --- Karel Stadler Network Technican Paul Scherrer Institute CH-5332 Villigen Switzerland --- PGP KeyId:0x1B740D81 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Dialup Admin - Can't see any mysql record
@Kostas Kalevras: sql_debug is enabled. I see dialup admin can connect to mysql radius db. Sometimes (Show Groups Button) it says. Returning 6 rows. But i don't see any row returning. While using the new CVS snippet, the only thing i did not upgrade is to use the changed mysql scheme's. I saw some fields changed. For example: in userinfo.sql Name changed to Admin. But i don't think this is the problem. Can you help ? best rgds Karel -Original Message- From: [EMAIL PROTECTED] To: '[EMAIL PROTECTED]' Sent: 07.07.04 17:12 Subject: Re: Dialup Admin - Can't see any mysql record On Wed, 7 Jul 2004, Stadler Karel wrote: Just downloaded and tried the latest CVS snippet from dialup_admin. I'm not using the http_credentials (#sql_use_http_credentials: yes) to connect to the radius database. Instead I use the same mySQL User as before. But dialup admin does not show one single record (f.e.: our radacct table has about 25 records) But I see, it connects to the DB. Enable sql_debug to see what's happening. I saw, there's a new file called username.mappings and I added my name, since we use htpasswd. But, it still doesn't work. Any ideas are welcome ? --- Karel Stadler Network Technican Paul Scherrer Institute CH-5332 Villigen Switzerland --- PGP KeyId:0x1B740D81 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Dynamic VLAN
Is attribute Tunnel-Private-Group-ID really supported by Cisco ? Please see this link ? http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_configuratio n_guide_chapter09186a008014ee11.html#53974 -Original Message- From: Alan DeKok [mailto:[EMAIL PROTECTED] Sent: Dienstag, 13. April 2004 16:16 To: [EMAIL PROTECTED] Subject: Re: Dynamic VLAN [EMAIL PROTECTED] wrote: Thx David, i've tried your config, but freeradius doesn't accept IEEE-802 value attibute for Tunnel-Medium-Type, it needs only 802. No. It will interpret the 802 as a number. Use IEEE-802. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Cisco EXEC authentication
You should use Cisco AV-Pairs which is covered in dictionary.cisco. Example: steve Auth-Type := Local, User-Password == testing Service-Type = Shell-User, Cisco-AVPair = shell:priv-lvl=15 This will put user steve immediately in enable mode. Have fun ... rgds Karel Stadler - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html