1 question
hi list,... i have set 2 numbers Called-Station-Id in my work and one of them is pay for my users as normal when their calling throught Telephony Enterprise, and the other one is pay revert and that users not pay the phone else my Work it is as feature... but in both case i set Max-Monthly-Session with 200 hrs and when theirs hit into 200 obviusly can't connect .. that's ok.. i want to need to for the free phone can hit and stop to 200 hrs and with the other phone number (thay pay) can connect and i can up their hours to 400hr. more specify in short history my work have 2 phone numbers to can connect number-free-for-users-not-pay number-to-users-pay both case by max-monthly-session - 200hrs i want by some if condition if exist into radius.conf to make this number-free-for-users-not-pay - 200hrs number-to-users-pay - 400 hrs it-s possible that? by the way i'm using freeradius 1.1.3 i know to have to upgrade by that want to make it soon... really need solve my trouble as priority Thaxs for any suggest Regards Tony signature.asc Description: OpenPGP digital signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
trouble checking item value from ldap
hi, have this problem now... i set into profile of users some items to check cn=dialup,ou=radius,ou=services,dc=domain,dc=org radiusCalledStationId 160110 radiusCalledStationId 60110 radiusCalledStationId 8314949 radiusFramedIpNetmask 255.255.255.255.255 radiusFramedProtocol PPP radiusHint userdefault radiusMaxMonthlySession 9 radiusServiceType Framed-User radiusSimultaneousUse 1 and in my usertest exist this cn=emperor,ou=users,dc=domain,dc=org radiusCallingStationId 838 RadiusProfileDn cn=dialup,ou=radius,ou=services,dc=domain,dc=org userPassword xx and when freeradius start in debug mode i see when Access-Request to process authorize section in debug out this. in the freeradius -X debug mode show this when i try to authorized rlm_ldap: Adding radiusCalledStationId as Called-Station-Id, value 8314949 op=21 rlm_ldap: Adding radiusCalledStationId as Called-Station-Id, value 60110 op=21 rlm_ldap: Adding radiusCalledStationId as Called-Station-Id, value 160110 op=21 rlm_ldap: Adding radiusSimultaneousUse as Simultaneous-Use, value 1 op=21 rlm_ldap: Adding radiusFramedIPNetmask as Framed-IP-Netmask, value 255.255.255.255.255 op=11 rlm_ldap: Adding radiusFramedProtocol as Framed-Protocol, value PPP op=11 rlm_ldap: Adding radiusServiceType as Service-Type, value Framed-User op=11 so. when i make radclient authorize works fine and receive Access-Accept but in the freeradius not load radiusMaxMonthlySession 9 as i wrote above either radiusHint userdefault why radiusMonthlySession and radiusHint not is loaded in debug mode when radiusd load all attributes from profile when Access-Request came. note: 1- radiusHint came in the scheme by default 2- radiusMaxMonthlySession was wrote by me because not exist in the freeradius.scheme, i added new attribute and including in the class of freeradius so is posible to setup into user profile. signature.asc Description: OpenPGP digital signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: trouble checking item value from ldap
ok ok.. i solve my trouble :D to setup the monthlycounter to check-in not mut be add new attribute i see a radiusCheckItem in the scheme and i try with this so i have to make this to works cool!!! radiusCheckItem Max-Monthly-Session := 9 (as write into mysql) Thanxs any way Tony P. escribió: hi, have this problem now... i set into profile of users some items to check cn=dialup,ou=radius,ou=services,dc=domain,dc=org radiusCalledStationId 160110 radiusCalledStationId 60110 radiusCalledStationId 8314949 radiusFramedIpNetmask 255.255.255.255.255 radiusFramedProtocol PPP radiusHint userdefault radiusMaxMonthlySession 9 radiusServiceType Framed-User radiusSimultaneousUse 1 and in my usertest exist this cn=emperor,ou=users,dc=domain,dc=org radiusCallingStationId 838 RadiusProfileDn cn=dialup,ou=radius,ou=services,dc=domain,dc=org userPassword xx and when freeradius start in debug mode i see when Access-Request to process authorize section in debug out this. in the freeradius -X debug mode show this when i try to authorized rlm_ldap: Adding radiusCalledStationId as Called-Station-Id, value 8314949 op=21 rlm_ldap: Adding radiusCalledStationId as Called-Station-Id, value 60110 op=21 rlm_ldap: Adding radiusCalledStationId as Called-Station-Id, value 160110 op=21 rlm_ldap: Adding radiusSimultaneousUse as Simultaneous-Use, value 1 op=21 rlm_ldap: Adding radiusFramedIPNetmask as Framed-IP-Netmask, value 255.255.255.255.255 op=11 rlm_ldap: Adding radiusFramedProtocol as Framed-Protocol, value PPP op=11 rlm_ldap: Adding radiusServiceType as Service-Type, value Framed-User op=11 so. when i make radclient authorize works fine and receive Access-Accept but in the freeradius not load radiusMaxMonthlySession 9 as i wrote above either radiusHint userdefault why radiusMonthlySession and radiusHint not is loaded in debug mode when radiusd load all attributes from profile when Access-Request came. note: 1- radiusHint came in the scheme by default 2- radiusMaxMonthlySession was wrote by me because not exist in the freeradius.scheme, i added new attribute and including in the class of freeradius so is posible to setup into user profile. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html signature.asc Description: OpenPGP digital signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
how send more parameters?
need send to check values like calling-station-id ?? just use by default radtest virtual-radius:~# radtest emperor 123 localhost 1 testing123 Sending Access-Request of id 209 to 127.0.0.1 port 1812 User-Name = emperor User-Password = 123 NAS-IP-Address = 255.255.255.255 NAS-Port = 1 Framed-Protocol = PPP Re-sending Access-Request of id 209 to 127.0.0.1 port 1812 User-Name = emperor User-Password = 123 NAS-IP-Address = 255.255.255.255 NAS-Port = 1 Framed-Protocol = PPP rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=209, length=20 rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=209, length=20 radclient: received response to request we did not send. i use auth into ldap and account into mysql and works.. now need send more parameters like calling-stations-id or session-time.. how can i do that like test radclient virtual-radius:~# radclient localhost acct testing123 Acct-Session-Id = 606B User-Name = emperor NAS-IP-Address = 192.168.3.5 NAS-Port-Id = 1 NAS-Port = 1 NAS-Port-Type = Async Acct-Status-Type = Start Connect-Info = 46000 LAPM/V42BIS Service-Type = Framed-User Framed-Protocol = PPP Framed-IP-Address = 192.168.5.66 Acct-Delay-Time = 0 Received response ID 183, code 5, length = 20 regards Tony signature.asc Description: OpenPGP digital signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
trouble with scheme
hi have 2 problems with radius-ldap scheme into mysql i have to set in database 2 items to check my radgroupcheck for the users... Max-Monthly-Session-not exist in the scheme and Called-Station-Id - just support 1 value need put on 2 or more regards Tony signature.asc Description: OpenPGP digital signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
question about freeradius vs AA(ldap) and A(mysql)
hi, i have freeradius server over Debian Etch version FreeRADIUS Version 1.1.3 and making Accounting with MySQL radius DB. I want to make new form to authenticate my users to not have 2 password databases separated... so.. need auth ldap and account into mysql.. I test to make authorization + authentication with Ldap and keep going making Accounting into MySQL... and works but just basic mode. My question is how can i change the usergroup, radgroupcheck, radgroupreply, tables into Ldap to authorization-authentication step, with more options to check like Calling-Station-Id, Called-Station-Id, Hint, Groupnames, etc etc??? And in the schema of freeradius into Ldap, i load scheme but when i try to add new attribute to user like (option in the radiusd.conf) access_attr = dialupAccess what i type in the value?? .. just know string by the scheme explain but don't know that string exactly it is can help me any one..??? thanxs and regards and sorry by my english Tony signature.asc Description: OpenPGP digital signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: question about freeradius vs AA(ldap) and A(mysql)
ok i found this http://freeradius.org/radiusd/doc/ldap_howto.txt i guess to have many stuff to read and try my problem any way i can read more solutions to can make my trouble in fast way and short time. Regards again. Tony Tony P. escribió: hi, i have freeradius server over Debian Etch version FreeRADIUS Version 1.1.3 and making Accounting with MySQL radius DB. I want to make new form to authenticate my users to not have 2 password databases separated... so.. need auth ldap and account into mysql.. I test to make authorization + authentication with Ldap and keep going making Accounting into MySQL... and works but just basic mode. My question is how can i change the usergroup, radgroupcheck, radgroupreply, tables into Ldap to authorization-authentication step, with more options to check like Calling-Station-Id, Called-Station-Id, Hint, Groupnames, etc etc??? And in the schema of freeradius into Ldap, i load scheme but when i try to add new attribute to user like (option in the radiusd.conf) access_attr = dialupAccess what i type in the value?? .. just know string by the scheme explain but don't know that string exactly it is can help me any one..??? thanxs and regards and sorry by my english Tony - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html signature.asc Description: OpenPGP digital signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html