Configure freeradius with authentication
Hi all. Somebody Could help me, I need to configure a freeradius with authentication. Thanks very much Visita MSN Latino Entretenimiento: ¡música, cine, chismes, TV y más...! Clic aquí - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Howto Freeradius+Authentication, help me.
Hi all, Could you please send the steps you followed to integrate Freeradius+Authentication. thanks very much. From: [EMAIL PROTECTED]Reply-To: freeradius-users@lists.freeradius.orgTo: freeradius-users@lists.freeradius.orgSubject: Freeradius-Users Digest, Vol 25, Issue 2Date: Tue, 01 May 2007 12:00:12 +0200>Send Freeradius-Users mailing list submissions to> freeradius-users@lists.freeradius.org>>To subscribe or unsubscribe via the World Wide Web, visit> http://lists.freeradius.org/mailman/listinfo/freeradius-users>or, via email, send a message with subject or body 'help' to> [EMAIL PROTECTED]>>You can reach the person managing the list at> [EMAIL PROTECTED]>>When replying, please edit your Subject line so it is more specific>than "Re: Contents of Freeradius-Users digest...">>>Today's Topics:>>1. Re: FreeRadius+AD integration (shrikant Bhat)>2. Re: Freeradius Auth via LDAP against Active Directory Server> 2003 (shrikant Bhat)>3. Re: Freeradius Auth via LDAP against Active Directory Server> 2003 (Peter Nixon)>4. Help stuck on error: rlm_ldap: LDAP login failed: check> identity, password settings in ldap section of radiusd.conf> (shrikant Bhat)>>>-->>Message: 1>Date: Tue, 1 May 2007 09:07:06 +0530>From: "shrikant Bhat" <[EMAIL PROTECTED]>>Subject: Re: FreeRadius+AD integration>To: "FreeRadius users mailing list"> >Message-ID:> <[EMAIL PROTECTED]>>Content-Type: text/plain; charset=ISO-8859-1; format=flowed>>Alan,>My intention is not argue, since I coudnt understand the debug I>posted the messege.>>On 4/30/07, Alan DeKok <[EMAIL PROTECTED]> wrote:> > shrikant Bhat wrote:> > > I dont have the user in Active directory, yet free radius sends a> > > accept packet.> >> > I did read the debug output, unlike you. It shows why. I told you> > why. Stop arguing and read the debug output again, and my responses.> >> > It's not FreeRADIUS. You have configured FreeRADIUS to reply with an> > Access-Accept if the ntlm_auth module returns OK. For some reason, the> > ntlm_auth is returning OK. Go find out why that's happening, and fix it.> >> > Do NOT reply with "but freeradius sends an access accept". That reply> > indicates that you're not reading the messages here. If you're not> > going to read the answers to your questions, I suggest you stop asking> > the questions. You're wasting your time, and ours.> >> > Alan DeKok.> > --> > http://deployingradius.com - The web site of the book> > http://deployingradius.com/blog/ - The blog> > -> > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html> -->>Message: 2>Date: Tue, 1 May 2007 09:33:20 +0530>From: "shrikant Bhat" <[EMAIL PROTECTED]>>Subject: Re: Freeradius Auth via LDAP against Active Directory Server> 2003>To: "FreeRadius users mailing list"> >Message-ID:> <[EMAIL PROTECTED]>>Content-Type: text/plain; charset=ISO-8859-1; format=flowed>>Jacob,>Could you please send the steps you followed to integrate ad with FR?.>I am completely lost and confused with the information available on>this .>thanks,>SB>>On 5/1/07, Jacob Jarick <[EMAIL PROTECTED]> wrote:> > Thanks for the Tip ryan but I have been down that road and 2 reasons stopped me:> >> > 1 - no way of retrieving ldap groups> > 2 - Been requested not to have samba on the machine.> >> > ntlm_auth was very straight forward for me because it supports all the> > encryption methods.> >> > On 5/1/07, Ryan Kramer <[EMAIL PROTECTED]> wrote:> > > depending on the wifi auth method, you may want to also investigate a> > > NTLM_AUTH method instead of straight ldap. This requires the freeradius> > > machine to be a member of the domain, but once you do that it works great.> > >> > >> > >> > >> > > On 4/29/07, Jacob Jarick <[EMAIL PROTECTED]> wrote:> > > > OK tried with 1.1.4 and yerp works great.> > > >> > > > radiusd -X output: http://pastebin.ca/464153> > > > radiusd.conf: http://pastebin.ca/464156> > > >> > > > I also realised a mistake I have been making, see I want to search the> > > > whole active directory, hence I kept setting my basedn without an ou.> > > > After seeing your excellent example and auth'ing had failed I stuck in> > > > an OU and tried a user from the OU and worked fine.> > > >> > > > So my questions is this, to auth people from multiple OU's do I create> > > > a new ldap module for each OU or is their a simpler way.> > > >> > > > Thanks Very much for your help Phil, its been a very productive> > > > weekend thanks to the info you provided.> > > >> > > > My challenge for monday will be setting up the cisco and wireless clients> > > now :)> > > >> > > > On 4/29/07, Jacob Jarick <[EMAIL PROTECTED] > wrote:> > > > > radiusd.conf: http://pastebin.ca/464133> > > > > radius -X ouput: http://pastebin.ca/464138> > > > >> > > > > Tried with 1.1.6 and fails with this error:> > > > >> > > > > rlm_ldap: reading ldap<-
Freeradius can use 2 databases disctints?
Hi all. Freeradius can use two database mssql primary on other pc with w2k server and mysql secondary on itself pc? Thanks you. Las mejores tiendas, los precios mas bajos, entregas en todo el mundo, YupiMSN Compras: Haz clic aquí... - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Freeradius-Users digest, Vol 1 #4534 - 14 msgs
Hi all. freeradius can use two database mssql primary and mysql secondary Thanks you. -- Vicente Barrientos V. Tecnico en Telecomunicaciones L.@&C. Sistemas S.A. Telf.(511) 422-4959 Email: [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Problems with freeradius-1.0.2
Hi all, Somebody can help me. # rpmbuild -ba freeradius.spec . . . gmake[1]: Entering directory `/usr/src/redhat/BUILD/freeradius-1.0.2' Making all in src... gmake[2]: Entering directory `/usr/src/redhat/BUILD/freeradius-1.0.2/src' gmake[3]: Entering directory `/usr/src/redhat/BUILD/freeradius-1.0.2/src' Making all in include... gmake[4]: Entering directory `/usr/src/redhat/BUILD/freeradius-1.0.2/src/include' gmake[4]: Nothing to be done for `all'. gmake[4]: Leaving directory `/usr/src/redhat/BUILD/freeradius-1.0.2/src/include' Making all in lib... gmake[4]: Entering directory `/usr/src/redhat/BUILD/freeradius-1.0.2/src/lib' gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c dict.c -o dict.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c print.c -o print.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c radius.c -o radius.o radius.c: In function `rad_decode': radius.c:1429: warning: comparison is always true due to limited range of data type gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c valuepair.c -o valuepair.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c token.c -o token.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c misc.c -o misc.o misc.c: In function `ipv6_ntoa': misc.c:355: warning: return discards qualifiers from pointer target type gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c log.c -o log.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c filters.c -o filters.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c missing.c -o missing.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c md4.c -o md4.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c md5.c -o md5.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c sha1.c -o sha1.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c hmac.c -o hmac.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c hmacsha1.c -o hmacsha1.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c snprintf.c -o snprintf.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c isaac.c -o isaac.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c crypt.c -o crypt.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c udpfromto.c -o udpfromto.o gcc -O2 -g -pipe -m32 -march=i386 -mtune=pentium4 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5 -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS -I../include -DHMAC_SHA1_DATA_PROBLEMS -c rbtree.c -o rbtree.o rbtree.c: In f
Re: Freeradius-Users digest, Vol 1 #4441 - 10 msgs
Guy. mssql.conf driver = "rlm_sql_freetds" #server = "192.168.1.1" server = "name_of_MSSQLSERVER" port="1433" login = "sa" password = "radius" radus_db = "radius" try unixodbc+freetds+freeradius, I use this and good work. Vicente. > Message: 4 > From: Michael Lam <[EMAIL PROTECTED]> > To: "'freeradius-users@lists.freeradius.org'" > > Subject: FreeRadius + FreeTDS + MSSQL70 > Date: Mon, 21 Mar 2005 20:23:54 +0800 > Reply-To: freeradius-users@lists.freeradius.org > > This message is in MIME format. Since your mail reader does not understand > this format, some or all of this message may not be legible. > > --_=_NextPart_001_01C52E10.D8E9C2C0 > Content-Type: text/plain > > Dear All > > How to setup the Freeradius to support FreeTDS and MSSQL70? > > Can provide more information and document? > > mssql.conf > driver = "rlm_sql_freetds" > server = "192.168.1.1" > login = "sa" > password = "radius" > > radus_db = "radius" > > After I run the "radiusd -X", the get the error "rlm_sql (sql): Could not > link driver rlm_sql_freetds: rlm_sql_freetds.so: cannot open shared object > file: No such file or directory" > > THANKS > > --_=_NextPart_001_01C52E10.D8E9C2C0 > Content-Type: text/html > Content-Transfer-Encoding: quoted-printable > > > > > charset=3Dus-ascii"> > 5.5.2653.12"> > FreeRadius + FreeTDS + MSSQL70 > > > > Dear All > > > How to setup the Freeradius to support = > FreeTDS and MSSQL70? > > > Can provide more information and = > document? > > > mssql.conf > FACE=3D"Verdana">driver =3D "rlm_sql_freetds" > FACE=3D"Verdana">server =3D "192.168.1.1" > FACE=3D"Verdana">login =3D "sa" > FACE=3D"Verdana">password =3D "radius" > > > FACE=3D"Verdana">radus_db =3D "radius" > > > After I run the "radiusd -X", the = > get the error "rlm_sql (sql): Could not link driver = > rlm_sql_freetds: rlm_sql_freetds.so: cannot open shared object file: No = > such file or directory" > > THANKS > > > > > --_=_NextPart_001_01C52E10.D8E9C2C0-- > > > --__--__-- > > Message: 5 > Date: Mon, 21 Mar 2005 12:25:30 + > From: Pedro Ribeiro <[EMAIL PROTECTED]> > Organization: Sanindusa - Ind. de =?ISO-8859-1?Q?Sanit=E1rios=2C_SA?= > To: freeradius-users@lists.freeradius.org > Subject: Re: FreeRadius + FreeTDS + MSSQL70 > Reply-To: freeradius-users@lists.freeradius.org > > Hi there > > What version of FreeRADIUS you're using ? > > Michael Lam wrote: >> Dear All >> >> How to setup the Freeradius to support FreeTDS and MSSQL70? >> > You must install unixODBC and freetds, > the configure FreeRADIUS to work with unixODBC (rlm_sql_unixodbc) > and use a DSN provided by freetds with the apropriate version... > >> Can provide more information and document? >> > I have a (badly) written document i made to myself as guide-line to this > very same situation. Mail me if you'd like a copy. > >> mssql.conf >> driver = "rlm_sql_freetds" >> server = "192.168.1.1" >> login = "sa" >> password = "radius" >> >> radus_db = "radius" >> > See above, as you're not using rlm_sql_freetds you'll need to change > sql.conf and not mssql.conf :) > >> After I run the "radiusd -X", the get the error "rlm_sql (sql): Could >> not link driver rlm_sql_freetds: rlm_sql_freetds.so: cannot open shared >> object file: No such file or directory" >> >> THANKS >> > Since rlm_sql_freetds is not part of the distribution, it can't be found > :) > > HTH > > Pedro Ribeiro > > > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Problems with safe characters directive in mssql.conf
HI all, I copy the directive de sql.conf a mssql.conf but no work,someone can help me. Thanks a lot, VicenteLas mejores tiendas, los precios mas bajos, entregas en todo el mundo, YupiMSN Compras: Haz clic aquí... - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Problems with CalledStationId and CallingStationId
Hello. I have problems with CalledStationId and CallingStationId, The GW send 1234#51195252522 but Mysql receive 1234=2351195252522. Someone can help me. thanks a lot Las mejores tiendas, los precios mas bajos, entregas en todo el mundo, YupiMSN Compras: Haz clic aquí... - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
