Re: (RADIATOR) Radiator - Shiva Landrover
Hello - You should probably return the correct reply attributes to set up a session. Something like: AddToReply Service-Type = Framed-User, Framed-Protocol = PPP Check with your vendor to find out what reply attributes are required. And I don't understand your second question, sorry. regards Hugh On Thursday, Nov 7, 2002, at 20:31 Canada/Eastern, [EMAIL PROTECTED] wrote: Hi, 1.In the shiva, its successfully auth but its keep saying the user does not have the dialin right ? - What should i configure the attribute 2.In the AuthSelect, what happen if the stored procedure return two result set, how to specify what is the result to readin ? [This e-mail is confidential and may also be privileged. If you are not the intended recipient, please delete it and notify us immediately; you should not copy or use it for any purpose, nor disclose its contents to any other person. Thank you.] === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. NB: I am travelling this week, so there may be delays in our correspondence. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Differentiating between user database problems and login failures
Hello Jason - You should use multiple AuthBy clauses, like this: # define Realms or Handlers AuthByPolicy ContinueUntilAccept . . . And you can use the AuthLog clause to log authentication successes and/or failures. regards Hugh On Thursday, Nov 7, 2002, at 10:37 Canada/Eastern, Jason Signalness wrote: Hello, I'm working to set up a new Radius server. Essentially, we want it to behave like this: 1) Check our LDAP directory 2) Check out Oracle db 3) If there are problems reaching either database, let someone know. From what I've heard, it's not possible to tell the difference (with Radiator) between failed logins (bad passwords, invalid users, etc) and database problems (such as an unreachable LDAP directory). Is this true? If not, how can one go about detecting these failures in an AuthBy or Handler clause? Thanks, -- Jason Signalness, Systems Administrator Basin Telecommunications, Inc. -- === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. NB: I am travelling this week, so there may be delays in our correspondence. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) postcard from Ottawa
Hello Everyone - Well - three weeks ago I was in the Persian Gulf where it was 40 degrees every day (and around 30 every night), two weeks ago I was at home in Melbourne doing the spring planting in my front garden, last week I was in Stockholm where it was about 0 all the time, and now I am in Ottawa where it is snowing! Its been a fairly busy time as you might imagine, but there are certainly some interesting projects using Radiator in many places all around the world. Ottawa is the city in which I grew up, and I am spending a few days here visiting family. As a city it has certainly changed since I was a child in the 1950's. Then it was very much a small government town with not much besides the the Parliament buildings and the civil service. Since then of course there has been considerable expansion and a great deal of high-tech industrial development. The city is still very beautiful, with lovely parks and waterways within the city, and marvellous forests, lakes and hills providing tranquil surrounds. In the winter time is is quite common to see people skating to and from work on the frozen canals, and of course you don't have to go very far to find very good skiing. I pretty much grew up on skis and skiing is really the only thing I miss, living as I do in Australia. The city has grown tremendously, and what used to be the fringes of the city where my parents bought their new house in 1956, is of course now considered to be almost "inner-city". My brother and sisters mostly live much farther out - my brother's place is still out in the country (although not for much longer judging by the every farther-reaching suburbs). The three major telecommunications companies here are Nortel, Mitel and Alcatel, and of course there are a myriad of smaller software companies, consulting firms and high-tech R&D firms. Ottawa attracted lots of high-tech and service industries during the 80's and 90's with attractive startup packages, and the city has been transformed as a result. Of course the traditional goverment and consular establishments also contribute an interesting mix of people and activities. I will be returning to Australia next week, via Los Angeles, where I am going to play golf for a couple of days with friends. All things being equal, I should be home next Thursday, so if I miss any emails between now and then, please resend them towards the end of the week. regards Hugh NB: I am travelling this week, so there may be delays in our correspondence. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Cisco VPN 3000 User, Group and Filter Management
Hello Petr, It's already in the standard dictionary that I submitted in the past. They're Altiga VSAs since the VPN3000 is/was Altiga. If you see anything missing, please mail back. Regards, Neil D. Quiogue On Thursday, November 7, 2002, at 08:40 PM, Petr Zimak wrote: Hi We have a Cisco VPN 3000 Concentrator. I would like to manage the groups, users and filters/rules from Radiator. Does anybody have a dictionary file showing the definition of the corresponding attributes? Thank in advance, Petr === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Radiator - Shiva Landrover
Hi, 1.In the shiva, its successfully auth but its keep saying the user does not have the dialin right ? - What should i configure the attribute 2.In the AuthSelect, what happen if the stored procedure return two result set, how to specify what is the result to readin ? [This e-mail is confidential and may also be privileged. If you are not the intended recipient, please delete it and notify us immediately; you should not copy or use it for any purpose, nor disclose its contents to any other person. Thank you.] === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Using PEAP with existing Cisco Accees Points
Hello Mika, On Thu, 7 Nov 2002 18:55, [EMAIL PROTECTED] wrote: > From [EMAIL PROTECTED] Thu Nov 7 01:55:20 2002 > Received: from sjoki.uta.fi (sjoki.uta.fi [192.98.80.1]) > by server1.open.com.au (8.11.0/8.11.0) with ESMTP id gA77tGC09521 > for <[EMAIL PROTECTED]>; Thu, 7 Nov 2002 01:55:19 -0600 > Received: from wirlab.net (IDENT:[EMAIL PROTECTED] [192.98.81.71]) > by sjoki.uta.fi (8.9.3/8.9.3) with ESMTP id OAA11406 > for <[EMAIL PROTECTED]>; Thu, 7 Nov 2002 14:47:49 +0200 > Message-ID: <[EMAIL PROTECTED]> > Date: Thu, 07 Nov 2002 14:48:33 +0200 > From: Mika Mustikkamaki <[EMAIL PROTECTED]> > User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1) Gecko/20020826 > X-Accept-Language: en-us, en > MIME-Version: 1.0 > To: [EMAIL PROTECTED] > Subject: Using PEAP with existing Cisco Accees Points > Content-Type: text/plain; charset=us-ascii; format=flowed > Content-Transfer-Encoding: 7bit > > Hi all, > > I got information from a Cisco representative that you can enable and > use the PEAP authentication method in current wireless Cisco Access > Points (such as 1200 or Aironet 350) with Windows XP (SP1) > authentication client. However, Cisco's website mentions that PEAP won't > be supported until the upcoming 1100 Access Point hits the shelves. > > Anyone have any experience from this area? I quickly tried to configure > Radiator with the default eap_peap configuration file from the goodies > dir - I got an "TLS not initialized" error message into Radiator's > logfile. Is the error due to my quick configuration or perhaps the fact > that the current APs _don't_ let PEAP to "go through"? Any hints > appreciated... We have tested PEAP here with Cisco 340 access points and XP (SP1). It is very important that you have the latest firmware for both the AP and the client wireless card. If you do that and configure Radiator properly it will work fine. We have not tested 350s. If you have any Radiator problems, send the Radiator log file and config file (no secrets) to the Radiator mailing list (dont forget to subscribe :-)) Cheers. > > Cheers, > Mika Mustikkamaki -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS etc on Unix, Windows, MacOS etc. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Differentiating between user database problems and login failures
Hello, I'm working to set up a new Radius server. Essentially, we want it to behave like this: 1) Check our LDAP directory 2) Check out Oracle db 3) If there are problems reaching either database, let someone know. From what I've heard, it's not possible to tell the difference (with Radiator) between failed logins (bad passwords, invalid users, etc) and database problems (such as an unreachable LDAP directory). Is this true? If not, how can one go about detecting these failures in an AuthBy or Handler clause? Thanks, -- Jason Signalness, Systems Administrator Basin Telecommunications, Inc. -- === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Cisco VPN 3000 User, Group and Filter Management
Hi We have a Cisco VPN 3000 Concentrator. I would like to manage the groups, users and filters/rules from Radiator. Does anybody have a dictionary file showing the definition of the corresponding attributes? Thank in advance, Petr === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
