(RADIATOR) Odyssey client and Radiator - Question
We are evaluating the Odyssey client for authenticating our wireless users via TTLS. I noticed that unless a user sets their username under the TTLS settings tab, anonymous is recorded in the logs. Is anyone else using this client and, have you come up with a workaround for this behavior? Thanks, -- Steve Caporossi Network Systems Engineer Center for Computing and Information Technology Medical University of South Carolina 843.876.5083 === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Log SQL only likes Unix Time
Hi, I'm trying to get Radiator to log the current time in long format rather than Unix Time by doing the following: Log SQL Identifier LogDB1 DBSource dbi:mysqlPP:radius DBUsername username DBAuth password Table RADLOG Trace 3 LogQuery insert into %3 (TIME_STAMP, PRIORITY, MESSAGE) / values (%l, %0, %2) /Log But when I restart Radiator I get the following error message: server:# Mon Mar 3 16:13:07 2003: INFO: Access rejected for [EMAIL PROTECTED]: MaxSessions exceeded DBD::mysqlPP::db do failed: You have an error in your SQL syntax near 'Mar 3 16:13:07 2003, 3, 'Access rejected for [EMAIL PROTECTED]: MaxSessions ex' at line 1 at /usr/local/ActivePerl-5.6/lib/site_perl/5.6.1/Radius/SqlDb.pm line 219. DBD::mysqlPP::db do failed: You have an error in your SQL syntax near 'Mar 3 16:13:07 2003, 3, 'Access rejected for [EMAIL PROTECTED]: MaxSessions ex' at line 1 at /usr/local/ActivePerl-5.6/lib/site_perl/5.6.1/Radius/SqlDb.pm line 219. If I substitute %l with %t it works fine, although it obviously logs Unix Time and not long format. The column TIME_STAMP in RADLOG is set as Type Varchar with length 50 so it shouldn't be a problem with the field being to small/incorrect type. Any help you can give me would be gratefully recived, Thanks, Dave Walters Technical Manager Luna Internet Tel. 0845 345 0175 Fax. 01782 544 029 Mob. 07968 729 489 [EMAIL PROTECTED] www.luna.co.uk === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
RE: (RADIATOR) Log SQL only likes Unix Time
Hi Dave, try to quote the time var: %l regards Jesús M Díaz -Mensaje original- De: Dave Walters [mailto:[EMAIL PROTECTED] Enviado el: lunes, 03 de marzo de 2003 17:28 Para: [EMAIL PROTECTED] Asunto: (RADIATOR) Log SQL only likes Unix Time Hi, I'm trying to get Radiator to log the current time in long format rather than Unix Time by doing the following: Log SQL Identifier LogDB1 DBSource dbi:mysqlPP:radius DBUsername username DBAuth password Table RADLOG Trace 3 LogQuery insert into %3 (TIME_STAMP, PRIORITY, MESSAGE) / values (%l, %0, %2) /Log But when I restart Radiator I get the following error message: server:# Mon Mar 3 16:13:07 2003: INFO: Access rejected for [EMAIL PROTECTED]: MaxSessions exceeded DBD::mysqlPP::db do failed: You have an error in your SQL syntax near 'Mar 3 16:13:07 2003, 3, 'Access rejected for [EMAIL PROTECTED]: MaxSessions ex' at line 1 at /usr/local/ActivePerl-5.6/lib/site_perl/5.6.1/Radius/SqlDb.pm line 219. DBD::mysqlPP::db do failed: You have an error in your SQL syntax near 'Mar 3 16:13:07 2003, 3, 'Access rejected for [EMAIL PROTECTED]: MaxSessions ex' at line 1 at /usr/local/ActivePerl-5.6/lib/site_perl/5.6.1/Radius/SqlDb.pm line 219. If I substitute %l with %t it works fine, although it obviously logs Unix Time and not long format. The column TIME_STAMP in RADLOG is set as Type Varchar with length 50 so it shouldn't be a problem with the field being to small/incorrect type. Any help you can give me would be gratefully recived, Thanks, Dave Walters Technical Manager Luna Internet Tel. 0845 345 0175 Fax. 01782 544 029 Mob. 07968 729 489 [EMAIL PROTECTED] www.luna.co.uk === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. Mail Disclaimer La Informacion incluida en el presente correo electronico es SECRETO PROFESIONAL Y CONFIDENCIAL, siendo para el uso exclusivo del destinatario arriba mencionado. Si usted lee este mensaje y no es el destinatario señalado, el empleado o el agente responsable de entregar el mensaje al destinatario, o ha recibido esta comunicacion por error, le informamos que esta totalmente prohibida cualquier divulgacion, distribucion o reproduccion de esta comunicacion, y le rogamos que nos lo notifique inmediatamente y nos devuelva el mensaje original a la direccion arriba mencionada. Gracias. The information contained in this e-mail is LEGALLY PRIVILEDGED AND CONFIDENTIAL and is intended only for the use of the addressee named above. If the reader of this message is not the intended recipient or the employee or agent responsible for delivering the message to the intended recipient, or you have received this communication in error, please be aware that any dissemination, distribution or duplication of this communication is strictly prohibited, and please notify us immediately and return the original message to us at the address above. Thank you. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
RE: (RADIATOR) Log SQL only likes Unix Time
Hi Jesús, Worked perfectly! Many thanks :) Regards, Dave -Original Message- From: Díaz Pérez, Jesús [mailto:[EMAIL PROTECTED] Sent: 03 March 2003 17:11 To: 'Dave Walters'; '[EMAIL PROTECTED]' Subject: RE: (RADIATOR) Log SQL only likes Unix Time Hi Dave, try to quote the time var: %l regards Jesús M Díaz -Mensaje original- De: Dave Walters [mailto:[EMAIL PROTECTED] Enviado el: lunes, 03 de marzo de 2003 17:28 Para: [EMAIL PROTECTED] Asunto: (RADIATOR) Log SQL only likes Unix Time Hi, I'm trying to get Radiator to log the current time in long format rather than Unix Time by doing the following: Log SQL Identifier LogDB1 DBSource dbi:mysqlPP:radius DBUsername username DBAuth password Table RADLOG Trace 3 LogQuery insert into %3 (TIME_STAMP, PRIORITY, MESSAGE) / values (%l, %0, %2) /Log But when I restart Radiator I get the following error message: server:# Mon Mar 3 16:13:07 2003: INFO: Access rejected for [EMAIL PROTECTED]: MaxSessions exceeded DBD::mysqlPP::db do failed: You have an error in your SQL syntax near 'Mar 3 16:13:07 2003, 3, 'Access rejected for [EMAIL PROTECTED]: MaxSessions ex' at line 1 at /usr/local/ActivePerl-5.6/lib/site_perl/5.6.1/Radius/SqlDb.pm line 219. DBD::mysqlPP::db do failed: You have an error in your SQL syntax near 'Mar 3 16:13:07 2003, 3, 'Access rejected for [EMAIL PROTECTED]: MaxSessions ex' at line 1 at /usr/local/ActivePerl-5.6/lib/site_perl/5.6.1/Radius/SqlDb.pm line 219. If I substitute %l with %t it works fine, although it obviously logs Unix Time and not long format. The column TIME_STAMP in RADLOG is set as Type Varchar with length 50 so it shouldn't be a problem with the field being to small/incorrect type. Any help you can give me would be gratefully recived, Thanks, Dave Walters Technical Manager Luna Internet Tel. 0845 345 0175 Fax. 01782 544 029 Mob. 07968 729 489 [EMAIL PROTECTED] www.luna.co.uk === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. Mail Disclaimer La Informacion incluida en el presente correo electronico es SECRETO PROFESIONAL Y CONFIDENCIAL, siendo para el uso exclusivo del destinatario arriba mencionado. Si usted lee este mensaje y no es el destinatario señalado, el empleado o el agente responsable de entregar el mensaje al destinatario, o ha recibido esta comunicacion por error, le informamos que esta totalmente prohibida cualquier divulgacion, distribucion o reproduccion de esta comunicacion, y le rogamos que nos lo notifique inmediatamente y nos devuelva el mensaje original a la direccion arriba mencionada. Gracias. The information contained in this e-mail is LEGALLY PRIVILEDGED AND CONFIDENTIAL and is intended only for the use of the addressee named above. If the reader of this message is not the intended recipient or the employee or agent responsible for delivering the message to the intended recipient, or you have received this communication in error, please be aware that any dissemination, distribution or duplication of this communication is strictly prohibited, and please notify us immediately and return the original message to us at the address above. Thank you. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Session Database and MaxSessions
I have a existing session database. I am now to the point where I need to control MaxSessions. When i add the MaxSessions 1 to my conf. file I get ALOT of people that can't login because it believes the user is still online or maxsession is exceeded. I know for a fact that these users are not online. Why is it not letting them online? Is there any other way or Proper way to set radiator up to control maxsessions when I'm getting my auth's from wholesale provider which does not support snmp to the nas's...? How do other people on the list control simultaneous usage with Networks like Uunet,Qwest,Megapop etc I have included the log file (Trace 4)with the errors I get when I add MaxSessions 1 these errors are occurring even when the user is not trying to do simultaneous connections. I have also attached my conf file. Mon Mar 3 08:06:00 2003: DEBUG: Packet dump:*** Received from 216.127.139.10 port 3800 Code: Access-RequestIdentifier: 171Authentic: U143823317112922252267148157b21216MAttributes:User-Name = "[EMAIL PROTECTED]"CHAP-Password = 1#134194141c(29;243168143D168V213172NAS-IP-Address = 67.193.160.36NAS-Port = 2052NAS-Port-Type = AsyncService-Type = Framed-UserFramed-Protocol = PPPState = ""Called-Station-Id = ""Acct-Session-Id = "388570715"Ascend-Data-Rate = 26400Ascend-Xmit-Rate = 50667network = "u2" Mon Mar 3 08:06:00 2003: DEBUG: Handling request with Handler 'Realm=DEFAULT'Mon Mar 3 08:06:00 2003: DEBUG: Deleting session for [EMAIL PROTECTED], 67.193.160.36, 2052Mon Mar 3 08:06:00 2003: DEBUG: do query is: delete from RADONLINE where NASIDENTIFIER='67.193.160.36' and NASPORT=02052 Mon Mar 3 08:06:00 2003: DEBUG: Query is: select NASIDENTIFIER, NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where [EMAIL PROTECTED] Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 13, 388532462 67.193.119.193 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 3203, 388529606 67.193.119.73 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2121, 388518728 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2244, 388501182 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 111, 388543128 67.193.119.187 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 17, 376236234 67.193.170.23 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2065, 388528348 67.193.119.93 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 2059, 376233805 67.193.170.77 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 209, 376233644 67.193.170.44 Mon Mar 3 08:06:01 2003: INFO: Access rejected for [EMAIL PROTECTED]: MaxSessions exceededMon Mar 3 08:06:01 2003: DEBUG: Packet dump:*** Sending to 216.127.139.10 port 3800 Code: Access-RejectIdentifier: 171Authentic: U143823317112922252267148157b21216MAttributes:Reply-Message = "Request Denied" # common-sql.cfg # # Example Radiator configuration file that allows you to # authenticate from an SQL database. # With Radiator you can interface with almost any databse schema, # and there are many more configurable parameters that allow you # to control database fallback, select statements, column names # and arrangements etc etc etc. # See the reference manual for more details. # This is a very simple exmaple to get you started. It will # work with the tables created by the goodies/*.sql scripts. # # You should consider this file to be a starting point only # $Id: sql.cfg,v 1.5 2000/11/07 21:18:05 mikem Exp $ Foreground LogStdout LogDir . DbDir . Trace 4 DictionaryFile %D/dictionary.ascend2 include %D/clients.cfg # This will authenticate users from SUBSCRIBERS Realm DEFAULT MaxSessions 1 AuthBy SQL # Adjust DBSource, DBUsername, DBAuth to suit your DB DBSourcedbi:ODBC:LocalRadiusDB DBUsername DBAuth ** AuthSelect select radiusname, password, profiles.checkattr, profiles.replyattr from RADIUSCUSTOMER,profiles where radiuscustomer.radiusprofile = profiles.radiusprofile and radiusname= %0 # You may want to tailor these for your ACCOUNTING table # You can add your own columns to store whatever you like AccountingTable RAD_ACCOUNTING AcctColumnDef USERNAME,User-Name AcctColumnDef TIME_STAMP,Timestamp,integer AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
Re: (RADIATOR) Session Database and MaxSessions
Frank, List, Here is a snippet of my clients.cfg file (attached). All of my client entries look like what i attached. Dan - Original Message - From: Frank Danielson To: Dan ; [EMAIL PROTECTED] Sent: Monday, March 03, 2003 1:31 PM Subject: RE: (RADIATOR) Session Database and MaxSessions Dan- could you also send the clients.cfg (no secrets)? -Original Message-From: Dan [mailto:[EMAIL PROTECTED]Sent: Monday, March 03, 2003 12:23 PMTo: [EMAIL PROTECTED]Subject: (RADIATOR) Session Database and MaxSessions I have a existing session database. I am now to the point where I need to control MaxSessions. When i add the MaxSessions 1 to my conf. file I get ALOT of people that can't login because it believes the user is still online or maxsession is exceeded. I know for a fact that these users are not online. Why is it not letting them online? Is there any other way or Proper way to set radiator up to control maxsessions when I'm getting my auth's from wholesale provider which does not support snmp to the nas's...? How do other people on the list control simultaneous usage with Networks like Uunet,Qwest,Megapop etc I have included the log file (Trace 4)with the errors I get when I add MaxSessions 1 these errors are occurring even when the user is not trying to do simultaneous connections. I have also attached my conf file. Mon Mar 3 08:06:00 2003: DEBUG: Packet dump:*** Received from 216.127.139.10 port 3800 Code: Access-RequestIdentifier: 171Authentic: U143823317112922252267148157b21216MAttributes:User-Name = "[EMAIL PROTECTED]"CHAP-Password = 1#134194141c(29;243168143D168V213172NAS-IP-Address = 67.193.160.36NAS-Port = 2052NAS-Port-Type = AsyncService-Type = Framed-UserFramed-Protocol = PPPState = ""Called-Station-Id = ""Acct-Session-Id = "388570715"Ascend-Data-Rate = 26400Ascend-Xmit-Rate = 50667network = "u2" Mon Mar 3 08:06:00 2003: DEBUG: Handling request with Handler 'Realm=DEFAULT'Mon Mar 3 08:06:00 2003: DEBUG: Deleting session for [EMAIL PROTECTED], 67.193.160.36, 2052Mon Mar 3 08:06:00 2003: DEBUG: do query is: delete from RADONLINE where NASIDENTIFIER='67.193.160.36' and NASPORT=02052 Mon Mar 3 08:06:00 2003: DEBUG: Query is: select NASIDENTIFIER, NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where [EMAIL PROTECTED] Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 13, 388532462 67.193.119.193 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 3203, 388529606 67.193.119.73 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2121, 388518728 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2244, 388501182 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 111, 388543128 67.193.119.187 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 17, 376236234 67.193.170.23 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2065, 388528348 67.193.119.93 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 2059, 376233805 67.193.170.77 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 209, 376233644 67.193.170.44 Mon Mar 3 08:06:01 2003: INFO: Access rejected for [EMAIL PROTECTED]: MaxSessions exceededMon Mar 3 08:06:01 2003: DEBUG: Packet dump:*** Sending to 216.127.139.10 port 3800 Code: Access-RejectIdentifier: 171Authentic: U143823317112922252267148157b21216MAttributes:Reply-Message = "Request Denied" clients.cfg Description: Binary data
Re: (RADIATOR) Session Database and MaxSessions
Hello Dan - This looks very odd. What version of Radiator are you running? And can you send me the contents of the session database and a more complete trace 4 showing the startup messages and also what happens when you have a clean session database? I will need to see multiple access requests together with the corresponding accounting starts and accounting stops. regards Hugh On Tuesday, Mar 4, 2003, at 04:22 Australia/Melbourne, Dan wrote: I have a existing session database. I am now to the point where I need to control MaxSessions. When i add the MaxSessions 1 to my conf. file I get ALOT of people that can't login because it believes the user is still online or maxsession is exceeded. I know for a fact that these users are not online. Why is it not letting them online? Is there any other way or Proper way to set radiator up to control maxsessions when I'm getting my auth's from wholesale provider which does not support snmp to the nas's...? How do other people on the list control simultaneous usage with Networks like Uunet,Qwest,Megapop etc I have included the log file (Trace 4) with the errors I get when I add MaxSessions 1 these errors are occurring even when the user is not trying to do simultaneous connections. I have also attached my conf file. Mon Mar 3 08:06:00 2003: DEBUG: Packet dump: *** Received from 216.127.139.10 port 3800 Code: Access-Request Identifier: 171 Authentic: U143>8>233>171>129>22>252>26>7148>157>b21>216>M Attributes: User-Name = [EMAIL PROTECTED] CHAP-Password = 1>#134>194>141>c(29>;243>168>143>D168>V213>172> NAS-IP-Address = 67.193.160.36 NAS-Port = 2052 NAS-Port-Type = Async Service-Type = Framed-User Framed-Protocol = PPP State = Called-Station-Id = Acct-Session-Id = 388570715 Ascend-Data-Rate = 26400 Ascend-Xmit-Rate = 50667 network = u2 Mon Mar 3 08:06:00 2003: DEBUG: Handling request with Handler 'Realm=DEFAULT' Mon Mar 3 08:06:00 2003: DEBUG: Deleting session for [EMAIL PROTECTED], 67.193.160.36, 2052 Mon Mar 3 08:06:00 2003: DEBUG: do query is: delete from RADONLINE where NASIDENTIFIER='67.193.160.36' and NASPORT=02052 Mon Mar 3 08:06:00 2003: DEBUG: Query is: select NASIDENTIFIER, NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where [EMAIL PROTECTED] Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 13, 388532462 67.193.119.193 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 3203, 388529606 67.193.119.73 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2121, 388518728 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2244, 388501182 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 111, 388543128 67.193.119.187 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 17, 376236234 67.193.170.23 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.36 , 2065, 388528348 67.193.119.93 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 2059, 376233805 67.193.170.77 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED], 67.193.160.47 , 209, 376233644 67.193.170.44 Mon Mar 3 08:06:01 2003: INFO: Access rejected for [EMAIL PROTECTED]: MaxSessions exceeded Mon Mar 3 08:06:01 2003: DEBUG: Packet dump: *** Sending to 216.127.139.10 port 3800 Code: Access-Reject Identifier: 171 Authentic: U143>8>233>171>129>22>252>26>7148>157>b21>216>M Attributes: Reply-Message = Request Denied main.cfg.txt> NB: have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening? -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence.
Re: (RADIATOR) Copper Edge
Hello Chris - As long as the NAS does standard radius, it will work with Radiator. If there are Copper Edge vendor-specific attributes, please get them from Copper Edge and send us a copy so we can include them in the Radiator dictionary. The dictionary is a simple text file and you can add your own attribute definitions with any text editor. regards Hugh On Monday, Mar 3, 2003, at 22:42 Australia/Melbourne, Chris Chris wrote: Hi list, Is the Copper Edge 150 or 200 defined in the dictionary list? the NAS I'm talking about is the Copper Mountain Broadband DSLAM http://www.coppermountain.com/ I'm trying to test its Radius features and was wondering if it will authenticate with Radiator. cheers! -- This Email is protected by RAV AntiVirus Security Software for SuSE Linux eMail Server === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. NB: have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening? -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
RE: (RADIATOR) Session Database and MaxSessions
-- Forwarded Message -- Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from [Frank Danielson [EMAIL PROTECTED]] Date: Mon, 3 Mar 2003 08:35:34 -0600 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] From [EMAIL PROTECTED] Mon Mar 3 08:35:34 2003 Received: from orlrelay02 ([209.4.229.191]) by server1.open.com.au (8.11.0/8.11.0) with SMTP id h23EZYx03351 for [EMAIL PROTECTED]; Mon, 3 Mar 2003 08:35:34 -0600 Received: FROM orlexch02.brience.local BY orlrelay02 ; Mon Mar 03 14:23:53 2003 -0500 Received: by orlexch02.brience.local with Internet Mail Service (5.5.2653.19) id FKHB85FK; Mon, 3 Mar 2003 14:31:20 -0500 Message-ID: [EMAIL PROTECTED] From: Frank Danielson [EMAIL PROTECTED] To: Dan [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: RE: (RADIATOR) Session Database and MaxSessions Date: Mon, 3 Mar 2003 14:31:15 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: multipart/alternative; boundary=_=_NextPart_001_01C2E1BB.74F2FA50 This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. --_=_NextPart_001_01C2E1BB.74F2FA50 Content-Type: text/plain; charset=iso-8859-1 Dan- could you also send the clients.cfg (no secrets)? -Original Message- From: Dan [mailto:[EMAIL PROTECTED] Sent: Monday, March 03, 2003 12:23 PM To: [EMAIL PROTECTED] Subject: (RADIATOR) Session Database and MaxSessions I have a existing session database. I am now to the point where I need to control MaxSessions. When i add the MaxSessions 1 to my conf. file I get ALOT of people that can't login because it believes the user is still online or maxsession is exceeded. I know for a fact that these users are not online. Why is it not letting them online? Is there any other way or Proper way to set radiator up to control maxsessions when I'm getting my auth's from wholesale provider which does not support snmp to the nas's...? How do other people on the list control simultaneous usage with Networks like Uunet,Qwest,Megapop etc I have included the log file (Trace 4) with the errors I get when I add MaxSessions 1 these errors are occurring even when the user is not trying to do simultaneous connections. I have also attached my conf file. Mon Mar 3 08:06:00 2003: DEBUG: Packet dump: *** Received from 216.127.139.10 port 3800 Code: Access-Request Identifier: 171 Authentic: U143823317112922252267148157b21216M Attributes: User-Name = [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] CHAP-Password = 1#134194141c(29;243168143D168V213172 NAS-IP-Address = 67.193.160.36 NAS-Port = 2052 NAS-Port-Type = Async Service-Type = Framed-User Framed-Protocol = PPP State = Called-Station-Id = Acct-Session-Id = 388570715 Ascend-Data-Rate = 26400 Ascend-Xmit-Rate = 50667 network = u2 Mon Mar 3 08:06:00 2003: DEBUG: Handling request with Handler 'Realm=DEFAULT' Mon Mar 3 08:06:00 2003: DEBUG: Deleting session for [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.36, 2052 Mon Mar 3 08:06:00 2003: DEBUG: do query is: delete from RADONLINE where NASIDENTIFIER='67.193.160.36' and NASPORT=02052 Mon Mar 3 08:06:00 2003: DEBUG: Query is: select NASIDENTIFIER, NASPORT, ACCTSESSIONID, FRAMEDIPADDRESS from RADONLINE where [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.36 , 13, 388532462 67.193.119.193 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.36 , 3203, 388529606 67.193.119.73 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.36 , 2121, 388518728 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.36 , 2244, 388501182 67.193.119.57 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.36 , 111, 388543128 67.193.119.187 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.47 , 17, 376236234 67.193.170.23 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.36 , 2065, 388528348 67.193.119.93 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] , 67.193.160.47 , 2059, 376233805 67.193.170.77 Mon Mar 3 08:06:01 2003: DEBUG: Checking if user is still online: unknown, [EMAIL PROTECTED]
Re: Fwd: (RADIATOR) Odyssey client and Radiator - Question
Hello Steve, Begin forwarded message: From: Steve Caporossi [EMAIL PROTECTED] Date: Tue Mar 4, 2003 00:38:57 Australia/Melbourne To: [EMAIL PROTECTED] Subject: (RADIATOR) Odyssey client and Radiator - Question We are evaluating the Odyssey client for authenticating our wireless users via TTLS. I noticed that unless a user sets their username under the TTLS settings tab, anonymous is recorded in the logs. Is anyone else using this client and, have you come up with a workaround for this behavior? This is the normal and expected behaviour for TTLS. They put anonymous by default in the outer request so that the 'real' user name is not available for sniffing. The downside is that the Radius requests all appear to be from 'anonymous'. You can change this behaviour in the Odyssey client by editing the Profile/TTLS Setting page, and changing the 'Anonymous name:' field. Hope that helps. Cheers. Thanks, -- Steve Caporossi Network Systems Engineer Center for Computing and Information Technology Medical University of South Carolina 843.876.5083 === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. NB: have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening? -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP etc on Unix, Windows, MacOS etc. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Help concerning PreAuthentication with Radiator
Hi Everyone, We are currently evaluating Radiator. One of the decision points is to be able to test out a PreAuthentication with Radiator and a AS5400. Has anyone configured this ? We would appreciate some help. Thanks. Tony === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Help concerning PreAuthentication with Radiator
Hello Tony - We have many customers using Cisco NAS equipment for PreAuthentication. You should check the Cisco web site (or your support engineer) for the IOS configuration details. As far as Radiator is concerned there is nothing special about the requests other than the fact that they only contain the Called-Station-Id and Calling-Station-Id, and a special Service-Type (from memory). This topic has been discussed on the mailing list a number of times and you can search the archive at: www.open.com.au/archives/radiator And here is a Cisco URL that should help: http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/ 121newft/121t/121t2/dtpreaut.htm#45657 regards Hugh On Tuesday, Mar 4, 2003, at 12:53 Australia/Melbourne, tony wrote: Hi Everyone, We are currently evaluating Radiator. One of the decision points is to be able to test out a PreAuthentication with Radiator and a AS5400. Has anyone configured this ? We would appreciate some help. Thanks. Tony === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. NB: have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening? -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.