Hi all,
Its me again with the same question :-). I want to know whether freeRadius
can authorize users based on a group or OU attribute. When I posted this
question earlier, I was told that not is not possible. I am using the
radiusprofileDn attribute to authorize users. however, this approach ha
I'm not too sure if this is related, but I know in PHP, you can only do 1
query at a time because of security reasons.. It prevents the whole problem
of unsafe variables being passed to the query possibly causing multiple
queries to be executed that the malicious user created themselves. Maybe a
s
At 04:50 PM 6/21/2002 -0500, Todd T. Fries wrote:
>I've heard that some things have been committed to THE cvs tree. I'm
>familiar with the concept of a private commit only repository and a public
>read only one. I understand they are synchronized at periodic intervals.
>
>My question is, what i
I've heard that some things have been committed to THE cvs tree. I'm
familiar with the concept of a private commit only repository and a public
read only one. I understand they are synchronized at periodic intervals.
My question is, what is the interval / schedule for updating the publically
r
At 04:19 PM 6/21/2002 -0500, you wrote:
>Hello. I've recently migrated from an older Livingstone Radius server to
>Freeradius-0.5. Under the old livingston radius, I could have a group of
>users on my main server, authenticate against the server, but reject those
>that were not in my users file.
Hello. I've recently migrated from an older Livingstone Radius server to
Freeradius-0.5. Under the old livingston radius, I could have a group of
users on my main server, authenticate against the server, but reject those
that were not in my users file. Under freeradius it seems to be ignorin
Hi Steve,
Thanks for the prompt answer, it work now with the RADTEST
Thanks again
-Original Message-
From: steve bernacki [mailto:[EMAIL PROTECTED]]
Sent: vendredi 21 juin 2002 16:08
To: [EMAIL PROTECTED]
Subject: Re: User authentication problem
As the server (cryptically) told you in
As the server (cryptically) told you in the debug output, the shared secret
you are using to encrypt the password is not the same one that the server is
using to decrypt it. Make sure both shared secrets match up. The shared
secret for localhost will be in either raddb/clients or raddb/clients.c
Hi ,
I'm a newbie with the software, does anybody see this error message ?
Here is a copy of the radtest :
[root@cd-0623 raddb]# /usr/local/bin/radtest doand essai1206 localhost 18645
pt6
Sending Access-Request of id 77 to 127.0.0.1:1645
User-Name = "doand"
User-Password = "[c\
Can freeradius proxy search multiple radius servers?
I'd like to be able to have the NAS access the proxy and have the proxy
access more than one radius server to authenticate the user without the use
of realms or other identifiers supplied by the end user for identification.
It's not clear to m
Hi,
Fduch the Pravking wrote:
> I'll try to be clear :)
> We have Cisco 2500 with IOS 12.0(4)
> and it seems to have such bug...
>
> Some user tries to log in on this Cisco,
> and gets Access-Reject, but Cisco
> (I don't know whether it has already
> processed Access-Reject at this moment)
> sen
I've been looking at using the Expiration attribute to
make user accounts expire after 5 days if they do not change their password.
I set up my radreply table like
this.
Id Username Atribute Value
I don't see the EAP-Start packet in your example, I see a MD5 type packet
coming back, which isn't what one would expect to get when the server
should be requesting an Identity.
>rlm_eap_md5: Issuing Challenge
>Login OK: [artur/] (from client ap-1 port 38
>cli 004096426f05)
>Sending Access-Cha
hi
Michael Lecuyer wrote:
>
> If an EAP Start packet is sent by a client (two bytes, CODE=request) the
> server returns the appropriate Access-Challenge with a Request for Identity.
>
> The State attribute is not sent with the Access-Challenge.
At least in my case it is: (from ./radiusd -s -X
Oshiro,
Yes ... this is possible ... provided you are getting that information
from the exchange carrier.
You need to add a check attribute of
Calling-Station-Id == "2025551212"
where you replace 2025551212 with the actual phone number of your
user.
Jim Decker
At 01:13 PM 6/21/2002 -0300, you w
If an EAP Start packet is sent by a client (two bytes, CODE=request) the
server returns the appropriate Access-Challenge with a Request for Identity.
The State attribute is not sent with the Access-Challenge.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I'm running a COR-1100 with 2 ROR-1000's Putting one of the radio's
in the ROR to AP mode and one to ROR mode as a point-to-point slave.
The interface that's in AP mode has radius authentication set on it. I
don't see any settings for EAP. I haven't run freeradius in debug mode
to see what'
Hi ,
I would like to know if the cistron can autenticate by user phone number,
and how can i do that.
thanks
Oshiro
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ok
- Original Message -
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, June 21, 2002 12:52 PM
Subject: Freeradius-Users -- confirmation of subscription -- request 432001
> Freeradius-Users -- confirmation of subscription -- request 432001
>
> We have received a request
"=?big5?B?xKO2aA==?=" <[EMAIL PROTECTED]> wrote:
> I can not install the directory "man1", but "man5" and "man8" were installed
> successfully. Why?
Try reading the error messages produced by 'make install'.
> Can I get detail manual pages besides use "man" command?
Have you tried looking i
Hi,
I can not install the directory "man1", but "man5" and "man8" were installed
successfully. Why?
Can I get detail manual pages besides use "man" command?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Title: FW: MySQL Attribute Question
Chris DeRamus
HQ VPN Administrator
Verizon
301-903-2093
-Original Message-
From: Deramus, Chris
Sent: Friday, June 21, 2002 11:09 AM
To: Deramus, Chris
Subject: RE: MySQL Attribute Question
I thought about something else Alan maybe you ca
Title: RE: MySQL Attribute Question
Alan,
I made the change you suggested, I tried every operator in that users file just in case, and still no go. Is there another module I have to load in radiusd.conf in order to allow these attributes to be passed? I've triple checked my typing to make su
hi
> HASH: Reinitializing hash structures and list for caching
> rim_unix: you must specify a shadow passowrd fole
> HASH: unable to create user hash table. disable caching and run debugs.
> radiusd.conf[4260 : unix : module instantation failed.
just do what it says: disable hashing. the problem
24 matches
Mail list logo