On Mon, 2003-03-24 at 17:06, Alan DeKok wrote:
> "Mark Lavi" <[EMAIL PROTECTED]> wrote:
> > However, it is common to have different "groups" in an authenticated
> > population. Say, for instance, a department of an organization. Once you
> > know that attribute (if it exists) for a person, you ca
Hello
Here's what I have done
I inserted ("dialup", "Simultaneous-Use", ":=", "1") into radgroupcheck.
And I uncommented simul_count_query and simul_verify_query on sql.conf.
After I done that I when I looked at the radius.log.And it seemed that it's
catching multiple logins.
But it turns out
Hi,
We are looking into
installing FreeRadius 0.8 on FreeBSD 4.6 platform. I would like to find out what
specific package(s) are needed above and beyond base FreeBSD 4.6 prior to
compiling FreeRadius.
Additionally, are
there any scripts available to parse radius records and producing com
On Thu, 20 Mar 2003, Simon Son wrote:
> Hello
>
> I was checking sql.conf and wondering
> what simul_count_query and simul_verify_query do
simul_count_query counts the active sessions of a user
simul_verify_query verifies each of them if simul_count_query returns more
active sessions than allow
On Wed, 19 Mar 2003, Alain Cocconi wrote:
> Hi everybody,
>
> I'm currently checking if it is possible for me to switch fromicradius+my
> patches to freeradius.
> One of the features i need but not find in doc/mailing list is :
>
> I need to add a realm to all user without it.
>
> remo
On Tue, 18 Mar 2003, Nick Lomonte wrote:
> When editing a users attributes, the "Member of" dropdown list only
> shows the group they are in, it doesn't show the other available groups
> in order to change their membership.
That's what the edit group page is for.
>
> --
> Nick Lomonte
> Network
On Thu, 20 Mar 2003, Ron Wahler wrote:
> I need some help please...
>
> Anyone ever use a LDAP query to extract the users group from the LDAP
> database?
>
> Not sure how to set up the radiusd.conf file to use the %GroupName. I
> want to query
>
> The user and find what group they are in...
>
>
I'm converting from an old Ascend Radius and need help on "user" file
conversion from the below to new format:
jackcha Password = "2old2"
User-Service= Framed-User,
Framed-Protocol = MP,
Ascend-Route-IP = Route-IP-Yes,
Framed-Address = 208.27.64.65,
Fr
"Mark Lavi" <[EMAIL PROTECTED]> wrote:
> However, it is common to have different "groups" in an authenticated
> population. Say, for instance, a department of an organization. Once you
> know that attribute (if it exists) for a person, you can say restict
> access to different resources on the w
Dave Mason <[EMAIL PROTECTED]> wrote:
> On a related note, should the entry for EAP-Message in the dictionary
> file have type octets? It is currently string, so it assumes everything
> is ASCII. I had to change this to octets so the server would interpret
> my EAP attributes correctly. Let m
Cool thanks
-Original Message-
From: Franklin Trumpy [mailto:[EMAIL PROTECTED]
Sent: Monday, March 24, 2003 2:03 PM
To: [EMAIL PROTECTED]
Subject: Re: Realm Specific Accounting
On Sat, 22 Mar 2003, Gene Parks wrote:
> Can I do the same with the details file?
>
> i.e Realm1 = details1
>
Hi,
On a related note, should the entry for EAP-Message in the dictionary
file have type octets? It is currently string, so it assumes everything
is ASCII. I had to change this to octets so the server would interpret
my EAP attributes correctly. Let me know if this is wrong.
Dave
Alan DeKok
Alan DeKok wrote:
"Mark Lavi" <[EMAIL PROTECTED]> wrote:
...For instance: user-name, class, connect-info, and vendor-specific attributes
all might be information from the RADIUS server that could be further
utilized by an application without relying on another data source.
How?
Right n
On Monday 24 March 2003 08:11 am, Alan DeKok wrote:
> David Tran II <[EMAIL PROTECTED]> wrote:
> > I am wondering if anyone get FreeRadius to work with Cisco LEAP.
> > I understand that LEAP is a Cisco Proprietary; however, I think I
> > saw a post in recent weeks that someone get it to work with C
Option b) is definately an option for me. Basically what I need is to be
able to do the following with the db.counter file based on monthly time
limits.
1) Get a current listing of users and total monthly hours used to date.
2) Query a specific user account for total hours.
For those i
David Tran II <[EMAIL PROTECTED]> wrote:
> I am wondering if anyone get FreeRadius to work with Cisco LEAP.
> I understand that LEAP is a Cisco Proprietary; however, I think I
> saw a post in recent weeks that someone get it to work with Cisco
> LEAP. If you don't mind, can you share the configur
Hi Everyone,
I am wondering if anyone get FreeRadius to work with Cisco LEAP.
I understand that LEAP is a Cisco Proprietary; however, I think I
saw a post in recent weeks that someone get it to work with Cisco
LEAP. If you don't mind, can you share the configuration file and
what needed to be do
"Mark Lavi" <[EMAIL PROTECTED]> wrote:
> Agreed, few attributes are specifically for web servers. However, a
> number of attributes are user or group specific and they would be of use
> for further authorization or personalization of a web page. For
> instance: user-name, class, connect-info, an
On Sat, 22 Mar 2003, Gene Parks wrote:
> Can I do the same with the details file?
>
> i.e Realm1 = details1
> Realm2 = details2
> Realm3=details3
Try something like:
detailfile = ${radacctdir}/%{Realm:-NOREALM}/detail
in radiusd.conf.
That will put each realm in its own directory, named for th
Dear all!
Sorry if my message off
You know wireless IP (TCP/IP) communication based alarm system?
For example the German Sectra?
In the house communication between sensors and central keypay
and accessories wireless. Between house central system and
security co. also wireless, but TCP/IP bas
I am using radius to authenticate users when they dial-up and also to
alow them to login to our news group server. I want to be able to only
allow one login to the dial-up and still be able to allow them access to
the news group right now i am using a sql database and have it set to
allow one l
OK, it's working now. Here is what I changed:
in sql.conf I changed from sql_user_name = "%{Stripped-User-Name}" to
sql_user_name = "%{User-Name}" Not sure there's a difference, but that's
what I did...
in radius.conf in the authorize section commented out all but preprocess,
chap, mschap,
Scott,
Hmmm Does your sqltrace file give any clues? That'll show the actual
SQL which is executing against the database...
Scott.
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]
> Posted At: Monday, March 24, 2003 1:42 PM
> Posted To: FreeRadius
> Convers
Alan:
Thanks for the rapid response. I will now investigate extending the
mod_auth_radius.c using my own resources. I have some follow up
commentary and three questions.
Alan DeKok wrote:
"Mark Lavi" <[EMAIL PROTECTED]> wrote:
I would like to utilize the attributes on an access-accept packe
Hello,
finally I made EAP-MD5 authentication work.
I thanks Artur and Joao for the helpful cooperation.
Only a question: what does "Auth-Type = System" mean? I.e. what does "System" mean?
Thanks a lot again,
emi
hi
> challenge. EAP-MD5 specifies that supplicant, replying to the server
> at
Eric <[EMAIL PROTECTED]> wrote:
> I have 2 kind of nas-port-types: ISDN & Async.
> And I want to limit users by this parameter, but i have no found any variables
> in variables.txt for Nas-Port-Type for Exec-Program-Wait.
> How can I define this parameter in Exec-Program-Wait?
Read variables.txt
Hello, somebody can tell me where can I find in the code of freeradius-0.8.1 where
start the tls handshake?
Thanks.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Dear Alan DeKok,
I did password encoding code in both authorization and authentication
for maximum compatibility, but now I have no chance to test. I hope it
will work OK though.
--Sunday, March 23, 2003, 6:04:27 PM, you wrote to [EMAIL PROTECTED]:
AD> 3APA3A <[EMAIL PROTECTED]> wrote:
>> S
Well, I used the Dialup Admin tool with the default setting of using crypt
passwords.
Here's my DB info, thanks for your help!
mysql> select *from radcheck;
++--++++
| id | UserName | Attribute | op | Value |
++---
Would it be possible to let me look at your config? Maybe a sample user
from your database? (No user id's/passwords/ip addresses of course)
Scott Mace
Network Administrator
TravelCenters of America
24601 Center Ridge Rd.
Westlake, OH 44145
440-808-4318
Pablo Veliz <[EMAIL PROTECTED]
Ok, tried that, no change. Thanks anyway. BTW, am I incorrect in
assuming that these are tried in order until a) they all fail, or b) one
is successful?
Scott Mace
Network Administrator
TravelCenters of America
24601 Center Ridge Rd.
Westlake, OH 44145
440-808-4318
"Ed H" <[EMAIL P
Hello, what is the method that hostap uses to generate the individual wep keys with
eaptls? It is a random method?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On _ 2003-03-23 at 16:41, Latte wrote:
> Hi folks,
>
> I'm using freeradius-snapshot-20030310
> with rlm_perl feature.
>
> I want to re-write (modify) values in RAD_REQUEST
> in 'authorize' phase by some reason.
> In my case here, that is 'User-Name'
> and I want to let other modules (like rlm_r
33 matches
Mail list logo
