Hello. I'm working with freeradius 0.8.1 and MySQL
When my NAS (Quintum Tenor) sends an Account request message, Radius
looks at the database and reqognizes the user very well. Then it sends
the Access-Accept message to the Quintum. But, then Quintum says: Not a
valid Access-Accept Reason:
Hi
Yes, I did that, but nothing changed (maybe I placed wrong code, or in
wrong place)
But there is another question then: I placed h323-return-code into
radreply table, so if radius accepts user, it then sends this value as
h323-return-code, but if radius rejects user? What value will it
The FreeRadius server have any log file??
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
h,
The FreeRadius server have any log file??
yes. by default it goes to:
/usr/local/var/log/radius/
..as the main app installs to /usr/local/ tree. I'd prefer /var/log/ ...
Alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Freeradius with ldap.
The dialupAcces attribute is check in the authorization process or in the
authentication process?
How can I do to select between a dialup access and a vpn access (usind ldap
attribute?)
Thanks
Roberto Pioli
-
List info/subscribe/unsubscribe? See
How I can execute more that one SQL queries after start and stop
session?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
just add more than one SQL module instance.
Vasili G. Yanov wrote:
How I can execute more that one SQL queries after start and stop
session?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See
Then why don't change your radiusd.conf to send there!
Cheers Mike D.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Alan Buxey
Sent: Friday, April 04, 2003 1:02 PM
To: [EMAIL PROTECTED]
Subject: Re: log file
h,
The FreeRadius server have any log
hi,
Then why don't change your radiusd.conf to send there!
;-) of course... but what i meant is its a little strange for
/usr/local/var/log to be made etc for FreeRadius. almost all other
apps i know of place logging into /var/log/ by default even if /usr/local
is the path for the app. Not
Alan,
Here is some more information that might help. The
EAP-TLS packet that is received is poorly formated.
After the normal EAP header, the EAP-TLS packet
only contains the flags '0xC0' and then the packet
ends. Since the 'length included' flag is set in the
flags portion, the packet should
On Thu, 3 Apr 2003, Patrick McShane wrote:
Please take a look at the FreeRadius v0.9-pre log entry below. We use
rlm_ldap to handle authentication/authorization and we continue to get
these occasional errors. I suppose it is someone trying to use CHAP.
The CHAP and LDAP modules are both
On Fri, 4 Apr 2003, Roberto Pioli wrote:
Freeradius with ldap.
The dialupAcces attribute is check in the authorization process or in the
authentication process?
authorization
How can I do to select between a dialup access and a vpn access (usind ldap
attribute?)
Create two different ldap
=?iso-8859-4?Q?Ar=FEnas_Mila=B9auskas?= [EMAIL PROTECTED] wrote:
when radius rejects user, Quintum writes error message Not a valid
Access-Reject Reason: Response = -1, even if radius rejects user.
Then call Quintum tech support, and ask them why their box is so
useless that it can't produce
Alan Buxey [EMAIL PROTECTED] wrote:
;-) of course... but what i meant is its a little strange for
/usr/local/var/log to be made etc for FreeRadius. almost all other
apps i know of place logging into /var/log/ by default even if /usr/local
is the path for the app. Not sure which disk layout
Hello,
Make sure you have the dbm headers installed for redhat.
Ed
From: 0nefob [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: problem installing free radius on redhat
Date: Thu, 3 Apr 2003 09:52:59 -0800 (PST)
hi,
i am having problem installing freeradius 0.8.1
david tran [EMAIL PROTECTED] wrote:
So how would I set the users file so that LEAP will
work since the way I am doing it is NOT what you
recommended.
should I configure the user to be like this:
dtran Auth-Type := local, User-Password == 123456
No. You're telling it to ignore EAP, and
Frank Higgens [EMAIL PROTECTED] wrote:
Here is some more information that might help. The
EAP-TLS packet that is received is poorly formated.
After the normal EAP header, the EAP-TLS packet
only contains the flags '0xC0' and then the packet
ends. Since the 'length included' flag is set in
I take the point, it's true what you say.
Regards Mike D.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Alan Buxey
Sent: Friday, April 04, 2003 5:02 PM
To: [EMAIL PROTECTED]
Subject: RE: log file
hi,
Then why don't change your radiusd.conf to send
I am currently looking into using Free Radius for my user authentication
on my networking equipment that can not support TACACS. As such, I am
going to have 100's of devices that will be authenticating off of the
Radius server. Will I need to list each device's IP individually in my
Brian Pavane [EMAIL PROTECTED] wrote:
I am currently looking into using Free Radius for my user authentication
on my networking equipment that can not support TACACS. As such, I am
going to have 100's of devices that will be authenticating off of the
Radius server. Will I need to list
On Fri, 4 Apr 2003, Alan DeKok wrote:
Brian Pavane [EMAIL PROTECTED] wrote:
I am currently looking into using Free Radius for my user authentication
on my networking equipment that can not support TACACS. As such, I am
going to have 100's of devices that will be authenticating off of the
mark winkler [EMAIL PROTECTED] wrote:
You must have statically linked MySQL libraries, too.
Ok, I used:
configure --with-mysql-lib-dir=/usr/local/mysql/lib --disable-shared
No, that's not what I meant. I meant the the MySQL libraries must
be static, NOT the FreeRADIUS libraries.
I would recommend just writing a shell script to generate the clients
file.
--Robert R. George
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Brian
Pavane
Sent: Friday, April 04, 2003 10:50 AM
To: [EMAIL PROTECTED]
Subject: Subnets in clients file
Kristina Pfaff-Harris [EMAIL PROTECTED] wrote:
You can do that, but I wouldn't recommend it.
Why not? (Other than worry about one device being cracked compromising the
others.) I've set up clients as network blocks before with no problems. Is
it just the security issues that you're
Hi,
We're building a RADIUS server that will act as the front end to another
authentication system (a fancy way of saying we're implementing
EAP-SIM). Our system requirements and tight schedule lead us to keep
the design very simple yet re-use as much existing code as possible.
With that, I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hy,
sorry to use this mailing list. But I thing this is the best.
We looking for a trainer in a workshop for 3 days from 6th of may to 8th of
may in Germany (Münster).
The content of the workshop is:
1. connection between RADIUS Sever and
26 matches
Mail list logo