freeRadius Account Request reply attributes

Hello. I'm working with freeradius 0.8.1 and MySQL When my NAS (Quintum Tenor) sends an Account request message, Radius looks at the database and reqognizes the user very well. Then it sends the Access-Accept message to the Quintum. But, then Quintum says: Not a valid Access-Accept Reason:

RE: freeRadius Account Request reply attributes

Hi Yes, I did that, but nothing changed (maybe I placed wrong code, or in wrong place) But there is another question then: I placed h323-return-code into radreply table, so if radius accepts user, it then sends this value as h323-return-code, but if radius rejects user? What value will it

log file

The FreeRadius server have any log file?? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: log file

h, The FreeRadius server have any log file?? yes. by default it goes to: /usr/local/var/log/radius/ ..as the main app installs to /usr/local/ tree. I'd prefer /var/log/ ... Alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

authorization and Authentication

Freeradius with ldap. The dialupAcces attribute is check in the authorization process or in the authentication process? How can I do to select between a dialup access and a vpn access (usind ldap attribute?) Thanks Roberto Pioli - List info/subscribe/unsubscribe? See

SQL queries

How I can execute more that one SQL queries after start and stop session? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: SQL queries

just add more than one SQL module instance. Vasili G. Yanov wrote: How I can execute more that one SQL queries after start and stop session? - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See

RE: log file

Then why don't change your radiusd.conf to send there! Cheers Mike D. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Alan Buxey Sent: Friday, April 04, 2003 1:02 PM To: [EMAIL PROTECTED] Subject: Re: log file h, The FreeRadius server have any log

RE: log file

hi, Then why don't change your radiusd.conf to send there! ;-) of course... but what i meant is its a little strange for /usr/local/var/log to be made etc for FreeRadius. almost all other apps i know of place logging into /var/log/ by default even if /usr/local is the path for the app. Not

Re: freeradius 0.8.1 crash with EAP-TLS bad packets

Alan, Here is some more information that might help. The EAP-TLS packet that is received is poorly formated. After the normal EAP header, the EAP-TLS packet only contains the flags '0xC0' and then the packet ends. Since the 'length included' flag is set in the flags portion, the packet should

Re: LDAP/CHAP incompatible?

On Thu, 3 Apr 2003, Patrick McShane wrote: Please take a look at the FreeRadius v0.9-pre log entry below. We use rlm_ldap to handle authentication/authorization and we continue to get these occasional errors. I suppose it is someone trying to use CHAP. The CHAP and LDAP modules are both

Re: authorization and Authentication

On Fri, 4 Apr 2003, Roberto Pioli wrote: Freeradius with ldap. The dialupAcces attribute is check in the authorization process or in the authentication process? authorization How can I do to select between a dialup access and a vpn access (usind ldap attribute?) Create two different ldap

Re: freeRadius Account Request reply attributes

=?iso-8859-4?Q?Ar=FEnas_Mila=B9auskas?= [EMAIL PROTECTED] wrote: when radius rejects user, Quintum writes error message Not a valid Access-Reject Reason: Response = -1, even if radius rejects user. Then call Quintum tech support, and ask them why their box is so useless that it can't produce

Re: log file

Alan Buxey [EMAIL PROTECTED] wrote: ;-) of course... but what i meant is its a little strange for /usr/local/var/log to be made etc for FreeRadius. almost all other apps i know of place logging into /var/log/ by default even if /usr/local is the path for the app. Not sure which disk layout

Re: problem installing free radius on redhat

Hello, Make sure you have the dbm headers installed for redhat. Ed From: 0nefob [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: problem installing free radius on redhat Date: Thu, 3 Apr 2003 09:52:59 -0800 (PST) hi, i am having problem installing freeradius 0.8.1

Re: Instructions on howto setup Cisco LEAP with FreeRadius

david tran [EMAIL PROTECTED] wrote: So how would I set the users file so that LEAP will work since the way I am doing it is NOT what you recommended. should I configure the user to be like this: dtran Auth-Type := local, User-Password == 123456 No. You're telling it to ignore EAP, and

Re: freeradius 0.8.1 crash with EAP-TLS bad packets

Frank Higgens [EMAIL PROTECTED] wrote: Here is some more information that might help. The EAP-TLS packet that is received is poorly formated. After the normal EAP header, the EAP-TLS packet only contains the flags '0xC0' and then the packet ends. Since the 'length included' flag is set in

RE: log file

I take the point, it's true what you say. Regards Mike D. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Alan Buxey Sent: Friday, April 04, 2003 5:02 PM To: [EMAIL PROTECTED] Subject: RE: log file hi, Then why don't change your radiusd.conf to send

Subnets in clients file

I am currently looking into using Free Radius for my user authentication on my networking equipment that can not support TACACS. As such, I am going to have 100's of devices that will be authenticating off of the Radius server. Will I need to list each device's IP individually in my

Re: Subnets in clients file

Brian Pavane [EMAIL PROTECTED] wrote: I am currently looking into using Free Radius for my user authentication on my networking equipment that can not support TACACS. As such, I am going to have 100's of devices that will be authenticating off of the Radius server. Will I need to list

Re: Subnets in clients file

On Fri, 4 Apr 2003, Alan DeKok wrote: Brian Pavane [EMAIL PROTECTED] wrote: I am currently looking into using Free Radius for my user authentication on my networking equipment that can not support TACACS. As such, I am going to have 100's of devices that will be authenticating off of the

Re: -OSX MySQL and freeRADIUS-

mark winkler [EMAIL PROTECTED] wrote: You must have statically linked MySQL libraries, too. Ok, I used: configure --with-mysql-lib-dir=/usr/local/mysql/lib --disable-shared No, that's not what I meant. I meant the the MySQL libraries must be static, NOT the FreeRADIUS libraries.

RE: Subnets in clients file

I would recommend just writing a shell script to generate the clients file. --Robert R. George -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brian Pavane Sent: Friday, April 04, 2003 10:50 AM To: [EMAIL PROTECTED] Subject: Subnets in clients file

Re: Subnets in clients file

Kristina Pfaff-Harris [EMAIL PROTECTED] wrote: You can do that, but I wouldn't recommend it. Why not? (Other than worry about one device being cracked compromising the others.) I've set up clients as network blocks before with no problems. Is it just the security issues that you're

two thread management questions

Hi, We're building a RADIUS server that will act as the front end to another authentication system (a fancy way of saying we're implementing EAP-SIM). Our system requirements and tight schedule lead us to keep the design very simple yet re-use as much existing code as possible. With that, I

Trainer for RADIUS- workshop

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hy, sorry to use this mailing list. But I thing this is the best. We looking for a trainer in a workshop for 3 days from 6th of may to 8th of may in Germany (Münster). The content of the workshop is: 1. connection between RADIUS Sever and