Alan,
Thanks for your hard work... we all appreciate it.
Alan DeKok wrote:
Bug reports are nice. Lack of notification is stupid.
With that said, 0.9.3 has been released. It's in the normal places:
ftp://ftp.freeradius.org/pub/radius/freeradius-0.9.3.tar.gz
With PGP signature at:
Marek,
What I did is provision the NAS to send the update every 30 minutes,
then I put the start, update, and stop messages on seperate rows in the
database then run a query that looks for the min and max transfer bytes
within the month gouped by user and session. Then I subtract the min
from
Anyone know why my radutmp file is missing the users IP address for some
of the logins. Is this because the user wasn't authenticated? Or
perhaps the nas didn't send it? Any way to know for sure?
schu
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I ran into a problem last night where there was a user in radutmp while
Simultaneous-Use was set to 1 and the server didn't call checkrad. I
put like in checkrad that logged every time it was called with the
username and this user was never checked.
Anyone know of a circumstance where this mig
Put this in your ldap.attrmap:
replyItem Cisco-AVPair
schu
Israel Cardenas Romero wrote:
Ok.
But i'm using Auth-Type := LDAP, and mapping LDAP attributes with Radius
attributes... How can I do it with this configuration?
Each user has a LDAP entry with some attributes,
Use radtest to find out exactly what attributes radius is feeding the
nas. I'm guessing your giving your Ascend incorrect Session Timeouts
because of a configuration issue.
schu
[EMAIL PROTECTED] wrote:
Setup: Slackware 9.0, freeradius 0.9, MySQL, Ascend Max 4000
We've been using this setup f
Sometimes this comes down to what you need it to do. I need a
centralized user database platform wide so LDAP was the obvious choice
so I ran that with detail accounting for a while but then I needed to do
some bit counting and I also needed to calculate usage for the users.
When it comes to t
I have found that openldap works the best for this. Connect all of your
radius servers to an ldap directory and put the changes there. If you
want to have more than one directory then use openldap's built in
replication.
schu
Broussard Philippe wrote:
Hi,
Example :
I have many local radiu
Alan,
I don't know if this is something you want to include but I thought I
would mail it to you in case you do want it.
This patch causes the rlm_ldap module to reject usernames that have
whitespace in them. This was causing me a lot of grief because ldap was
accepting usernames with whitesp
Sorry, just getting around to reading all this stuff:
Peter Nixon wrote:
Hi List
I would like to take a quick straw poll.
a) If you use a Database backend for FreeRadius which one do you use?
LDAP for Auth and Postgresql for Accounting.
b) If you do not use a DB backend for FreeRadius, but do ha
I must agree. If you just READING data and never really working with it
at the query (or procedure) level then mysql is a quick and dirty way to
do it. When it comes down to really putting the DB to work switch to
postgres. It really is that much better.
schu
Peter Nixon wrote:
On Sat July 1
Spoke too soon, looks like configure sets it back to mode 644.
Looking for where configure creates it, but I'm not a real programmer
and I'm sure someone will beat me to it.
schu
Matthew Schumacher wrote:
It seems that the radpath.h file doesn't get created during ./configur
It seems that the radpath.h file doesn't get created during ./configure
on my system. Fix is simple:
chmod 755 src/include/build-radpaths-h
Alan, please change the permissions on this file in the current
freeradius.tar.gz tarball so that it will compile.
Thanks,
schu
-
List info/subscribe/
Gustavo,
Use a database sting function to trim this data during insert. I use:
lower(trim('%{SQL-User-Name}')) in postgresql but there should be
something similar in mysql if that is what your using.
schu
Gustavo Lozano wrote:
This one goes for the developers...
When a user tries to login in
List,
Anyone have a fix for the ldap module authenticating users with
whitespace in the username. It's really making a mess of my accounting.
I am currently using this filter:
(&(uid=%{Stripped-User-Name:-%{User-Name}})(objectClass=aptAccount)(aptDialupEnabled=1)(aptAccountEnabled=1))
And I c
Why not build it yourself... it's not hard
Also, if you are doing anything special your going to need to build it
yourself anyway. If I gave you my binaries you would get a cvs version
that depends on psql, openldap, and other libraries. You would be
forced to install a bunch of RPMS just
Well, I don't think this is a native thing but wouldn't be difficult to
build. The accouting messages give you the information you need as far
as how much time the user has used, simply write a script to disable
users that are over their time limit. This could be done with LDAP,
SQL, perl, pr
Brett,
Just remember that radius is nothing more than a fancy authentication
system. It basically returns yay or nah to another system. What you
want to do is start working out the details of that other system.
schu
Brett Thomson wrote:
Hi Nick,
Thanks for your prompt reply. We do have a fi
Alex,
Which version do you running? Which db engine do you use?
OpenLDAP 2.1.17
Postgres 7.3.2
freeradius-20030430 w/patches from the list.
I'm in process of configuring FR snapshot of 2003-04-24 (keeping
it up-to-date, so let's say it's a current snapshot), so able to
experiment as extremely as
Alan,
I also use ldap for autz/auth and sql/detail for accounting and have
also seen this problem. I just didn't have enough information to really
troubleshoot it further.
What I really need to do is get the latest CVS running in the lab and
start trying to break it by kicking the database/ld
--
___
Matthew Schumacher [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ok,
I want to have 2 radius servers each on different ports on the same host
so that I can maintain separate configs and logging.
So I create the first server:
tar xvzf freeradius.tar.gz
cd freeradius-0.5
./configure --prefix=/usr/local/freeradius-dialup
make
make install
Then
Alan,
I see the docs you are referring to, but I don't see how that could work
in an ldap context...
schu
Alan DeKok wrote:
> Matthew Schumacher <[EMAIL PROTECTED]> wrote:
>
>>Can you point me to documentation the explains how?
>>
>
> raddb/radiusd
rve a diffrenet static address than another,
which are changes that are made in a per user basis.
Thanks,
schu
Chris Parker wrote:
> At 10:14 PM 2/13/2002 -0900, Matthew Schumacher wrote:
>
>> Alan,
>>
>> Can you point me to documentation the explains how?
>
>
> T
Alan,
Can you point me to documentation the explains how?
schu
Alan DeKok wrote:
> Matthew Schumacher <[EMAIL PROTECTED]> wrote"
>
>>Is it possible to configure freeradius to serve different attributes
>>based on which NAS is asking to authenticate?
>
--
__
Matthew Schumacher [EMAIL PROTECTED]
Alaska Power and Telephone desk: 907-563-2199 x223
Systems Administrator cell: 907-240-2275
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello all,
I am having trouble getting radius to work with ldap. I think I have
the config file setup corretly because I see ldap requests in the debug.
I want to use pap and {crypt} for password encryption and accourding to
the docs that should work. But I can't seem to get it working in my
L PROTECTED]>,
> Matthew Schumacher <[EMAIL PROTECTED]> wrote:
>
>>Can someone tell me which config file I need to edit to add the cisco
>>configuration options listed in the docs/cisco file? I read though the
>>file, and it lists which configuration directives
Can someone tell me which config file I need to edit to add the cisco
configuration options listed in the docs/cisco file? I read though the
file, and it lists which configuration directives to use, but it doesn't
say one word about which config file they go into.
I should know this, but I do
Hello all,
I was reading the list archives and it seems that there where problems
with ldap leaking memory. I was wondering if that was cleared up? I
testing an ldap-freeradius setup now and it doesn't seem to be growing
on me.
thanks,
schu
-
List info/subscribe/unsubscribe? See http://
Alan,
Ok I got it to work
I needed to add -ldl to the linker. It seems that I have needed to do
this a lot on my redhat 7.1 box. Any ideas why configure didn't sort
this out for me, or is it how I have my redhat machine setup?
thanks again,
schu
[EMAIL PROTECTED] wrote:
>
o (libc6) => /usr/local/lib/libldap_r.so
libldap.so.2 (libc6) => /usr/local/lib/libldap.so.2
libldap.so (libc6) => /usr/local/lib/libldap.so
Any other ideas?
schu
[EMAIL PROTECTED] wrote:
> Matthew Schumacher <[EMAIL PROTECTED]> wrote:
>
>>checking
k,
tanks
[EMAIL PROTECTED] wrote:
> Matthew Schumacher <[EMAIL PROTECTED]> wrote:
>
>>checking for ldap_initialize in -lldap... no
>>
>
> Weird. The code itself uses ldap_init(), not ldap_initialize().
>
> Hmm.. and if I change the configure script t
Hello all,
I cannot get rlm_ldap to find my libldap_r lib. Here is all the
information I can think to give:
[root@mail1 rlm_ldap]# ldconfig -p | grep ldap
libldap_r.so.2 (libc6) => /usr/local/lib/libldap_r.so.2
libldap_r.so (libc6) => /usr/local/lib/libldap_r.so
libl
34 matches
Mail list logo