Actually, the answer is a little more
straightforward when Radius is involved. No package including Radius
should be reading from a flat file (cached or not). In the case of Radius,
the users file can quickly become a problem after a few thousand
users. With SQL, proper indexing can
To all who replied to this message, I found the LDAP/CHAP compatibility
problem. I had everything correct in the author/authen sections. In
fact, the answer was in the previously mentioned FAQ by Kostas. We also
use the "users" file to set defaults after the LDAP authorization and it
was erroneo
Hello,
Can ANYONE suggest ANY WAY that might allow CHAP requests
to be handled even though we use LDAP to handle authentication
and authorization? Our passwords (userpassword attribute)
are stored in cleartext in the latest OpenLDAP so at least
we are prepared for CHAP. Maybe some sort of hac
Please take a look at the FreeRadius v0.9-pre log entry below. We use
rlm_ldap to handle authentication/authorization and we continue to get
these occasional errors. I suppose it is someone trying to use CHAP.
The CHAP and LDAP modules are both listed in our radiusd.conf. Our
passwords are ALL
Does anybody know of a way to get FreeRadius to handle either crypt OR
clear text encryption schemes for the "pap" module?
For example in radiusd.conf:
pap {
encryption_scheme = clear
encryption_scheme = crypt
}
We have some passwords stored in the LDAP password attribute as cle
Hello,
I was wondering if anyone had a specific recipe for creating a solid
FreeRadius build on Solaris 7, 8, and 9. We have some big iron 64bit
multi-CPU UltraSparc systems that we would like to try FreeRadius on.
Here's the question:
Given that we would be starting with FreeRadius v0.81, Sola
Hello,
We're testing v0.81 against our existing LDAP DB and the searches worked
fine. Now have LDAP authentication working too. We also need to pull
different Radius attributes from LDAP depending on Realm name
([EMAIL PROTECTED]). Are there any examples of how this might be
accomplished in a
Hello,
I was testing v0.81 against our existing LDAP DB and the searches worked
fine. Now have LDAP authentication working too. Finally, need to
start storing accounting records in MySQL. Are there any examples of
how this should look in the radiusd.conf accounting{} section? Please
advise.
Hello,
I was testing v0.81 against our existing LDAP DB and the searches worked
fine. The LDAP module seemed to authenticate the LDAP user but then
somewhere along the line, "Auth-Type System" failed to "validate" the
user. We only want to validate/authenticate dialin users against LDAP
so doe
