I want to reject user by checking with NAS and User Class,
i am using OpenLDAP + FreeRadius 0.9.3 and set 'users' file
like below but it not work.
DEFAULT NAS-IP-Address==192.168.0.25, Class == TYPE1, Auth-Type := Reject
Reply-Message = "NAS Access den
Gary Algier <[EMAIL PROTECTED]> wrote:
> I have some basic SQL functionality working, but I discovered that if
> the SQL module returns "ok", FreeRadius still falls through to the
> users file. Is there any way to prevent this?
doc/configurable_failover
Alan DeKok
Rob Genovesi wrote:
Do you need the users file at all?
If not comment out the "files" entry.
-Rob
Yes I do. For those people not explicitly listed in the SQL,
I need to do one of two Proxy-To-Realm entries, depending upon
Client-IP-Address. Or is there a way to put DEFAULT entries
in
Do you need the users file at all?
If not comment out the "files" entry.
-Rob
At 01:06 PM 12/11/2003 -0500, you wrote:
I have some basic SQL functionality working, but I discovered that if
the SQL module returns "ok", FreeRadius still falls through to the
users file. Is ther
I have some basic SQL functionality working, but I discovered that if
the SQL module returns "ok", FreeRadius still falls through to the
users file. Is there any way to prevent this?
I even tried to set "Fall-Through := 0" in the SQL. That did not
help.
Here's a sni
Bill Schoolfield wrote:
Hi,
I'm using freeradius 0.9.3 on redhat 9.0. I'm trying
to get simple authentication working using the users
file. I have edited the client.conf and users file but
nothing else.
When running under debug, I can see the authentication
request come in and I hav
Yes it's in the users file. My example was a "mock
up" of the user file. I should have cut & pasted
the real data!
Anyway the problem turned out to be a bad password?
(see my other post). Thanks for your responses.
Bill
--- Rob Genovesi <[EMAIL PROTECTED]> wrote:
>
e "mschap" returns noop
> for
> request 0
> modcall: group authorize returns ok for request 0
> rad_check_password: Found Auth-Type Local
> auth: type Local
> auth: No password configured for the user
> auth: Failed to validate the user.
>
> Any ideas??
The username "00022d-8152d8" is in your users file?
You can see it is matching the DEFAULT entry at line 153 (users: Matched
DEFAULT at 153) ,
but it does not seem to find this specific username in the users file.
Other recommendation would be to check the "lower_user" op
[authorize]: module "mschap" returns noop for
request 0
modcall: group authorize returns ok for request 0
rad_check_password: Found Auth-Type Local
auth: type Local
auth: No password configured for the user
auth: Failed to validate the user.
Any ideas??
Bill
--- Rob Genovesi <[EMA
Looks like a syntax error in the users file. Your missing a comma after
the auth-type in your specific user entry.
Correct entry should look like:
000102-030405 Auth-Type := Local, User-Password == ""
Also use ":=" to declar your Auth-Type in the DEFAULT entry. (There
Hi,
I'm using freeradius 0.9.3 on redhat 9.0. I'm trying
to get simple authentication working using the users
file. I have edited the client.conf and users file but
nothing else.
When running under debug, I can see the authentication
request come in and I have verified that the sha
Hi,
I'm using freeradius 0.9.3 on redhat 9.0. I'm trying
to get simple authentication working using the users
file. I have edited the client.conf and users file but
nothing else.
When running under debug, I can see the authentication
request come in and I have verified that the shar
I am using freeRadius with a plain users file. Is there a way I can replace
the plain text passwords in the file with hashed passwords? How do I
generate the hashes? I manually edit the file whenever I add or remove a
user.
Matt
-
List info/subscribe/unsubscribe? See http
OTECTED]>
Sent: Wednesday, October 15, 2003 7:14 AM
Subject: Re: Operator " =* " in "users" File
>
> Hi Allen,
>
> Did you get any response for this ?
> If so, could you please share the information ?
>
> Thanks,
>
> --- Allen Chung <[EMAIL
uth-Type EAP-MD5 and
> Auth-Type Local for a
> user
> if the user's data is stored in LDAP server
> (not in users file) ?
>
>
> - Original Message -
> From: "Alan DeKok" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sen
Allen Chung <[EMAIL PROTECTED]> wrote:
> How to support both Auth-Type EAP-MD5 and Auth-Type Local for a
> user
> if the user's data is stored in LDAP server (not in users file) ?
Very easily. Just put their clear-text password into LDAP, and it
will wo
Hello:
Thanks for your advise.
I have another question.
How to support both Auth-Type EAP-MD5 and Auth-Type Local for a
user
if the user's data is stored in LDAP server (not in users file) ?
- Original Message -
From: "Alan DeKok" &l
Are there any perl scripts for use for web administration when using a plain
users file? I would think it would be possible.
Matt
> On Mon, 29 Sep 2003, Matt wrote:
>
> > Is it possible to use Dialup Admin with a plain users file? If so how?
>
> No it isn't p
"Bill" <[EMAIL PROTECTED]> wrote:
> With Cistron the home radius server's reply was sent to the customer. Is
> that not an option?
Yes, that's still an option. In fact, it's still the default
behaviour.
> It doesn't seem fitting for me to send a reply I have to define to a
> customer that
eKok
To: [EMAIL PROTECTED]
Sent: Wednesday, October 01, 2003 11:36 AM
Subject: Re: FreeRadius 0.9.1, users file and realms
"Bill" <[EMAIL PROTECTED]> wrote:
> For some odd reason FreeRadius
> is authenticating this customer using their Radius server
([EMAIL PROTECTED])
>
, users file and realms
"Bill" <[EMAIL PROTECTED]> wrote:
> For some odd reason FreeRadius
> is authenticating this customer using their Radius server
([EMAIL PROTECTED])
> but is also using my "steve"s filtering profile defined in
/etc/raddb/users.
That's
"Bill" <[EMAIL PROTECTED]> wrote:
> For some odd reason FreeRadius
> is authenticating this customer using their Radius server ([EMAIL PROTECTED])
> but is also using my "steve"s filtering profile defined in /etc/raddb/users.
That's the way it's supposed to work. The home server decides if
it's
ir Radius server but is getting the filtering
applied for my "steve".
I can include a copy of the users file or proxy.conf file if it would be
helpful.
Any ideas?
Bill
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Mon, 29 Sep 2003, Matt wrote:
> Is it possible to use Dialup Admin with a plain users file? If so how?
No it isn't possible.
>
> Matt
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
--
Kostas Kalevras Net
Is it possible to use Dialup Admin with a plain users file? If so how?
Matt
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Sunil Kulkarni wrote:
For multple instances of an attribute try using "+=" operator:
foo Auth-Type:=Local, User-Password=="bar"
Colubris-AVPair += "Something",
Colubris-AVPair += "Something more",
Colubris-AVPair += "third instance"
This has always worked for me.
thanks, that works! everythin
From: "Eric C. Snowdeal III" <[EMAIL PROTECTED]>
for example, if i try the following users entry:
foo Auth-Type:=Local, User-Password=="bar" Colubris-AVPair=
"logo=http://my.domain.com/colubris/img/logo.gif";,
Colubris-AVPair=
"login-page=http://my.domain.com/colubris/up
i've been happily running freeradius 0.7.1 for quiet some time and have
had several issues crop up that are preventing me from upgrading. i
have a relatively unremarkable configuration that relies on
plain-vanilla users file for authorization and i'm quiet certain i'm not
the
"ac" <[EMAIL PROTECTED]> wrote:
> I've tried many ways to configure the file "users" to support
> both Auth-Type EAP-MD5 and Auth-Type Local for a user.
You don't have to do anything to the server. Just configure the
password for the user, and it will figure it out.
> DEFAULT Messag
Hello All~
I've tried many ways to configure the file "users" to support
both Auth-Type EAP-MD5 and Auth-Type Local for a user.
for example : test Auth-Type:=EAP, User-Password=="1234"
The user "test" can just login from a NAS using EAPoRadius, but a
NAS using CHAP.
Hello,
I read the FAQ which says to use:
#! /bin/sh
cd /etc/raddb
if [ ! -e .last-reload ] || [ "`find users -nt .last-reload`" ]; then
if radiusd -C > .last-reload 2>&1; then
kill -1 `cat /var/run/radiusd.pid`
else
I have multiple 'users' config files included in the main 'users' file:
sf:/usr/local/etc/raddb# cat users
# Include sequence
$INCLUDE csia/users.DEFAULT
$INCLUDE csia/users.GUESTS
$INCLUDE csia/users.CSIA_TECH
$INCLUDE csia/users.CSIA_LOCAL
$INCLUDE csia/users.CSIA_CALLB
Brian Foster wrote:
Hi all,
Any idea with the right syntax is for dns server settings in the users file
going through a Cisco NAS
Cisco-AVPair += "ip:dns-servers=130.15.8.1 14.1.8.254 193.205.7.119"
--
Daniele ALBRIZIO [EMAIL PROTECTED]
Network Infrastructure
dictionary.
Any more help on this is much appreciated.
They are in dictionary.ascend
Chris Brotsos
-Original Message-
From: Brian Foster [mailto:[EMAIL PROTECTED]
Sent: 18 August 2003 15:04
To: '[EMAIL PROTECTED]'
Subject: RE: config dns server in users file
Thanks J
I'll t
is much appreciated.
-Original Message-
From: Brian Foster [mailto:[EMAIL PROTECTED]
Sent: 18 August 2003 15:04
To: '[EMAIL PROTECTED]'
Subject: RE: config dns server in users file
Thanks J
I'll try that and get back to you.
-Original Message-
From: jc [mailto:[
On Mon, Aug 18, 2003 at 03:12:23PM +0100, Brian Foster wrote:
> No luck,
>
> here is what my entry looks like
>
> Vendor-Specific = "ip:Ascend-Client-Primary-DNS=0.0.0.0"
Try Ascend-Client-Primary-DNS = 0.0.0.0.
What result should 'Vendor-Specific' give you? Thats not an attribute
your should u
No luck,
here is what my entry looks like
Vendor-Specific = "ip:Ascend-Client-Primary-DNS=0.0.0.0"
b
-Original Message-
From: jc [mailto:[EMAIL PROTECTED]
Sent: 18 August 2003 15:11
To: '[EMAIL PROTECTED]'
Subject: Re: config dns server in users file
On Mon
Thanks J
I'll try that and get back to you.
-Original Message-
From: jc [mailto:[EMAIL PROTECTED]
Sent: 18 August 2003 15:11
To: '[EMAIL PROTECTED]'
Subject: Re: config dns server in users file
On Mon, 18 Aug 2003, Brian Foster wrote:
> Any idea with the right syntax
At 08:53 AM 8/18/2003, you wrote:
Hi all,
Any idea with the right syntax is for dns server settings in the users file
going through a Cisco NAS
Hi Brian,
I'm not sure if there is a Cisco-AVPair, but you can use the 'non-standard'
flag in your RADIUS server configuration lines
On Mon, 18 Aug 2003, Brian Foster wrote:
> Any idea with the right syntax is for dns server settings in the users file
> going through a Cisco NAS
using cisco as5300 for my dial infrastructure
(using cistron, instead of freeradius (yes shame on me))
using the default ascend avpairs and
On Mon, Aug 18, 2003 at 02:53:53PM +0100, Brian Foster wrote:
> Any idea with the right syntax is for dns server settings in the users file
> going through a Cisco NAS
Cisco uses Ascend pairs
Ascend-Client-Primary-DNS = 1.2.3.4,
Ascend-Client-Secondary-DNS = 5
Hi all,
Any idea with the right syntax is for dns server settings in the users file
going through a Cisco NAS
thanks
b
**
This email and any files transmitted with it are confidential and
intended solely for the use of the
Hi.
I don't understand how can i implement access restrictions in slq db.
There is easy to me to do it in users file, where it can be written as
if (condition) then {
Set Attributes
}
But i can't configure sql in same way, because ALL conditions checked
simultaneously or may
'lo, i'm relatively new to freeradius, and have eaten up a significant number of docs,
if answers to my questions are available somewhere in some form of documentation,
please, dont let me waste your time, i request that you point me to the relevant docs.
i'm having a problem wit
"Michael Komitee" <[EMAIL PROTECTED]> wrote:
> i'm using radtest to generate the radius packet, radtest includes a line
> nas = `hostname`
>
> and then includes in the packet NAS-IP-Address = $nas
>
> so it's sending my hostname instead of my IP, radiusd wants an ip
> address and seems to evaluat
"Michael Komitee" <[EMAIL PROTECTED]> wrote:
> i'm having a problem with my users file, i'm declaring users and it
> seems to only accept a single option per user:
Read the 'users' file 'man' page. Look at the examples in the
'users
;inet addr" | awk '{ print $2}' | awk -F : '{ print $2 }'`
and i'm gold. -- sorry for the spam / uselessness.
-Original Message-
From: Michael Komitee
Sent: Wednesday, August 13, 2003 1:59 PM
To: [EMAIL PROTECTED]
Subject: RE: users file not using multip
explains it. dns is broken in my development environment.
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 13, 2003 2:30 PM
To: [EMAIL PROTECTED]
Subject: Re: users file not using multiple directives
"Michael Komitee" <[EMAIL PROT
"Michael Komitee" <[EMAIL PROTECTED]> wrote:
> actually, it's not authenticating anyone. i ran a stack trace on
> radiusd, and tried to authenticate. i'm seeing that the packet radiusd
> is receiving has a NAS-IP-Address of 255.255.255.255.
"stack trace"? What about debugging mode?
> That's th
and as a result the request does not match the huntgroup.
-Original Message-
From: Michael Komitee
Sent: Wednesday, August 13, 2003 1:53 PM
To: [EMAIL PROTECTED]
Subject: RE: users file not using multiple directives
thanks for the direction, after reading that i see a bunch of mi
looks like ive been using the wrong terminology fer a while then. no idea where i got
that term. twas an strace.
-Original Message-
From: Artur Hecker [mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 13, 2003 6:30 PM
To: [EMAIL PROTECTED]
Subject: Re: users file not using multiple
Original Message-----
> From: Alan DeKok [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, August 13, 2003 2:09 PM
> To: [EMAIL PROTECTED]
> Subject: Re: users file not using multiple directives
>
> "Michael Komitee" <[EMAIL PROTECTED]> wrote:
> > actu
[mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 13, 2003 1:31 PM
To: [EMAIL PROTECTED]
Subject: Re: users file not using multiple directives
"Michael Komitee" <[EMAIL PROTECTED]> wrote:
> i'm having a problem with my users file, i'm declaring users and it
> see
s to be working now.
--thanks.
-Original Message-
From: Alan DeKok [mailto:[EMAIL PROTECTED]
Sent: Wednesday, August 13, 2003 2:09 PM
To: [EMAIL PROTECTED]
Subject: Re: users file not using multiple directives
"Michael Komitee" <[EMAIL PROTECTED]> wrote:
> actually,
Eric Leblond <[EMAIL PROTECTED]> wrote:
> I did not manage to find how to group users using only the users file.
You can't. It's impossible. Use 'rlm_passwd', instead.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Wed, 2003-07-30 at 22:38, Navid Sheikhol Eslami wrote:
> I guess my approach was just wrong then :)
>
> Any suggestion to do the same thing, but with a different Check
> attribute? :)
Same question !
I did not manage to find how to group users using only the users file.
Thank
I guess my approach was just wrong then :)
Any suggestion to do the same thing, but with a different Check
attribute? :)
Navid
On Wed, 2003-07-30 at 16:33, Alan DeKok wrote:
> Navid Sheikhol Eslami <[EMAIL PROTECTED]> wrote:
> > Thank you Alan, I did read the FAQ and all the documentation in /do
Navid Sheikhol Eslami <[EMAIL PROTECTED]> wrote:
> Thank you Alan, I did read the FAQ and all the documentation in /doc.
>
> It explains how to match a DEFAULT entry based on the Group, assuming
> that the user belongs to it but I'm not sure that my line:
>
> test22 Auth-Type:=3DLocal,User-Passw
is associating the user "test22" to the group "Colubrus-APs", since:
DEFAULT Group = "Colubris-APs"
is not matched.
Thank you
Navid
On Wed, 2003-07-30 at 16:09, Alan DeKok wrote:
> Navid Sheikhol Eslami <[EMAIL PROTECTED]> wrote:
> > I can
Navid Sheikhol Eslami <[EMAIL PROTECTED]> wrote:
> I can't get the "Group" check attribute to work when using the "users"
> file.
See the FAQ for an example of using the Group attribute.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello everybody...
I can't get the "Group" check attribute to work when using the "users"
file.
This is how my users file looks like:
-- SNIP --
test22 Auth-Type:=Local,User-Password=="testest",Group:="Colubris-APs"
Colubris-AVPAI
Hi,
I would know how use the attribute vendor specific : the syntax..etc...
I have an example :
Toto
Autz-Type:=CISCO-ACCESS,Auth-Type:=CISCO-ACCESS
Reply-Message = "Toto connected...",
Service-Type = Shell-User,
to:[EMAIL PROTECTED] Behalf Of labis
> siegfried
> Sent: Wednesday, July 23, 2003 7:30 AM
> To: [EMAIL PROTECTED]
> Subject: Re: users file
>
>
> but i only use a radius server, i don't use any database
>
> siegfried
>
> A 11:49 23/07/03 +0200, Oliver Graf a écrit :
>
but i only use a radius server, i don't use any database
siegfried
A 11:49 23/07/03 +0200, Oliver Graf a écrit :
On Wed, Jul 23, 2003 at 11:26:48AM +0200, labis siegfried wrote:
> i have 2 questions, it is always for my password's problem
>
> must the attribute "Cisco-AVPair" be in the users-file
On Wed, Jul 23, 2003 at 11:26:48AM +0200, labis siegfried wrote:
> i have 2 questions, it is always for my password's problem
>
> must the attribute "Cisco-AVPair" be in the users-files?
no. it can also be in some other storage accesible by freeradius. for
examle an sql database.
> must the pass
i have 2 questions, it is always for my password's problem
must the attribute "Cisco-AVPair" be in the users-files?
must the password be in the users files?
if no, where i can put the attribute?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
age-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of
> Emel`chenko
> Alexander
> Sent: Tuesday, July 08, 2003 8:32 AM
> To: [EMAIL PROTECTED]
> Subject: encrypted passwords in the "users" file
>
>
> I want to store encrypted (md5) passwords of us
On Tue, Jul 08, 2003 at 04:31:32PM +0400, Emel`chenko Alexander wrote:
> I want to store encrypted (md5) passwords of users (not clear text) in the file
> "users"
> How can I make it?
One way:
if you are using freeradius on a glibc2 based system, crypt can do md5
for you (check man crypt). Just
I want to store encrypted (md5) passwords of users (not clear text) in the file
"users"
How can I make it?
mailto:[EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[EMAIL PROTECTED] wrote:
> I'm trying to understand the semantics of the += users file operator.
It's not so much about '+=', as "the users file doesn't allow you to
do what you want to do"
> lerxst Crypt-Password == "KSi8a3j4oasdi", ES-Defa
Hi,
I'm trying to understand the semantics of the += users file operator.
I'd like to use it to select a particular DEFAULT entry based on a
locally-defined dictionary attribute, as follows...
#
# V.90 dial-up user
#
# ES-Default-ID and V90LocalUser are defined in a local dictionary
ort 32 cli [03334445566)
> Sending Access-Accept of id 149 to A.B.C.D:4504
> User-Service-Type = NAS-Prompt-User
> Framed-IP-Address = 10.0.0.100+
> Finished request 2
> ..
>
> I could not figure out what is the wrong thing, could anybody point me please?
> Is
User-Service-Type = NAS-Prompt-User
Framed-IP-Address = 10.0.0.100+
Finished request 2
..
I could not figure out what is the wrong thing, could anybody point me please?
Is it related with my understanding of huntgroups or users file?
Regards,
- Gunce
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Try putting Fall-Through = no at the end of each statement in users file.
for example,
DEFAULT Group == "remote", Huntgroup-Name == "local", Auth-Type := Reject
Reply-Message = "Call your service provider to activate local
dialup!"
Fall-Through =
(BHi all,
(B
(BIn my radd/users file I have one entree, everything else is pounded out
(B
(BHere it is:
(B
(Btest Auth-Type := Local, User-Password == "test"
(B Service-Type = NAS-Prompt-User,
(B Fall-Through = no
(B
(B
Rick Harris <[EMAIL PROTECTED]> wrote:
> /usr/local/etc/raddb/users[11]: Syntax error: Previous line is missing a
> trailing comma for entry 6767868764605
> Errors reading /usr/local/etc/raddb/users
> radiusd.conf[862]: files: Module instantiation failed.
Look for lines containing nothing but sp
oxy_users"
files: compat = "no"
/usr/local/etc/raddb/users[11]: Syntax error: Previous line is missing a
trailing comma for entry 6767868764605
Errors reading /usr/local/etc/raddb/users
radiusd.conf[862]: files: Module instantiation failed.
when I use the test user in the sampl
e remote NAS device and I do not want remote users to authenticate
on the
local NAS. I put two entries near to top of my users file that read:
(line 95) DEFAULT Group == "remote", Huntgroup-Name == "local", Auth-Type := Reject
(line 96) Reply-Message = &q
mote NAS device and I do not want remote users to
authenticate on the local NAS. I put two entries near to top of my users file
that read:
(line 95) DEFAULT Group ==
"remote", Huntgroup-Name == "local", Auth-Type := Reject
(line 96)
Reply-Message = "Call
Norbert Wegener <[EMAIL PROTECTED]> wrote:
> In the process of migrating from cistron to freeradius I notice, that
> one nice feature of cistron is missing in freeradius:
> With the option -C cistron checked the syntax of a usersfile.
> This was very useful for us.
> In freeradius I did not find a
In the process of migrating from cistron to freeradius I notice, that
one nice feature of cistron is missing in freeradius:
With the option -C cistron checked the syntax of a usersfile.
This was very useful for us.
In freeradius I did not find an option for such a check.
Is it missing or did I not
Regards,
The fastusers module re-reads the users file every X seconds, where X is set
by the hash_reload option. There is no HUP needed.
Kevin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
lto:[EMAIL PROTECTED]]On Behalf Of Kevin
Bonner
Sent: Sunday, December 22, 2002 6:57 PM
To: [EMAIL PROTECTED]
Subject: Re: users file reloading
Read doc/rlm_fastusers
Kevin
On Friday 20 December 2002 23:10, Wisam Najim wrote:
> Hi All,
>
> I'm authenticating ISDN users from users
Read doc/rlm_fastusers
Kevin
On Friday 20 December 2002 23:10, Wisam Najim wrote:
> Hi All,
>
> I'm authenticating ISDN users from users file while normal dialup users are
> authenticated from Oracle database. Every time I add an ISDN user, I need
> to stop and start the fr
ing itself without disconnecting people may make radius think so,
until the accounting packets come in)
Andrew Pilley
On Sat, Dec 21, 2002 at 08:10:04AM +0400, Wisam Najim wrote:
> Hi All,
>
> I'm authenticating ISDN users from users file while normal dialup users are
> authent
Hi All,
I'm authenticating ISDN users from users file while normal dialup users are
authenticated from Oracle database. Every time I add an ISDN user, I need to
stop and start the freeRADIUS instance. I want to know if I can reload the
users file without stopping and starting the freeR
Bogdan Rosu <[EMAIL PROTECTED]> wrote:
> Ok i managed to get it on it's feet, now what i am asking is
> is there a way/script to add users with the dial_upadmin frontend
> (username / pass) but then to have them in the users file aswell
> in the systems passwd/shadow so the
Ok i managed to get it on it's feet, now what i am asking is
is there a way/script to add users with the dial_upadmin frontend
(username / pass) but then to have them in the users file aswell
in the systems passwd/shadow so then i cand use the System Auth?
Dunno if i spelled that corectl
Bogdan Rosu <[EMAIL PROTECTED]> wrote:
> Ok i'm new to this im sittig here for the 2nd day with my teeth in
> deep radius... compiled installed on a Red Hat 6.1
> i've set up the database, also dial up admin..
> in the past ive used radius + pgsql and some home made scripts
> but thats history sin
"m&m's" <[EMAIL PROTECTED]> wrote:
> I'm newbie in Radius, so I still have a problem with freeradius
> configuration. In addition to above I'm looking for information about all
> avalaible
> parameters (options) used in 'users' file (list
Ok i'm new to this im sittig here for the 2nd day with my teeth in
deep radius... compiled installed on a Red Hat 6.1
i've set up the database, also dial up admin..
in the past ive used radius + pgsql and some home made scripts
but thats history since postgres gave me a lot o headache.
What i ha
Hello
I'm newbie in Radius, so I still have a problem with freeradius
configuration. In addition to above I'm looking for information about all
avalaible
parameters (options) used in 'users' file (list of options, their meaning).
Where can I find it? Of course I've listed
Is it possible to
replace "users" file functionality like:
Prefix ==
"pref_"
Auth_Typbe := PAP
Compression := Van-Jacobson-TCP-IP
with values, returned
by sql_check and sql_reply?
Thanks in
advance,
B.
Malcolm Caldwell <[EMAIL PROTECTED]> wrote:
> > The string contents should ideally be allocated as memory seperate
> > from the VALUE_PAIR data structure. That would allow it to grow as
> > needed.
> >
> > As always, patches are welcome.
>
> This sounds like a bit of work. I would have to f
On Fri, 2002-12-06 at 02:37, Alan DeKok wrote:
> Malcolm Caldwell <[EMAIL PROTECTED]> wrote:
> > Fair enough - except I am trying to store an xlat there. The xlat
> > string (fmt) is longer than 254 octets BUT the results of the xlat are
> > not!
> >
> > I don't know what a quick fix is here. Pe
Malcolm Caldwell <[EMAIL PROTECTED]> wrote:
> Fair enough - except I am trying to store an xlat there. The xlat
> string (fmt) is longer than 254 octets BUT the results of the xlat are
> not!
>
> I don't know what a quick fix is here. Perhaps the size of strvalue
> could be bigger - you just che
OK - I have found my problem.
The users file is read in to make PAIR_LISTs. PAIR_LISTs are lists of
VALUE_PAIR. The 'value' stored in strvalue of the value_pair is type
uint8_t [MAX_STRING_LEN]
Now MAX_STRING_LEN is defined as:
#define MAX_STRING_LEN 254 /* RFC2138: st
Malcolm Caldwell <[EMAIL PROTECTED]> wrote:
> It would seem that the users file is limited to lines < 256 characters.
> This causes me a problem as I am trying to do an sql xlat and so need a
> string >256 characters.
>
> Is there any good reason not to bump up this li
It would seem that the users file is limited to lines < 256 characters.
This causes me a problem as I am trying to do an sql xlat and so need a
string >256 characters.
Is there any good reason not to bump up this limit?
-
List info/subscribe/unsubscribe? See http://www.freeradius.or
1 - 100 of 172 matches
Mail list logo