Hello,
Thank you for this good advice, i will follow it !
best regards
At 11:26 20/04/2004, you wrote:
Hi,
I had a similar problem but took a slightly different approach. I had a
C++ library that I needed to use from inside an rlm_eap subtype
module. Instead of bringing C++ into rlm_eap, I
It is easy for with my method.
I suposse that you have RADIUS counts with a specific login, if you want
that a count expires in 30 days after its activation, you only have to get
the activation date (you know with NOW() in mysql) and add to this date 30
in MySQL sentences. This calculated date
Hello,
I am trying to authenticate using PEAP against a LDAP server. I am getting
the following errors:
rlm_mschap: No User-Password configured. Cannot create LM-Password.
rlm_mschap: No User-Password configured. Cannot create NT-Password.
Could anyone tell me what are
Hi list,
I'm trying to set up the eap-tls authentication method for
a wireless lan, following some howto I found in the Net
(http://www.impossiblereflex.com/8021x/eap-tls-HOWTO.htm
and http://www.dslreports.com/forum/remark,9286052).
I've successfully compiled and launched (not without
Ok: I solved the problem.
I've transferring the files using ASCII mode instead of
binary mode. Now XP understands them!!!
Thank you,
Giuliano
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello folks.
I have install freeradius and configure it to use mysql accounts, but if no
success.
I´m running debian 3.4 stable. 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002
i686 GNU/Linux
I have configure using this:
./configure --localstatedir=/var --sysconfdir=/etc --enable-ltdl-install
On Tue, Apr 20, 2004 at 09:39:14PM -0600, stenmark wrote:
Is there a recommended OS for freeradius?
Is there really a difference (performance or otherwise) between
running freeradius on FreeBSD compared to a distrobution of Linux
(RedHat, Gentoo, etc...)?
FreeBSD has locking issues with
Hi again,
I keep on trying to solve this problem. I have realized that the problem
only occurs when I use LDAP to authorize. It seems that freeradius is unable
to retrieve the attribute User-Password from LDAP.
When I use the users file, in that case it goes ok. I just added the
Hi ,
I am trying to use FreeRadius ACS Server for authentication against IBM
Domino LDAP Server. The following is the error message that I get. I have
reproduced both radiusd.conf and log files. Looking forward to someone who
can help on this front.
Thanks.
JS
On Wed, 21 Apr 2004, Joseph Silvin wrote:
Hi ,
I am trying to use FreeRadius ACS Server for authentication against IBM
Domino LDAP Server. The following is the error message that I get. I have
reproduced both radiusd.conf and log files. Looking forward to someone who
can help on this front.
Gary McKinney wrote:
Hi Paul,
I realize this is not a direct FreeRadius issue but possibly could be indirectly
related if the
actual problem still exists with thread locking...
I checked the FreeBSD site for any PR listings for what you have described... did not find
anything - have you checked
im trying to use mschap through peap. i think im having trouble getting tls
to run. i have no idea how to set up certificates. can anyone give me some
advice?
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file:
Hi Paul,
I realize this is not a direct FreeRadius issue but possibly could be indirectly
related if the
actual problem still exists with thread locking...
I checked the FreeBSD site for any PR listings for what you have described... did not
find
anything - have you checked against the latest
Dear Alejandro Martínez Marcos,
In order to use rlm_mschap with LDAP you must store either cleartext or
NT or LM password in LDAP schema. See ldap.attrmap, doc/ldap_howto.txt
and doc/rlm_ldap.
--Wednesday, April 21, 2004, 3:16:40 PM, you wrote to [EMAIL PROTECTED]:
AMM Hi again,
AMMI
Hi,
like to bothere you again about Taged Attributes. (0.9.3)
Its not like i complain about. I work arounded it differently vor myself
but hopefully someone is intressed in seening this.
If i add some more of those Attributes in the usersfile like
Tunnel-Endpoint:1 += 1.2.3.4
Tunnel-Endpoint:2
Hello Alexander,
Monday, April 19, 2004, 1:49:22 PM, you wrote:
AL Hello Milver,
AL Monday, April 19, 2004, 1:30:05 PM, you wrote:
I need to create a check attribute depending on how much seconds or
octets user have. Ideal, i would like to equate reply attribute to a
newly created
AL Well, it doesn't matter how it will work. Then i need to split
AL users in two groups - one with some traffic left and another
AL with zero or negative traffic value and then give them different
AL addresses from different pools according to the group names.
the users
2 benchmarking tools (code and output is resdable and self-evident) attached for you
to use / comment on/ improve.
python uses pyrad module, C uses libradius from standard BSD install (a static version
exists for linux).
comments appreciated.
thread_test_linear.py
Description:
Sorry to bother you.
when you said this we thought you were on the development. No he hasn't left
us. He just as stumped.
**
no realm or with realm, freeradius does not care, it will do what we design
its radiusd.conf to be.
**
We are running freeradius-0.9.3 on a Linux box. Due to a specific need of
one of our clients, we need to be able to authenticate a user based on their
Called-Station-ID and their username/password without specifying a domain.
The usernames are stored in our MySQL database as [EMAIL PROTECTED] I
We are running freeradius-0.9.3 on a Linux box. Due to a specific need of
one of our clients, we need to be able to authenticate a user based on
their
Called-Station-ID and their username/password without specifying a domain.
The usernames are stored in our MySQL database as [EMAIL PROTECTED]
I'm told I should be able to do PAP - CHAP on the same server, but have been
having one hard time doing so.
Anyone have any examples or instruction to get this done. Right now we can
only get it to do either one, not both.
Meaning, PAP with /passwd/shadow files and CHAP with the mySQL files?
I'm told I should be able to do PAP - CHAP on the same server, but have
been
having one hard time doing so.
Anyone have any examples or instruction to get this done. Right now we can
only get it to do either one, not both.
have you tried combining or enabling both configuration with the
On Wed, Apr 21, 2004 at 08:49:47AM -0400, Gary McKinney wrote:
I realize this is not a direct FreeRadius issue but possibly could be indirectly
related if the
actual problem still exists with thread locking...
I checked the FreeBSD site for any PR listings for what you have described... did
Since I have only started working with FreeRadius, and have not touched a
radius file for 7 years, I have to say No, because I have no idea what your
asking.
I did do what it said to about getting rid of the old files no longer used
and enabling the /etc/passwd - /etc/shadow - /etc/group files.
Since I have only started working with FreeRadius, and have not touched a
radius file for 7 years, I have to say No, because I have no idea what
your
asking.
google helps both technical and non-technical on planet earth a REALLY lot.
you might want to share us your radiusd.conf and sql.conf
J Thomas Hancock [EMAIL PROTECTED] wrote:
We are running freeradius-0.9.3 on a Linux box. Due to a specific need of
one of our clients, we need to be able to authenticate a user based on their
Called-Station-ID and their username/password without specifying a domain.
The usernames are stored
Bob Ross [EMAIL PROTECTED] wrote:
I'm told I should be able to do PAP - CHAP on the same server, but have been
having one hard time doing so.
The server does this out of the box.
The larger problem is I don't think you're clear on WHY some
requests do PAP, and others do CHAP. If you can
unsubscribe
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
well don?t lmow how well it runs on the others. I run it on Solaris 2.6 and
2.8
and it works well.
Bye
Holger
[EMAIL PROTECTED] wrote on :
Is there a recommended OS for freeradius?
Is there really a difference (performance or otherwise) between running
freeradius on FreeBSD
I'm not experienced in this area. I only started using FreeRadius a week
ago, and have not touched radius for 7 years other than upgrades to Cistron.
Other than that I have not needed to know any more about it except that it
was working, and no it's
So you have me lost.
I deleted everything to
As I said I deleted everything, I mean everything related to free radius was
deleted. All directories it created.
When I go to start over I start over from scratch. If one way doesn't work,
I don't want the problems of one config conflicting with another.
I'm back to the way it was when I first
This is what I am using {I am not using 0.9.3, but 1.0-pre0 from CVS}
for radiusd.conf :
...snip...
modules {
...snip...
$INCLUDE ${confdir}/postgresql.conf
...snip...
}
...snip...
authorize {
preprocess
chap
mschap
suffix
eap
# 'files' can be
Bob Ross [EMAIL PROTECTED] wrote:
I deleted everything to start over again so it's a clean install. It's about
the third time.
That's part of your problem. There's no need to delete
re-install. It's not Windows.
Is there any docs or example raddb files that show what I'm trying to do?
Well, actually I did, in the beginning.
But so far it looks as if I managed somehow to get it going after deleting
everything and starting over.
*** First Post
I'm told I should be able to do PAP - CHAP on the same server, but have been
having one hard time doing so.
Anyone have
Paul Hampson wrote:
...snip...
_I_ haven't tested against the lastest release of FreeBSD. I'd welcome
any improvements to the thread-safety of FreeRADIUS, so if you want to
test it out and suggest changes that don't break any other versions of
FreeBSD, any other BSD flavours, and (if possible)
Bob Ross [EMAIL PROTECTED] wrote:
Meaning, PAP with /passwd/shadow files and CHAP with the mySQL files?
I don't recall the details in 0.9.3, but in the latest CVS snapshot
this should work with minimal changes. Once you add the SQL
configuration, the server should do this automatically.
What is funny, whit checking the diffs on the files, the only thing
different is in the users file and used the prozy.conf this time also.
I was trying := System or := Local, or == Local. == System, or local on
first,
But they were always the same also on the Fall-Through either both yes or 1,
There is a question also.
It logs the detail files with the IP address. I really have looked but can't
seem to find it. Is there a way I can tell it to use the ras name I assigned
to each IP ?, I found the config link, but it didn't give what to call
the --- to do this.
ras1, ras2,
Bob Ross wrote:
What is funny, whit checking the diffs on the files, the only thing
different is in the users file and used the prozy.conf this time also.
I was trying := System or := Local, or == Local. == System, or local on
first,
But they were always the same also on the Fall-Through either
I did. It doesn't work.
I commented out both lines on each one.
- Original Message -
From: Guy Fraser [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, April 21, 2004 3:05 PM
Subject: Re: Authentication Help
Bob Ross wrote:
What is funny, whit checking the diffs on the
It tried to send everyone to the mySQL database. Doesn't check the local at
all.
- Original Message -
From: Guy Fraser [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, April 21, 2004 3:05 PM
Subject: Re: Authentication Help
Bob Ross wrote:
What is funny, whit checking the
On Wed, Apr 21, 2004 at 03:03:26PM -0600, Guy Fraser wrote:
Paul Hampson wrote:
...snip...
_I_ haven't tested against the lastest release of FreeBSD. I'd welcome
any improvements to the thread-safety of FreeRADIUS, so if you want to
test it out and suggest changes that don't break any other
I need to allow users from a wireless access point by MAC address (it comes
as a userid) and then if the MAC address is not defined in the users file to
check their userid/password against a LDAP database. I now had an
additional requirement put on that I need to check the values of an
attribute
Or where can I get a list of APs supported by freeradius?
Regards,
loader
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Believe me when I tell you I do understand what your saying. The problem was
that I was tossed in to this after all our fee's were paid to the wholesale
dialup provider when he told us they do PAP, and on the day we were ready to
start it didn't work. So I was between the rocks and a hard place
Hans Fiedler [EMAIL PROTECTED] wrote:
I can't get the attribute value checking to work. I've tried mapping the
attribute in the ldap.attrmap file,
checkItem WirelessStatus WirelessStatus
and checking the value in the users file. I'm not getting that to work.
The
loader [EMAIL PROTECTED] wrote:
Or where can I get a list of APs supported by freeradius?
The only AP's I've heard of which have problems are Intel. They seem
to think that following the RFC's is unimportant.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
On Wed, Apr 21, 2004 at 10:14:16PM -0400, Alan DeKok wrote:
loader [EMAIL PROTECTED] wrote:
Or where can I get a list of APs supported by freeradius?
The only AP's I've heard of which have problems are Intel. They seem
to think that following the RFC's is unimportant.
Alan DeKok.
On Wed, Apr 21, 2004 at 10:13:23PM -0400, Alan DeKok wrote:
Hans Fiedler [EMAIL PROTECTED] wrote:
I can't get the attribute value checking to work. I've tried mapping the
attribute in the ldap.attrmap file,
checkItem WirelessStatus WirelessStatus
and checking
Hi everyone,
Can someone tell me how RADIUS server handles vendor specific
attribute. I am sending a packet using radclient with vendor specific
attribute and its working. I found that attribute is not in dictionary. I
want to know where in the code it checks for the vendor specific
Hi Kostas,
Please allow me to explain. I have installed FreeRadius on RedHat Advanced
Server 2.1. The Domino Server which has LDAP service running is on another
machine. I am able to authenticate this LDAP using tools like LDAP Browser,
Outlook Express, Lotus Notes etc. Besides, if you look the
52 matches
Mail list logo