Hi Kostas,
Please allow me to explain. I have installed FreeRadius on RedHat Advanced
Server 2.1. The Domino Server which has LDAP service running is on another
machine. I am able to authenticate this LDAP using tools like LDAP Browser,
Outlook Express, Lotus Notes etc. Besides, if you look the l
Hi everyone,
Can someone tell me how RADIUS server handles vendor specific
attribute. I am sending a packet using radclient with vendor specific
attribute and its working. I found that attribute is not in dictionary. I
want to know where in the code it checks for the vendor specific attribu
On Wed, Apr 21, 2004 at 10:13:23PM -0400, Alan DeKok wrote:
> Hans Fiedler <[EMAIL PROTECTED]> wrote:
> > I can't get the attribute value checking to work. I've tried mapping the
> > attribute in the ldap.attrmap file,
> >
> > checkItem WirelessStatus WirelessStatus
> >
>
On Wed, Apr 21, 2004 at 10:14:16PM -0400, Alan DeKok wrote:
> loader <[EMAIL PROTECTED]> wrote:
> > Or where can I get a list of APs supported by freeradius?
>
> The only AP's I've heard of which have problems are Intel. They seem
> to think that following the RFC's is unimportant.
>
> Alan
loader <[EMAIL PROTECTED]> wrote:
> Or where can I get a list of APs supported by freeradius?
The only AP's I've heard of which have problems are Intel. They seem
to think that following the RFC's is unimportant.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/
Hans Fiedler <[EMAIL PROTECTED]> wrote:
> I can't get the attribute value checking to work. I've tried mapping the
> attribute in the ldap.attrmap file,
>
> checkItem WirelessStatus WirelessStatus
>
> and checking the value in the users file. I'm not getting that to work.
Believe me when I tell you I do understand what your saying. The problem was
that I was tossed in to this after all our fee's were paid to the wholesale
dialup provider when he told us they do PAP, and on the day we were ready to
start it didn't work. So I was between the rocks and a hard place and
Or where can I get a list of APs supported by freeradius?
Regards,
loader
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I need to allow users from a wireless access point by MAC address (it comes
as a userid) and then if the MAC address is not defined in the users file to
check their userid/password against a LDAP database. I now had an
additional requirement put on that I need to check the values of an
attribute i
On Wed, Apr 21, 2004 at 03:03:26PM -0600, Guy Fraser wrote:
> Paul Hampson wrote:
> ...snip...
> >_I_ haven't tested against the lastest release of FreeBSD. I'd welcome
> >any improvements to the thread-safety of FreeRADIUS, so if you want to
> >test it out and suggest changes that don't break any
It tried to send everyone to the mySQL database. Doesn't check the local at
all.
- Original Message -
From: "Guy Fraser" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, April 21, 2004 3:05 PM
Subject: Re: Authentication Help
> Bob Ross wrote:
>
> >What is funny, whit checki
I did. It doesn't work.
I commented out both lines on each one.
- Original Message -
From: "Guy Fraser" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, April 21, 2004 3:05 PM
Subject: Re: Authentication Help
> Bob Ross wrote:
>
> >What is funny, whit checking the diffs on
Bob Ross wrote:
What is funny, whit checking the diffs on the files, the only thing
different is in the users file and used the prozy.conf this time also.
I was trying := System or := Local, or == Local. == System, or local on
first,
But they were always the same also on the Fall-Through either bo
There is a question also.
It logs the detail files with the IP address. I really have looked but can't
seem to find it. Is there a way I can tell it to use the ras name I assigned
to each IP ?, I found the config link, but it didn't give what to call
the --- to do this.
ras1, ras2, usa1,usa2,
What is funny, whit checking the diffs on the files, the only thing
different is in the users file and used the prozy.conf this time also.
I was trying := System or := Local, or == Local. == System, or local on
first,
But they were always the same also on the Fall-Through either both yes or 1,
th
"Bob Ross" <[EMAIL PROTECTED]> wrote:
> Meaning, PAP with /passwd/shadow files and CHAP with the mySQL files?
I don't recall the details in 0.9.3, but in the latest CVS snapshot
this should work with minimal changes. Once you add the SQL
configuration, the server should do this automatically.
Paul Hampson wrote:
...snip...
_I_ haven't tested against the lastest release of FreeBSD. I'd welcome
any improvements to the thread-safety of FreeRADIUS, so if you want to
test it out and suggest changes that don't break any other versions of
FreeBSD, any other BSD flavours, and (if possible) Tru6
Well, actually I did, in the beginning.
But so far it looks as if I managed somehow to get it going after deleting
everything and starting over.
*** First Post
I'm told I should be able to do PAP - CHAP on the same server, but have been
having one hard time doing so.
Anyone have
"Bob Ross" <[EMAIL PROTECTED]> wrote:
> I deleted everything to start over again so it's a clean install. It's about
> the third time.
That's part of your problem. There's no need to delete &
re-install. It's not Windows.
> Is there any docs or example raddb files that show what I'm trying to
This is what I am using {I am not using 0.9.3, but 1.0-pre0 from CVS}
for radiusd.conf :
...snip...
modules {
...snip...
$INCLUDE ${confdir}/postgresql.conf
...snip...
}
...snip...
authorize {
preprocess
chap
mschap
suffix
eap
# 'files' can be uncommente
As I said I deleted everything, I mean everything related to free radius was
deleted. All directories it created.
When I go to start over I start over from scratch. If one way doesn't work,
I don't want the problems of one config conflicting with another.
I'm back to the way it was when I first e
I'm not experienced in this area. I only started using FreeRadius a week
ago, and have not touched radius for 7 years other than upgrades to Cistron.
Other than that I have not needed to know any more about it except that it
was working, and no it's
So you have me lost.
I deleted everything to st
Hi,
well don?t lmow how well it runs on the others. I run it on Solaris 2.6 and
2.8
and it works well.
Bye
Holger
[EMAIL PROTECTED] <> wrote on :
> Is there a recommended OS for freeradius?
> Is there really a difference (performance or otherwise) between running
> freeradius on FreeB
unsubscribe
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
"Bob Ross" <[EMAIL PROTECTED]> wrote:
> I'm told I should be able to do PAP - CHAP on the same server, but have been
> having one hard time doing so.
The server does this out of the box.
The larger problem is I don't think you're clear on WHY some
requests do PAP, and others do CHAP. If you
"J Thomas Hancock" <[EMAIL PROTECTED]> wrote:
> We are running freeradius-0.9.3 on a Linux box. Due to a specific need of
> one of our clients, we need to be able to authenticate a user based on their
> Called-Station-ID and their username/password without specifying a domain.
> The usernames are s
> Since I have only started working with FreeRadius, and have not touched a
> radius file for 7 years, I have to say No, because I have no idea what
your
> asking.
google helps both technical and non-technical on planet earth a REALLY lot.
you might want to share us your radiusd.conf and sql.conf
Since I have only started working with FreeRadius, and have not touched a
radius file for 7 years, I have to say No, because I have no idea what your
asking.
I did do what it said to about getting rid of the old files no longer used
and enabling the /etc/passwd - /etc/shadow - /etc/group files.
I
On Wed, Apr 21, 2004 at 08:49:47AM -0400, Gary McKinney wrote:
> I realize this is not a direct FreeRadius issue but possibly could be indirectly
> related if the
> actual problem still exists with thread locking...
> I checked the FreeBSD site for any PR listings for what you have described... d
> I'm told I should be able to do PAP - CHAP on the same server, but have
been
> having one hard time doing so.
>
> Anyone have any examples or instruction to get this done. Right now we can
> only get it to do either one, not both.
have you tried combining or enabling both configuration with the
I'm told I should be able to do PAP - CHAP on the same server, but have been
having one hard time doing so.
Anyone have any examples or instruction to get this done. Right now we can
only get it to do either one, not both.
Meaning, PAP with /passwd/shadow files and CHAP with the mySQL files?
Any
> We are running freeradius-0.9.3 on a Linux box. Due to a specific need of
> one of our clients, we need to be able to authenticate a user based on
their
> Called-Station-ID and their username/password without specifying a domain.
> The usernames are stored in our MySQL database as [EMAIL PROTECT
We are running freeradius-0.9.3 on a Linux box. Due to a specific need of
one of our clients, we need to be able to authenticate a user based on their
Called-Station-ID and their username/password without specifying a domain.
The usernames are stored in our MySQL database as [EMAIL PROTECTED] I
am
Sorry to bother you.
when you said this we thought you were on the development. No he hasn't left
us. He just as stumped.
**
no realm or with realm, freeradius does not care, it will do what we design
its radiusd.conf to be.
**
--
2 benchmarking tools (code and output is resdable and self-evident) attached for you
to use / comment on/ improve.
python uses pyrad module, C uses libradius from standard BSD install (a static version
exists for linux).
comments appreciated.
thread_test_linear.py
Description: thread_test_lin
> AL> Well, it doesn't matter how it will work. Then i need to split
> AL> users in two groups - one with some traffic left and another
> AL> with zero or negative traffic value and then give them different
> AL> addresses from different pools according to the group names.
th
Hello Alexander,
Monday, April 19, 2004, 1:49:22 PM, you wrote:
AL> Hello Milver,
AL> Monday, April 19, 2004, 1:30:05 PM, you wrote:
>>> I need to create a check attribute depending on how much seconds or
>>> octets user have. Ideal, i would like to equate reply attribute to a
>>> newly c
Hi,
like to bothere you again about Taged Attributes. (0.9.3)
Its not like i complain about. I work arounded it differently vor myself
but hopefully someone is intressed in seening this.
If i add some more of those Attributes in the usersfile like
Tunnel-Endpoint:1 += 1.2.3.4
Tunnel-Endpoint:2 +
Dear Alejandro Martínez Marcos,
In order to use rlm_mschap with LDAP you must store either cleartext or
NT or LM password in LDAP schema. See ldap.attrmap, doc/ldap_howto.txt
and doc/rlm_ldap.
--Wednesday, April 21, 2004, 3:16:40 PM, you wrote to [EMAIL PROTECTED]:
AMM> Hi again,
AMM>I
Hi Paul,
I realize this is not a direct FreeRadius issue but possibly could be indirectly
related if the
actual problem still exists with thread locking...
I checked the FreeBSD site for any PR listings for what you have described... did not
find
anything - have you checked against the latest r
im trying to use mschap through peap. i think im having trouble getting tls
to run. i have no idea how to set up certificates. can anyone give me some
advice?
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy
Gary McKinney wrote:
Hi Paul,
I realize this is not a direct FreeRadius issue but possibly could be indirectly
related if the
actual problem still exists with thread locking...
I checked the FreeBSD site for any PR listings for what you have described... did not find
anything - have you checked a
On Wed, 21 Apr 2004, Joseph Silvin wrote:
> Hi ,
>
> I am trying to use FreeRadius ACS Server for authentication against IBM
> Domino LDAP Server. The following is the error message that I get. I have
> reproduced both radiusd.conf and log files. Looking forward to someone who
> can help on this f
Hi ,
I am trying to use FreeRadius ACS Server for authentication against IBM
Domino LDAP Server. The following is the error message that I get. I have
reproduced both radiusd.conf and log files. Looking forward to someone who
can help on this front.
Thanks.
JS
=
Hi again,
I keep on trying to solve this problem. I have realized that the problem
only occurs when I use LDAP to authorize. It seems that freeradius is unable
to retrieve the attribute "User-Password" from LDAP.
When I use the users file, in that case it goes ok. I just added the
On Tue, Apr 20, 2004 at 09:39:14PM -0600, stenmark wrote:
> Is there a recommended OS for freeradius?
> Is there really a difference (performance or otherwise) between
> running freeradius on FreeBSD compared to a distrobution of Linux
> (RedHat, Gentoo, etc...)?
FreeBSD has locking issues with
Hello folks.
I have install freeradius and configure it to use mysql accounts, but if no
success.
I´m running debian 3.4 stable. 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002
i686 GNU/Linux
I have configure using this:
./configure --localstatedir=/var --sysconfdir=/etc --enable-ltdl-install
--w
Ok: I solved the problem.
I've transferring the files using ASCII mode instead of
binary mode. Now XP understands them!!!
Thank you,
Giuliano
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi list,
I'm trying to set up the eap-tls authentication method for
a wireless lan, following some howto I found in the Net
(http://www.impossiblereflex.com/8021x/eap-tls-HOWTO.htm
and http://www.dslreports.com/forum/remark,9286052).
I've successfully compiled and launched (not without
experien
Hello,
I am trying to authenticate using PEAP against a LDAP server. I am getting
the following errors:
rlm_mschap: No User-Password configured. Cannot create LM-Password.
rlm_mschap: No User-Password configured. Cannot create NT-Password.
Could anyone tell me what are the
It is easy for with my method.
I suposse that you have RADIUS counts with a specific login, if you want
that a count expires in 30 days after its activation, you only have to get
the activation date (you know with NOW() in mysql) and add to this date 30
in MySQL sentences. This calculated date
Hello,
Thank you for this good advice, i will follow it !
best regards
At 11:26 20/04/2004, you wrote:
Hi,
I had a similar problem but took a slightly different approach. I had a
C++ library that I needed to use from inside an rlm_eap subtype
module. Instead of bringing C++ into rlm_eap, I wrot
52 matches
Mail list logo