I'm hoping this will be an easy one to get answered.
I have all dialup authentication running as hoped for the past several
hours.
I came across one more little config I'm trying to work out.
I have an accelerator server that I'm are able to sell to anyone and they
don't have to be on our
On Wed, Apr 21, 2004 at 06:23:15PM -0700, loader wrote:
Or where can I get a list of APs supported by freeradius?
I've had a WRV54G work with FreeRADIUS, but it doesn't send
Accounting packets. Linksys said a new firmware was working
in their lab, but didn't say when it would be out.
--
Paul
On Thu, 22 Apr 2004, Joseph Silvin wrote:
Hi Kostas,
Please allow me to explain. I have installed FreeRadius on RedHat Advanced
Server 2.1. The Domino Server which has LDAP service running is on another
machine. I am able to authenticate this LDAP using tools like LDAP Browser,
Outlook
Hi,
i'm having a strange problem with freeradius and ascend max 4000.
freeradius 0.9.1 is running very stable with a cisco NAS without any
problems. now i tried to have authenticating and accounting from the ascend
boxes with freeradius, too. but i encountered problems with authenticating.
here
Sorry for reposting, due to massive spam i missed Alans reply. Please
ignore...
Thank you Alan, i check you suggestion...
Regards,
philipp
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
i'm having a strange problem with freeradius and ascend max 4000.
freeradius 0.9.1 is running very stable with a cisco NAS without any
problems. now i tried to have authenticating and accounting from the
ascend
boxes with freeradius, too. but i encountered problems with
On Thu, 22 Apr 2004, Joseph Silvin wrote:
Hi Kostas,
Thanks for the reply. But I am not able to figure out what to check under
the identity and password configuration directives. I have run the
following command and it is able to log in.
ldapsearch -h 192.168.192.41 -vx -W -p 389 -D
Hello All,
I'm goingo to install FreeRadius.
What is better version?
Best regards,
Monica M.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
For various reasons, our department has implemented a system whereby we combine Radius authorization (for user login) with the built-in Apache Basic authorization model (for management of individual user directory privileges via use of an .htaccess file).
We're currently seeing some weirdness
Shah, Nishant B [EMAIL PROTECTED] wrote:
Can someone tell me how RADIUS server handles vendor specific
attribute. I am sending a packet using radclient with vendor specific
attribute and its working. I found that attribute is not in dictionary. I
want to know where in the code it
James [EMAIL PROTECTED] wrote:
I'd like to know if there is a way to retrieve the realm information
from the email address field in the certificate or if the realm info
must be contained in the user name field.
The realm must be in the user name field.
There is currently no way to look
Hello All,
I'm goingo to install FreeRadius.
What is better version?
www.freeradius.org !
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
My questions are:Does anyone have any experience using both
systems together?
YES
If so, do you have any configuration tips you'd be willing to
share?
READ BASIC APACHE CONFIGURATION
Can anyone theorize why the wrong error is being
generated when a user doesn't have
Holger Steppke [EMAIL PROTECTED] wrote:
like to bothere you again about Taged Attributes. (0.9.3)
Its not like i complain about. I work arounded it differently vor myself
but hopefully someone is intressed in seening this.
If i add some more of those Attributes in the usersfile like
Rinaldo Bergamini [EMAIL PROTECTED] wrote:
I'd like to differentiate users without using realms, my intention is
to send the request (proxy) to another radius on another machine ONLY IF
it is rejected by the first radius, is it possible?
Not right now. With code changes, probably.
Alan
From you description it appears it is something in the configuration of Apache
Gary N. McKinney
Network Administrator
Computer Services Dept.
Brevard County Library System
-- Original Message --
From: Charles Thomas [EMAIL PROTECTED]
Reply-To:
www.freeradius.org !
Thanx, but I want know your exeperience!
use the latest CVS
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Bob Ross [EMAIL PROTECTED] wrote:
Question, how do I tell FreeRadius to only allow them to authenticate from
the network side with one of our realms but not allow them to log in from
the dialup realm. It could be the same realm name we use for our dialup
side.
What is different between the
That's how they do it. I have no control over that. They told me it was up
to me to filter the difference.
So I figured this would be the best place to ask how to do this. Maybe I'm
wrong, but I see these types of answers a lot as if this list is for those
to tell others they need to learn before
Alan DeKok [EMAIL PROTECTED] said:
Can someone tell me how RADIUS server handles vendor specific
attribute. I am sending a packet using radclient with vendor specific
attribute and its working. I found that attribute is not in dictionary. I
want to know where in the code it checks for
Can someone tell me more about AuthRadiusBindAddress?
From the documentation it's not clear to me whether this directive is
looking for an IP address of the Radius server to listen on, or if it
wants an IP address of the localhost from which to do the listening.
Thanks!
CT
--
Charles Thomas
Bob Ross [EMAIL PROTECTED] wrote:
So I figured this would be the best place to ask how to do this. Maybe I'm
wrong, but I see these types of answers a lot as if this list is for those
to tell others they need to learn before they can use.
No. It's to tell people *what* they need to learn so
Shah, Nishant B [EMAIL PROTECTED] wrote:
I have to give presentation to my team for this. It would be a good help
if you throw some more lights on it. I looked at radius.c but it seems that
it checks for the code in the packet for vendor specific i.e 26. But how it
deals with particular
Charles Thomas [EMAIL PROTECTED] wrote:
From the documentation it's not clear to me whether this directive is
looking for an IP address of the Radius server to listen on, or if it
wants an IP address of the localhost from which to do the listening.
It's the IP address of the local host:
From the documentation it's not clear to me whether this directive is
looking for an IP address of the Radius server to listen on, or if it
wants an IP address of the localhost from which to do the listening.
you are like asking to install freeradius on host A and listen radius
Search the archives.
Just yesterday I sent another example of how to configure for sql, and
gave some sample
data.
Look for postgres, in the archives.
The same data works with MySQL and the only config change is to include
sql.conf
instead of postgresql.conf.
On the 20th I collected the most
You need to set up your server so that people who buy acceleration send
their own realm information with a username. For instance... You have
username bob and he is trying to log in to your acceleration server
through his Internet service provider Joe ISP who has domain name
joeisp.com. He needs
What he is saying is that you do not need to dig through the code to
figure out this problem. Each dictionary file contains all the vendor
specific attributes that you need. There is not a particular
vendor-specific-attribute field to deal with. There are just entries in
a dictionary file for that
delete from usergroup ;
insert into usergroup (username,groupname)
values('fredf','ppp-unlimited');
insert into usergroup (username,groupname) values('barneyr','ppp-static');
insert into usergroup (username,groupname)
values('troll','ppp-unlimited');
insert into usergroup
I have installed FreeRadius 0.9.3 on Debian 3, using MySQL for
authentication and accounting, but the radacct table is not being
populated. I had been using FreeRadius 0.8.1 under Solaris 7 and has
been authenticating and maintaining the radacct table until after I
configured the Debian server, I
=?iso-8859-1?q?Aurelien=20Magniez?= [EMAIL PROTECTED] wrote:
In details, after reading the Packet modification
attacks paragraph in the RFC 2284bis (It is
RECOMMENDED that methods providing integrity
protection of EAP packets include coverage of all the
EAP header fields, including the Code,
Has anyone else come across this (or a similar issue)? Should radiusd
-X show the INSERT statement in the debug output?
Yes.
Do radiusd -X | grep INSERT
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
If you are in production use the latest stable version, but if your are just
testing and learning the programmers and the rest of us freeradius users
would like the latest CVS so bug fixes and other issues can corrected. This
helps make freeradius killer
But if you are a debian user you can
Charles Thomas [EMAIL PROTECTED] wrote:
Problem #1: If someone logs in and then tries to access a resource for
which they do not have permission, the server is throwing out an
Internal Server Error (Error code 500) to the browser instead of the
proper Unauthorized (Error code 401).
And
All,
When synchronous=yes in the proxy.conf and there is no response to a
proxied Access-Request, the FreeRADIUS will send an Access-Reject to the
RADIUS client.
With the following proxy.conf configuration, proxied Access-Requests
without a response will generate an Access-Reject after 2-3
Just a thought... try checking in the httpd-error.log file to see what Apache is
saying is the problem... it may be rather cryptic but should point you in the right
direction
Gary N. McKinney
Network Administrator
Computer Services Dept.
Brevard County Library System
--
My suspicion is this:
Currently they way things are configured the user logs in using Radius and is either a valid user or denied. When the user switches to a directory which is being managed using Apache's Basic Authentication model and an .htaccess file, they are not being re-prompted for a
Thank you for this input too.
I will definitely use it.
At 09:20 20/04/2004, you wrote:
Hi,
I also wrote a C++ module under FreeRadius. Look at
this page :
http://lists.cistron.nl/archives/freeradius-devel/2004/04/msg1.html
Aurélien Magniez
Yahoo! Mail : votre e-mail personnel et
John Butala [EMAIL PROTECTED] wrote:
With the following proxy.conf configuration, proxied Access-Requests
without a response will generate an Access-Reject after max_request_time
expires.
proxy server {
synchronous = yes
retry_delay = 10
retry_count = 10
...
Is
VoipOne NOC wrote:
I've got this:
Module: Loaded SQL
rlm_sql (sql): Driver rlm_sql_postgresql (module rlm_sql_postgresql) loaded
and linked
rlm_sql (sql): Attempting to connect to [EMAIL PROTECTED]:/radacct
rlm_sql (sql): starting 0
rlm_sql (sql): Attempting to connect rlm_sql_postgresql #0
40 matches
Mail list logo