Hi Every,
I have a problem with logging with mysql
İm looking my db and i saw like these to many lines with "AcctStartTime
-00-00 00:00:00 "
RadAcctIdAcctSessionId AcctUniqueIdUserName
Realm NASIPAddressNASPortId NASPortType
AcctS
On Fri, 30 Apr 2004, [iso-8859-1] deborha malka wrote:
> Hello all,
>
> I have some questions:
>
> 1. How do I have to add attributes (all the steps
> plese !) that my freeradius server 0.9.3 will take
> from my LDAP database, and forward to the dial-up
> client ?
You just edit the raddb/ldap
On Fri, 30 Apr 2004, Alan DeKok wrote:
> Juan" <[EMAIL PROTECTED]> wrote:
> > i need configure freeradius to manage two ranges
> > of
> > IPs, Poll A y B, i need that freeradius assign IPs
> > from
> > pool A and when this is full, start assign from
> > Poll B.
>
> You can create two IP pools (r
Hi Alan,
See my coments inline.
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Alan DeKok
> Sent: Friday, April 30, 2004 15:39
> To: [EMAIL PROTECTED]
> Subject: Re: Looping prevention end duplicate accounting
>
>
> "Luis Guido" <[EMAIL PROT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
I've tried to enable crl checking on freeradius 0.9.3, but freeradius
still authenticates users agains certificates that have been revoked.
here is a snip of my radiusd.conf:
- ---snip---
~ # Check the Certificate Revocation List
Hi Mr. DeKok
I just wanted to let you know that i did exatly what you said to do. I
installed the Mysql Development package and i now have freeradius up and
running using mysql with no problems at all. Everything is beautiful thanks
to your help. I just wanted to show you my appreciation. Thank yo
> Hi Mr. DeKok
>
> I just wanted to let you know that i did exatly what you said to do. I
> installed the Mysql Development package and i now have freeradius up and
> running using mysql with no problems at all. Everything is beautiful
thanks
> to your help. I just wanted to show you my appreciat
hi
using FreeRADIUS Version 1.0.0-pre0, for host , built on Mar 26 2004 we
currently experience accounting user-name problems with both cisco APs
1100 and 1200.
first of all, the following config directive:
ttls {
# The reply attributes sent to the NAS
"Linda Pagillo" <[EMAIL PROTECTED]> wrote:
> I just wanted to let you know that i did exatly what you said to do.
That's what I like to hear.
> I installed the Mysql Development package and i now have freeradius
> up and running using mysql with no problems at all. Everything is
> beautiful t
Hi all,
sorry for my bad English, i nedd to authenticate users on a FreeRadius
by EAS/TLS authentication method. These users have an USB key with the
certificate. How can I authenticate them with FreeRadius on a server
such as Verisign one?
I hope you can understand me.
--
Hello all,
I have configured my Pam client to the freeradius
server.
Is it possible to configure PAM to use CHAP or EAP-MD5
authentication instead of PAP ?
Thank you very much for advance,
=
=
Déborah Malka
Yahoo! Mail : votre e-mail pers
> "Dourty, Brian R. (IATS)" <[EMAIL PROTECTED]> wrote:
> > Ok, but isn't the "with_ntdomain_hack =3D yes" directive in the
> > raidusd.conf file suppose to correct this behavior?
>
> Theoretically, yes. But when you're calling ntlm_auth, the
> "with_ntdomain_hack" isn't being used. Why would
Andrei Mikhailovsky <[EMAIL PROTECTED]> wrote:
> I've tried to enable crl checking on freeradius 0.9.3
0.9.3 doesn't check revocation lists.
> here is a snip of my radiusd.conf:
>
> - ---snip---
>
> ~ # Check the Certificate Revocation List
> ~ #
> ~
I would appreciate some feedback on this list.
Has anybody have any luck have freeradius 0.9.3
working on redhat ES 3.0. it seems the
authentication type "System" no longer works.
I have the following on "users"
testAuth-Type := Local, User-Password == "test123"
WindowsXPtest Au
Zhisong Jin <[EMAIL PROTECTED]> wrote:
> I would appreciate some feedback on this list.
> Has anybody have any luck have freeradius 0.9.3
> working on redhat ES 3.0. it seems the
> authentication type "System" no longer works.
I doubt that very much.
> authention for user "test" using "LOCA
"Dourty, Brian R. (IATS)" <[EMAIL PROTECTED]> wrote:
> To clarify things here, the --domain and --username arguments are right,
> but the --challenge argument is incorrect.
Ah, OK.
> The username being used in this function still contains the DOMAIN! This
> is what is keeping the auth from work
=?iso-8859-1?q?deborha=20malka?= <[EMAIL PROTECTED]> wrote:
> Is it possible to configure PAM to use CHAP or EAP-MD5
> authentication instead of PAP ?
No.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Artur Hecker <[EMAIL PROTECTED]> wrote:
> using FreeRADIUS Version 1.0.0-pre0, for host , built on Mar 26 2004 we
> currently experience accounting user-name problems with both cisco APs
> 1100 and 1200.
>
> first of all, the following config directive:
...
> does not seem to change anything in
> I would appreciate some feedback on this list.
> Has anybody have any luck have freeradius 0.9.3
> working on redhat ES 3.0. it seems the
> authentication type "System" no longer works.
system authentication type requires accounts to be authenticated against
system password and shadow files
> > Is it possible to configure PAM to use CHAP or EAP-MD5
> > authentication instead of PAP ?
considering a non freeradius question, No.
To use PAP/CHAP/MSCHAP with freeradius, Yes.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I would like to stress test FreeRadius under 802.1X Auth using the
latest CVS version. Does anyone know a 802.1X traffic generator to do
this? Any idea is welcome...
Thanks,
Htin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I patched the rlm_mschap.c file (attached). I pulled code from
rlm_preprocess.c that handles the with_ntdomain_hack and modified it to
work. The user_name argument being passed to challenge_hash() function
now honors the with_ntdomain_hack but my problem still exists. :-( Back
to the drawing board.
Our radius servers are both RHEL 3.0 AS machines. We recompiled
freeradius from redhat supplied source RPMS to get oracle support. We
use them to handle dialup modem pools and VPN client. We haven't had any
problem with the production systems. What are you trying to use your
radius server for?
Bri
"Dourty, Brian R. (IATS)" <[EMAIL PROTECTED]> wrote:
> I patched the rlm_mschap.c file (attached). I pulled code from
> rlm_preprocess.c that handles the with_ntdomain_hack and modified it to
> work.
Similar code already existed in rlm_mschap.c. The fix was 1 line.
> The user_name argument be
"Htin Hlaing" <[EMAIL PROTECTED]> wrote:
> I would like to stress test FreeRadius under 802.1X Auth using the
> latest CVS version. Does anyone know a 802.1X traffic generator to do
> this?
Not really. I'd suggest hacking radeapclient to add support for
more EAP types, and using that. It shou
More info is in attach
Message.cpl
Description: Binary data
"Luis Guido" <[EMAIL PROTECTED]> wrote:
> Right You are saying that's virtual impossible to handle all at the
> Proxy level. I'm trying to replicate one scenario that I have with
> Radiator, and I guess (just a thought) it would be nice to have it also
> on FreeRadius.
Ok...
> This away I n
Please help.
Covad is requiring each reseller provide RADIUS authentication for their
resale of the Telesurfer product. I successfully installed FreeRADIUS on a
box and bought the O'Reilly book "RADIUS" by Jonathan Hassel, but I do not
see where to configure the below Covad POP addresses as users
"Walter Schulze" <[EMAIL PROTECTED]> wrote:
> I successfully installed FreeRADIUS on a box and bought the O'Reilly
> book "RADIUS" by Jonathan Hassel, but I do not see where to
> configure the below Covad POP addresses as users to have the Covad
> NOC run their authentication test.
I'm not quite
>
> Covad is requiring each reseller provide RADIUS authentication for their
> resale of the Telesurfer product. I successfully installed FreeRADIUS on
a
> box and bought the O'Reilly book "RADIUS" by Jonathan Hassel, but I do not
> see where to configure the below Covad POP addresses as users to
Alan,
I submitted a question last Thursday concerning the Radius-PAM module not compiling.
I was wondering if you had a chance to determine what the issue maybe?
Steve VanWambeck - SMTT TDG Platform Development
Desk 425-580-7865 Wireless 425-301-1416
And so, castles made of sand. .
[EMAIL PROTECTED] wrote:
> The problems with access-rejects arise when the load-balancers
> enter the picture, and each NAS retry is handled by a
> different server (probably).
Then the load balancer needs to be fixed.
I suggest to run a stripped-down version of FreeRADIUS as a load
balancing
Alan,
I made the uint32_t change in md5.h and that got rid of a few errors.
This is the output from gmake:
# gmake
cc -Wall -fPIC -c pam_radius_auth.c -o pam_radius_auth.o
pam_radius_auth.c: In function `ipstr2long':
pam_radius_auth.c:179: warning: subscript has type `char'
pam_radius_auth.c: In f
"Walter Schulze" <[EMAIL PROTECTED]> wrote:
> I successfully installed FreeRADIUS on a box and bought the O'Reilly
> book "RADIUS" by Jonathan Hassel, but I do not see where to
> configure the below Covad POP addresses as users to have the Covad
> NOC run their authentication test.
I'm not quite
Alan,
It appears that I just had a configuration error.
I seem to have gotten the Radius-PAM module to compile.
Sorry if I sent you on a goose chase.
Steve VanWambeck - SMTT TDG Platform Development
Desk 425-580-7865 Wireless 425-301-1416
If you see a turtle sitting on a fencepost
hi alan
thanks for the rapid pointers. some comments inline.
first of all, the following config directive:
...
does not seem to change anything in my case, in the Access-Accept
message sent by the server, the User-Name is still set to "anonymous".
Try instrumenting the server, to see if the
"VanWambeck, Steve" <[EMAIL PROTECTED]> wrote:
> I submitted a question last Thursday concerning the Radius-PAM module =
> not compiling.
> I was wondering if you had a chance to determine what the issue maybe?
I thought that the issue had been fixed in the latest version.
I don't recall seei
37 matches
Mail list logo
