> I'm newbie too and I use Mdk9.2 and freeradius snapshot 22-004-
> 2004, then
> I use "slocate" command to find files I need . I install all soft
> neededfrom /usr/local/ and I add /usr/local/bin and
> /usr/local/sbin to my $PATH
> then it works...maybe it can help you
Sorry Fred but in which
>
>> I'm newbie too and I use Mdk9.2 and freeradius snapshot 22-004-
>> 2004, then
>> I use "slocate" command to find files I need . I install all soft
>> neededfrom /usr/local/ and I add /usr/local/bin and
>> /usr/local/sbin to my $PATH
>> then it works...maybe it can help you
>
> Sorry Fred but i
Hello,
I think Freeradius does not comply with RFC3579 with respect of the EAP
Start packet.
RFC 3579 says that an empty EAP-Message attribute signifies the
EAP-Start. To me this means the following attribute hex 0x4f 0x02
An evaluation copy of Steel Belted RADIUS takes 0x4f 0x02 as a valid EAP
Hello,
i need some some information about attributes...
Basically what i need to know is how i can add new radius attributes in radius
access-accept packet.
I'll try to explain briefly what we are doing:
we are developing a new wireless architecture (so we have some non-standard
devices) that ca
> > 2) When a client sends a request to the proxy, the proxy does
> > his work and forward the request to the server.
> > But for an unknown reason, the server sends a "Packet Error"
> > response.
>
> Can you get useful log messages from the home server? If not, the
> problem will most likely
Kostas Kalevras wrote:
The other idea is to use attr_rewrite as already suggested. In any case, make
sure that the files module comes before ldap in the authorize section for the
above to work.
attr_rewrite works but breaks EAP for me :(
I've reattempted using the users file again, and double c
<[EMAIL PROTECTED]> wrote:
> An evaluation copy of Steel Belted RADIUS takes 0x4f 0x02 as a valid EAP
> start, on receipt it sends back a Access-Challenge with a EAP-Request
> for Identity.
I updated the server yesterday to handle this situation. Please
grab the current CVS snapshot, and re-try
James <[EMAIL PROTECTED]> wrote:
> I know that i can define new attributes editing the dictionary files
> but what is not clear to me is when (and which) radius packets are
> filled.
Since you're using LDAP, they can be stored in the LDAP schema.
Otherwise, for simple testing, see the "users"
HAMEL Matthias OCISI <[EMAIL PROTECTED]> wrote:
> How could I filter those attributes and not forward them to the server ?
rlm_attr_filter should do it...
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> > do you know the trick of stripping the realm before trying to
> > authenticate?
>
> read /raddb/proxy.conf
that did the trick. thx a bunch.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Another data point -
Trying to follow the examples given in variables.txt and using the
'users' file, things like:
DEFAULT User-Name =~ "^([^/]+)/(.*)",
Everything = `%{0}`,
Test-Variable = `%{2}`,
Fall-Through = yes
causes a core dump on startup.
--Craig
-
List info
Craig Huckabee <[EMAIL PROTECTED]> wrote:
>Trying to follow the examples given in variables.txt and using the
> 'users' file, things like:
>
> DEFAULT User-Name =~ "^([^/]+)/(.*)",
> Everything = `%{0}`,
> Test-Variable = `%{2}`,
> Fall-Through = yes
>
> causes a core du
Hi,
I have a proxy radius which is connected to several radius clients.
Some of them send several accounting requests with different session id,
for a same customer session.
The radius clients (NAS) can't be configured, the servers can't be modified
too, and the expected behavior for all is to hav
Hello all,
I'm working on 802.1x with EAP-MD5 to start, it works very fine.
Now I need to use EAP-TLS. Then I let default config to test and I just
change default_eap_type = MD5 to default_eap_type = tls, I uncomment tls
attributes in eap.conf file.
When I start radiusd -X I've no radius error but
Hello,
i want to create a new dictionary to handle new attributes.
First of all i create a new file called dictionary.mine containing the
following lines:
VENDOR Mine 4113
ATTRIBUTE VLANid 22 string Mine
then i added in the users file the line:
user Auth-Type := EAP
R
It is possible that rlm_tls libraries are not in the lib location. This will cause
core dumps when the server tries to load the library.
Htin
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:freeradius-
> [EMAIL PROTECTED] On Behalf Of Frédéric EVRARD
> Sent: Thursday, May 06, 200
> Hello all,
>
> I'm working on 802.1x with EAP-MD5 to start, it works very fine.
> Now I need to use EAP-TLS. Then I let default config to test
> and I just
> change default_eap_type = MD5 to default_eap_type = tls, I
> uncomment tls
> attributes in eap.conf file.
> When I start radiusd -X I've
> Hello,
>
> i want to create a new dictionary to handle new attributes.
> First of all i create a new file called dictionary.mine containing the
> following lines:
>
> VENDOR Mine 4113
>
> ATTRIBUTE VLANid 22 string Mine
Why do you need this new attribute, there's ever standard
Hi,
> Why do you need this new attribute, there's ever standard attributes to
> assign VLAN :
>
> Tunnel-Type = VLAN
> Tunnel-Medium-Type = 802 (6)
> Tunnel-Private-Group-ID = VLAN NAME
>
> Maybe that can help you.
>
> Fred
This was just an example... i need to better understand how to create a n
help
=
Manomugdha Biswas
Yahoo! India Matrimony: Find your partner online.
http://yahoo.shaadi.com/india-matrimony/
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
James <[EMAIL PROTECTED]> wrote:
> i want to create a new dictionary to handle new attributes.
> First of all i create a new file called dictionary.mine containing the
> following lines:
...
> My problem is that when i capture the radius packet with ethereal i read
>
> Vendor:Undefined(4113)
>
James <[EMAIL PROTECTED]> wrote:
> This was just an example... i need to better understand how to create a new
> dictionary, because we are developing a new architecture that requires some
> non-standard attributes to be passed to the NAS (actually is not a NAS a new
> device which can act as NA
Hi,
I run supplicant against freeradius with
authentication type MD5. After that I wanted to run
supplicant against freeradius for authentication type
TLS. but for TLS I am getting the following error:
I used the following command:
# radiusd -X
rlm_eap: Failed to link EAP-Type/tls: file not fo
Thanks Htin and Giulio for your answers, with your advices, I look in
configure.log, and I see an error with openssl, I don't have
openssl-devel. After install it and compil freeradius again, "segmentation
fault" error disappear.
Thx again.
Fred
>> Hello all,
>>
>> I'm working on 802.1x with EAP
> Hi,
> I run supplicant against freeradius with
> authentication type MD5. After that I wanted to run
> supplicant against freeradius for authentication type
> TLS. but for TLS I am getting the following error:
>
>
> I used the following command:
>
> # radiusd -X
>
> rlm_eap: Failed to link EAP-Ty
Hey,
Does anyone having eap-tls turned on with checking crl's? I am using
the snapshot 20040319. I keep getting the error :
y 6 11:42:32 2004 : Error: TLS_accept:error in SSLv3 read client
certificate A
Thu May 6 11:42:32 2004 : Info: rlm_eap_tls: Received EAP-TLS ACK message
Thu May 6
On Wed, 5 May 2004 [EMAIL PROTECTED] wrote:
> Hi,
> i am using freeradius with postgres sql and my question is:
> i want bind clients with users, is this possible and how i should do
> this?
>
> history:
> we have some cafes and restaurants with there own wlan stations and
> the costumers get a vo
How do I limit Simultaneous-Use with freeradius and mysql I have looked
at the FAQ and did some googling finding no answers. Can somebody point
me in the right direction to get started? Or if this has already been
answered can you point me to where it is?
Thanks,
_
/-\ ndrew
-
List info/subscr
crl revocation checking works fine for me with CVS tree about 3-5 days
old. I just followed the instructions regarding crl in the radiusd.conf.
--
Andrei Mikhailovsky
Arhont Ltd - Information Security
Web: http://www.arhont.com
http://www.wi-foo.com
Tel: +44 (0)870 4431337
Fax: +44 (0)117 96
Andrew Niemantsverdriet <[EMAIL PROTECTED]> wrote:
> How do I limit Simultaneous-Use with freeradius and mysql I have looked
> at the FAQ and did some googling finding no answers. Can somebody point
> me in the right direction to get started? Or if this has already been
> answered can you point me
Hello,
I am new to FreeRadius, and I have to ask you for help. I have a
Radius server 0.93 running authenticating against MySQL, and so far I
have no problems. What I need is to return a number in the
Session-Timeout attribute, according to the time still allowed for use
to the user when he logs o
Hi
I have posted this question here in the past, but to no avail.
Hopefully, someone can help me out now.
First, I downloaded and installed openssl-0.9.7d which is the latest
release, in /usr/local/ssl.
Then I tried to set up freeradius with ./configure
--prefix=/usr/local/freeradius --s
M Singh writes:
Hi
I have posted this question here in the past, but to no avail.
Hopefully, someone can help me out now.
Possibly a more descriptive subject would draw more attention? I only
opened this as I'm having a slow email day.
Then I tried to set up freeradius with ./configure
--
Jared Jones writes:
The tables in the FreeRadius MySQL schema are quite confusing.
How are (clients/NAS) implemented in this schema?
Unless something changed and I didn't notice, we _don't_ implement
clients or NAS in the SQL stuff. Those tables are just placeholders...
It used to say so direct
34 matches
Mail list logo
