=?iso-8859-1?q?SANDEEP=20KHANNA?= [EMAIL PROTECTED] wrote:
Now I want to know how this freh request will be sent
.If I sent it the same way , server takes it as a
normal password and send me a challenge again.
Please read the RADIUS RFC's. Specifically, the use of the State
attribute.
ro0ot [EMAIL PROTECTED] wrote:
Can I configure the system to let freeradius works with dhcp?
No, sorry.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Paul Bender [EMAIL PROTECTED] wrote:
However, I use OpenLDAP as a central store for account information for
all other services (unix, samba, email, etc). Therefore, I would like
freeradius to get account information from the LDAP server as well.
However, when I configure freeradius to use
On Fri, 14 May 2004 13:38:01 -0600
Evan Stenmark [EMAIL PROTECTED] wrote:
yes, I did a locate radius.log (with a current locate database) as
well as a root directory find but nothing comes up This is very
strange
you have to enable it in the configuration file for FreeRADIUS.
Graeme
Evan
Hi,
I need to provide access to several web sites on our Intranet to traveling users on
the Internet. I have set up a reverse proxy (Apache) and I use the radius module to
authenticate users coming from the Internet. The radius module is great, becuase upon
successful authentication it puts a
Why not ?
My university implements something that looks like that. A laptop first
gets a DHCP lease, and can address a single IP which is presumably the
address of the server. Then I fire up the Cisco VPN client that
authenticates via an encryption algorithm and then the laptop can access
the
M Singh [EMAIL PROTECTED] wrote:
Why not ?
Because freeradius working with dhcp means freeradius knows about dhcp.
My university implements something that looks like that. A laptop first
gets a DHCP lease, and can address a single IP which is presumably the
address of the server. Then I
Hi list,
I'm trying to set up a wireless network based on radius
authentication for my enterprise. I've successfully tested
freeradius with a windows XP client, now I'd like to test
it with a Linux client.
Could you suggest me a 802.1x-capable wireless card with
*stable* drivers under Linux.
Due to licensing policy of Secure Computing, which forced me to upgrade to deploy a
separate machine running just their AAA server, I have decided to move away from their
product Safeword Premier Access. I am looking for some replacement for their system of
dynamic passwords and tokens.
Sir thanks ver much for your response, but I have
already read the rfc before sending my question.
Could u please tell me the exact syntax on sending
request with State attribute like I am using
radtest username password server ip:port NAS
port shared secret key
to send the original request .
Sir thanks very much for your response, but I have
already read the rfc before sending my question.
Could u please tell me the exact syntax on sending
request with State attribute like I am using
radtest username password server ip:port NAS
port shared secret key
to send the original request .
=?iso-8859-1?q?SANDEEP=20KHANNA?= [EMAIL PROTECTED] wrote:
Could u please tell me the exact syntax on sending
request with State attribute like I am using
radtest
Don't use radtest. Use radclient. READ radtest. It's just a
shell script.
Alan DeKok.
-
List
Hi,
How to configure the free RADIUS server to send an Challenge response to
an access request. In other words, what are the configurations to be
done on the free RADIUS server such that it sends an challenge response
to an access request. By default, will the free RADIUS server send an
Robert Szelepcsenyi [EMAIL PROTECTED] wrote:
Due to licensing policy of Secure Computing, which forced me to
upgrade to deploy a separate machine running just their AAA server,
I have decided to move away from their product Safeword Premier
Access. I am looking for some replacement for their
Barath kumar [EMAIL PROTECTED] wrote:
How to configure the free RADIUS server to send an Challenge response to
an access request. In other words, what are the configurations to be
done on the free RADIUS server such that it sends an challenge response
to an access request. By default, will
Hi,
Sorry, I was not precise enough in my query. I am looking for a system of
*synchronous* dynamic passwords, which use tokens with an internal counter without any
chalenge. The password has to be entered before a call is made (either VPN or dialup),
so there is no opportunity to recieve a
Yep, thats what I mean...thanks Alan DeKok, :)
Probabily I have to find another solution, :-(
Regards,
ro0ot
Alan DeKok wrote:
M Singh [EMAIL PROTECTED] wrote:
Why not ?
Because freeradius working with dhcp means freeradius knows about dhcp.
My university implements something that
Robert Szelepcsenyi [EMAIL PROTECTED] wrote:
Sorry, I was not precise enough in my query. I am looking for a
system of *synchronous* dynamic passwords, which use tokens with an
internal counter without any chalenge. The password has to be
entered before a call is made (either VPN or dialup),
Hello,
I need some information about the following
'service-type' attribute:
- Outbound
- Administrative
- NAS Prompt
- Call Check
- Callback NAS Prompt
1. In which case will a radius client request for the
above service type or which radius clients usually
request for the above service-type ?
Hi,
Im in the process of seeting up a new RADIUS
server using Freeradius. I intend using MySQL for Authorisation and Accounting.
As a result, I will not be making use of the users file (since
MySQL is configured for use in Radiusd.conf, thereby bypassing the use of the
users file). My
On Mon, May 17, 2004 at 12:14:40PM +0200, Joe Borg wrote:
I'm in the process of seeting up a new RADIUS server using Freeradius. I
intend using MySQL for Authorisation and Accounting. As a result, I will
not be making use of the 'users' file (since MySQL is configured for use
in Radiusd.conf,
Lara Adianto [EMAIL PROTECTED] wrote:
1. In which case will a radius client request for the
above service type or which radius clients usually
request for the above service-type ?
http://www.freeradius.org/rfc/attributes.html
Click on Service-Type, and it will tell you what those values
Juan [EMAIL PROTECTED] wrote:
i have freeradius with various pools, but now i need that one Pool
have two diffrents ranges. Can i do it with freeradius?
Yes and no. Each pool can have only one range. But you can create
use two pools, and fail over to the secon done if the first one is
Hello,
i have freeradius with various pools, but now i
need
that one Pool have two diffrents ranges. Can i do
it
with freeradius?
ippool main_pool {
range-start = X.X.X.128
range-stop = X.X.X.151
netmask = 255.255.255.255
Hi Paul,
Thanks for the tip. By any chance, would you be able to refer me to some
documentation/information on how to go about doing this? I'm still
somewhat green to MySQL. Thanks.
Joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Paul
Hampson
Sent: 17
- Original Message -
Hi,
Im in the process of seeting up a
new RADIUS server using Freeradius. I intend using MySQL for Authorisation and
Accounting. As a result, I will not be making use of the users file (since
MySQL is configured for use in Radiusd.conf,
Hello,
i have freeradius with various pools, but now i
need
that one Pool have two diffrents ranges. Can i do
it
with freeradius?
YES
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
I found that sql_escape_func in rlm_sql.c does not encode the '='
character. That makes it impossible later to decode the string correctly
again. If you are looking at e.g. an encoded username =3B, you don't
know whether the unencoded original was ; or =3B. Would it be
possible to change that
Hello Allan DeKok,
but failover where, my users are defined like
this:
nameuser User-Password == passowrd, Pool-
Name := main_pool
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Compression = 0,
Port-Limit = 1,
Idle-Timeout = 0,
Hello Allan DeKok,
but failover where, my users are defined like
this:
nameuser User-Password == passowrd, Pool-
Name := main_pool
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Compression = 0,
Port-Limit = 1,
Idle-Timeout = 0,
On Mon, May 17, 2004 at 01:40:08PM +0200, Joe Borg wrote:
Thanks for the tip. By any chance, would you be able to refer me to some
documentation/information on how to go about doing this? I'm still
somewhat green to MySQL. Thanks.
If you already understand how to use the users file, then the
On Mon, May 17, 2004 at 02:41:57PM +0300, Fabian Ritzmann wrote:
I found that sql_escape_func in rlm_sql.c does not encode the '='
character. That makes it impossible later to decode the string correctly
again. If you are looking at e.g. an encoded username =3B, you don't
know whether the
Hi,
Please, can you indicate me how I can configure Freeradius to send more than one Class
attribute on Access-Accept messages ? or simply if Freeradius supports such a
configuration ?
I am using the local users file authentication method. The following is an example
of my users config file:
Paul Hampson wrote:
On Mon, May 17, 2004 at 02:41:57PM +0300, Fabian Ritzmann wrote:
I found that sql_escape_func in rlm_sql.c does not encode the '='
character. That makes it impossible later to decode the string
correctly again. If you are looking at e.g. an encoded username
=3B, you
[First, I'm a newcomer to this list. If this was already answered
before (although I search through the archives before posting) please
appologize and point me to the appropriate resorce]
Dear all,
Here's yet another new bee biting the EAP-TLS dust (tm).
My set-up:
- Authenticating
Alan DeKok wrote:
Paul Bender [EMAIL PROTECTED] wrote:
However, I use OpenLDAP as a central store for account information for
all other services (unix, samba, email, etc). Therefore, I would like
freeradius to get account information from the LDAP server as well.
However, when I configure
Florian,
Do you have the icon in your task bar for you ethernet interface
disabled? (The Show icon on task bar when connected option in the
interface properties should be *enabled*). Windows XP pops up a bubble
from that icon when it needs to communicate with the user (for things
like accepting
Michael,
First, thanks for the fast reply.
Michael Griego writes:
Florian,
Do you have the icon in your task bar for you ethernet interface
disabled? (The Show icon on task bar when connected option in the
interface properties should be *enabled*). Windows XP pops up a bubble
from that
Hello,
I´m using SuSE Linux 9.1, FreeRadius 0.9.3 with the module
mod_auth_radius-2.0 and Apache2.0.
I would like to use Radius for web authentication.
At first I tested the Apache 1.3 with the Radius module mod_auth_radius.
I used the configuration as per description on
Hi
You don't need to change any Auth-Type settings, and it's best
that you don't even use any Auth-Type settings when authenticating
from MySQL.
In your MySQL database you use the attribute Crypt-Password for
encrypted passwords.
Search the archives for MySQL schema and or Guy Fraser. I have
= 1.2.3.46,Acct-Session-Id =
0012,User-Name = username'
rlm_acct_unique: Acct-Unique-Session-ID = f13ebac0de4ea35c.
modcall[accounting]: module acct_unique returns ok for request 36
radius_xlat: '/var/log/freeradius/radacct/1.2.3.46/detail-20040517'
rlm_detail:
/var/log/freeradius/radacct
/freeradius/radacct/1.2.3.46/detail-20040517'
rlm_detail:
/var/log/freeradius/radacct/%{Client-IP-Address}/detail-%Y%m%d expands
to /var/log/freeradius/radacct/1.2.3.46/detail-20040517
modcall[accounting]: module detail returns ok for request 36
modcall[accounting]: module unix returns noop
Good Evening,
I had EAP-TLS working and poked around (destroying my working TLS) :-(
modcall: entering group authenticate for request 10
rlm_eap: Request found, released from the list
rlm_eap: EAP NAK
rlm_eap: EAP-NAK asked for EAP-Type/tls
rlm_eap: ERROR! Our request for tls was NAK'd
Yes, I have searched the radiusd.conf for anything that involves 'log'
When I had the server set up on our network authenticating requests, the only log file
that came out of that was:
/usr/local/var/log/radius/radacct/IP-ADDRESS/detail-DATE
I see that in the radiusd.conf, and it is actually
On Mon, May 17, 2004 at 09:03:47PM +0200, Michael Markstaller wrote:
running FreeRADIUS Version 1.0.0-pre0 (Debian-package from cvs20040421)
with accounting to mysql 3.23.49.
When I understood things right, the accounting_update_query_alt should
come into action when accounting_update_query
Hello, i have installed freeradius + mysql and now nocat authserv and nocat gateway following this tuturial http://nocat.net/wiki/index.cgi?Radius, and it looks all run okay.
When i try to access browser to authenticate, if i put a login pass correct it says login wrong or password, and
Hi Alan,
1. In which case will a radius client request for
the
above service type or which radius clients usually
request for the above service-type ?
http://www.freeradius.org/rfc/attributes.html
Click on Service-Type, and it will tell you what
those values mean, and when they're used.
Dear Alan DeKok,
Could you please respond to my below query:
I am using the UDP protocol as the underlying protocol and the MD5
protocol as the authentication protocol to communicate with the RADIUS
server. In this case, will the protocol demand for a challenge ?. In
this case, will the
Sir, I read radclient file . Its usage says
Usage: radclient [options] server[:port] command
[secret]
and I have come to know through the rfc'c that I
should include the state
received from radius server as it is in my request.So
how I will add this and also
the encrypted password which I got
Sir, I read radclient file . Its usage says
Usage: radclient [options] server[:port] command
[secret]
and I have come to know through the rfc'c that I
should include the state
received from radius server as it is in my request.So
how I will add this and also
the encrypted password which I got
50 matches
Mail list logo