Thanks Alan for the previous answer. I've been doing some research
regarding the FreeBSD built-in radclient and libradius. They currently
doesn't support accounting update features.
Is there anyone that using ppp FreeBSD with accounting update? I
couldn't find anything on the Net. Thanks in advan
Heath,
Here are it may be possible solution.
Please follow as it is the EAP-TLS HOW-TO guide, that is available
at www.freeradius.org. Once you are done with that you can install new
free-radius version- pre2 too and able to run that.
I have done in the same way. And got successfu
Hi Folks,
I'd like to know the process involved in setting up DHCP on my
FreeRadius server instead of using a Cisco 2500 NAS to do the dynamic IP
assignment. At the moment I am using a Cisco 2500 NAS to do the dynamic IP
assignment. If I am going to use rlm_ippools in my radiusd.conf file,
Hi,
Based on the description of use_tunneled_reply = yes in ttls section of
eap.conf, I understood it as the reply to the NAS will use the
attributes from the inside tunnel. But, with this value set to yes, I
still see Access-Accept reply to the NAS still has the user-name from
outside, not from
With EAP-TLS, the machine will attempt to use a certificate that resides
in the Local Computer's Personal Certificates store. With PEAP, the
machine will attempt to use the machine credentials as negotiated with
the domain controller.
--Mike
On Thu, 2004-06-17 at 18:26, Brian Craft wrote:
> Can
Hi,
Could you please post your configuration file... as its not working for
me its only in clients.conf?
is there any change in radius.conf?
I am using 0.93 version.
Thanks
Prabh
[EMAIL PROTECTED] ("Alan DeKok") wrote in message
news:<[EMAIL PROTECTED]>...
> "Timothy Tan" <[EMAIL PROTECTED]>
Can anyone point me to docs about the "computer" 802.1x login that
Windows supports? I can't find info on how it's supposed to work. All
the docs say "check the 'Authenticate as computer' button", but no word
about what credentials the machine will try to use, or where you
configure them.
b.c.
-
Hi,
I just downloaded the cvs latest and did configure successfully, but
make would fail from the first step going into libltdl.
Htin
gmake[1]: Entering directory
`/data/home/hhlaing/FreeRadius/buildversion/radiusd/libltdl'
gmake[1]: *** No rule to make target `all'. Stop.
gmake[1]: Leaving di
Matthew Schumacher wrote:
Alan DeKok wrote:
"Gary McKinney" <[EMAIL PROTECTED]> wrote:
From following this thread I am wondering how many transactions a
second can a DB handle successfully perform before the system starts
to lose information???
That depends on the DB. Oracle is fast, PostGreSQL
Has the issue where freeradius crashes when tls is enabled due to the lack of ability
to find ssl libraries and includes at configuration time been fixed? I have hit this
issue recently with both the 1.0.0 pre1 and 1.0.0 pre2 source.
I know of the workaround posted by Tarun Bhushan 3/21/04 - b
Check the mailing list archives, or google for dialup admin postgres schema
I have supplied postgres compliant commands for dialup admin a number of
times
in the past. I currently have my development machine in pieces so I can't
provide the information anew.
apellido jr., wilfredo p. wrote:
mysql
webmin
url http://www.webmin.com
Sincerely,
Joel Eddy
Iowa Connect, Inc.
http://www.iowaconnect.com
Ph. 641-456-5964
Fax 641-456-5912
- Original Message -
From: "Marco Marques" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, June 17, 2004 4:22 PM
Subject: web interface
>
Hello all ,
I am using freeradius with mysql , is there any web interface that i can
use to add and delete ( manage ) the user accounts in the sql server?
Best regards
Marco
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ivan's stationery StationeryWas anyone able to compile and install
freeradius on
Cygwin?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
That's probably a bad idea. It would take to long to authenticate if you
have a lot of groups. You can send a reply item:
users file
...
DEFAULT (your check items here)
Filter-Id = "profile=switch_profile_name",
...
On Thu, 2004-06-17 at 11:16, Rivera, Denis wrote:
> Hello,
> I would like
=?iso-8859-1?Q?Juan_Antonio_Iba=F1ez_Santorum?= <[EMAIL PROTECTED]> wrote:
> What is the meaning of h323 attributes? Do they tell that answers to
> radius client will carry these attributes with 10 and 0 values?
Yes.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.o
Hello!
I’ve been reading FreeRadius
documentation but I don’t understand meaning of users file. If we have:
1234567890 Auth-Type := Local, Password =="1234567890" h323-credit-amount=10, h323-return-code=0,
What is the meaning of h323
attributes? Do they tell that ans
>
> > Hello,
> > I would like to know if this is possible
> > Send a Class or Filter-Id attribute to the NAS, with the content
> > being the names of the LDAP groups to which the user belongs.
> >
> > Thank you,
> > denis
> >
>
> How does the NAS expect the group to come back?
>
> Class:
Sorry, I
Hi,
Each of the voip equipment gives you a different
records. But still most of the attributes will be
common. You can put the aatributes you want in a text
file and use radcheck to generate CDRs.
Kiran.
--- Gulen Buyukbayram <[EMAIL PROTECTED]>
wrote: > Hi again,
> I think I could not make myse
> Hello,
> I would like to know if this is possible
> Send a Class or Filter-Id attribute to the NAS, with the content
> being the names of the LDAP groups to which the user belongs.
>
> Thank you,
> denis
>
How does the NAS expect the group to come back?
Class:
-
List info/subscribe/unsubsc
Hello,
I would like to know if this is possible
Send a Class or Filter-Id attribute to the NAS, with the content
being the names of the LDAP groups to which the user belongs.
Thank you,
denis
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Gene Cohen wrote:
Yes
You may use Calling-Station-Id Attibute
Aquiles Cohen
Hi,
I am a new user so forgive my ignorance on this issue
Is there a method of authorization based on caller-id (ANI) ? I can
see that the ani get's to the server in the debug logs.
Any advice would be appreciated,
gene
Hi,
I am a new user so forgive my ignorance on this issue
Is there a method of authorization based on caller-id (ANI) ? I can see
that the ani get's to the server in the debug logs.
Any advice would be appreciated,
gene
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/user
mysql -h mysql.host.com -u username -p radius <
badusers.sql this is for MYSQL. what about POSTGRESQL? i tried this
cat mtotacct.sql | psql radius
and i got this : ERROR: syntax error at or
near "(" at character 44
thanks
Is it possible to get a Windows Domain Controller to authenticate via
radius? Has anyone got this working?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alexander Serkin <[EMAIL PROTECTED]> wrote:
> My acct-session-id comes with value D47761550033DDC3 for example.
> I've also copied CLID (15 digits) into NAS-Port attribute because it's missing
> in request.
15 digits is more than 2^32, so it won't fit into a the integer
value for NAS-Port.
Y
"Markus Ebel" <[EMAIL PROTECTED]> wrote:
> users: Matched DEFAULT at 5
> modcall[authorize]: module "files" returns ok
So... what's that DEFAULT?
> rlm_chap: Could not find clear text password for user testuser
Yup. It couldn't find a password.
> It seems that the freeradius can't
"Pedro Sousa" <[EMAIL PROTECTED]> wrote:
> hope you can help me on this, I'm new freeradius, but I have set-up
> different secret keys for different GGSNs going to the same Radius server.
> Is it possible to have different secret key on APN level?
GGSN? APN?
English?
Alan DeKok.
-
List
Alexander Serkin <[EMAIL PROTECTED]> wrote:
> Ok. I can use radrelay. But. I do not understand the reason why the
> replicate-to-realm is being removed from server.
It made the server more complicated and prone to failure.
> There are two operators now wich we have roaming agreements with.
> B
Alexander Serkin wrote:
...
Thank you, Kostas. that's what i was looking for.
Can you give an example of attr_rewrite block to copy attributes?
The explanations in radiusd.conf are not quite clear for me :)
My acct-session-id comes with value D47761550033DDC3 for example.
I've also copied CLID (1
Hi again,
I think I could not make myself clear.
Let me explain my problem further.
I do not have VoIP, instead, I want to simulate it and create CDRs, then
observe their formats and write a billing algorithm.Hence, I need to have a
test tool which creates dummy CDRs. Then, I think I can see the
On Thu, 2004-06-17 at 13:04, Kostas Kalevras wrote:
> >
> > modcall: entering group post-auth for request 0
> > rlm_ippool: Could not find Pool-Name attribute.
> > ^^^
>
>
> The files module does not seem to be called anywhere (mainly in the authorize
>
My best guess is that the passwords are stored encrypted at the radius
server, which will never work since CHAP is one-way encyption.
You have 2 options:
- use CHAP and store passwords unencrypted at the radius server
- use PAP and store passwords encrypted at the radius server.
Regards,
Thor.
-
- Original Message -
From: "Gulen Buyukbayram" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, June 17, 2004 1:56 PM
Subject: cdr
> Hi,
> I need to configure free radius so that I can generate CDR and send them
to an
> external database. Does anyone have any idea about how I
Hi,
i tried but i can´t find a solution of my auth-problem.
i try to connect to our Ascend Max2000 by a Windows-Client
with username and password and i´cant get it working
Here is the debug.
-- freeradius Debug --
rad_recv: Access-Request packet from host 21X.xx.
Kostas Kalevras wrote:
On Thu, 17 Jun 2004, Pate Mark-marpate1 wrote:
rlm_ippool needs the nas-port-id to work. In the future the search key will be
configurable. For now you could configure your NAS to also send the
accounting-session-id in the access-request:
radius-server attribute 44 include-
On Thu, 17 Jun 2004, Pate Mark-marpate1 wrote:
> > -Original Message-
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED] On
> > Behalf Of Alexander Serkin
> > Sent: 17 June 2004 09:01
> > To: [EMAIL PROTECTED]
> > Subject: Re: rlm_ippool and NAS-Port missing in access-request
> >
>
On Thu, 17 Jun 2004, Dave Shepherd wrote:
> All,
>
> I've got a problem that I currently can't seem to solve, through the
> docs or google that I hope you can help me with.
>
> I'm in the process of setting up a freeradius server which is
> currently acting as a proxy from an unknown BT radius
Hi,
I need to configure free radius so that I can generate CDR and send them to an
external database. Does anyone have any idea about how I can do this?
thanks in advance
Gulen
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
hope you can help me on this, I'm new freeradius, but I have set-up
different secret keys for different GGSNs going to the same Radius server.
Is it possible to have different secret key on APN level? to have different
secret keys for two different APNs going from the same GGSN to the same
All,
I've got a problem that I currently can't seem to solve, through the
docs or google that I hope you can help me with.
I'm in the process of setting up a freeradius server which is
currently acting as a proxy from an unknown BT radius server to a
Microsoft IAS server authenticating agains
Pate Mark-marpate1 wrote:
I used only NAS-Port&NAS-IP-Address with radclient and it seem enough to
allocate an IP from the pool:
Sending Access-Request of id 69 to 127.0.0.1:1812 User-Name =
"[EMAIL PROTECTED]" User-Password = "xx" Calling-Station-Id =
"25009702749" Framed-Protocol = PPP
> I used only NAS-Port&NAS-IP-Address with radclient and it
> seem enough to
> allocate an IP from the pool:
>
> Sending Access-Request of id 69 to 127.0.0.1:1812
> User-Name = "[EMAIL PROTECTED]"
> User-Password = "xx"
> Calling-Station-Id = "25009702749"
> Frame
Hello!
Nuno Miguel Pais Fernandes pravi:
I'm having problems authenticating windows XP clients using EAP-TTLS
(I'm using Securew2 pluggin) with Freeradius-1.0.0-pre2.
In logs i only see outer authentication "[EMAIL PROTECTED]".
Can anyone have it working?
Freeradius config:
eap {
[...]
}
S
Pate Mark-marpate1 wrote:
...
Hi Alexander,
Presumably you'll be moving to the 7609?
Not in this life, i think :-) We use 7206VXRs with CISCO PDSN 12.2(8)ZB8.
My understanding is that FreeRadius uses the NAS-Port-ID as an increment to a
base IP address to provide the client IP address. The Cisco G
> Hi Alexander,
>
> Presumably you'll be moving to the 7609?
>
> My understanding is that FreeRadius uses the NAS-Port-ID as
> an increment to a base IP address to provide the client IP
> address. The Cisco GGSN has a constant NAS-Port-ID, so it
> would make sense that when you raise this with
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Alexander Serkin
> Sent: 17 June 2004 09:01
> To: [EMAIL PROTECTED]
> Subject: Re: rlm_ippool and NAS-Port missing in access-request
>
>
> There is a command.
> Something like "radius-server attrib
There is a command.
Something like "radius-server attribute nas-port", but it does not work
for now. The IOS Release is the last for this kind of hardware.
And i'll definitely open a case with Cisco regarding this problem.
But this is not a subject for the freeradius-users.
I wonder if i could fix
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Alexander Serkin
> Sent: 17 June 2004 08:30
> To: Freeradius-Users
> Subject: rlm_ippool and NAS-Port missing in access-request
>
>
> hello again.
> The problem is that Cisco PDSN (NAS for 3G CDMA
hello again.
The problem is that Cisco PDSN (NAS for 3G CDMA networks) does not send any
NAS-Port attributes in its Access-Request:
RADIUS(0022F081): Send to unknown id 21797/240 212.119.96.62:1812,
Access-Request, len 131
RADIUS: authenticator C4 5F D4 5B EB C5 68 69 - 16 78 96 A7 5B A7 69 C3
Hello it is possible to define the query parameter
in sqlcounter.conf?
%k =
%b =
I just want to specify the date where the
AcctSessionTime will be compute(SUM).
I think i will be ok.
I have modified the accounting_stop_query in sql.conf, instead of
'%S' for a static d
51 matches
Mail list logo
