-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
"Alan DeKok" wrote:
>
> "Michael Kopp" wrote:
> > radiusd.conf[1559] Unknown configuration directive "ldap" in authorize
> > section.
> ...
> > ldap{
>
> Try putting a space in between "ldap" and "{"
>
> Alan DeKok.
>
>
hmm, same error as before ,
...
ldap {
No it is not possible, according to MS at least. Their article is at
http://support.microsoft.com/default.aspx?scid=kb;en-us;823731
You could create a login script that resets the registry everytime someone
logs in. You could also provide your users with a NAL object or some other
deployed mechani
When I run make on freeRADIUS 1.0.1 I get all kinds of missing attribute
warnings. The make program eventually finishes with a list of directories
listed as 'leaving'. I followed the install instructions, but now I'm
stumped. As you have already guessed I am new to freeRADIUS. My partner
and I h
(Bump)
- Nathan Miller
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Nate M
Sent: Tuesday, October 12, 2004 12:34 PM
To: [EMAIL PROTECTED]
Subject: Exec-Program-Wait & Unresponsive Child Errors
Good morning. I've got some weirdness with freeradius 1.0
Hi,
I have freeradius authenticating mac addresses listed in a MySQL
database. It works! But, the mac address passed by the client(hp 2650)
is in the form 00-00-00-00-00-00. I set the 'user name' to the 'calling
station id' in the 'hints' file like so
User-Name := "%i"
Is it possible to filter
"Michael Kopp" <[EMAIL PROTECTED]> wrote:
> radiusd.conf[1559] Unknown configuration directive "ldap" in authorize
> section.
...
> ldap{
Try putting a space in between "ldap" and "{"
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Khurram Jahangir <[EMAIL PROTECTED]> wrote:
> I thought I should chnage "default_eap_type" to tls
> under peap so I changed peap in eap.conf as following.
That won't work.
> But i am getting the following errors ..
...
You're getting a lot more errors than that, and errors which tell
you wha
[EMAIL PROTECTED] wrote:
> My freeradius version is 0.9-pre.
Why? Use 1.0.1. Odds are the problem you're seeing has been fixed.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Kostas Zorbadelos <[EMAIL PROTECTED]> wrote:
> However the patch is not included in freeradius 1.0.1. Any plans of
> including it in a later version?
I'd like to put it in 1.0.2.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Kostas, hi list,
I did what you suggested, but I still got a error, please see :
gaia:/usr/local/etc/raddb# radiusd -X
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy.conf
Config: including file: /usr/local/e
Yes this is possible as I have been running this way for over a year now.
Mark Capelle
Message: 1
Date: Thu, 14 Oct 2004 10:36:50 -0400
From: Thomas Lasswell <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: FreeRADIUS + MAC Auth + AD Auth
Reply-To: [EMAIL PROTECTED]
Hey t
Hi All,
I have set up freeradius server 1.0.1 and I am using
windows XP 802.1x client. The authenticator is an HP
2524 switch.
In the 802.1x windows xp client I want to setup PEAP
and instead of using MSCHAPV2, I want to use the
certificates as follows
Under Authentication, EAP type ->(Protect
Hi All,
I have set up freeradius server 1.0.1 and I am using
windows XP 802.1x client. The authenticator is an HP
2524 switch.
I have test the setup with PEAP using MSCHAP V2 and it
worked fine for me. My problem is that I want to use
this mechanism for VLAN selection so that depending on
the us
Hi,
apply the patch in the bug number 128. The 1.0.1 version doesn't contain
it. This patch solves your problem and probably manages better the Oracle
connection.
Andrea
At 17.49 14/10/2004, you wrote:
Hi List,
I have some problem with Oracle too, when any error occured like index
violation ora
Hi List,
I have some problem with Oracle too, when any error occured like index violation
oracle just drop
one connection, it says re-connect but I don't think it is not re-connecting, and in
some days
radiusd is out of connection and I got no more connection to Db , login denied message
in th
Hi!
can someone tell me where in freeradius config/source files i can change
subj.?
Thanks!
Edgars
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
My opinion,if the NAS doesn't send packet to radius server,there maybe 2
conditions:
1.NAS is down,doesn't work ,usrs disconnect to internet. we can
check NAS status every x mins, if down, write current time as all usrs'
accouting stop time.
2.The traffic is too heavy. and UDP pa
Hey there,
I'm looking to deploy a freeRADIUS server, although I've found
documents saying that MAC Authentication and Active Directory
authentication is possible. I just want to make sure this is actually
true.
802.1X Port-Based Authentication
http://www.gnist.org/~lars/courses/04thales/8021X-HO
Hi All,
I have set up freeradius server 1.0.1 and I am using
windows XP 802.1x client. The authenticator is an HP
2524 switch.
In the 802.1x windows xp client I want to setup PEAP
and instead of using MSCHAPV2, I want to use the
certificates as follows
Under Authentication, EAP type ->(Protect
I have a problem with the proxy accounting feature.
I set the proxy.conf with a couple of radius servers with the same realm name.
For the authentication the proxy works fine, but with the proxy accounting not.
I received in the error log "...arrived too late for request..." , and this is
becaus
Hi there
I'm using Cisco-AVPairs to return ACL filter rules to a Cisco NAS:
Cisco-AVPair = "ip:inacl#1=permit icmp any any reflect icmp"
Cisco-AVPair = "ip:inacl#2=permit tcp any any eq 53 reflect dns-tcp"
Cisco-AVPair = "ip:inacl#3=permit udp any any eq 53 reflect dns-udp"
Cisco-AVPair = "ip:ina
Hi All,
I have set up freeradius server 1.0.1 and I am using
windows XP 802.1x client. The authenticator is an HP
2524 switch.
I have test the setup with PEAP using MSCHAP V2 and it
worked fine for me. My problem is that I want to use
this mechanism for VLAN selection so that depending on
the us
[EMAIL PROTECTED] schrieb am 14.10.2004
15:10:10:
[...]
> This usually happens when mysql support is not enabled in php. Please
check
> that.
Great! I added "php4-mysql" and it works fine.
Thanks Norbert
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Thu, 2004-10-14 at 14:13, Cristi Banciu wrote:
> > Accounting will send a packet at logon and logoff and even (if
> > configured) every x minutes to update the accounting information.
> >
> > RADACCT is the way to go
> Thank you very much, but this doesn't answer to my question. If the NAS does
On Thu, 2004-10-14 at 14:14, Yyc wrote:
> To Graeme Hinchliffe:
>
> excuse me ; Would u like to tell me the number grade of user login
> and logout per hours of your system?
> Thanks.
sorry I don't have that info to hand.. although in 1 month we typically
have around 3-4 million acco
On Thursday 14 October 2004 14:59, Graeme Hinchliffe wrote:
> Thats where accounting comes in with radacct.. you get an entry in post
> auth as the RADIUS server knows they are logging on as an authentication
> request has just been processed by it. However no authentication is
> required when som
On Thu, 14 Oct 2004 [EMAIL PROTECTED] wrote:
> Hi,
>
> I'm playing around with Freeradius 1.0.1 and Mysql 4.0.18. If I use the
> "Check Server"-button I get an "Authentication was successful" and I think
> that means Mysql and Apache/PHP work fine.
>
> But most of the other pages are blank. For ex
To Graeme Hinchliffe:
excuse me ; Would u like to tell me the number grade of user login
and logout per hours of your system?
Thanks.
Regards.
Yyc
And the vision that was planted in my brain.
Still remains with the Sound of Si
Josh Howlett <[EMAIL PROTECTED]> wrote:
> Try pinging the Cisco from the radius server with that packet size, and
> see the error message returned.
Thanks Josh! I saw that the firewall that is between the radius and the
cisco did not allow fragmented packets. Now after changing this setting it
wor
Hi,
I'm playing around with Freeradius 1.0.1 and Mysql 4.0.18. If I use the
"Check Server"-button I get an "Authentication was successful" and I think
that means Mysql and Apache/PHP work fine.
But most of the other pages are blank. For example if I ckick "New User"
nothing happens, shit...
T
Try pinging the Cisco from the radius server with that packet size, and see
the error message returned.
josh.
--On Thursday, October 14, 2004 14:19:56 +0200 Daniel Eyholzer
<[EMAIL PROTECTED]> wrote:
Hi there
If my freeradius server returns an access-accept packet with a length that
exceeds 147
Hi there
If my freeradius server returns an access-accept packet with a length that
exceeds 1472 bytes, authentication on the cisco router fails. It seems that
the cisco does not receive or maybe can not reassemble the packet. Anyone
knows how I can fix this problem?
Thanks, Daniel
-
List inf
On Wed, 13 Oct 2004 [EMAIL PROTECTED] wrote:
> Hi:
>
> Excuse me for my earlier e-mail, it doesn?t have subject field.
>
> I?d like to specify the date of expiration password.
> Does freeradius support some Expiration check item?, If so, could be it
> supported with MySQL operation?
Yes. See doc/
On Thu, 2004-10-14 at 11:49, Yyc wrote:
> which is more effective, DB and file access?
>
> anybody have used ?
I find a db is much nicer, if you have a lot of records and want to
access them over a long period of time.
If we need to find out what dates/times a user was on it's a simple
select s
On Thu, 2004-10-14 at 10:44, Cristi Banciu wrote:
> So, are u saying that if NAS doesn't send accounting info there is no way of
> telling for how log a user was logged in, for example ? I saw that even with
> "not a real NAS" when a user logs in a record is entered to radpostauth table
> (I'm u
which is more effective, DB and file access?
anybody have used ?
Regards.
Yyc
And the vision that was planted in my brain.
Still remains with the Sound of Silence.
-邮件原件-
发件人: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] 代表 Graeme Hin
Hi All
The certificate is installed in the machine. I can see the certificate
installed in the Trusted Certificates in mmc console in WinXP and then I
get the error message:"Windows was unable to find a certificate to log on
you on the network XYZ". But the certificate is imported into the
ma
Cristi Banciu schrieb:
> I saw that even with
> "not a real NAS" when a user logs in a record is entered
> to radpostauth table
Well, if the radius server gets an authentication request
resulting in an accept, it can guess that somebody just
logged in, even without accounting request.
However, th
On Thursday 14 October 2004 12:31, Graeme Hinchliffe wrote:
> On Thu, 2004-10-14 at 09:56, Cristi Banciu wrote:
> > What can be done when NAS doesn't send accounting information to the
> > radius server ?
>
> buy a real NAS? :)
> or are you meaning in error condition?
No, not in error condition.
S
On Thu, Oct 14, 2004 at 11:13:40AM +0200, Roberto Re wrote:
>
>
> Kostas Zorbadelos wrote:
>
> >On Wed, Oct 13, 2004 at 06:25:25PM +0200, Roberto Re wrote:
> >
> >>First of all thanks for your attention, Alan
> >>
> >>My problem however seems to be more like this:
> >>http://lists.cistron.nl/pip
On Thu, 2004-10-14 at 09:56, Cristi Banciu wrote:
> What can be done when NAS doesn't send accounting information to the radius
> server ?
buy a real NAS? :)
or are you meaning in error condition?
--
-
Graeme Hinchliffe (BSc)
Core Internet Systems Designer
Zen Internet (http://www.zen.co.
Kostas Zorbadelos wrote:
On Wed, Oct 13, 2004 at 06:25:25PM +0200, Roberto Re wrote:
First of all thanks for your attention, Alan
My problem however seems to be more like this:
http://lists.cistron.nl/pipermail/freeradius-devel/2002-December/004052.html
I had already checked the working code, whic
On Thursday 14 October 2004 11:42, Graeme Hinchliffe wrote:
> Use RADACCT to account to a database and then query that when you need
> to.. if you use a whizzy enough db (eg postgres) you can use embeded
> function calls to process the accounting information as it arrives from
> the NASes, so you h
On Wed, Oct 13, 2004 at 06:25:25PM +0200, Roberto Re wrote:
> First of all thanks for your attention, Alan
>
> My problem however seems to be more like this:
> http://lists.cistron.nl/pipermail/freeradius-devel/2002-December/004052.html
>
> I had already checked the working code, which includes t
On Thu, 2004-10-14 at 04:18, Yyc wrote:
> hi all,
> I am in a project of our university's which give an billing solution for
> students dormitory , and the money is calculated by time.
> And I dont't know how did the radius log file relating to our JSP accouting
> system.
> My
46 matches
Mail list logo