-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von [EMAIL PROTECTED]
Gesendet: Donnerstag, 21. Oktober 2004 17:24
An: [EMAIL PROTECTED]
Betreff: Freeradius-Users digest, Vol 1 #3878 - 8 msgs
Send Freeradius-Users mailing list submissions to
.org of course :)
John Simms wrote:
> Hi, can anyone tell me where I can get good
> documentation for freeradius. I've just installed it
> on my linux box and need to configure it and begin
> using it for work.
>
> Thanks!
>
>
>
> ___
> Do you Yahoo!?
> Declare You
http://www.freeradius.com
John Simms wrote:> Hi, can anyone tell me
where I can get good> documentation for freeradius. I've just
installed it> on my linux box and need to configure it and begin>
using it for work.> > Thanks!> > > >
___> Do you Yahoo!?> Declare
Hi everyone,
I use freeradius 0.9.3.
Does anyone know what special characters this version support for using in
username or passwords (e.g."\","-","_","^","space", etc) either in the
users file or mysql database?
Can you give me a documentation site where I can find as much of this
information a
Hi, can anyone tell me where I can get good
documentation for freeradius. I've just installed it
on my linux box and need to configure it and begin
using it for work.
Thanks!
___
Do you Yahoo!?
Declare Yourself - Register online to vote today!
http:/
Please refer to the message posted below by Dan Carrol. I am trying to eMail Dan
directly (as he suggests) but cannot find his email address - Does any body have any
ideas?
Thanks,
Loris Meadows
Manager, ICT Security & Risk
Department of Education & Training
2 Treasury Place
East Melbourne VIC
G.
Quickest way to look silly. Post a question with a simple answer to a
support list :-(
I had commented out 'files' from the authorisation section, must have
thought that the 'ldap' covered things.
I am now getting queries and can work on the attributes and search etc.
--
.*. | Glen
On Fri, 2004-10-22 at 11:10, Kostas Kalevras wrote:
> Use the Ldap-Group attribute:
>
> --users file--
>
> DEFAULT Ldap-Group == "mygroup"
> Reply-Message = "user in group mygroup"
Tried all sorts of combinations of that and no query is evident from
radiusd -X.
I am using 0.9.3 on
On Fri, 22 Oct 2004, Glen Eustace wrote:
I am trying to use our MS AD database for with LDAP. Authentication
works fine but I can not get authourisation based on group membership to
work.
The issue seems to be that radiusd never queries and group info from the
directory at all. I have read the vari
Have we found the solution?
If so, can I get it?
Kevin.
Alan DeKok wrote:
kevin J <[EMAIL PROTECTED]> wrote:
I tried to use MSCHAP v2 in freeradius 1.0.0 but got
rlm_mschap: FAILED: MS-CHAP2-Response is incorrect
I guess this can happen only when "response" is not matched with
"c
I am trying to use our MS AD database for with LDAP. Authentication
works fine but I can not get authourisation based on group membership to
work.
The issue seems to be that radiusd never queries and group info from the
directory at all. I have read the various how-to's etc, but they are all
based
http://lists.cistron.nl/pipermail/freeradius-users/
Regards
Doc
- Original Message -
From: "Rogier Mulder" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, October 21, 2004 10:40 PM
Subject: RE: Missing db_mssql.sql in 1.0.1 distribution
Alan,
thanks for your reply. I only star
Alan,
thanks for your reply. I only started today with this list so I do not have access to
yesterday's contributions. Could you forward these to me or point me to an arhcive?
rgrds rgr
-Original Message-
From: [EMAIL PROTECTED] on behalf of Alan DeKok
Sent: Thu 21-10-2004 18:32
To: [E
kevin J <[EMAIL PROTECTED]> wrote:
> I tried to use MSCHAP v2 in freeradius 1.0.0 but got
> rlm_mschap: FAILED: MS-CHAP2-Response is incorrect
> I guess this can happen only when "response" is not matched with
> "calculated".
> But MSCHAP v2 worked with freeradius 0.9.3 version and the same NAS.
Hi all,
I tried to use MSCHAP v2 in freeradius 1.0.0 but got
rlm_mschap: FAILED: MS-CHAP2-Response is incorrect
I guess this can happen only when "response" is not matched with
"calculated".
But MSCHAP v2 worked with freeradius 0.9.3 version and the same NAS.
Take a look at the log below and let m
I've been having issues sending to the list, so apologies if this is dup.
I've got some weirdness with freeradius 1.0.1 (same results
in previous versions). Test systems are x86_64 and i386 Fedora Core 2
machines (2.6.8.1). Same tests on older redhat9 machine (2.6.4) do not have
the same issue.
"Raimund Sacherer" <[EMAIL PROTECTED]> wrote:
> My previously posted patch adds configuration items for the proxy.conf
> config file where you can define the ip_addr which should be used for
> each Realm.
>
> I would be glad if someone can confirm this as problem and my patch as
> the right soluti
Been having trouble sending to this list, this is just a test. No need to
reply, please ignore. Thanks.
- Nate
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Thu, 21 Oct 2004, Alan DeKok wrote:
> > Additionally how the authentication request is
> > forwarded to AD.
>
> FreeRADIUS can do authentication to a Windows domain via ntlm_auth.
> It's not quite the same thing, but it's close.
Another, possibly simpler, solution is to install IAS on the Win
Benoit ROVERA <[EMAIL PROTECTED]> wrote:
> I'm experiencing some troubles to receive some RADIUS requests using my
> FreeRADIUS server.
> The RADIUS server who sends the requests is a DTC Radius server :
> http://www.dtc.co.jp/Radius2.0/RelNoteE.html.
> I get the following error message :
>
> "Err
Cool Man <[EMAIL PROTECTED]> wrote:
> My problem is I am proxying user of a specfic domain
> to another radius server which is infact an Active
> directory.
Active Directory is not a RADIUS server.
Could you say which RADIUS server you're actually using?
> Now the EAP packets proxied to AD
[EMAIL PROTECTED] wrote:
> I'm working with PPP Dial-In connections to a Cisco box with CHAP
> authentication. My users are authenticated through Radius server
> (freeradius 1.0.1) and the user profiles are load in a MySQL
> database created with the script provided in a freeradius.tar.gz
> file. A
"Rogier Mulder" <[EMAIL PROTECTED]> wrote:
> While digging deeper into the src tree, I'm getting the feeling that
> there is more I'm missing. In
> src/modules/rlm_sql/drivers/rlm_sql_freetds there is only
> Makefile. It references sql_freetds.c which is not on the system.
The freetds support wa
[EMAIL PROTECTED] wrote:
> Ok. I wasn't explaining the situation clear enough. The script
> always succeeds only for testing. Later on I will implement some
> logic to it which will check the received user account from external
> systems and returns exit value 0 or 1 depending on the external
> aut
I use two level of authentication.First username and password (EAP-PEAP) and
then check for MAC Addresses. I've try to use session-timeout, but when I
use this attribute, cache for user info will lost and we need to enter
username & password again. Hope u can help me Julius Igugu. TQ very much for
"Cameron Birky" <[EMAIL PROTECTED]> wrote:
> I encrypt at my client and then the pptpd calls the freeradius
> plugin for authentication. does anyone know if pptpd decrypts
> before it passes the string to freeradius for authentication?
Q: How do you "encrypt" at the client?
Q: How could pptp
Stefan Bosnjakovic <[EMAIL PROTECTED]> wrote:
> We need to implement pre-paid cards as well. Users can buy 30, 60,
> 120mins cards.
rlm_sqlcounter should do exactly this. Set up users in groups, and
then configure the maximum session time per-group.
Alan DeKok.
-
List info/subscribe/unsubs
Hi there,
I'm experiencing some troubles to receive some RADIUS requests using my
FreeRADIUS server.
The RADIUS server who sends the requests is a DTC Radius server :
http://www.dtc.co.jp/Radius2.0/RelNoteE.html.
I get the following error message :
"Error: WARNING: Malformed RADIUS packet from ho
Hi Nicolas, Thomas!
Here is a more detailed description of our scenario:
+--+
+---+ | NAS/Roaming | (NAS/Roaming Partner may not be
| 1 | | RadiusServer | part of our Network and can have their
+---+ +--+ own Public/Priv
Hi Doris:
I tried again but the problem persiste.
I ran radius in debug mode and this is the output:
rad_recv: Access-Request packet from
host 10.250.1.1:1645, id=55, length=76
NAS-IP-Address
= 10.250.1.1
NAS-Port
= 1
NAS-Port-Type
= Async
User-Name
= "cisco"
Hi,
(snipp)
> > CHAP
(snipp)
> > Encrypted password.
(snipp)
It's impossible to combine CHAP and "encrypted" (hashed!) passwords,
see my other mail with the subject
Re: problem authenticating to passwd/shadow files
HTH,
Stefan
-
List info/subscribe/unsubscribe
Hi,
> there are obviously different kinds of encryption and as you mention with
> out a key, decryption is not possible.
It's not only the question of a key, it's also a question of methods
used. Given a hash value (often called "encrypted password"), you
just can't get back to the clear
Hi Bill,
My problem is I am proxying user of a specfic domain
to another radius server which is infact an Active
directory.
Now the EAP packets proxied to AD are rejected
straight away, Now my question is how should I setup
my kerbeors so that the request goes to proxied AD.
Secodly, The us
> Dera list:
>
> I´m working with PPP Dial-In connections to a Cisco box with CHAP
> authentication. My users are authenticated through Radius server
> (freeradius 1.0.1) and the user profiles are load in a MySQL database
> created with the script provided in a freeradius.tar.gz file. All is
> wor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael,
This is more out of curosity than anything ( I have not looked at the
ntlm_auth module ... for the record ):
What does the ntlm_auth module give you over the kerberos authentication
for user auth. Does the ntlm_auth module give you the ability
Dera list:
I´m working with PPP Dial-In connections
to a Cisco box with CHAP authentication. My users are authenticated through
Radius server (freeradius 1.0.1) and the user profiles are load in a MySQL
database created with the script provided in a freeradius.tar.gz file.
All is working fine. Ho
For using PEAP with FreeRADIUS and Active Directory, you'll need to use
the ntlm_auth functionality in the mschap module.
--Mike
On Thu, 2004-10-21 at 06:36, Cool Man wrote:
> Hi,
>
>
> Active Directory works with freeradius through, but if
> you want to use it within a 802.1x/EAP environment
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cool Man wrote:
| Hi,
|
|
| Active Directory works with freeradius through, but if
| you want to use it within a 802.1x/EAP environment it
| won't work. Because you have to get out of Active
| Directory the NT Passwords. Active Directory doesn't
| supp
Hi,
Active Directory works with freeradius through, but if
you want to use it within a 802.1x/EAP environment it
won't work. Because you have to get out of Active
Directory the NT Passwords. Active Directory doesn't
support this, so far I came to know.
Is there any solution to this.
Thanks,
Hello,
First of all, you can set radius.conf to "see" your database (sql.conf). You
can make some tables like users.
In users you can have fields like Prepaid ->yes or no, Calling Card-> yes or
no, Balance, Usage etc.
There is a radacct table that includes AcctStopTime, AcctStartTime,
AcctSessionT
While digging deeper into the src tree, I'm getting the feeling that there is more I'm
missing. In src/modules/rlm_sql/drivers/rlm_sql_freetds there is only Makefile. It
references sql_freetds.c which is not on the system.
What do I need to do, to make a plain-vanilla 1.0.1 distribution to work
>From: "Alan DeKok" <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: WPA - Freeradius external script problem
>Date: Wed, 20 Oct 2004 14:16:42 -0400
>Reply-To: [EMAIL PROTECTED]
>
>[EMAIL PROTECTED] wrote:
>> I'm using freeRadius version 1.0 and Linksys AP. I am trying to
>> authentic= ate
Hi,
I've downloaded and compiled 1.0.1 and I see that
the distrubution does not contain db_mssql.conf. If one of you has this file (MS
SQL Server database schema), could you send it to me via e-mail?
Rogier Mulder
[EMAIL PROTECTED]
43 matches
Mail list logo