I am using FreeRadius1.0.1 in Linux Fedora2. And I install mysql4.1.8 also.
When I use root login and test the FreeRadius server by NTRadPing software,
That can be authorized. However, I try to use the username in Mysql. it
cannot be authorized. I find the log as follow:
Error: rlm_sql: Unknown a
hi all,
i want to use mod_auth_radius + apache to do web authentication, any
example for Auth or Acct?
Thank you!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hi
i just looked in the doc directory, the source code and a bit on the web
and could not find any recent info on which version of EAP-PEAP is
supported by freeradius. from what i've found till now, only PEAPv0 with
MS-CHAPv2 is supported (this however dates back to June 2004). has it by
any ch
OS: FreeBSD 4.9p4 + Freeradius
1.0.1
Objective: to control single login in distributed
enviroment.
I've tested radrelay to centralised accounting to
all my radius servers .. All radius servers will replicate accounting to
others... So there will be a few radrelay running in each radius
[EMAIL PROTECTED] wrote:
> I'm using Crypt-Password in the MySQL table. This won't work with
> CHAP, no?
See the FAQ. Unix/crypt-passwords don't work with CHAP.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
thanks dustin.. it's working as expected...
--haizam
- Original Message -
From: "Dustin Doris" <[EMAIL PROTECTED]>
To:
Sent: Thursday, January 06, 2005 09:15
Subject: Re: Block group of ISDN connection
That is the problem. Connection-Type isn't a radius attribute. You use
that file, l
That is the problem. Connection-Type isn't a radius attribute. You use
that file, ldap.attrmap to map a Radius Attribute to an LDAP Attribute.
However, Connection-Type is not a valid radius attribute. So, freeradius
is failing because it doesn't recognize Connection-Type.
If you want to check t
define in ldap.attrmap.. define as check item...
checkItem Connection-Type radiusConnectionType
The situation is I've to check both attribute.. one from RAS (NAS-Port-Type)
.. and one from LDAP (Connection-Type) before i can reject it..
As suggested by Kostas... I've to map the Conn
> Hi,
>
> I am using freeradius version 0.9.3 on mandrake with mysql.
>
> My radius NAS units are static IP clients and DHCP clients.
> All the static IPs are added in clients.conf, and the setup works fine.
>
> My question is how and where do I add DHCP client entries for radius to
> authenticate
On Wed, Jan 05, 2005 at 08:58:04AM -0500, Alan DeKok wrote:
> [EMAIL PROTECTED] wrote:
> > I just foudn out that one of my dialup providers is slowly adding NASs
> > that only use CHAP. I have FR authing against MySQL with PAP, but now
> > I have to figure out how to make it auth *either* PAP or CH
Hi,
I am using freeradius version 0.9.3 on mandrake with mysql.
My radius NAS units are static IP clients and DHCP clients.
All the static IPs are added in clients.conf, and the setup works fine.
My question is how and where do I add DHCP client entries for radius to
authenticate?
Thanks.
___
Sorry friends
The number that is showed at the tables is 16000!
Forget the 16004.
--- Chris Parker <[EMAIL PROTECTED]> escreveu:
>
>
> On Jan 5, 2005, at 12:45 PM, Bruno Machado wrote:
>
> > Hi all
> >
> > Im trying to use the B2bua with Radius but some
> > problems is happening here. When
The first and the second queries return that small
table:
id UserName Attributeop Value
1 16000 User-Password== 123456
2 16000 Auth-Type:= Digest
3 16000 Session-Timeout == 10
The third query returns:
id UserName Attribute Value
On Jan 5, 2005, at 12:45 PM, Bruno Machado wrote:
Hi all
Im trying to use the B2bua with Radius but some
problems is happening here. When I send a "INVITE"
from the SER to the B2bua, it try authenticate, but it
doesnt work. The text below is the log of the Radius:
radius_xlat: 'SELECT id,UserName
Hi all
Im trying to use the B2bua with Radius but some
problems is happening here. When I send a "INVITE"
from the SER to the B2bua, it try authenticate, but it
doesnt work. The text below is the log of the Radius:
radius_xlat: 'SELECT id,UserName,Attribute,Value,op
FROM radcheck WHERE STRCMP(Us
Proxy to IAS will work too.
Ron.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, January 05, 2005 10:24 AM
To: freeradius-users@lists.freeradius.org
Subject: Re: Confirmation of LDAP/CHAP and AD
Okay. Thanks.
Now my ne
samba
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, January 05, 2005 11:24 AM
To: freeradius-users@lists.freeradius.org
Subject: Re: Confirmation of LDAP/CHAP and AD
Okay. Thanks.
Now my next question is would storing
Okay. Thanks.
Now my next question is would storing the CHAP passwords in AD using
reversible encryption help (I would guess not, since your other posts seem
to indicate the problem being that AD will not even give the RADIUS server
the password to manipulate). Also, would using NTLM_AUTH be a po
On Wed, 5 Jan 2005, Cris Boisvert wrote:
> Can I define the attributes in the users file and leave the actual users in
> the database.?
>
> So the database will authenticate with the user/pass scenario and they read
> the users file for the attributes to reply with?
>
> Thanx
> Cris
Yep, you sho
[EMAIL PROTECTED] wrote:
> I tried the configure switch and got another Segment Fault(coredump).
If you look, you'll probably see the same problem.
Delete ALL of the previously installed FreeRADIUS binaries and
libraries. Then re-configure and re-make.
Alan DeKok.
-
List info/subscribe
Chris Riley <[EMAIL PROTECTED]> wrote:
> gcc -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -DOPENSSL_NO_KRB5
> -Wall -D_GNU_SOURCE -g -Wshadow -Wpointer-arith -Wcast-qual
> -Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes
> -Wmissing-declarations -Wnested-externs -W -Wre
Go to http://home.sw.rr.com/jguidroz/radius.html
I have an installer package created of an early December Snapshot.
I'll try to get a more current snapshot added to the Installer today
or tomorrow.
Justin
On Wed, 5 Jan 2005 10:48:03 -0500, Chris Riley <[EMAIL PROTECTED]> wrote:
> I'm trying to
[EMAIL PROTECTED]
wrote:
>> This is my second try at this post; the first was too long.
I read the
>> archives and then attempted to
>> configure freeRadius using PEAP MSCHAP. After some
initial success I am
>> stuck with a Segment Fault(coredump).
Alan Dekok wrote:
> It's another stupid bug
Rohaizam Abu Bakar wrote:
YES... it is on one line until "Reject"... just breaking up while
pasting...
DEFAULT NAS-Port-Type == "ISDN" ,Connection-Type == "UNLIMITED",
^ may be problem in extra
space before commа?
--
WBR, Dmitry Lebkov
-
List inf
I'm trying to build freeradius 1.0.1 on a Mac OSX box (power mac). For
some reason freeradius tries to build for an i386, which of course
fails. I'm using the --disable-shared configuration option as noted in
doc/MACOSX.
Here's the relevant output:
---
[EMAIL PRO
Can I define the attributes in the users file and leave the actual users in
the database.?
So the database will authenticate with the user/pass scenario and they read
the users file for the attributes to reply with?
Thanx
Cris
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PR
> I apologize about the plain text.
> This is what I have in the huntgroup file.
>
> Huntgroup1NAS-IP-ADDRESS == 1.2.3.4
>Group = Dialup
>Slipstream-Auth = "true",
>X-Ascend-Data-Filter == "ip in forward tcp est",
>X-Ascend-Data-Filter == "ip in forw
On Wed, 5 Jan 2005, Rohaizam Abu Bakar wrote:
>
> YES... it is on one line until "Reject"... just breaking up while
> pasting...
>
> DEFAULT NAS-Port-Type == "ISDN" ,Connection-Type == "UNLIMITED",
> Auth-Type := Reject
> Reply-Message = "Your account has been disabled."
I am seeing something interesting in freeradius parsing the users file.
It appears that it is giving me a trailing comma error instead of the true
error. I added similar to block group of ISDN in the subject, because
this is related to that thread and it could be an innapproprate
debug message.
I
Radius is doing accounting. This works fine. I have in raddacct table
data. But the sqlcounter does not work. When I run radiusd -X I get this
output
Did you list it in the "accounting" section? It looks like you didn't.
I tryed but when I add noresetcounter into accounting section of
radiu
Igor Cahoj <[EMAIL PROTECTED]> wrote:
> Radius is doing accounting. This works fine. I have in raddacct table
> data. But the sqlcounter does not work. When I run radiusd -X I get this
> output
Did you list it in the "accounting" section? It looks like you didn't.
Alan DeKok.
-
List info
[EMAIL PROTECTED] wrote:
> I just foudn out that one of my dialup providers is slowly adding NASs
> that only use CHAP. I have FR authing against MySQL with PAP, but now
> I have to figure out how to make it auth *either* PAP or CHAP.
Do nothing. The default configuration allows either PAP or C
003D",User-Name = "10"'
rlm_acct_unique: Acct-Unique-Session-ID = "39ff838efa44eab9".
modcall[preacct]: module "acct_unique" returns ok for request 0
rlm_realm: No '@' in User-Name = "10", looking up realm NULL
rlm_realm:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Perhaps this helps:
http://lists.cistron.nl/pipermail/freeradius-users/2004-February/027993.html
perhaps the whole thread.
- --
Dr. Michael Schwartzkopff
MultiNET Services GmbH
Bretonischer Ring 7
85630 Grasbrunn
Tel: (+49 89) 456 911 - 0
Fax: (+
Am Dienstag, 4. Januar 2005 08:56 schrieb Helmut Tröbs:
Hello,
i want to upgrade from freeradius-0.8.1 to freeradius-1.0.1.
My hints file:
DEFAULT Prefix == "t", Strip-User-Name = No
Hint = "TUM"
DEFAULT Prefix = "t", Strip-User-Name = No
Hint = "TUM"
nur mit einem "=" nach "Pref
35 matches
Mail list logo