rad_check_password: Found Auth-Type System
rlm_unix: [pradeep]: invalid password
You are configured for Unix password validatation and the password you
gave is not the one the system has for that user id.
On Mar 2, 2005, at 23:10, Pradeep Nevatia wrote:
Dear i haven't solved my problem please
Dear i haven't solved my problem please help me out..
pradeep..
Dear
Recently I have installed freeradius (freeradius-0.9.3-1.i386.rpm),i have
some problem in password auth.
i have created new user:pradeep with pass:123456
when i tried
On Tue, Mar 01, 2005 at 12:52:52PM +1100, Mitchell, Michael J wrote:
> > The information is in the PoD request.
> Kind of. From the NAS's perspecitive, the PoD only needs to contains the
> Acct-Session-Id. However obviously in order to proxy a request we at
> least need the NAS-IP-Address. I use
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello Dustin,
Thank for the script.
I would like to ask for you help just to clarify a few problem that I'm
not too sure of.
If you don't mind.
1) Can omshell list the old or current least or config?
2) If no, What need to be done if we want to know
Terry J Fike Jr <[EMAIL PROTECTED]> wrote:
> As per some advice you gave earlier, i compiled this on a different sol9
> box (never had freeradius on it before)
> copied the detail file from current radius server, and used the radrelay
> on the new box...sent just fine.
When in doubt, blame t
Arg...okay, yea, it has got to be something funky with the machine i've
been compiling on...
As per some advice you gave earlier, i compiled this on a different sol9
box (never had freeradius on it before)
copied the detail file from current radius server, and used the radrelay
on the new box..
> I'm not sure what else to suggest. It really looks like the
>compiler tools on your system don't produce usable binaries.
>
> I've *never* seen this problem on Solaris, but I've always used GCC.
>
> Alan DeKok
Yea, i've used gcc to compile pretty much everything, and the wierd
thing is that
Oki,
i though because i wanted MS-Chap V2 i was forced to do "Auth-Type =
Local,..."
but i have no tried yet the Auth-Type = LDAP with my users
configurations.
do you think it should work ?
On Wed, 2005-03-02 at 22:31, Seferovic Edvin wrote:
> Yes,
>
> but you will have to be more specific s
Yes,
but you will have to be more specific so someone can help you !
Regards,
Edvin Seferovic
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Shark
Sent: Mittwoch, 02. März 2005 22:16
To: freeradius-users@lists.freeradius.org
Subject: Q: PPTP + PPP + Fr
Terry J Fike Jr <[EMAIL PROTECTED]> wrote:
> run radrelay on the data from the pdsn and still cores with
> warning: Couldn't find general-purpose registers in core file.
>
> (this is from inside gdb)
I'm not sure what else to suggest. It really looks like the
compiler tools on your system don'
Thomas Simmons <[EMAIL PROTECTED]> wrote:
> When using PAP, the password is sent in clear text.
Sent in what protocol? RADIUS does no such thing.
> The password is sent through the VPN to the firewall, so it's never
> exposed to the internet but passwords must be encrypted even when
> sent ins
David Manchado <[EMAIL PROTECTED]> wrote:
> it seems freeradius does not support L2TP accounting for
> Tunnel-Start and Tunnel-Stop, it is not a problem because it works
> but I would like to know if there is any way to add support to
> account them.
Edit src/modules/rlm_sql/* to have an SQL que
hello,
do you think it is possible to make vpn (MPPE + mschapv2) with poptop
that auth with freeradius on a LDAP server ?
CLIENT -> INTERNET > Server PPTP + Radius ---> LAN > LDAP
thanks
sharky
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hi
recently we are getting too much freeradius faults (more than 5 per day), each
fault make
the radiusd terminate :-( , we have an script to restart it but ... that is not
the
solution
today we decided that we should take the time and look more closely no matter
how more
downtime we had becau
Okay, i'm about 90% certain i've blown away everthing before rebuilding.
(i guess this is what i get for having four different versions on the
machine in the last couple years...)
both were built with the environment variables
CC "opt/csw/gcc3/bin/gcc -m64"
PATH=/usr/bin:/sbin:/usr/sbin:/opt/ora
Sorry the log file was not attached, here it goes.
Hi all,
I've got a freeradius 1.0.1 server running fine with OpenLDAP and now I
would like to authenticate against an Active Directory server. I can do it
with TLS, but when I try to do it with PEAP, it doesn works. I read about it
and fo
On Wed, 2005-03-02 at 11:51, Alan DeKok wrote:
> Nick Bright <[EMAIL PROTECTED]> wrote:
> > Could you be a little more specific? I don't see how to do that right
> > off. If you could point me in the right direction, I think I could
> > figure it out.
>
> My suggestion would be to run a script i
I am in the process of setting up a Samba PDC. All user info is
stored in LDAP. All users also have a matching SHAA hashed UNIX
password that is also stored in LDAP. I have all of that set up and it's
working fine. The other thing that I want to do is allow users to use
this username and pa
Hi all,
I've got a freeradius 1.0.1 server running fine with OpenLDAP and now I
would like to authenticate against an Active Directory server. I can do it
with TLS, but when I try to do it with PEAP, it doesn works. I read about it
and found out that should be put on radiusd.conf something
Hello,
it seems freeradius does not support L2TP accounting for Tunnel-Start and
Tunnel-Stop, it is not a problem because it works but I would like to know if
there is any way to add support to account them.
It's freeradius 1.0.1-2 (from debian/testing package) on a Debian box.
> Wed Mar 2 20
Make sure that the rc.radiusd script (probably /etc/init.d/radiusd) is
looking for the correct files. It just stops if it doesn't find them.
On Wed, 2005-03-02 at 11:58, Linda Pagillo wrote:
> Hello All:
>
> I'm running FreeRadius 0.9.3 on a server which uses Linux Redhat 9.
> Here is the proble
That warm fuzzy status indicator as thus: [ OK ]
is just that. It can be fooled. If I recall right, there's an init
script and a .spec file for building rpms in the tarball.
Enjoy,
Scott Edwards
--
Daxal Communications - http://www.daxal.com
Surf the USA - http://www.surfthe.us
On Wed, 2 M
Send us your start up script.
here it runs like this :
# Start the Radius daemon:
if [ -f /usr/local/sbin/radiusd ]; then
echo -n "Starting radius"
/usr/local/sbin/radiusd -y
fi
[]'s
On Wed, 2 Mar 2005, Linda Pagillo wrote:
> Date: Wed, 2 Mar 2005 12:58:20 -0600
> From: Linda Pagil
Hello,
I'm working in a failover scenario where a NAS has two freeradius servers
configured and in case of fail of the current radius active it will forward
the querys to the backup radius. This is working fine with no problem.
The problem is that if I'm using DHCP I have to manage the pool in
Hello All:
I'm running FreeRadius 0.9.3 on a server which
uses Linux Redhat 9. Here is the problem. When i first installed FreeRadius
about 8 months ago, i added the rc.radiusd script to my Linux
startup. Lately, when I reboot my server, my Linux startup screen
shows that FreeRadius has st
Nick Bright <[EMAIL PROTECTED]> wrote:
> Could you be a little more specific? I don't see how to do that right
> off. If you could point me in the right direction, I think I could
> figure it out.
My suggestion would be to run a script if the user fails
authentication, to check if the password i
> SIGHUP is signal -1 for kill so find the process id (pid) of the radiusd
> process and sending the -1 signal ie.
>
> kill -1
>
> Vladimir
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
kill -HUP works too!!
Regards,
Pete
Peter P. Benac, CCNA
E
Mark Elkins wrote:
> I want to put the contents of radius.log into a MySQL Database - in
> **real time**.
>
> How do I do this?
See
http://www.freeradius.org/cgi-bin/cvsweb.cgi/radiusd/doc/Post-Auth-Type?rev=1.4
--
Nicolas Baradakis
-
List info/subscribe/unsubscribe? See http://www.freeradi
"Sébastien Cantos" <[EMAIL PROTECTED]> wrote:
> I've followed instructions in radiusd.conf :
> My users file looks like this:
> DEFAULT Service-Type == Framed-User
> Pool-Name := osiris-pool,
You did not follow the instructions in radiusd.conf. The
"Pool-Name" attribute should go on the
"Paulo Rolo" <[EMAIL PROTECTED]> wrote:
> Does everyone know if freeradius-0.9.1 supports eap-sim radius requests
> proxy? I am just concerned about freeradius proxy functionality, not
> acting as an end server. It seems to work with later versions like
> 1.0.2, but on 0.9.1 I get a bad authenticat
Murali Krishna G wrote:
Hi,
I am starting with freeRADIUS!
Can anyone help me how to send SIGHUP to server demon ( radiusd )
to let it know about changes to configuration files?
SIGHUP is signal -1 for kill so find the process id (pid) of the radiusd
process and sending the -1 signal ie.
"Luca Lafranchi" <[EMAIL PROTECTED]> wrote:
> Mmmhh... with a HUP signal the radius server reload the config data, but
> the server may drop a few authentication requests at that time...
No, it won't.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.ht
"Stephen D. Bechard" <[EMAIL PROTECTED]> wrote:
> It appears that anyone authenticating with a V92 modem that
> is submitting a Acct_multi_session_id is being logged into
> the rad_acct table and the detail file with duplicate entries.
Then the NAS is sending the packets twice.
Alan DeKok.
Mark Elkins wrote:
I want to put the contents of radius.log into a MySQL Database - in
**real time**.
ie - lines that read something like...
Fri Feb 25 18:50:37 2005 : Auth: Login OK: [EMAIL PROTECTED] (from
client adsl1 port 123456789)
How do I do this?
Easy. You need to write a script ie. PH
Mahmud Jami <[EMAIL PROTECTED]> wrote:
> I told the server the correct password, but the server fails to
> authenticate. It shows the same rlm_chap error.
The CHAP module doesn't know what the correct password is.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.or
On Tue, 2005-03-01 at 17:26, Alan DeKok wrote:
> Nick Bright <[EMAIL PROTECTED]> wrote:
> > My question is this: Can FreeRADIUS *learn* passwords, if a user has no
> > password set? What I mean is that when it queries the database, if it
> > finds a NULL password, it would *SET* the password to wha
Hi,
I've followed instructions in radiusd.conf :
My users file looks like this:
DEFAULT Service-Type == Framed-User
Pool-Name := osiris-pool,
Framed-Protocol = PPP,
Framed-MTU = 576
And in my radiusd.conf I've:
post-auth {
# Get an address from the IP Pool.
#
On Tue, 1 Mar 2005, zack musa wrote:
Hi,
My problem is at the dialup admin.
I'm using NoCat Gateway as the Client and a linux PC's
for my FR server. These three tables inside my MySQL
db seems not filled. I try to run the log_badlogins
scripts but it there is an error saying that sql
binary file co
On Wed, 2 Mar 2005, Mark Elkins wrote:
I want to put the contents of radius.log into a MySQL Database - in
**real time**.
ie - lines that read something like...
Fri Feb 25 18:50:37 2005 : Auth: Login OK: [EMAIL PROTECTED] (from
client adsl1 port 123456789)
How do I do this?
This is so various suppo
Hi,
I tried as you told now there is nor error.
But the call is not going to terminate after certain
time.
Here is attachtment of cisco AccessReqest
DEMO 02.03.05 15:03:56, (2+) ,Recv 212.77.213.11:1812
Radius
AccessAccept {
session id = 3
Cisco VSA( 1): h3
On Wed, 2 Mar 2005, Zet wrote:
I write again, because i didn't find solution my problem (I searched on Mail
Archive).
Hello All !
I have a problem. If I click link New User, New Group or Radius Clients in
Dialup Admin application then blank page is displayed. I work under Debian
relase 3 with
I write again, because i didn't find solution
my problem (I searched on Mail Archive).
Hello All !
I have a problem. If I click link New
User, New Group or Radius Clients in Dialup Admin application then
blank page is displayed. I work under Debian relase 3 with freeradius 1.0.1
Hi Mark ,
yes, you can
You dont need to log the stop ticket ? this could be usefull.
Regards
Thomas
re I go forth and break my radius and have a few thousand people
looking for me
I want to collect the current allocate IP address and username into a
separate MySql table - if it (the user (=key)
I want to put the contents of radius.log into a MySQL Database - in
**real time**.
ie - lines that read something like...
Fri Feb 25 18:50:37 2005 : Auth: Login OK: [EMAIL PROTECTED] (from
client adsl1 port 123456789)
How do I do this?
This is so various support type people can see when things
Before I go forth and break my radius and have a few thousand people
looking for me
I want to collect the current allocate IP address and username into a
separate MySql table - if it (the user (=key)) exists - update the IP,
if the user does not exist, add user and IP.
I (think that I) unders
Nope, thats it. There is no other way. The server should only be down
for a couple of seconds...
Luca Lafranchi wrote:
Mmmhh... with a HUP signal the radius server reload the config data, but the
server may drop a few authentication requests at that time...
Other solutions ?
-
List info/subscri
Dear
Recently I have installed freeradius ,i have some problem in password
auth.
i have created new user:pradeep with pass:123456
when i tried to test the auth. enabling Debug mod
using command > radtest pradeep 123456 localhost:1812 0 testing123
it generate following massage :
===
I would like to produce certificates with CA.all . when I produces
them, I have an error on the certificate waiter Cert-svr.
Certificate is to be certified until Mar 1 10:23:02 2009 GMT (1460
days)
Sign the certificate? [y/n]:y
failed to update database
TXT_DB error number 2
+ openssl pkcs12 -e
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Chan Min Wai wrote:
> Dustin Doris wrote:
>
>
the variable for this script is
1) the NAS ip (the dhcp object class)
2) the Client MAC address
3) the ip address from ippool
4) the subnet from the ippool
>
Strange ... I've it solv
Hi All :
I have a big problem !!
i have a radius server , and 10 clients
how can i make some clients can use [EMAIL PROTECTED]
and some clients just use account ?
my radius server version is 0.9.3
example :
2 clients , one can use [EMAIL PROTECTED] the other just use user account
//clients
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dustin Doris wrote:
> On Mon, 28 Feb 2005, Chan Min Wai wrote:
>
>
>>Greeting,
>>
> For example, if you did
>
> exec test {
> wait = yes
> program = "/pathto/somefile"
> input_pairs = request
> output_pairs = reply
> packet_type = Access-
Hello,
Does everyone know if freeradius-0.9.1 supports eap-sim radius
requests proxy? I am just concerned about freeradius proxy functionality, not
acting as an end server. It seems to work with later versions like 1.0.2, but
on 0.9.1 I get a bad authenticator message.
Regards,
Pau
Same way you would to any other process.
$ kill -HUP
Guy
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Murali Krishna G
> Sent: 02 March 2005 09:53
> To: freeradius-users
> Subject: How to send SIGHUP signal to server ( radiusd )
>
>
> Hi,
Hi,
I am starting with freeRADIUS!
Can anyone help me how to send SIGHUP to server demon ( radiusd ) to
let it know about changes to configuration files?
Thanks,
Murali.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Mmmhh... with a HUP signal the radius server reload the config data, but the
server may drop a few authentication requests at that time...
Other solutions ?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mitchell,
Michael J
Sent: mercoledì, 2. marzo 2005
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello All,
I'm using the default sql.conf for the Acount start/stop information
that will be inserted into the SQL database.
however I found some of the info was inserted into the SQL server.
E.g
NASPortType (I've sure the request have this)
57 matches
Mail list logo