Hi,
I did a bit more research on this and here is what happens.
When ldap module is configured with start_tls = yes it calls
ldap_start_tls_s() function. With "Disallow anonymous
simple bind" this call fails and as such the error
"rlm_ldap: could not start TLS Inappropriate authentication"
i
1. I've got a simultaneous use problem.
1a. I have 3COM USRHIPER equipment.
1b. I have the Net::Telnet module installed
1c. port_density is 256
Do I still need the SNMP_Session and BER modules to make this work?
If so where do I get these? I've looked in CPAN and I don't find them
Hi,
No, you can't simply drop that in. You'd need to create a
dictionary.waverider that looks like the dictionaries in
/usr/local/share/freeradius. Cut and paste the section below in to a
file of that name and then add the line
$INCLUDE dictionary.waverider
In the file /usr/local/share/freerad
Dear FreeRadius gurus,
I have been racking my puny little brain with this problem with no avail
thus far. We have dialup ports all over the state and multiple NASs. We
recently setup service for "Dial-Up Broadband" and I am currently trying to
figure out how to limit access to only people who
Dustin Doris wrote:
If its suitable to change the authentication method to test a php script,
then its definately suitable to run in debug mode. I run in debug mode in
production whenever there is an issue. If you're fast in killing the pid
and starting in debug mode, then you won't lose any auth
Alan DeKok wrote:
also, another issue that worries me is that if I change my
authentication method on /etc/raddb/users so as to be the following:
Ah... That's a bug in the "run external program" code. It's fixed
in the latest CVS snapshot.
oh!!!
well, I think it's a bit good news then :P
For
Tariq Rashid <[EMAIL PROTECTED]> wrote:
> When a radius proxy, such as an appropriately configured freeradius ,
> forwards (proxies) a radius request to a target, the target sees a radius
> request from the proxy .. it sees its IP address, the source port, and the
> UID of the radius request.
UI
Juan Nin <[EMAIL PROTECTED]> wrote:
> also, another issue that worries me is that if I change my
> authentication method on /etc/raddb/users so as to be the following:
Ah... That's a bug in the "run external program" code. It's fixed
in the latest CVS snapshot.
> should I run the radius in deb
> I have quite a few lines in my users file that match based on
> "Ldap-Group", and for each comparison, I see radius queries the ldap
> server. Would it be possible to do one ldap lookup for day
> 'radiusGroupName' at the beginning of the hints file and store the
> result in a variable that can t
> On Apr 4, 2005 10:14 PM, Alan DeKok <[EMAIL PROTECTED]> wrote:
>
> > > Mon Apr 4 12:15:58 2005 : Error: Dropping conflicting packet from
> > > client XXX:1645 - ID: 103 due to unfinished request 221
> >
> > Your database is too slow, or your NAS is too fast.
>
> mmhhh, database seems ok, I'm
On Apr 4, 2005 10:14 PM, Alan DeKok <[EMAIL PROTECTED]> wrote:
> > Mon Apr 4 12:15:58 2005 : Error: Dropping conflicting packet from
> > client XXX:1645 - ID: 103 due to unfinished request 221
>
> Your database is too slow, or your NAS is too fast.
mmhhh, database seems ok, I'm not having per
yy <[EMAIL PROTECTED]> wrote:
> I'm new to freeradius and SER, hence I'm having some problem in
> accounting calls from my sip phone. My configuration file (ser.cfg) for
> my SER is as follows,
Please ask SER questions on the SER list. This is the FreeRADIUS list.
> The accounting log detail
We have a piece of hardware that came with the following dictionary file
for Steelbelted Radius, and I'm simply not Radius-smart enough to figure
out whether this is going to drop into Freeradius without some
modification. It sure looks like it's going to need massaging, but I dunno.
#
Hi,
I'm new to freeradius and SER, hence I'm having some problem in
accounting calls from my sip phone. My configuration file (ser.cfg) for
my SER is as follows, and currently the radius accounting module is used
to keep track of start and stop times for VoIP calls made.
The accounting log deta
Hi,
The "Disallow anonymous simple bind" option "Prevents users from
logging
in to the LDAP server without specifying a username and password."
In case of FreeRADIUS the ldap module does not perform an anonymous
bind so turning on this option should not create any problems. Could
you po
On Thu, Apr 07, 2005, Sylvain Clerc wrote:
> Hello all,
>
> My Freeradius server works quite well with system accounts but I must link an
> Active Directory database to my server.
> So, in view of that, I would have some informations :
>
> 1- I must work in eap-ttls mode (with md5 in the "tunnel
On Wed, Apr 06, 2005, Israel Fabio Alves wrote:
> Hi,
>
> I try to authenticate user Windows XP + PEAP + MSCHAPV2. The
> authetication using user + password + domain.
>
> Always occur de same error: rlm_eap: Identity does not match User-Name,
> setting from EAP Identity.
It means that the use
Hi guys I have a strange problem and i tried to work on that without any success, so i need yours help i installed ser, freeradius-1.0.2, radiusclient-0.4.8. I am trying to authenticate ser users through radius (mysql). inside my ser.cfg --- if (m
hello freeradius users,
I reinstalled my rh 9.0 and I would like to have advices on packages them to make a good, robust
server radius in mode eap / peap.
and i would have the differents steps of the installation
thank you very match.
Découvrez le nouveau Yahoo! Mail : 250 Mo d'espace d
Hello all,
I use freeradius with mysql to authenticate VPN users
and also I use mysql accounting.
Now I want to make some reports like daily/monthly
traffic usage. Problem for me are connections that
started in one day and end in second day...
for example:
AcctStartTime 2005-04-06 14:38:39
AcctSt
Hello all,
My Freeradius server works quite well with system accounts but I must link an
Active Directory database to my server.
So, in view of that, I would have some informations :
1- I must work in eap-ttls mode (with md5 in the "tunneled encryption"), is it
compatible with Active Directory?
When a radius proxy, such as an appropriately configured freeradius ,
forwards (proxies) a radius request to a target, the target sees a radius
request from the proxy .. it sees its IP address, the source port, and the
UID of the radius request.
now, when the radius target forms a reply/responce,
Dear All,
Can any one tell us what the error which causes the ‘supervise’
of daemontools doesn’t work well by generating the following error:
supervise: fatal: unable to acquire /usr/local/var/run/radiusd/supervise/lock:
temporary failure
***
> rlm_sql (sql): Attempting to connect to [EMAIL PROTECTED]:/radius
> rlm_sql (sql): starting 0
> rlm_sql (sql): Attempting to connect rlm_sql_mysql #0
> rlm_sql_mysql: Starting connect to MySQL server for #0
> rlm_sql_mysql: Couldn't connect socket to MySQL server
> [EMAIL PROTECTED]:radius
> rlm_
Hello to all,
have a problem with radius and peap and cisco AP1200 and and and .
What I use :
freeradius-1.0.2 installed on Wihitebox Linux 3.0 Respin 1
Accesspoint Cisco AP1200 AIR-AP1231G-E-K9 12.3(2)JA
SSL version OpenSSL 0.9.7a Feb 19 2003
Certificates created with script CA.certs loc
Hello!
We are trying to authenticate using freeradius 1.0.2 against a Oracle
LDAP server being in another server different from the one that supports
our freeradius.
When we configure freeradius to authenticate against an Unix system
there is no problem, everything goes right. But when we
26 matches
Mail list logo
