hello i just installed Freeradius and Freeradius DialupAdmin (with mysql
support)
i changed the admin.conf so its using the correct db username/password.
When i click on quite a few links Like Create New Group i get this atop of
the New Group Page
DEBUG(SQL,MYSQL DRIVER): Query: SELECT DISTINCT
Set sql_debug = no in admin.conf
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Nicholas
Briere
Sent: Thursday, August 04, 2005 2:13 PM
To: freeradius-users@lists.freeradius.org
Subject: Dialup-Admin mysql Problems help plz!
hello i just installed
Thanks for the Quick response on the debug fix ;)
now im having an issue where i create a new group , it makes the db entries
in mysql but in dialupadmin when i click on show groups its not listed
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
So Alan, FreeRadius can' t send Disconnect Message?
Then i think that the better solution is use rlm_sqlcounter and an
external apllication that control the session time and send Disconnect
message.
You are agree with me?
Thanks
-
List info/subscribe/unsubscribe? See
Thanks for the Quick response on the debug fix ;)
now im having an issue where i create a new group , it makes the db
entries
in mysql but in dialupadmin when i click on show groups its not listed
You have to insert a user when creating a list.
Should be fixed in CVS version ..
Michael
-
returns ok for request 1
radius_xlat: '/var/log/freeradius/radacct/127.0.0.1/auth-detail-20050804'
rlm_detail:
/var/log/freeradius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d expands
to /var/log/freeradius/radacct/127.0.0.1/auth-detail-20050804
modcall[authorize]: module auth_log returns ok
thanks for the suggestion.
i've had a look at this and it doesn't seem like an elegant solution to me.
i'll have another look to see if it is possible using mechanisms within the
radiusd.conf (perhaps calling 2 modules, one to reply, one to forward).
t
-Original Message-
From: [EMAIL
Hi Everyone,
I have been using Livingston Radius for a very long time, and decided it was
time to upgrade to FreeRadius.
We have various pop's authenticating to our radius server, and to make sure
everything worked ok I first set only the lucent based pop's to authenticate
on FreeRadius. This
You probably have done this already, but if you have not, make sure you
statically specify the authentication port and accouting port numbers in
your cisco AAA configuration, if you are using the newer port numbers.
If you just enable radius authentication on Cisco routers ( at least the
ones I
Thank you for the reply, but this is done.
Still does not explain why the user works on Async but not on ISDN
connecting to the same cisco box.
The same user works 100% on Async and ISDN on the lucent NAS.
Just a note, switching the IP on the Cisco for authentication and accounting
back to
Hi,
I don't specify a NAS-Port-Type value, and on the Lucent (Livingston) then
it doesn't matter if the user is Async or ISDN, it works.
I tried a default of NAS-Port-Type = Async|ISDN and on the Livingston it
still works, ie a user can still connect Async or ISDN but not on the cisco
NAS. On
[EMAIL PROTECTED] wrote:
How do you have this setup? Check out
doc/configurable_failover. That
should show you how to do it.
I'm using configurable failover to get it to roll as it is.
From my radiusd.conf file:
[ snip ]
The above problem line should be:
rlm_ldap: bind as
Hi,
Can anyone point me in the direction of the docs for dialupadmin, just
installed Free RADIUS 1.0.4, total newbie so any info would be great.
Thanks
.
Simon Jones
SAQ Internet
VoIP: 4822813
www.saq.co.uk
[EMAIL PROTECTED]
--
No virus found in this outgoing message.
Checked by AVG
Nurul Faizal M.Shukeri [EMAIL PROTECTED] wrote:
mmm.. can I just check double login, perhaps by query database only without
snmpwalk to ap.
If you don't run checkrad, the server assumes that it's database is
correct.
Set the nas type to other, and checkrad won't run.
Alan DeKok.
-
Florian Prester [EMAIL PROTECTED] wrote:
With MSCHAP we are using the NT-password ( I know it is not realy
crypted, but still better than cleartext!)
That's a common misconception.
Now, how can I use PAP authentication with EAP-TTLS?
Tell the client to use it. The server has NO
Tariq Rashid [EMAIL PROTECTED] wrote:
i'll have another look to see if it is possible using mechanisms within the
radiusd.conf (perhaps calling 2 modules, one to reply, one to forward).
There could be a replicate module, which would send packets to
multiple destinations. I'd prefer not to
Wilhelm Lehmann [EMAIL PROTECTED] wrote:
I have been using Livingston Radius for a very long time, and decided it was
time to upgrade to FreeRadius.
Good choice. :)
We have various pop's authenticating to our radius server, and to make sure
everything worked ok I first set only the lucent
i'm happy to work with anyone with the programming talent to do this.
tariq
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Alan
DeKok
Sent: 04 August 2005 16:34
To: FreeRadius users mailing list
Subject: Re: accounting - respose from freeradius, and
The above problem line should be:
rlm_ldap: bind as uid=username, ou=People,
dc=university,dc=edu,c=us/test123 to
openldap.university.edu:1744
However, it is taking the userdn from the ad server which
gave the first authorize ok. What I need is for it to
attempt to authenticate with the
Jose Divino de Lima [EMAIL PROTECTED] wrote:
When i using a shell script it´s run properly, but it´s not fast.
I thought that it can be did via mySQL in authorize_check query.
You'll have to do more than that. You'll need to increment a
counter when people log in, and decrement it when they
http://bugs.freeradius.org/show_bug.cgi?id=254
It's not integrated into FreeRADIUS, but it appears to work. It
runs as a separate daemon, and has certin limitations. But it does
work...
The next step is to integrate the code into the server core. It's
only a few thousand lines (with
Hi,
I was wondering if there is a way to configure the radiusd to force
the client to present his certificate during EAP-PEAP and EAP-TTLS.
(I know this is not necessary, but I need to do it anyways)
I saw an interesting piece of code in eaptls_initiate() which
indicates someone was thinking
Is there anyway that we can apply some conf changes without restarting
radiusd?
Kevin
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
:19 2005 : Debug: modsingle[authorize]: calling auth_log
(rlm_detail) for request 31
Thu Aug 4 18:59:19 2005 : Debug: radius_xlat:
'/usr/local/var/log/radius/radacct/196.45.1.10/auth-detail-20050804'
Thu Aug 4 18:59:19 2005 : Debug: rlm_detail:
/usr/local/var/log/radius/radacct/%{Client-IP
Hi,
Is there anyway that we can apply some conf changes without restarting
radiusd?
http://www.freeradius.org/faq/
SIGHUP is what you are looking for
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Michael Wang [EMAIL PROTECTED] wrote:
So it seems like radiusd will force client certificate authentication
during PEAP or TTLS if this particular value pair is set with
lvalue==1. But I don't see any code where the
PW_EAP_TLS_REQUIRE_CLIENT_CERT gets put into the config_items.
That's up
Hi RADIUS gurus,
I need some inbound CHAP authentication user profile examples for RADIUS testing with CHAP turned on.
Please email me if you have some.
Thanks in advance,
Ruchir__Do You Yahoo!?Tired of spam? Yahoo! Mail has the best spam
Yes! Thanks, that worked.
Michael
On 8/4/05, Alan DeKok [EMAIL PROTECTED] wrote:
Michael Wang [EMAIL PROTECTED] wrote:
So it seems like radiusd will force client certificate authentication
during PEAP or TTLS if this particular value pair is set with
lvalue==1. But I don't see any code
Hi,
The Odyssey Client prompts at least twice for the password. Once
connected, clients can roam across different AP's within the same WLAN
with no problems. Has anyone else experienced this problem with a
similar configuration?
Running Environment:
-- Freeradius Server = Gentoo Linux
As I'm troubleshooting this, I generated another question in my head.
This time I'll give some freeradius debug (see blocks
between *):
Here's an exerpt from first try (failure):
rlm_ldap: - authorize
rlm_ldap: performing user authorization for anonymous
radius_xlat: '(cn=anonymous)'
30 matches
Mail list logo