is it possible specify IP ranges in the clients.conf? or multiple IPs for
each client{} section?
for example:
client 1.2.3.0/23 {
secret = shared_secret
shortname = abc.def.ghi.jkl
nastype = other
}
or
client 1.2.3.1 {
secret = shared_secret
shortname
Hi everyone,
I'm having a problem with freeradius 1.0.4 configuration. I configured
it to work with PAP, CHAP, MS-CHAPv1, and MS-CHAPv2. Now I would like
to work with EAP-MD5 but I have always the same response:
rad_recv: Access-Request packet from host 192.168.2.63:1108, id=65, length=88
Tariq,
Like you say, you can use:
Client 172.0.0.0/8 {
Secret = secret
Shortname = 172-network
}
HTH
Dave Shepherd
-Original Message-
From: [EMAIL PROTECTED]
[mailto:freeradius-
[EMAIL PROTECTED] On Behalf Of Tariq Rashid
Looks like you dont have anyof the supported SQL's nor Kerberos
installed.
Thats's what it says from what I can see at a quick glance.
Unfortunately I've got to rely on what/how our IT guys set up the machine
as I don't have root access.
Does it compile at all?
Nope, The first file it tries
Kris,
Thanks for the configs, however I still cannot get this to work, I'm still
seeing:-
Aug 10 07:06:21 2005 : Debug: rlm_ldap: bind as
uid=sbarnes,ou=people,o=marymount.edu.o=marymount.edu/cortina to
info.marymount.edu:389
Wed Aug 10 07:06:21 2005 : Error: rlm_ldap:
I'm new at this and I was wondering if anyone can help me out configuring
free radius for mac address authentication
I have linux fedora 3 and one lan wifi.
I need to install a server freeradius for mac address authentication (only,
without certificates).
I have a LAN with servers windows
--- robin rapa [EMAIL PROTECTED] wrote:
000F20-93DD75 Auth-TYPE := Local, User-Password == passecret
You have the above entry in your users file.
rad_recv: Access-Request packet from host 192.168.0.6:1024, id=17,
length=150
User-Name = 00-0f-20-93-dd-75
NAS-IP-Address =
Betreff: freeradius with auth Mac addresses
and in users
000F20-93DD75 Auth-TYPE := Local, User-Password == passecret
Write your MAC as 00-0f-20-93-dd-75 and the letters in smal
Thats all
Mit freundlichen Grüßen
Drießen
Es liegt was in der Luft
www.feilbingert.net
Uwe Drießen
FreeRadius users mailing list freeradius-users@lists.freeradius.org on
August 9, 2005 at 19:03 -0800 wrote:
Kris,
Thanks for your help.
Do you think that (1) and (2) in my previous message could be the
reason that freeradius will not authenticate the client?
No, not now. Judging from the
FreeRadius users mailing list freeradius-users@lists.freeradius.org on
August 10, 2005 at 05:34 -0800 wrote:
Kris,
Aug 10 07:06:21 2005 : Debug: rlm_ldap: bind as
uid=sbarnes,ou=people,o=marymount.edu.o=marymount.edu/cortina to
info.marymount.edu:389
Wed Aug 10 07:06:21 2005 : Error: rlm_ldap:
hi all,
i'm trying to authenticate my vpn users using radius trough a cisco pix
515E
the authentication it's ok but i would assign an ip address by
framed-ip-address but pix assign an ip by local pool.
any idea?
tnx in advance
giovanni
-
List info/subscribe/unsubscribe? See
When generating the random file, you can also do:openssl rand -out /etc/raddb/certs/random 100SteveOn Aug 9, 2005, at 3:16 PM, [EMAIL PROTECTED] wrote:From: Kris Benson [EMAIL PROTECTED] Date: August 9, 2005 11:18:10 AM PDT To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Hi Kris,
Thanks for your input.
I think I'm at the end of my abilities here, but will make a couple more
comments.
First off, I'm nowhere near being an LDAP pro, but what's up with the
o=mayrmount.edu.o=marymount.edu ? There are two things that stick out
to me here -- first off, the '.'
FreeRadius users mailing list freeradius-users@lists.freeradius.org on
August 10, 2005 at 10:50 -0800 wrote:
When generating the random file, you can also do:
openssl rand -out /etc/raddb/certs/random 100
You could, but then it would be the same random numbers every time its
loaded... with this
FreeRadius users mailing list freeradius-users@lists.freeradius.org on
August 10, 2005 at 11:17 -0800 wrote:
I think I'm at the end of my abilities here, but will make a couple more
comments.
First off, I'm nowhere near being an LDAP pro, but what's up with the
o=mayrmount.edu.o=marymount.edu ?
HI All
I user freeradius 1.0.4
Install by
./configure --with-openssl-includes=/usr/local/openssl/include \
--with-openssl-libraries=/usr/local/openssl/lib \
make
make install
I got is Error below.
rlm_eap: Request found, released from the list
rlm_eap: EAP/peap
rlm_eap: processing
[EMAIL PROTECTED] wrote:
./configure --with-openssl-includes=/usr/local/openssl/include \
--with-openssl-libraries=/usr/local/openssl/lib \
Add --disable-shared and re-build.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi!! Everybody
I would like to use in the freeradius Simultaneous -
Use, already I read the file /doc/Simultaneous-Use,
but I do not have idea about installing SNMP_Session
and BER modulate. Has someone done it?.
Please I request if someone has some HOWTO,guide
or tutorial, could help me.
I'm probably over complicating this, and I've searched the archives for
two days now, I've googled for twice that, and I can't seem to find a
clear, howto on setting this up.
Here's my goals:
1) Freeradius
2) EAP-TLS - PEAP (for secure, non-client certificate)
3) LDAP for user authentication
Andrew Daniels [EMAIL PROTECTED] wrote:
1) Freeradius
2) EAP-TLS - PEAP (for secure, non-client certificate)
3) LDAP for user authentication
AD isn't an LDAP server.
At least, not for passwords, it isn't. You've got to use ntlm_auth.
See radiusd.conf.
Alan DeKok.
-
List
Hello,
A couple of us at work have been playing with a hotspot controller
(Internet Subscriber Server II ISS-4000) using freeradius and mysql for
authentication. We are having problems with checkrad (totally to do with
the AP not being nice).
I'm not sure what is the best way to handle
rlm_sql (sql): Couldn't insert SQL accounting STOP record - ERROR:
syntax error at or near + at character 502
It connects to it fine, but when ever it goes to issue a accounting
insert, I get this error. Any suggestions?
-
List info/subscribe/unsubscribe? See
On Wed, 10 Aug 2005 16:27:06 -0700
Zane C. B. [EMAIL PROTECTED] wrote:
rlm_sql (sql): Couldn't insert SQL accounting STOP record - ERROR:
syntax error at or near + at character 502
It connects to it fine, but when ever it goes to issue a accounting
insert, I get this error. Any
Robin [EMAIL PROTECTED] wrote:
I'm not sure what is the best way to handle this. I can snmpwalk the
device however the output does not appear to have information regarding
logins. The manufacturer does not respond to queries so I'm hoping someone
else may have worked with this device.
Hello,
We are running billing system with radius auth and acct.
We have to migrate our user database to another billing system but we
can't migrate all users and reconfigure all routers simultaneously.
Presumably we can migrate about 50-100 user of several thousands every
day, and we want to make
Oleg Motienko [EMAIL PROTECTED] wrote:
We have to migrate our user database to another billing system but we
can't migrate all users and reconfigure all routers simultaneously.
Presumably we can migrate about 50-100 user of several thousands every
day, and we want to make this process
Hello, Alan DeKok and other guys:I am trying to install radius and
ser. i uncomment the digest in raiudsd.conf and create digest file and
test in users file.now the problems are:1) where should i put the digest file?
2) when run:radiusd -X and display can not find the digest modules. Starting -
On Aug 8, 2005, at 9:39 AM, Landon Cox wrote:
I'm going to do some experiments later tonight and see if I can
isolate the success factor.
Back on this topic for a moment...some things I tried to see if I
could break the configuration were:
1) remove the certs from the /etc/ssl/certs
28 matches
Mail list logo