Hi,
Thanks for your reply. i am going here to post the
debug logs. from the log it seems rlm_per is loaded
successfully but when i am trying to call authorize
and authenticate function from example.pl, the
functions are not calling well.
Here is full configuration what i did to work with
perl
In Doc:
imply a group that changes the default ACTIONs to something like
fail = 1
everythingelse = return
Tried in config:
everythingelse = return
radiusd.conf[1637] Unknown module rcode 'everythingelse'.
Also tried:
everything_else = return
radiusd.conf[1637] Unknown module rcode
Hi,
we seem to have a stability issue with freeradius 1.0.4/1.0.5:
1.0.4 crashed in short sequence on both of my redundant servers
during my vacation -- not much of a trace in the logfiles.
On Monday, I upgraded to 1.0.5 with everything looking fine for
almost 2 days. Yesterday, we started
Hi,
Does anyone know if the server can expose a RADIUS packet's identifier,
for example through mod_exec? Or, is this limited to RADIUS attributes only?
thanks, josh.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Are there any freeradius users out there that are using WhatsUp! to
monitor there freeradius server? I am trying to set it up but I am
unsure
what to use for the send/expect statements. Any help would be greatly
appreciated. I already configured WhatsUp! to use port 1812 and was
told by
the
Yep, but I need some more info. Your sql section in radiusd.conf and your
sql_accounting* definitions in sql.conf. Also the accounting section in
radiusd.conf, in wich it must be a sql instance.
Ing. Paolo Rotela
Jefe Técnico
Blue Telecom
Eng. Paolo Rotela
CTO
Blue Telecom
- Original
Hi everyone, I have a problem and I would like to ask you what to do.
My problem is with PEAP protocol when I send the Client_Key_Exchange.
FreeRadius 1.0.4 server tells me:
SSL3_GET_CLIENT_KEY_EXCHANGE: tls rsa encrypted value length is wrong:
s3_srvr.c: 1450: rlm_eap_tls: SSL_read failed in a
Am Mittwoch, 28. September 2005 13:57 schrieb Matthew Anderson:
Are there any freeradius users out there that are using WhatsUp! to
monitor there freeradius server? I am trying to set it up but I am
unsure
what to use for the send/expect statements. Any help would be greatly
appreciated. I
Forgot to follow-up.
I moved all my configurations out and loaded up all the original
unmodified files in my raddb dir. I only modified sql.conf and changed
the username/password to the sql table. Everything else was left as is -
out of the box. It all worked fine. Freeradius started up
Could someone show me how to process an access-accept via rlm_perl?
The example in the script example.pl still causes an access-reject nomater what
I try.
Thanks.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
This helped me a lot The 2nd link deals with certificates!
http://interactive.linuxjournal.com/node/8017/print
http://www.linuxjournal.com/node/8095/print
http://www.linuxjournal.com/article/8151
Daniel D. HesseTechnology AdministratorMethodist Manor Retirement Community712-732-1120
Hi everyone:
I have been using Freeradius v.0.9.3 for over a
year and i wish to upgrade to the latest version. Can anyone give me detailed
instructions on how to do this? I use Freeradius in a prodcution enviroment and
i can't afford to mess it up. I'm running Linux RedHat 9. Do i just do
Hi.
Is there anyway to generate a message authenticator for an
accounting request packet. At the moment I am using JRadius, I need to send an
accounting request message to another radius server. However after I add the
message authenticator and send to to another server, the other
Could someone show me how to process an access-accept via rlm_perl? The
example in the script example.pl still causes an access-reject nomater
what I try.
That isn't enough information, except to tell you to return a proper
value such as RLM_MODULE_OK. Please post debug output.
-
Greetings!,
Please forgive me if this has already been asked. I have googled
around as well as checking out a few how-to's. Currently. I have a
poptop server, authenticating via freeradius to openldap. Everything
appears to be functioning correctly with pap based authentication.
However,
On Wed, 28 Sep 2005, Linda Pagillo wrote:
Hi everyone:
I have been using Freeradius v.0.9.3 for over a year and i wish to
upgrade to the latest version. Can anyone give me detailed instructions
on how to do this? I use Freeradius in a prodcution enviroment and i
can't afford to mess it up.
RFCs are a little messy about this issue.
Message-Authenticator in Accounting Packets are not well standarized, so
everyone does what they want about this.
Do a search in the list for "FreeRadius Proxying
and Message-Authenticator" for more information.
Eng. Paolo RotelaCTOBlue
Telecom
There is no way to generate a message authenticator in an
Accounting-Request packet the usual way it's generated for an
Access-Request.
The accounting packet is signed by the client therefore there cannot be
two signatures created for the entire the packet. By the very nature of
creating
Thanks for your reply. Is it really this much work to do a simple upgrade?
Is there a shortcut?
- Original Message -
From: Dusty Doris [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Wednesday, September 28, 2005 9:58 AM
Subject: Re:
Josh Howlett [EMAIL PROTECTED] wrote:
Does anyone know if the server can expose a RADIUS packet's identifier,
for example through mod_exec? Or, is this limited to RADIUS attributes only?
ATTRIBUTE Packet-Authentication-Vector1088octets
It *could* have been somewhere in
Linda Pagillo [EMAIL PROTECTED] wrote:
Thanks for your reply. Is it really this much work to do a simple upgrade?
Is there a shortcut?
Not really. Doing the upgrade slowly is less work than doing it
quickly, and then having your RADIUS server down because you missed
something.
Alan DeKok.
liz [EMAIL PROTECTED] wrote:
However, if I turn on CHAP based authentication I get a message from
the radius server that USER-PASSWORD is a required attribute.
You set Auth-Type := LDAP. Don't do that. LDAP doesn't understand
CHAP.
I am going to try another radius plugin I found today on
Martin Pauly [EMAIL PROTECTED] wrote:
We do have perfomance problems with our LDAP backend,
so this sound reasonable, but could this cause the server to crash?
Yes. If all of the threads are blocked forever, waiting for the DB
to return data, then the queue of requests grows without bounds.
Jonathan De Graeve [EMAIL PROTECTED] wrote:
imply a group that changes the default ACTIONs to something like
fail = 1
everythingelse = return
Tried in config:
everythingelse = return
radiusd.conf[1637] Unknown module rcode 'everythingelse'.
It was NOT meant to be taken
You consider that much work? I wish I had your job!
:)
On Wed, 28 Sep 2005, Linda Pagillo wrote:
Thanks for your reply. Is it really this much work to do a simple upgrade?
Is there a shortcut?
- Original Message -
From: Dusty Doris [EMAIL PROTECTED]
To: FreeRadius users mailing list
I wish you had my job too because i'm about fed up with this crap.. Anyway,
thanks for the reply, i'll do it.
- Original Message -
From: Dusty Doris [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Wednesday, September 28, 2005 11:48 AM
I previously mentioned, the accounting section contains just 'sql'. I
have no sql section in radiusd.conf though (perhaps this is my problem?)
and no sql_accouting definitions in my sql.conf, but the sql accouting
queries are defined there, and they are correct.
The sql connection is working, and
Thanks Dusty, i know you were just kidding with me and that's cool :) I'm
just having a bad day hehe. So what i would have to do is set up freeradius
0.9.3 on a different system and then upgrade it as a test and if everything
goes well i should do it on my production system?
- Original Message
If the message authenticator is all zeros, then I can send a request
from one freeradius server to another with out any problems. The problem
is when I user Radiator with freeradius sending accounting messages to
it, it complains about Authentication failure. So I assumed that
Radiator does not
You should have something like this in your radiusd.conf
$INCLUDE ${confdir}/sql.conf
Then you should have this in sql.conf (or the file pointed to by the
include, my example is with mysql, could be another engine)
sql {
# Database type
# Current supported are: rlm_sql_mysql,
One thing I came across when upgrading from 0.9.3 to 1.0.5 is that the
default allowed characters for sql queries changed. I used [ and ] in my
usernames, so the results after upgrade whas that my accounting reccords
where set with the mime-equivalent of [ and ]. I had to add these characters
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
It sounds strange because the unmodified radiusd.conf does not have
authentication, authorization or accounting enabled for sql. I followed your
instructions, and rlm_sql_mysql is not started because it has not enabled in
radiusd.conf.
How is your
That is exactly the setup I have, but it doesn't seem to be working.
There are no errors reported in radius.log, and no accounting queries in
sqltrace.sql. Any ideas?
Cheers, Ben
On Wed, 2005-09-28 at 15:08 -0300, Paolo Rotela wrote:
You should have something like this in your radiusd.conf
No need to install .9.3. I'd just install 1.0.5 on another system (or to
the same system, but in a different directory with --prefix) and then
modify all the config files so it has the setup you currently use on .9.
Then make sure it works.
I doubt it, but perhaps you'll find that some
That's a perfect example of something that you'd find in testing, but
might end up spending all night fighting if you just go and make the
change.
On Wed, 28 Sep 2005, Paolo Rotela wrote:
One thing I came across when upgrading from 0.9.3 to 1.0.5 is that the
default allowed characters for
It sounds strange because the unmodified radiusd.conf does not have
authentication, authorization or accounting enabled for sql. I followed your
instructions, and rlm_sql_mysql is not started because it has not enabled in
radiusd.conf.
Hmmm, maybe I didn't copy the right files over. I'll do
That is exactly the setup I have, but it doesn't seem to be working.
There are no errors reported in radius.log, and no accounting queries in
sqltrace.sql. Any ideas?
Yep, reinstall it ;)
No, really, you should try to shutdown the daemon and try running
radiusd -X, then test it, and see if
It sounds strange because the unmodified radiusd.conf does not have
authentication, authorization or accounting enabled for sql. I followed your
instructions, and rlm_sql_mysql is not started because it has not enabled in
radiusd.conf.
You're correct. I copied files I thought were an original,
and I still get segfaults. ( I have built freeradius 1.0.5 from source /
FreeBSD 5.4-RELEASE-p6 )
Just in case this helps at all, here is my pkg_info and uname -a.
# pkg_info
bash-3.0.16_1 The GNU Project's Bourne Again SHell
cvsup-without-gui-16.1h_2 General network file distribution
Ben Dowling [EMAIL PROTECTED] wrote:
I previously mentioned, the accounting section contains just 'sql'. I
have no sql section in radiusd.conf though (perhaps this is my problem?)
and no sql_accouting definitions in my sql.conf, but the sql accouting
queries are defined there, and they are
what is the configuration required on radius server(freeradius ver1.0.5)to send challenge messages to the radius client ?
How does Radius server determine when to send challenge messages to the client ?
Thanks,
N
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I am running it with -X, and it all seems fine. It shows the sql module
loading, and all the accounting queries. What could I be missing?
Ben
On Wed, 2005-09-28 at 16:42 -0300, Paolo Rotela wrote:
That is exactly the setup I have, but it doesn't seem to be working.
There are no errors
Yeah it is getting accounting packets, because I can log them to file
with 'detail'. Just not to sql.
Ben
On Wed, 2005-09-28 at 16:32 -0400, Alan DeKok wrote:
Ben Dowling [EMAIL PROTECTED] wrote:
I previously mentioned, the accounting section contains just 'sql'. I
have no sql section in
Nagaraj Venkatapuram [EMAIL PROTECTED] wrote:
what is the configuration required on radius server(freeradius ver1.0.5) to
send challenge messages to the radius client ?
How does Radius server determine when to send challenge messages to the
client ?
The authentication protocol determines
Hi,
Is it possible to install and run freeradius on an Oracle App Server?. The
database server is another server located at another local network. Is it
possible to achieve this configuration? Which are the requirements of
freeradius for compiling with oracle support? Can I download the code
Ben Dowling [EMAIL PROTECTED] wrote:
Yeah it is getting accounting packets, because I can log them to file
with 'detail'. Just not to sql.
The debug log should show the SQL module being executed for any
accounting packets. If not, there's the problem. If the SQL module
is being executed, it
46 matches
Mail list logo