if i include the user file,
-
rlm_sql_mysql: query: SELECT
radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op
FROM radgroupreply,usergroup WHERE usergroup.Username = 'luqe' AND
usergroup.GroupName = radgroupreply.GroupName ORDER B
This doesn't apply to 1.0.x, but I've just made some changes to the
current CVS to add the following features:
- updated ERX dictionary (bug #284)
- encrypt IP address data types (bug #283)
- decrypt IP address data types (new code)
- Support for Starent's 16/16-bit attributes
As
Without some thresholds* WUG is real painful so we have WUG up'n
running with the following values to check our freeradius servers:
- Poll Frequency: 1 (every 60 seconds)
- Poll Timeout : 5 (seconds)
- *Trigger:4 (generate notifications after 4 subsequent
failures)
L
On Tuesday 25 October 2005 16:42, Scott Walker wrote:
> Hi All,
> I have requirements that I prevent users with a shell of /dev/null from
> authenticating against freeradius server.
>
> Using the rpm provided with RHEL4.0:
> radiusd: FreeRADIUS Version 1.0.1
>
> I am using the unix module and pam.
I have set the NAS table to to have values:
Nasname:
Secret: testing123
When im trying to test the connection, on the server im getting unknown
client... Why?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Guy
Fraser
Sent: Tuesday, October 25, 2005
If you mean for proxying the radius request - the answer is YES
Regards
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of achan
awungshi
Sent: Dienstag, 25. Oktober 2005 23:13
To: freeradius-users@lists.freeradius.org
Subject: help newbie here
Hello friend
On Tuesday 25 October 2005 03:54 pm, Alan DeKok wrote:
Thanks all of you for the suggestions!
> Chuck <[EMAIL PROTECTED]> wrote:
> > We are using freeradius with mysql. Is there some kind of script to
> > easily add a fake stop date/time to a user when one gets missed?
>
> radzap.
>
> Alan
Jonathan De Graeve wrote:
Depends on the nas.
Which nas?
Cisco AS5400
---
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello friends,
can you please suggest me whether i can used this
freeradius for caching/proxy server only ?
If yes please let me know.
thanking you.
Regards,
Achandash
__
Yahoo! FareChase: Search multiple travel sites in one click.
http://fare
>Ok, i know what the problem is, but how can i instruct the cisco that
it
>must send the NAS-Port attribute?, is this even posible?
Depends on the nas.
Which nas?
J.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Miguel <[EMAIL PROTECTED]> wrote:
> Ok, i know what the problem is, but how can i instruct the cisco that it
> must send the NAS-Port attribute?, is this even posible?
No.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi All,
I have requirements that I prevent users with a shell of /dev/null from
authenticating against freeradius server.
Using the rpm provided with RHEL4.0:
radiusd: FreeRADIUS Version 1.0.1
I am using the unix module and pam. /dev/null is not listed as a valid
shell in /etc/shells, and acc
Hi, im having problems implementing simultaneous-use on a cisco AS5400,
is the same problem addresses in this thread
http://lists.cistron.nl/pipermail/freeradius-users/2005-March/041894.html
Ok, i know what the problem is, but how can i instruct the cisco that it
must send the NAS-Port attribu
What kind of password have you stored in your db?
Alseo the "upper" part of debug info is relevant. Could you post it?
Yuri
On 10/25/05, Fabio <[EMAIL PROTECTED]> wrote:
Hi,I am trying to use MySQL to autenticate users of a wireless network, using EAP-TTLS-PAP or PEAP-MS-CHAPv2.
I use the followi
http://www.gentoo.org/cgi-bin/viewcvs.cgi/net-dialup/freeradius/files/radius.init
It is gentoo startup script, but could be used (you have to change something) even on rh9
Yuri
On 10/25/05, Yan-GTAC Li <[EMAIL PROTECTED]> wrote:
The Linux version is RedHat 9.
Thanks a lot! Rico -List info/subscr
Raoul Demour <[EMAIL PROTECTED]> wrote:
> Does someboby know which programme or library was use
> to test freeRADIUS (as long as it support EAP-SIM)?
radeapclient. It's included in the server.
See also src/tests/ there are EAP-Sim tests.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Hello!
I just started using free radius. Why? because I need
to make a supplicant for my studies which which
support EAP-SIM.I am studying Computer Science at
University of Applied Sciences (Yverdon-les-Bains /
Switzerland).
And so I hope that my questions are not too stupid...
Does someboby kn
Chuck <[EMAIL PROTECTED]> wrote:
> We are using freeradius with mysql. Is there some kind of script to
> easily add a fake stop date/time to a user when one gets missed?
radzap.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I use automatic timestamps on update /default and run a script every
minute to check if there are some records which hasn't been updated for
15minutes or more
J.
--
Jonathan De Graeve
Network/System Administrator
Imelda vzw
Informatica Dienst
015/50.52.98
[EMAIL PROTECTED]
-Oorspronkelijk be
I'm running something like this from crontab:
UPDATE radacct SET AcctStopTime = FROM_UNIXTIME(unix_timestamp(AcctStartTime) +
AcctSessionTime), AcctTerminateCause = 'NoStopRecv', AcctStopDelay =
(unix_timestamp(now()) - (unix_timestamp(AcctStartTime) + AcctSessionTime)),
AcctSessionTime = AcctS
Ok I have this table,
id SERIAL PRIMARY KEY,
nasname VARCHAR(128),
shortname VARCHAR(32) NOT NULL,
typeVARCHAR(30),
ports int4,
secret VARCHAR(60) NOT NULL,
community VARCHAR(50)
We are using freeradius with mysql. Is there some kind of script to easily add
a fake stop date/time to a user when one gets missed? Currently I am looking
them up in the accounting table and manually editing the entry. Would like to
find something that just takes username as input and creates
How can this one be done automatically after certain period of counts e.g.
after a month of login?
-Original Message-
From: Edward Rempala [mailto:[EMAIL PROTECTED]
Sent: Tuesday, October 25, 2005 5:59 PM
To: [EMAIL PROTECTED]; 'FreeRadius users mailing list'
Subject: RE: SUSPENSION OF AC
On Tue, 2005-25-10 at 12:52 -0400, Alex M wrote:
> Can some one point me to the documentation on use of SQL NAS table?
>
> So that I can add nas devices to the DB and not a text file?
>
...snip...
There has been discussion on this in the past, here is a
message I sent as a response to this list
We set Auth-Type=Reject and it works great.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of maruna
Sent: Tuesday, October 25, 2005 10:27 AM
To: 'Jonathan De Graeve'; freeradius-users@lists.freeradius.org
Subject: RE: SUSPENSION OF ACCOUNT
Jo,
Can you p
Can some one point me to the documentation on use of SQL NAS
table?
So that I can add nas devices to the DB and not a text file?
Thanks!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Jaygopal Upadhyay <[EMAIL PROTECTED]> wrote:
> Can anyone provide me with steps on how to configure FreeRadius to use samba
> and allow access to WI-FI to valid domain users?
Read radiusd.conf. Look for "ntlm_ath".
Read samba's documentation to see how to configure it.
Alan DeKok.
-
List
"Stefan A." <[EMAIL PROTECTED]> wrote:
> I want to give the user a second chance to type his password correctly by
> using a radius challenge.
> I'm not sure how to do this and did not find anything about this in the
> documentation nor in my stored email of this list.
You will have to write you
"Global Net, LLC" <[EMAIL PROTECTED]> wrote:
> My problem in migrating is that VOPRadius used a profiles.txt file to add
> certain items to a user login detail. items are called in the users logon
> text file
> as one of the items.
> username=billy
> password=1234
> profile="smtpfilter"
FreeRAD
Hi,
I am trying to use MySQL to autenticate users of a wireless network, using
EAP-TTLS-PAP or PEAP-MS-CHAPv2.
I use the following users file:
user1 User-Password == "user1"
DEFAULT Suffix == "@mydomain.org", Autz-Type := SQL
while I have the following user in radcheck in MySQL
mysql
Jo,
Can you please guide on how I can do that?
Goksie
-Original Message-
From: Jonathan De Graeve [mailto:[EMAIL PROTECTED]
Sent: Tuesday, October 25, 2005 1:52 PM
To: freeradius-users@lists.freeradius.org; maruna
Subject: RE: SUSPENSION OF ACCOUNT
>I don't think it's possible with the
2005/10/25, Lewis Bergman <[EMAIL PROTECTED]>:
> > mysql> SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE
> > Username = 'luqe' ORDER BY id;
> > +-+--+---+--++
> > | id | UserName | Attribute | Value| op |
> > +-+--+
Hello,
I have a Wireless Access Point which support radius. I want
to install and configure FreeRadius to authenticate against NT 4.0 (Primary
Domain Controller), so that only authenticated users gain access via the Wireless
Access Point. Samba on the linux machine where FreeRadius is i
How do I convert this to be used with freeradius?
I am migrating from vircom radius over to freeradius
Vircom radius (VopRadius)
Used a file called profiles.txt
in it you could assign extra attributes to the login for a group by the key
Profile=""
In their login attributes
Anywa
Luqman H said:
> No matching entry in the database for request from user [luqe]
> but if i'm quering manually on mysql:
> mysql> SELECT id, UserName, Attribute, Value, op FROM radcheck WHERE
> Username = 'luqe' ORDER BY id;
> +-+--+---+--++
> | id | UserName
>I don't think it's possible with the module sqlcounter. You have
>to change the value of the attribute Expiration when the account
>is renewed.
Its possible with Expiration AND/OR Sqlcounter
J.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Yep you were right Alan, it was a stupid misconfiguration.
Cheers both of you.
Mike
On 10/14/05, Alan DeKok <[EMAIL PROTECTED]> wrote:
> Mike Chamberlain <[EMAIL PROTECTED]> wrote:
> > which specify ports 1812 and 1813 respectively, so I thought I'd be
> > able to issue the following commands:
>
maruna wrote:
> I used the attribute Expiration and this involved manually putting
> this on the radcheck until I saw an idea in the list, though this
> was applied to mysql but I maneuver it to work with postgresql.
I don't understand very well what you are trying to do. Attribute
"Expiration" a
I thought something like the following should work:
At the end of the user file:
DEFAULT Auth-Type := Challenge, State != "first retry"
Reply-Message = "Please retry your Password:",
State = "first retry"
DEFAULT Auth-Type := Reject
Reply-Message
Gurus,
I want to give the user a second chance to type his password correctly by
using a radius challenge.
I'm not sure how to do this and did not find anything about this in the
documentation nor in my stored email of this list.
What should happen:
The user tries to authenticate using his User
Fabio wrote:
> is there an option to limit the number of Authentication Request of
> a user, if she uses a wrong password for x times?
There is no such option, but you can block an account after N failed
login attempts by running a custom script or a custom SQL query when
a request is rejected:
h
i have fedora core 4 and freeradius-1.0.5
and this is what i do...
# radtest luqe mypassword localhost 1812 testing123
Sending Access-Request of id 24 to 127.0.0.1:1812
User-Name = "luqe"
User-Password = "mypassword"
NAS-IP-Address = dns.mammiri.net
NAS-Port = 1812
maruna wrote:
> I use FreeRadius v 1.0.5 with postgresql 7.3.4 on redhat Linux ES3 and its
> been working well. However, I want to create accounts where these accounts
> will be suspended after let say a month and this suspension continue until
> the account is renewed manually.
>
> Can someone
Hi,
is there an option to limit the number of Authentication Request of a user, if
she uses a wrong password for x times?
Thanks,
Fabio
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
is there an option to limit the number of Authentication Request of a user, if
she uses a wrong password for x times?
Thanks,
Fabio
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Gurus,
I want to give the user a second chance to type his password correctly by
using a radius challenge.
I'm not sure how to do this and did not find anything about this in the
documentation nor in my stored email of this list.
What should happen:
The user tries to authenticate using his User
Hi,
Perhaps you can write a shellscript
which edits /etc/raddb/users ...it's just an idea.
Cheers Marc
-Ursprüngliche
Nachricht-
Von:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von maruna
Gesendet: Dienstag, 25. Oktober
2005 10:48
An: 'FreeRadius users mailin
Thank you all,
I use FreeRadius v 1.0.5 with postgresql 7.3.4 on redhat Linux
ES3 and its been working well. However, I want to create accounts where these
accounts will be suspended after let say a month and this suspension continue until
the account is renewed manually.
Can someo
as You have probably mentioned, I was not talking about sqlcounter module
When I tried todo this a while ago I encountered a limit of 4GB in the
sqlcounter module.
J.
--
Jonathan De Graeve
Network/System Administrator
Imelda vzw
Informatica Dienst
015/50.52.98
[EMAIL PROTECTED]
-
Alwa
When I tried todo this a while ago I encountered a limit of 4GB in the
sqlcounter module.
J.
--
Jonathan De Graeve
Network/System Administrator
Imelda vzw
Informatica Dienst
015/50.52.98
[EMAIL PROTECTED]
-
Always read the manual for the correct way to do things because the
number of in
Hi
As an addendum to below:-
Say the user has 500s of connection time left and he replenishes his account
(36000 s)- is there another way apart from manually , that we can alter the
Max-Monthly-Session ? - it should become 36500 s. We are assuming that the
counter was not reset.
M
- Ori
51 matches
Mail list logo