Radius Server: Freeradius 1.0.5 on Solaris 8 (Sparc)
Client:Windows XP (SP2), Intel PRO/Wireless 2915 (a/b/g)
Access Point: DLink DI-784
I'm having trouble getting my laptop (running Windows XP SP2) to
authenticate to my access point using EAP/TLS. XP shows the wireless
interface hung fo
Here's the rest of my config. Notice, that username 3000 belongs to group
Dialin and Dialin2. The user can register fine, however in this case the
Access-Accept packet only returns the AVPs related to group Dialin (I'm
guessing is because it's the first one that it matches).
mysql> select * from r
[EMAIL PROTECTED] wrote:
> > Then why the heck are you using ntlm_auth? It's only purpose is to
> >do MSCHAP authentication to a Windows domain controller.
>
> Because the configuration for 802.1X, using the 802.1X howto and
> http://vuksan.com/linux/dot1x/802-1x-LDAP.html, said that needs to con
"Alex M" <[EMAIL PROTECTED]> wrote:
> Wikipedia well, can it show me how to block ports like port 88 on user side?
As you have already been told, port blocking is done by the NAS. Go
read the NAS documentation, and stop asking questions about 802.1X and
port blocking.
Part of the problem is
>> I have configured freeradius+ldap+802.1X for a wireless lan, but i
>> can't get it to work because of mschap, and i dont have windows domain.
> Then why the heck are you using ntlm_auth? It's only purpose is to
>do MSCHAP authentication to a Windows domain controller.
Because the configura
I hate quoting but
"IEEE 802.1X is an IEEE standard for port-based network access control, part
of the IEEE 802 (802.1) group of protocols. It provides authentication to
devices attached to a LAN port, establishing a point-to-point connection or
preventing access from that port if authentication f
Wikipedia well, can it show me how to block ports like port 88 on user side?
Yea I should learn how to use goggle he he
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Seferovic Edvin
Sent: Wednesday, November 02, 2005 4:42 PM
To: 'FreeRadius users mai
Maybe you should learn how to do a research with google ;) or just use an
encyclopedia...
http://en.wikipedia.org/wiki/802.1x
have fun !
Regards,
Edvin
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alex M
Sent: Mittwoch, 02. November 2005 22:34
To: '
That what I started with... but it returns me all very very expansive
enterprise equipment, and other junk... well I maybe I'm using wrong keyword
but goggle doesn't give me anything I'm looking for
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Oliver
Gr
On Wed, Nov 02, 2005 at 11:10:20AM -0500, Alex M wrote:
> Now im totally lost...
> Can u give me an example what 802.1x does?
Can u use google?
Oliver.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Well I just checked with Clillispot and it
does support the bandwidth control, but still looking for port controls
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jeff Reilly
Sent: Wednesday, November 02, 2005
2:11 PM
To: FreeRadius users mailing list
Subjec
Hi Guys,
I want to get some idea about how to manipulate attributes before we
respond to NAS.
For example, before I send Access-Accept packet to the NAS, I want to
add two additional attributes (let's say S and T) to NAS-1 and add X, Y,
and Z to NAS-2. In short, I want to add some attribute
I have no experience with the opensouce efforts you mention
below...
Original Message Subject: RE:
802.1xFrom: "Alex M" <[EMAIL PROTECTED]>Date:
Wed, November 02, 2005 11:19 amTo: "'FreeRadius users mailing
list'"
Ok, will call
Dlink to see if that have something (the hotspot
Chillispot certainly does!
M0n0wall almost ;)
Don’t know about nocat
J.
Van:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Namens Alex M
Verzonden: woensdag 2 november
2005 19:19
Aan: 'FreeRadius users mailing
list'
Onderwerp: RE: 802.1x
Ok, will call Dlink to
se
Ok, will call Dlink to see if that have something
(the hotspot itself has that functionality internally though)
Also do you know if opensources such as
NoCAT and ChillBox support such features?
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Jeff Reilly
AV = ATTRIBUTE VALUE
D-Link what? D-Link makes lots of stuff...
generally great price... but not the most feature rich
products.
To get the features you desire you'll likely need a
higher-end box. I'm not a big proponent of
"pitching" specific products in this forum. Suffice it
to say ther
SUCCESS!! I already had /usr/ccs/bin in my path,
however, it was listed BEFORE /usr/sfw/bin, which apparantly makes all
the difference in the world. Here are the PATH and LD_LIBRARY_PATH
environment variable settings I used, just in case someone else runs
into the same issue:
Ok, thanks
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Guy Davies
Sent: Wednesday, November 02, 2005
12:38 PM
To: FreeRadius users mailing list
Subject: RE: 802.1x
Which Vendor
Specific Attributes are implemented by a Vendor are, as the name suggests,
sp
Which Vendor Specific Attributes are implemented by a
Vendor are, as the name suggests, specific to the vendor and totally up to them
to choose. I would not be surprised if DLink implement *NO* VSAs.
Given the market into which they're pitching their kit, I doubt very much that
their kit w
Hi
i need to ask is there any patch for PPPD to send this MAC adress to RADIUS ???
and what about rp-pppoe is there any patch let pppoe server is probrably rp-pppoe to send Mac address to pppd ?
Yahoo! FareChase - Search multiple travel sites in one click.
-
List info/subscribe/unsubscr
Ok I got it…
By the way what is AV pair?
And how do you get NAS related attributes to
control bandwidth from vendors? Like if im using D-Link how could I get attributes
from them?
Thanks!
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jeff Reilly
Sent: Wedn
Alex,
Features such as 'bandwidth and port blocking"
(if any) are allocated/configured on the _NAS_ (in this case a
NAS port) via AV pair/s provided by RADIUS... the '802.1x
Supplicant" (Client/Endpoint) in simple terms... provides a
secure/standard conduit which facilitates the communication of
cr
On Tue, 1 Nov 2005, Daniel Torres wrote:
Hi,
First of all excuse my englis it is not very well, i wanted to know if
somebody has been able to set a freeradius server to assign static IP or
if it is possible to assign static IP with freeradius1.0.5.
Thanks for the information.
Yes, I do
Now im totally lost...
Can u give me an example what 802.1x does?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alan
DeKok
Sent: Wednesday, November 02, 2005 11:04 AM
To: FreeRadius users mailing list
Subject: Re: 802.1x
"Alex M" <[EMAIL PROTECTED]
Juan Mauel Lopez Villalobos <[EMAIL PROTECTED]> wrote:
> I want to know how to use ntlm_auth with ntlm-server-1 and freeradius,
> with the users login and password information in ldap.
If the passwords are in ldap, you don't need to use ntlm_auth.
> I have configured freeradius+ldap+802.1X for
"Alex M" <[EMAIL PROTECTED]> wrote:
> So then such features as bandwidth and port blocking could be controlled via
> 802.1x?
No.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
System pocztowy Galtex S.A. informuje, iz Twoja wiadomosc zostala dostarczona
Wiadomosc wygenerowana automatycznie przez system pocztowy uzytkownika belskia
Prosze na ta wiadomosc nie odpowiadac.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
So then such features as bandwidth and port blocking could be controlled via
802.1x?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Oliver
Graf
Sent: Wednesday, November 02, 2005 2:57 AM
To: freeradius-users@lists.freeradius.org
Subject: Re: 802.1x
O
Hi,
Start with:
http://www.oreilly.de/catalog/radius/chapter/ch05.html
It was very helpful for me.
Pierre Forget
> -- Original Message
> Date: Tue, 1 Nov 2005 15:12:19 -0800
> From: "Mark Sarria" <[EMAIL PROTECTED]>
> Subject: New to List - First Time Set-up
> ---
hi all!
i want to configure the freeradius server (1.0.5) to use ldap, sql and pam as
source for user authentification. i only get the first two to work at the same
time (ldap and sql) but not together with pam.
if i use this in /etc/raddb/users:
# users
wlanAuth-Type = EAP
testuser
Yes ,i know that The V2 switches (and all Enterasys switches) support EAP-MD5
but i want to implement EAP-PEAP with ms-chapv2 and VLAN assignment
It wasn´t a problem to configure EAP-PEAP with freeradius server (running on
suse) and Enterasys switches.
I want to implement VLAN assignment at a
ente
On Tue, Nov 01, 2005 at 09:27:57PM -0500, Alex M wrote:
> What is the difference between plain Radius identification compare to
> 802.1x?
Basically 802.1x is between client and NAS, and radius is between NAS
and AAA server. So how would you compare them?
Oliver.
-
List info/subscribe/unsubscrib
32 matches
Mail list logo
