This question appears in various forums time and time again though I've yet to
discover a solution for it under linux. It *must* be a common issue
The need exists to map users who are successfully authenticated via
pam_radius_auth and who do not have a local account to a default 'token
use
Hi I tried sending tunneling attributes from Radius server and it shows sending those tunneling attributes.. But the access point doesnt seem to understand it anyway. I had configured both the access point and the switch for this.. What can be the problem
Yahoo! Messenger with Voice. PC-to-
"ho" <[EMAIL PROTECTED]> wrote:
> Is it possible to group the User entries and than give them the special
> profile with the AVPairs?
Yes. You can use Unix groups for this, or create your own groups.
See "man rlm_passwd" for an example of creating groups.
Alan DeKok.
-
List info/subscribe/
Hello:
I have this problem, i get this message in the log:
"Tue Apr 11 14:43:18 2006 : Auth: Login incorrect (rlm_chap: Clear text
password not available): [adexus/] (from client 3com port
268443649 cli 0010-a484-6e7a)"
I set the users file as follow:
adexus Auth-Type := CHAP, User-Password
Hi folks,
my environment:
I do AAA with freeradius as a radius-proxy in combination with ms-ias (only
for the passwords ;-) )for cisco asa 5540-box, which is similar to a cisco
pix firewall.
in the future we have many, many entries for users with the same
Cisco-AVPairs
USER1 Proxy-To-Real
Hi,
> src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql
>
> are lost in version 1.1.1, which i've downloaded 2 says ago?
>
> I've tried a find, but didn't have a match.
doc/examples/mysql.sql ?
granted, not many people look in the doc directory generally
;-)
alan
-
List info/subsc
thank you for answering so quickly, i found the file.
sorry for posting with html.
marco
- Original Message -
From: "Alan DeKok" <[EMAIL PROTECTED]>
To: "FreeRadius users mailing list"
Sent: Tuesday, April 11, 2006 9:29 PM
Subject: Re: sql database in freeradius-1.1.1 ???
"ho" <[E
"ho" <[EMAIL PROTECTED]> wrote:
> src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql
>
> are lost in version 1.1.1, which i've downloaded 2 says ago?
doc/examples/
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
am i right that the database schemes under
e.g.
src/modules/rlm_sql/drivers/rlm_sql_mysql/db_mysql.sql
are lost in version 1.1.1, which i've downloaded 2
says ago?
I've tried a find, but didn't have a
match.
Can i use the same schema i've downloaded with
version 1.0.4?
Best r
On Tue 11 Apr 2006 20:20, Alan DeKok wrote:
> Nicolas Baradakis <[EMAIL PROTECTED]> wrote:
> > Perhaps it's fine if the copyright owners distribute the binaries
> > themselves, I don't know.
>
> Copyright owners can do whatever they want with their copyrighted
> material, including changing the c
Alan DeKok <[EMAIL PROTECTED]> wrote:
> Nicolas Baradakis <[EMAIL PROTECTED]> wrote:
> > Perhaps it's fine if the copyright owners distribute the binaries
> > themselves, I don't know.
>
> Copyright owners can do whatever they want with their copyrighted
> material, including changing the copyri
Nicolas Baradakis <[EMAIL PROTECTED]> wrote:
> Perhaps it's fine if the copyright owners distribute the binaries
> themselves, I don't know.
Copyright owners can do whatever they want with their copyrighted
material, including changing the copyright, or distributing the
material in ways that are
Alan DeKok wrote:
> How about an additional idea: I don't think it's a problem for
> copyright owners to distribute binaries, so if we set up a mini apt
> system (say apt.freeradius.org), we could put problematic debian
> packages there.
Perhaps it's fine if the copyright owners distribute the
Hello.
I am a new user of free radius the version that i use
is 1.0.4-1.
Anybody knows where can i find help to enable mysql
with radius?
Thank's Alex.
___
Do You Yahoo!?
La mejor conexión a Internet
Luca Corti wrote:
> Now I'd like to specify "Acct-Type := DIALUP" in MySQL for a particular
> group of users so that accounting for that group uses sql_dialup.
>
> Is this doable? Do I need to specify Acct-Type as a reply or check item?
You need to specify Acct-Type during "preacct". It's doable
> -Original Message-
> From:
> [EMAIL PROTECTED]
> ists.freer
> adius.org
> [mailto:freeradius-users-bounces+sburton=shepherd-construction
> [EMAIL PROTECTED]
> ts.freeradius.org]On Behalf Of Burton, Steven
> Sent: 11 April 2006 16:15
> To: FreeRadius users mailing list
> Subject: RE: How
"Burton, Steven" <[EMAIL PROTECTED]> wrote:
> This stanza is a enclosed with the mschap section, still nothing ventured
> I changed the line and unfolded it and ran radiusd -X. The first
> request didn't match anything usefull and was rejected by System. I
> tried again but ticked the box 'CHAP
You would still needwith_ntdomain_hack = yes
But that isn't your actual problem.
It never called ntlm_auth
> -Original Message-
> From:
> [EMAIL PROTECTED]
> g
> [mailto:[EMAIL PROTECTED]
> adius.org] On Behalf Of Burton, Steven
> Sent: Tuesday, April 11, 2006 11:15 AM
Steve,
#ntlm_auth = "/path/to/ntlm_auth --request-nt-key
--username=%{Stripped-User-Name:-%{User-Name:-None}}
--challenge=%{mschap:Challenge:-00}
--nt-response=%{mschap:NT-Response:-00}"
ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key
--username=%{mschap:User-Nam
> -Original Message-
> From:
> [EMAIL PROTECTED]
> ists.freer
> adius.org
> [mailto:freeradius-users-bounces+sburton=shepherd-construction
> [EMAIL PROTECTED]
> ts.freeradius.org]On Behalf Of King, Michael
> Sent: 11 April 2006 15:40
> To: FreeRadius users mailing list
> Subject: RE: How
>
> Is there a how-to or tutorial for this simple case? I have
> searched this list and google generally. I have read the
> articles referred to on the FreeRadius home page and several
> others and I still can't see how the configuration works. Any
> and all help gratefully received.
>
> Stev
Burton, Steven wrote:
> However, although I can see tantalizing references to 'ntlm_auth' and
> 'ntdomain' and the like in various files I cannot see how to trigger an AD
> lookup from a RADIUS request. So far all I have achieved is:
You are doing well. Too many people try to jump directly to t
Hi,
I am trying to set up FreeRadius 1.1.1 on FreeBSD 6.0 REL with user integration
with Active directory for a Windows 2003 domain currently in Win2000 mixed
mode. My final object is to authenticate user-connections through a wireless AP.
I have setup Samba 3 and successfully joined the Window
On Mon 10 Apr 2006 23:21, Mathieu Legare wrote:
> Using freeradius 1.1.0 on RHEL 4.0 update 3 with Oracle 9 database
> backend for accounting, we discovered the following problem while trying
> to add our wireless stuff to our RADIUS system. We've been using the
> current setup for PPP login with a
Hello,
I'm using MySQL as an authentication and accounting backend. I'd like to
move the accounting for users in a particular group to a different table
in the database.
sql.conf:
-
sql sql_generic {
...
}
sql sql_dialup {
...
}
radiusd.conf:
-
accounting {
...
Acct-Ty
hi
my situation:
ive Windows 2003 Server Domaincontrollers. i use freeradius who
authenticates the clients in the domain with ntlm_auth. only users they
will be in the group "wireless" have access to the wireless:
ntlm_auth = "/usr/bin/ntlm_auth --request-nt-key
--domain=%{mschap:NT-Domain}
Venu Gopal <[EMAIL PROTECTED]> writes:
> Currently i'm doing testing on Netscreen boxes N25/50
> series, it works for authentication. If you could help
> me in defining the privilege level commands on radius
> server like cisco for netscreen boxes, it would be
> great help.
Take a look at share/d
dear Alan
I changed the version of freeradius to 1.1.1 and we kept the last
radiusd.conf file from 1.0.5 version unchanged. Belove you can see the
excerpt of radiusd.conf file
expr {
}
digest {
}
exec {
wait = yes
input_pairs = request
}
ex
Hello,
I need to modify the username attribute dynamically before its handed off to
other modules.
Is it possible to use the "rlm_attr_rewrite"-module in a simple perl script?
I want to change usernumbers to username.
Any ideas about that one?
Thanks,
David Lais
[EMAIL PROTECTED]
-
List info/
Hi,
I was a little confused about radiusd.conf settings for ldap authentication. These are a few doubts i have ...
1) Is there any specific filter entry to authenticate posixAccount users?
The default is filter = "(uid=%{Stripped-User-Name:-%{User-Name}})" , will this work f
30 matches
Mail list logo
