Can I set Autz-Type in users? but leave EAP to set Auth-Type??
Sure.
Stefan Winter
--
Stefan WINTER
Stiftung RESTENA - Réseau Téléinformatique de l'Education Nationale et de
la Recherche
Ingenieur Forschung Entwicklung
6, rue Richard Coudenhove-Kalergi
L-1359 Luxembourg
E-Mail: [EMAIL
On 6/26/06, duckeo [EMAIL PROTECTED] wrote:
The aim is to authenticate users to their MS active directory account
via LDAP, and then check that the user is a member of the WirelessVPN
group -- if these two conditions meet then the user is granted access.
What's happening at the moment is as
Hi all! I have completed setup of mpd+freeradius+AD
2003. Now my users authenticating from Active Directory, if they are members of
specific group. But I still have some questions:
How to
make a different timeouts for different groups in AD
How to appoint
special IP for
True. Nomadix developers told me ir is a problem of my RADIUS server. I
think it is almost impossible because Radius server it is a 'silly' machine.
If a NSE tells radius thatinsert a registes in radacct, radius server does
and it is supposed NAS controls its ID's. It is true I can add a DB
On 6/26/06, duckeo [EMAIL PROTECTED] wrote:
Some random garbage
Okay solved a few issues but found a few more - realised I had a typo
in the above post and corrected that.
The thing issue remaining is still the handling of failures. The debug
output seems to indicate a Auth-Type reject is
duckeo wrote:
It matches a DEFAULT line in users, but doesn't send the reply? It
You're misunderstanding how FreeRadius works when processing the request
I think. Broadly, it does this (the behaviour can be changed - see
doc/configureable_failover for details):
1a. For each entry in
On Monday 26 June 2006 09:55, Егоров Сергей wrote:
Hi all! I have completed setup of mpd+freeradius+AD 2003. Now my users
authenticating from Active Directory, if they are members of specific
group. But I still have some questions:
1.How to make a different timeouts for different groups
Thanks for reply.
You can use one of the three firewalls avaliable in the base system(ipfw, ipf
and pf), however mpd comes with a small dictionary that uses ipfw(8) and you
can easily define some filter bound to an interface (bound to a username) via
a radius reply attribute, let filter be a
Hi all,
There is a few problems in the autoconf tests in version 1.1.1.
Please try 1.1.2.
thanks for your tips.
Now I managed to compile version 1.1.2.
Here is the configure call I used:
CFLAGS=$CFLAGS -DHEIMDAL_KRB5 -I/usr/include/heimdal ./configure
--with-snmp=no
On Monday 26 June 2006 14:04, Егоров Сергей wrote:
Thanks for reply.
You can use one of the three firewalls avaliable in the base system(ipfw,
ipf and pf), however mpd comes with a small dictionary that uses
ipfw(8) and you can easily define some filter bound to an interface
(bound to a
So what 'rest of the documentation' should I look at. I guess I am not
seeing how I should know that the auth_log is a variant of the detail
module.
I am hoping i can get a better understanding of the documentations so I
would not have to ask questions in the future. So for this example I
Walter Reynolds [EMAIL PROTECTED] wrote:
So what 'rest of the documentation' should I look at. I guess I am not
seeing how I should know that the auth_log is a variant of the detail
module.
The comments at the start of the modules section in radiusd.conf
explain this. It event points to
Hi,
I would like FreeRadius to proxy requests to two radius servers.
Normally requests should go to a primary(kiezel1i), but if this is
unavailable it should send requests to a secondary(kiezel2i). I'm using
the config at the bottom of this message. If I shut the primary down,
FreeRadius never
=?iso-8859-1?B?U2FudGlhZ28gQmFsYWd1ZXIgR2FyY+1h?=
[EMAIL PROTECTED] wrote:
True. Nomadix developers told me ir is a problem of my RADIUS server.
If the NAS sends multiple accounting packets when they had been
ACK'd, then it's broken.
Alan DeKok.
-
List info/subscribe/unsubscribe?
Bill Carr [EMAIL PROTECTED] wrote:
My pseudo-code thought process is outlined below (I'm not a coder, would
never profess to be; thus my post!):
if NAS-Port-Type == Wireless - IEEE 802.11
then
Tunnel-Medium-Type == IEEE-802
Hi
I am running Freeradius on Mac OS X. How do i assign fixed IP address to
my wireless clients who are authenticating under Apple BAse stations??
Any suggestions welcome
Regards Thanks
Mahesh S Kudva
---
Robosoft Technologies -
This is probably best achieved using DHCP rather than RADIUS. Once
RADIUS has authenticated the user and the device is connected to the
subnet, you'll normally obtain a dynamic IP address via DHCP. DHCP
can be configured to give a fixed IP address to a particular MAC
address.
Rgds,
Guy
On
17 matches
Mail list logo