[EMAIL PROTECTED] raddb]# /usr/bin/ntlm_auth --request-nt-key
--username=e2052982 --domain=ADMIN4182 --challenge=960d6d08f40d6939
--nt-response=89ad9043905fd7c5686086e2493f3ecf32c85d46bc438903
Logon failure (0xc06d)
[EMAIL PROTECTED] raddb]# /usr/bin/ntlm_auth --request-nt-key
--username=
"Rohaizam Abu Bakar" <[EMAIL PROTECTED]> wrote:
> Login incorrect: [EMAIL PROTECTED] (from client localhost port 0)
> TTLS: Got tunneled Access-Reject
So read the *previous* debug logs to see why it was rejected.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.
[EMAIL PROTECTED] wrote:
> juser Auth-Type := Local, Crypt-Password == "H25nfgL4rCxBY"
Use ":=", not "==". See "man users".
"==" is a comparions. Because there's no Crypt-Password in the
request, it will never match.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freerad
Peter de Groot <[EMAIL PROTECTED]> wrote:
> [EMAIL PROTECTED] raddb]# /usr/bin/ntlm_auth --request-nt-key
> --username=e2052982 --domain=ADMIN4182 --challenge=6151ad29f27eff47
> --nt-response=01e42eabc464bf9915883d804457069d4702d95534ce4d53
> Logon failure (0xc06d)
If you can get it work
eter de Groot <[EMAIL PROTECTED]> wrote:
> I am trying to autheticate against a different domain that than the
> samba server is joined to.. should be ok ??
Probably not.
> [EMAIL PROTECTED] raddb]# ntlm_auth --request-nt-key
> --domain=admin4182 --username=e2052982
> password:
> NT_STATUS_
But still, you can try as he said.:-(
--
Message: 4
Date: Thu, 13 Jul 2006 23:16:35 -0400
From: [EMAIL PROTECTED]
Subject: Re: Crypt-Password Problem
To: FreeRadius users mailing list
Message-ID:
<[EMAIL PROTECTED]>
Content-Type: text/plain; charset=US
Trying to do EAP-TTLS-PAP with CRYPT passwd in LDAP.. The tunelling seems
fine.. but up to comparing the password it will failed. Refer below logs &
config
Some says (http://felipe-alfaro.org/blog/category/radius/) PAP is tunneled
inside EAP-TTLS through EAP-GTC... Tried that as well.. stil
[EMAIL PROTECTED]
wrote on 07/13/2006 11:06:56 PM:
> Quoting [EMAIL PROTECTED]:
>
> >
> > Excuse me if this has been asked before but I am having a hard time
finding
> > it in the archives. I have a script that builds a radius users file
out of
> > a htpasswd file, the password entries are enc
Quoting [EMAIL PROTECTED]:
>
> Excuse me if this has been asked before but I am having a hard time finding
> it in the archives. I have a script that builds a radius users file out of
> a htpasswd file, the password entries are encrypted. This worked great on
> a Redhat Enterprise AS 3 server ru
Excuse me if this has been asked before but I am having a hard time finding
it in the archives. I have a script that builds a radius users file out of
a htpasswd file, the password entries are encrypted. This worked great on
a Redhat Enterprise AS 3 server running freeradius-0.9.3. I have since
Peter de Groot <[EMAIL PROTECTED]> wrote:
> I am trying to autheticate against a different domain that than the
> samba server is joined to.. should be ok ??
Probably not.
> [EMAIL PROTECTED] raddb]# ntlm_auth --request-nt-key
> --domain=admin4182 --username=e2052982
> password:
> NT_STATUS_OK:
Please help I cannot see the problem after a day of reading the
lists and googling... hopefully a fresh pair of eyes
I am trying to authorize to the network via an ntlm_auth lookup against
winbind using PEAP and MS-CHAP v2 etc etc
Doing an ntlm_auth on the command line returns suc
"Robert Dukes" <[EMAIL PROTECTED]> wrote:
> This really sucks :) We invested so much into the gear here as our project
> is funding by caring people. So there is no way to get this done ah
Try the patch below, which should work in 1.1.x.
No guarantees... it just compiles, and I haven't
Brenckle, Nicholas wrote:
I have an entry in the hints file, that when I uncomment, the
authentication fails. And I can't figure out why.
When/where during the process does the hints file come into play? Im
watching everything under debug mode, and I can't figure it out
Thank you!
---
This really sucks :) We invested so much into the gear here as our project is funding by caring people. So there is no way to get this done ah On 7/14/06,
Alan DeKok <[EMAIL PROTECTED]> wrote:
"Robert Dukes" <[EMAIL PROTECTED]> wrote:> Breezenet/Breezecom/Alvarion VSA's. These NASs send> Ether
I have an entry in
the hints file, that when I uncomment, the authentication fails. And I can't
figure out why.
When/where during
the process does the hints file come into play? Im watching everything under
debug mode, and I can't figure it out
Thank
you!
-
List info/subscribe/uns
"Robert Dukes" <[EMAIL PROTECTED]> wrote:
> Breezenet/Breezecom/Alvarion VSA's. These NASs send
> Ethernet port data in VSAs (up to 11 per accounting request) but
> unfortunately dont use the same attribute numbers each time. Instead,
> the attribute number increments each time, then wraps at 256.
Here is the dump and you can see what I am talking about. Mapping VSA is not too much an issue Yes you are right about the 256 dic file but the in/out traffic is encoded ith in/out vioce these need to be parse
On 7/13/06, Thor Spruyt <
[EMAIL PROTECTED]> wrote:
How about adding a dictionary will a
How about adding a dictionary will all 256 numbers?
- Original Message -
From: Robert Dukes
To: FreeRadius users mailing list
Sent: Thursday, July 13, 2006 9:26 PM
Subject: Re: (no subject)
Sorry, Ok I use Alvarion Su radios that has radius accounting option. but
the radios send some VS
Sorry, Ok I use Alvarion Su radios that has radius accounting option. but the radios send some VSA that is not reconizable in the radius. Breezenet/Breezecom/Alvarion VSA's. These NASs sendEthernet port data in VSAs (up to 11 per accounting request) but
unfortunately dont use the same attribute n
"Robert Dukes" <[EMAIL PROTECTED]> wrote:
> Has anyone used Freeradius with Alvarion Breezeaccess to do accounting ?
> I am having a big issue get the
> the radius to understand the rodios Attribs.
Could you be more specific? "I have a problem, how do I fix it?"
doesn't let anyone help you.
Hello,Has anyone used Freeradius with Alvarion Breezeaccess to do accounting ? I am having a big issue get the the radius to understand the rodios Attribs. Or there other ways to track user traffic. We are in Russia doing a chartity project for Russian Orpahs, So any help to resolve this issues wou
interesting work around... I think I will try
this.
Thanks
- Original Message -
From:
Jurgen van
Vliet
To: 'FreeRadius users mailing
list'
Sent: Thursday, July 13, 2006 9:45
AM
Subject: RE: multiple post-auth sql
queries, possible?
Hi Duane
If
B Thompson <[EMAIL PROTECTED]> wrote:
> However, I would now like to restrict access to a particular NAS
> device to a particular set of users and I am not sure how best to go
> about this.
Create a group, and put those users into that group, also using
rlm_passwd. You could add a new file, or
Hi
We used to list all our fifty thousand usernames individually in the
users file, but this made it quite large so following advice on this
mailing list I decided to use rlm_passwd instead. This seems to work
very well and the file size is much smaller. I have configured my
passwd style users fil
thanks, this way did it.
--yedidia
fvt3 wrote:
I was able to strip the domain portion of it by having
radius execute an external script. Here is what I
have in radius to execute the external script..
ldapldap_ldap1 {
server = ""
identity = ""
Hi Duane
If you use a DB backend that supports stored procedures
(like mysql 5) you can make a procedure in your mysql server containing several
queries.
You can even use IF THEN ELSE structures,
and call that procedure from post-auth as a single
query.
like : postauth_query = "call
p
Is it possible to run a module twice in one
section...
meaning can I run the sql module twice in the
post-auth section ?
I am thinking I could, but I would have to call it
by a new name and then copy the lib files to also this new name.
Thanks
Duane Cox
- Original Message -
Hello, I have in my LAN a Colubris Access Conroller (IP: 192.168.10.81, gw: 192.168.10.1/80.B.C.D) which I authenticate on a freeradius via Internet (IP of freerad server : 63.E.F.G). My server receives : rad_recv: Access-Request packet from host 80.B.C.D:10901, id=64, length=251 Acct-Se
I was able to strip the domain portion of it by having
radius execute an external script. Here is what I
have in radius to execute the external script..
ldapldap_ldap1 {
server = ""
identity = ""
password = ""
#basedn = ""
Yedidia Klein wrote:
Hello list,
I'm using freeradius server as a radius server that forward the auth to
an LDAP server,
on a RH enterprise system (freeradius-1.0.1-1.1.RHEL3)
I want one of my service providers to authenticate against this radius,
After enabling some debug option I found t
On Thu, Jul 13, 2006 at 10:41:57AM +0300, Boian Jordanov wrote:
> On Wednesday 12 July 2006 20:13, Nikola Pavkovic wrote:
> > Any hints are very welcome.
> >
>
> Any traces are welcome :-)
Boian, but it seems that we resolved the issue following the advices
found at
http://www.mail-archive.com/fr
Yes, that method is working fine.
Thank you very much for your help.
Hariharan R wrote:
Hi all,
I am using FreeRADIUS1.1.1 with Fedora Directory server as a backend
data store.
Let us consider the scenario..
I have two servers, one is a mail server and another one is a proxy
server. Bot
Hello list,
I'm using freeradius server as a radius server that forward the auth to
an LDAP server,
on a RH enterprise system (freeradius-1.0.1-1.1.RHEL3)
I want one of my service providers to authenticate against this radius,
After enabling some debug option I found that it sends me the us
Elie Hani wrote:
I’ve installed the Free Radius on FC4 OS, I need to know if it’s
possible to configure DHCP on this server. I want that the dial up users
take an IP from a pool, dynamically configured on the Radius server
itself. If it’s possible, can you tell me the steps, otherwise, can yo
On Wednesday 12 July 2006 20:13, Nikola Pavkovic wrote:
> Hello all,
>
> I'm expiriencing strange behaviour when starting freeradius using
> rlm_perl. When I include any module (for example DBI) inside my custom
> AAA script, i get a segfault. (Debian sarge, freeradius 1.1.2).
>
> Any hints are ver
Hi;
I’ve installed the Free Radius on FC4 OS, I need to
know if it’s possible to configure DHCP on this server. I want that the
dial up users take an IP from a pool, dynamically configured on the Radius
server itself. If it’s possible, can you tell me the steps, otherwise,
can you provi
37 matches
Mail list logo