Alan,
I'm using the man rlm_passwd examples and the examples within
radiusd.conf and still I can't manage to make User-Group membership to
work.
Here's my config:
in radiusd.conf :
passwd MyGroup {
filename = /etc/MyGroup
format = "~Group-Name:::*,User-Name"
Hi all,
I'm trying to access freeRaDIUS doc section
(http://www.freeradius.org/radiusd/doc/), but I got a "Forbidden" access
message. Is this section accessible to normal users?
Best regards,
Carlo
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I'am using freeradius 1.1.2 with eap-ttls.
I have read that I can use Eap-Ttls in trasparent way for the Client, that
is without using Client side certificates and without installing other
software since that eap-ttls support legacy authentication system (I'am
using a wall garden and I'
Hi,
> MS-CHAP is an option but must be supported on the client end, using
> ntlm_auth.
ntlm_auth needs to run on the server that also runs FreeRADIUS, because
FreeRADIUS passes the credentials to ntlm_auth, which will then do the job
(i.e. talk to AD and verify the credentials).
The client does
On Wednesday 23 August 2006 20:25, Alan DeKok wrote:
> Peter Nixon <[EMAIL PROTECTED]> wrote:
> > That would seem like th logical way to do it, and would certainly make
> > the perl code clearer..
>
> Ok. Unless Boian Jordanov has concerns, I'll commit a patch in a
> few days.
Please i have no
luigi natalino wrote:
Hello,
I'am using freeradius 1.1.2 with eap-ttls.
I have read that I can use Eap-Ttls in trasparent way for the Client,
that is without using Client side certificates and without installing
other software since that eap-ttls support legacy authentication system
(I'am usi
Ami Schieber wrote:
passwd MyGroup {
filename = /etc/MyGroup
format = "~Group-Name:::*,User-Name"
hashsize = 50
ignoreislike = yes
allowmultiplekeys = yes
My /etc/MyGroup file :
FIGrp:::*,Ami
FIGrp:::*,John
No. T
Windows XP does not support EAP-TTLS. You would have to install extra
software e.g. SecureW2
MacOS X does I belive.
Sorry
And linux support it ?
_
FREE pop-up blocking with the new MSN Toolbar - get it now!
http://toolbar.msn.c
Phil,
Thanks for your help.
Can you also explain what format should the users file use ?
Currently, I've tried :
Ami User-Password == "ami123"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Fall-Through = Yes
FIGrp Auth-Type :=
"Nick Larsen" <[EMAIL PROTECTED]> wrote:
> Now I'm trying to authenticate users via wireless PDA's, but I now get
> "auth: No User-Password or CHAP-Password attribute in the request" in
> Access-Request, I guess it's the Linksys WAG54g now, so I better start
> trawling through the net again.
No.
Hi;
I was reading this email, and I've followed the steps.
I have created the postgresql database, but what should I do to make the
radius get the authentication from the postgresql database? And where should
I add the configuration if I want to declare the username and the password
in the databas
"Ami Schieber" <[EMAIL PROTECTED]> wrote:
> I'm still unable to see a match to the Group entry when I run radiusd -X but
> only to the user and to DEFAULT entries :
>
> users: Matched entry Ami at line 1
> users: Matched entry DEFAULT at line 20
You're not trying to match the group name. See "
hello I have the following users file and I wold like to send to the switch
on authentification PortPriority
...
a auth-Type := Local, User-Password == "a"
Service-Type = Administrative-User,
Reply-Message = "Salut user:A!"
b Auth-Type
Hi Sean,
Please may I get a copy of this.
Thanks,
Andre van der Walt
> -Original Message-
> From:
> [EMAIL PROTECTED]
> s.org
> [mailto:[EMAIL PROTECTED]
> reeradius.org] On Behalf Of Sean
> Sent: 23 August 2006 09:58 PM
> To: freeradius-users@lists.freeradius.org
> Subject: Report G
Hi Elie
My instructions assume that you already know how to setup rlm_sql. If you do
not, you first need to read doc/rlm_sql
Alternatively you can read the wiki:
http://wiki.freeradius.org/index.php/Rlm_sql
Regards
Peter
On Mon 28 Aug 2006 18:04, Elie Hani wrote:
> Hi;
>
> I was reading this
George Comanescu <[EMAIL PROTECTED]> wrote:
> hello I have the following users file and I wold like to send to the switch
> on authentification PortPriority
> ...
> Port-Priority = Platinum,
Does the NAS documentation say you can do this?
In most situations like this, you just
On 8/28/06, Alan DeKok <[EMAIL PROTECTED]> wrote:
"Ami Schieber" <[EMAIL PROTECTED]> wrote:> I'm still unable to see a match to the Group entry when I run radiusd -X but> only to the user and to DEFAULT entries :
>> users: Matched entry Ami at line 1> users: Matched entry DEFAULT at line 20 You're
Hi,
> >Windows XP does not support EAP-TTLS. You would have to install extra
> >software e.g. SecureW2
> >
> >MacOS X does I belive.
> >
> >Sorry
>
> And linux support it ?
with a supplicant such as Xsupplicant or wpa_supplicant. MacOSX EAP-TTLS works
out of the box.
alan
-
List info/subscr
Title: Account lockout enforcement and min lengh reqs
Hello everyone,
I am running freeradius v1.0.1 in a Redhat linux environment. Does there exist a mechanism to enforce account lockout after 3 tries and strong passwords? The environment is Cisco routers and switches. If there exists some
On Mon 28 Aug 2006 18:49, Ellis, Scott 1 (N-Comptel Inc.) wrote:
> Hello everyone,
>
> I am running freeradius v1.0.1 in a Redhat linux environment. Does there
> exist a mechanism to enforce account lockout after 3 tries and strong
> passwords? The environment is Cisco routers and switches. If ther
"Ami Schieber" <[EMAIL PROTECTED]> wrote:
> "man users" doesn't show me anything I find related to users file of
> FreeRadius :
"man 5 users", then.
> FIGrpAuth-Type := Local, MyGroup-Name == FIGrp
> Reply-Message = "Hello from Group, %u"
>
> Is my comparison correct ?
"Ravi S M" <[EMAIL PROTECTED]> wrote:
> I am integrating my rlm_otp module with freeradius code . if I run
> radiusd server with the purify it is giving leaks
The information you provided doesn't help to determine where
the bugs are located. There's one mention of a C file, and tons of
other "
Ami Schieber wrote:
"man users" doesn't show me anything I find related to users file of
FreeRadius :
NAME
users - print the user names of users currently logged in to the
current host
Try "man 5 users". Man page names are only unique within section
numbers. Alternatively, "man -a u
Hi Andre,
You can download the work to date here
http://swarmhotspots.com/phpreports.tar.gz I'm integrating phpMyPrepaid
and Dialup Admin into it at the moment, so there are a lot of redundant
files included in the tar file. You can have a look at how it works at
http://topup.ie/reports username
Hi all,
I would like to know what Captive Portal you advise to use and in
particular what supports better Freeradius.
For the moment I'am using Chillispot.
My problem is always the same:
set the NAS to accept the IP address, assigned by IP pool, from FreeRADIUS.
I have searched documentation relat
Thank you, Sean.
Have a great day.
Edward
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Sean
Sent: Monday, August 28, 2006 10:45 AM
To: freeradius-users@lists.freeradius.org
Subject: RE: Report Generator
Hi Andre,
You can download the work to date
When i try to execute the radtest command with AD user logon credentials it rejects the packet and here is the output.
rad_recv: Access-Request packet from host 127.0.0.1:32874, id=81, length=61
User-Name = "test"
User-Password = "test123"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
Processing th
"Kartthik" <[EMAIL PROTECTED]> wrote:
> When i try to execute the radtest command with AD user logon credentials it
> rejects the packet and here is the output.
...
> rad_check_password: Found Auth-Type System
> auth: type "System"
> Processing the authenticate section of radiusd.conf
> modcall: e
Hi,I have forcibly set Auth-Type to Local, so perhaps that's the problem.Here's my debug output anyway...rad_recv: Access-Request packet from host
10.10.1.199:1812, id=1, length=73 User-Name = "nick"
Framed-MTU = 1400 NAS-Port-Type = Wireless-802.11
EAP-Message = 0x02
Hi,
(don't write HTML mails please)
(please use a more descriptive subject line instead of Please help !!!)
(0 or 1 exclamation mark will do, preferably 0)
first off: if you will stay with PAP later (user's password comes in in clear
text), just treat the AD server like a plain ldap server, i.e.
A general question that I have not seen in the forum.I want to authenticate against LDAP... BUT I don't want to use the LDAP password as the password in every case.In a remote connectivity solution I want to check the remotepassword attribute for authentication.
Problem is (as I see it), that the
I am quite pleased to report I have, with minimal discomfort, version 1.1.3 running on Solaris 10.The source actually compiles perfectly once OS dependencies etc. are met.I will share a few tips here for any who may be attempting the same.
My main goal was LDAP functionality. Other bells and whist
I've now removed Auth-Type := Local, and I get a little futher, but it now seg-faults...rad_recv: Access-Request packet from host
10.10.1.199:1812, id=4, length=73 User-Name = "nick"
Framed-MTU = 1400 NAS-Port-Type = Wireless-802.11
EAP-Message = 0x02010009016e69636b
Hi
I've noticed this comment in the cvs log (for rlm_perl.c):
Over-write existing vp's with new ones.
This means that the Perl module works more like the other modules,
which have absolute power over the VP's, and less like the "users"
file, which updates the VP's vi
> I am quite pleased to report I have, with minimal discomfort, version 1.1.3
> running on Solaris 10.
>
> The source actually compiles perfectly once OS dependencies etc. are met.
> I will share a few tips here for any who may be attempting the same.
> My main goal was LDAP functionality.
On Tue 29 Aug 2006 00:45, Lin Richardson wrote:
> I am quite pleased to report I have, with minimal discomfort, version
> 1.1.3running on Solaris 10.
>
> The source actually compiles perfectly once OS dependencies etc. are met.
> I will share a few tips here for any who may be attempting the same.
36 matches
Mail list logo
