Hello. No, I haven't edited the debug output. Why would I do this if I have a
problem that want to get solved??. The debug output is exactly what I get from
FreeRadius.
There have been more people in this list with the same problem, being the
latest
[EMAIL PROTECTED] wrote:
Hello. No, I haven't edited the debug output. Why would I do this if
I have a problem that want to get solved??. The debug output is
exactly what I get from FreeRadius.
People do some surprising things on this mailing list...
I saw that you had a domain called DOMAIN,
Jan Mulders wrote:
insert into radgroupcheck table:
id,groupname,attribute,op,value
[leave blank],group1,Pool-Name,==,pool1
This will mean that any user that is part of group1, will have Pool-Name
set to group1 (which will make IP assignment work properly).
No. He's using wireless ethernet,
Tomas Eduardo Lotina Ramos wrote:
i have a problem, i need to create two dynamic ip pools, one for users
of a group A and one for users of the group B the problem is that i
dont have any idea how can i use the radcheck table for auth the users
and in the same time use dhcp3 to recognize
I post here a cleaner solution to my need, and propose the opportunity to
have an even better way to code this (but requires a patch).
The Goal
I wanted to be able to manage temporary accounts for guests:
* these accounts are created in advance, but mustn't be valid before a given
date
hi alan,
rlm_exec is a very good hint.
i will have a look.
Is this a standardized method? If so, what's the name?
no its not standardized. it is similar to the RSA securID.
i am developping this program/system for my thesis. ;)
best regards and thanks for the very fast response.
From:
Hello,
I don't touch my Radius server since 2 weeks, and know when I try do
some radtest, it show me Acces-Reject and in log:
Mon Dec 11 14:51:47 2006 : Debug: Processing the authorize section
of radiusd.conf
Mon Dec 11 14:51:47 2006 : Debug: modcall: entering group authorize
for
Phil Mayers wrote:
how can work mysql and dhcp3 together
That's a pretty difficult thing to do. There's no in-built solution, you
would have to manufacture something.
DHCP is UDP. RADIUS is UDP. Both use packed attribute-value pairs.
The main question is, is there any interest in
Hello Ernie,
Just wondering if you are using clients.conf at all?
Yup. The way you can tell is by running `freeradius -X`, like I did.
You'll see a line like this:
Config: including file: /etc/freeradius/clients.conf
I need to migrate
an older freeradius 0.9x to 1.2 and notice that the
I have implemented this exact solution with a Polish application (I'm based
in Poland). And it worked. Although mine was using mysql for the user
storage, but ldap was also an option.
Mine runs with a Java application on the mobile phone, which I've set to
allow 60 second timings for the
Thibault Le Meur wrote:
Enhancement proposal
Why not implement the NotBefore part in the FR server code as it is already
done for Expiration ?
Or, add a Date attribute, that will compare against the current
date. You can then use configurations like:
Date
[EMAIL PROTECTED] wrote:
About the client, when I turn the computer on, I have to type in the user
credentials, the same ones that I use when testing FreeRadius.
Windows sends FreeRadius the same user information in the two
cases, but the outcome is completely different and this of
course
Sean wrote:
I can't understand why Max-Daily-Session is an unknown attribute when
it's declared in the radiusd.conf and radius loads with no errors.
Because attributes are defined in the dictionaries.
Arguably, the sqlcounter module should look up that attribute, and
either complain if it
Hi,
Sorry if this is a repeat. I'm not sure if an email I sent yesterday got
through.
Clearly I'm missing something simple here. I'm trying to create accounts
that will renew on a daily or monthly basis.
I've put this code into my radiusd.conf file to test daily renewals.
$INCLUDE
Hi,
I need to migrate
an older freeradius 0.9x to 1.2 and notice that the newer sql setup
uses an nas table that was not in the older setup. We used
clients.conf for the nas's and I'm trying to figure out how/if
clients.conf gets migrated to the nas table. Did you find any
pertinent
Hello,
I did a set follow-fork-mode child in gdb now but then, there's no
assertion failed!
The radiusd child process keeps running now but no one can authenticate:
[EMAIL PROTECTED] tmp]# cat /usr/local/var/log/radius/radius.log
Sat Dec 9 15:47:02 2006 : Info: FreeRADIUS Version 2.0.0-pre0,
I have the same error message.
Somebody adviced me that I have to download the latest release of freeradius .
-- Forwarded Message --
Subject: SQL Counter
Date: Monday 11 December 2006 02:04 pm
From: Sean [EMAIL PROTECTED]
To: freeradius-users@lists.freeradius.org
Hi,
Sorry
Guilherme Franco wrote:
Hello,
I did a set follow-fork-mode child in gdb now but then, there's no
assertion failed!
And the server doesn't process any requests, either.
ps. Regarding the previous post, the Assertion failed occurs only
when the first packet is received.
That's not
Mr. Alan.
Sorry for bothering you.
If I run radiusd and setup the NAS to not send any requests to this radius
server, radiusd stays up all day in Info: Ready to process requests..
In the momment that I setup the NAS to send request to the radius server and
the first request goes to it, radiusd
this is the example of my dhcpd.conf
im using dhcp3 for ubuntu and freeradius 1.1.3 , here for example I have two ip pools one for users that belong to the group A and another one for the rest of the users, the class name is "A", here im using the MAC address to divide users, all the MACs with
Guilherme Franco wrote:
But of all the logs that I have, just ONE shows the following:
Wed Dec 7 09:15:04 2006 : Info: Ready to process requests.
Wed Dec 7 09:15:04 2006 : Auth: Invalid user: [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]] (from client NAS-4 port 2952792216)
Wed Dec 7
I can't understand why Max-Daily-Session is an unknown attribute
when
it's declared in the radiusd.conf and radius loads with no errors.
Because attributes are defined in the dictionaries.
Arguably, the sqlcounter module should look up that attribute, and
either complain if it
Tomas Eduardo Lotina Ramos wrote:
this is the example of my dhcpd.conf
Please ask DHCP questions on the ISC DHCP list.
And the ISC DHCP server doesn't do SQL.
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
-
Sean wrote:
Okay, thanks Alan. Should I edit a dictionary file and if so which one?
Read /etc/raddb/dictionary
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
-
List info/subscribe/unsubscribe? See
for request 0
Mon Dec 11 19:48:17 2006 : Debug: modsingle[authorize]: calling
auth_log (rlm_detail) for request 0
Mon Dec 11 19:48:17 2006 : Debug: radius_xlat:
'/usr/local/var/log/radius/radacct/10.10.2.11/auth-detail-20061211'
Mon Dec 11 19:48:17 2006 : Debug: rlm_detail:
/usr/local/var/log/radius
Hello everyone,
I am newbie to FreeRADIUS. Using Windows RAS (VPN server) as RADIUS client,
but from output, I can see that there is no User-Password field in request
from RAS at all, I am using rlm_jradius inside freeradius to forward
username/password to my own authentication program.
Only
1. Fwd: SQL Counter (Enrique Acosta)
Thanks Enrique. I upgraded to 1.1.3 but the error is still there. Alan
gave me a hint that the attribute is not in the dictionary, so I've
spent all evening searching the dictionary files looking for SQL
attributes with no luck. My searches of the list
Sean wrote:
1. Fwd: SQL Counter (Enrique Acosta)
Thanks Enrique. I upgraded to 1.1.3 but the error is still there. Alan
gave me a hint that the attribute is not in the dictionary, so I've
spent all evening searching the dictionary files looking for SQL
attributes with no luck.
No... You
Read /etc/raddb/dictionary
Alan, that directory doesn't exist on either of my systems. One system
is running 1.0.4 and the other is running 1.1.3. I've tried searching
the dictionaries for Max-All-Session, because that attribute works as
does Expiration. The dictionaries that I'm searching are
/10.10.2.11/auth-detail-20061211'
Mon Dec 11 19:48:17 2006 : Debug: rlm_detail:
/usr/local/var/log/radius/radacct/%{Client-IP-Address}/auth-detail-%Y%m%d
expands to /usr/local/var/log/radius/radacct/10.10.2.11/auth-detail-20061211
Mon Dec 11 19:48:17 2006 : Debug: radius_xlat: 'Mon Dec 11 19:48:17
Guilherme Franco wrote:
I've done a CVS clean install now (EVERYTHING old deleted before
install and rebooted machine) but the same error occurs!
OK... it's just that I have a difficult time reproducing the problem,
so it's kind of hard to figure out what's going wrong.
Alan DeKok.
--
Sean wrote:
Read /etc/raddb/dictionary
Alan, that directory doesn't exist on either of my systems.
Well, there's a dictionary file in the same directory as
radiusd.conf. Look at that.
One system
is running 1.0.4 and the other is running 1.1.3. I've tried searching
the dictionaries for
Hi
When radgroupcheck does its query, what variable name does it store its
results in? The default sql (ie authorize_group_check_query) should be
returning the GroupName, but I cannot seem to access it.
Also, in doc/rlm_sql point 3c refers to the 'read_groups' directive. I'm
assuing a couple of
I have to thank you very much for all your effort!
This is a very weird problem, but I remember that Peter Nixon kinda
had the same problem. I saw that in the devel forum:
http://lists.freeradius.org/mailman/htdig/freeradius-devel/2006-September/010273.html
Also, from Tuyan:
34 matches
Mail list logo