Hi Walt
If you were to put this in the wiki you may even have other people help you
edit it ;-)
Peter
On Fri 02 Mar 2007 22:37, Walt Reynolds wrote:
> I have searched, but did not find what I was looking for, so trying to
> do my own flowchart of the process. Below is a written up flow that I
Hi everyone. I'm currently running FreeRadius verison 1.0.5 on a Linux Redhat 9
server. I need to upgrade my FreeRadius to the latest, greatest version 1.1.4.
Awhile back i upgraded from 0.9.3 to 1.0.5, but for the life of me i can't
remember how to do the upgrade without completely messing up
I have searched, but did not find what I was looking for, so trying to
do my own flowchart of the process. Below is a written up flow that I
want to try and convert to a graphical one. Can I please get some
feedback on if this is not only the way it really works, but also if it
is accurate.
Alan DeKok-4 wrote:
>
> Um... rlm_example? Or the files in doc/?
>
> It's not like the module system is that complicated. A C file, a tiny
> Makefile, and you're pretty much done.
>
>> Or would I just include the chappatch.c file in the same directory,
>> include the header file chappat
Matt Ashfield wrote:
> The user "baduser" has a shell of /sbin/nologin. Would that account for any
> of this?
Yes. Change it to /bin/true, which is often listed as a valid shell
in /etc/shells, but still won't let them log in.
Alan DeKok.
--
http://deployingradius.com - The web site
I've uncommented the unix line in authenticate and left the /etc/shadow,
/etc/group, /etc/password files commented out of the unix module definition
part:
unix {
cache = no
cache_reload = 600
#passwd = /etc/passwd
#shadow = /etc/shadow
#group = /etc/group
radwtmp = ${logdir}/radwtmp
i was thinking the NAS had something to do with it. is there any way i
can get the NAS to send me the correct user name? we are using cisco
aironet for access points running IOS 12.3.
or is there any other way to get the correct user name into the table?
thanks
bz
--
> -Original Message-
> As for building it from source, it shouldn't be a problem.
>
To further upon this:
http://wiki.freeradius.org/Build#Building_Packages
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
PD wrote:
> Seems that we are not using all the hardware platform listed at
> /usr/local/share/freeradius, can we put hash / # in front of the
> $INCLUDE that we not used ? such as 3COM, Cisco, etc ?
Yes.
> I believe there will be more memory used if we call all of the
> dictionaries compare to
Hi all..
inside of /usr/local/etc/raddb/dictionary we found the line :
$INCLUDE /usr/local/share/freeradius/dictionary
inside of /usr/local/share/freeradius/dictionary.. there are many
$INCLUDE that call all dictionary.xxx
Seems that we are not using all the hardware platform listed at
/usr/loca
PD wrote:
> Seems that this cause by the process sequesces...
> radius is started before mysql started. See the PID of each progress..
...
> The question is.. how to change the process sequence, therefor mysql will
> started before radius ?
See the "rc" scripts on your OS. Re-order them, or ch
Hi Satish ,
Best option 1st run radius in debug mode it will tell you why radiusd
automatically dieing...
radius -X -A
and also start radwatch script that is comes with radiusd that script is
continously look if radiusd is died then it radwatch will start.
hope this will help
On 3/1/07, sa
Hi,
Sorry, I probably was not clear enough:
Its all working as I want:
User-Name [EMAIL PROTECTED] Password=something
Is processed correctly by hints to:
User-Name realm.net Password=common
But What I want to log in postauth SQL is the original username:
[EMAIL PROTECTED]
Not simply the
> Date: Wed, 28 Feb 2007 19:35:48 +
> From: Phil Mayers <[EMAIL PROTECTED]>
> Subject: Re: Logging based on port request came in on
> To: FreeRadius users mailing list
>
> Message-ID: <[EMAIL PROTECTED]>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
> Walt Reynolds wr
Hi,
> I am successfully using the hints file to manipulate the User-Name of a
> subset of users by matching on their realm name. The hints file allows be
> to drop these User-Names back to a single common name and to authorize with.
Stripped-User-Name is the variable you want to play with. you
Hi,
I am successfully using the hints file to manipulate the User-Name of a
subset of users by matching on their realm name. The hints file allows be
to drop these User-Names back to a single common name and to authorize with.
What I want to be able to do now, is to store a copy of the origina
Ramazan Ulker wrote:
> Peap, tls and eap-md5 work well for xp clients but peap and eap-md5 fail
> for vista client for version 1.1.3. Freeradius 1.1.4 version was
> released for vista support. But I couldn't update to this release from
> package manager programs(smart, aptitude, yast etc.). Updati
Zeli Kartzman wrote:
> we are running freeradius-1.0.5-1.2 and mysql-5.0.27-1.fc5
> when i look at the radacct table in the mysql database i see there are a
> number of entries with a non-existent user. i.e.
> D4JM4P61\\Kimberly Higgins
That is the name sent in the outer TLS tunnel.
> when i l
Matt Ashfield wrote:
> Now I know Alan does not recommend DEFAULT Auth-Type, but for here, I think
> it might be necessary. So in my users file, I added the following:
>
> DEFAULT Auth-Type := System
> Fall-Through = Yes
Don't use ":=", use "=".
> Thinking that would allow my users who
ChristosH wrote:
> Okay, I see what you mean now. Is there a tutorial on adding my own module
> to it?
Um... rlm_example? Or the files in doc/?
It's not like the module system is that complicated. A C file, a tiny
Makefile, and you're pretty much done.
> Or would I just include the chappat
Hi all,
I just finish the setup of FR 1.1.4 on FBSD 6.2
When FR started up manually, it started nicely. The progress can be seen
at /var/log/radius.log
Fri Mar 2 15:20:29 2007 : Info: Using deprecated naslist file. Support
for this will go away soon.
Fri Mar 2 15:20:29 2007 : Info: rlm_exec:
21 matches
Mail list logo