Damian Davalos wrote:
> The only way I can get this setup to work, is if I import my root
> certificate onto my
> client machine. Otherwise, I get the typical Access-Request and
> Access-Challenge back
> and forth.
Yes.
> My question: Is importing the root certificate onto your client necessar
Erico Augusto wrote:
> as suggested, I'm working with exec module.
> radiusd.conf:
> ...
> exec {
> post-auth:User-Password =
> `%{exec:/usr/local/etc/raddb/jradius.forward}`
> wait = yes
> input_pairs = request
> }
> ...
> the content
deepak kumar wrote:
> Hi
> I am using freeradius 1.1 on linux suse 10.1.
> I have implemented EAP-TTLS, EAP-TLS and UAM.
> I want to know is there any way to know by which method user is
> authenticated.
> I mean if user is authenticated using UAM, EAP-TLS or EAP-TTLS.
> is there any attribute whos
Scott Hughes wrote:
..
> The DB structure is: 8 tables as follows: nas,
> radacct, radcheck, radgroupcheck, radgroupreply,
> radpostauth, radreply, usergroup.
Yes... but what's *in* the DB? What attributes, operators, and values
are there, that you expect to match?
Alan DeKok.
--
http://d
Hi
I am using freeradius 1.1 on linux suse 10.1.
I have implemented EAP-TTLS, EAP-TLS and UAM.
I want to know is there any way to know by which method user is
authenticated.
I mean if user is authenticated using UAM, EAP-TLS or EAP-TTLS.
is there any attribute whose value we can store in radius da
__
> From:
[EMAIL PROTECTED]
g
[mailto:[EMAIL PROTECTED]
adius.org] On Behalf Of satish patel
> Sent: Thursday, 22 March 2007 17:33
> To: freeradius-users
> Subject: freeradius cisco command accounting
>
>
> Dear's
>
>
No, the cisco devices do not send command logs via radius. I compiled a
tacacs server and configured it to handle accounting records. I then
used the following to set up aaa on the router:
aaa new-model
aaa authentication login default group radius local
aaa authentication login localauth local
a
Hello,
I have a question I can't seem to answer with the mail archives or
documentation.
Let me begin by explaining what I'm trying to do:
- PEAP/MSCHAPv2 authentication, no client certificates, with a WinXP
supplicant.
- The server certificate is self-signed.
>From the FAQ, I have:
- Instal
Alan,
Thanks for the reply.
I am using the 'radtest' utility. The actual command
I am typing (from the command line of the server
itself is: "radtest test1 test1 192.168.1.5:1812 0
testing123". I am attempting to make sure
everything is okay on the server itself, before
attempting to connect t
Hi,
as suggested, I'm working with exec module.
radiusd.conf:
...
exec {
post-auth:User-Password =
`%{exec:/usr/local/etc/raddb/jradius.forward}`
wait = yes
input_pairs = request
}
...
the content of /usr/local/etc/raddb/jradius.forwa
hi , output of ps auxf:
[EMAIL PROTECTED] radius]# ps auxf
USER PID %CPU %MEMVSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.2 2032 620 ?Ss 10:13 0:02 init [5]
root 2 0.0 0.0 0 0 ?S10:13 0:
You can do:
netstat -an | grep 1812
or
netstat -a | grep radius
Qui, 2007-03-22 às 11:16 -0400, Martin Gadbois escreveu:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Ian van Marwijk wrote:
> >> what means plaese this error :
> >>
> >> There appears to be another RADIUS server running
Hi!
elmalhi abdelghani said the following, On 22-Mar-07 15:49:
> Hi,
>
> so i have tryed with ps auxf but no way ! so too with grep.
>
> what means plaese this error :
>
> There appears to be another RADIUS server running on the authentication
> port 1812
It means that you already have an in
Hi,
so i have tryed with ps auxf but no way ! so too with grep.
what means plaese this error :
There appears to be another RADIUS server running on the authentication
port 1812
-
Découvrez une nouvelle façon d'obtenir des réponses à toutes
> > Whats the output of 'ps auxf' on your box?
> >
>
> Netstat will tell you what's using which port.
> Do instead:
> # netstat -tnp | grep 1812
>
> example output:
> tcp0 0 192.168.30.107:49182192.168.30.1:5222
> ESTABLISHED 5938/gaim
And better if you have the lsof binary in
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ian van Marwijk wrote:
>> what means plaese this error :
>>
>> There appears to be another RADIUS server running on the authentication
>> port 1812
>
> It means that you already have an instance of radiusd running on the
> daemon port.
>
> Whats the
Hi!
elmalhi abdelghani said the following, On 22-Mar-07 15:31:
> what means plaese this :
>
> There appears to be another RADIUS server running on the authentication
> port 1812
>
> and if I typ for example the command:' ps a ' i don't found radiusd ?
Try 'ps auxf'
Bye, Ian
-
List info/subsc
what means plaese this :
There appears to be another RADIUS server running on the authentication port
1812
and if I typ for example the command:' ps a ' i don't found radiusd ?
regards.
-
Découvrez une nouvelle façon d'obtenir des réponses à
Mathieu Lemaitre wrote:
> HI all,
>
> I'm running freeradius 1.0.2 on a debian stable. For new clients, I need
> to implement 2 functions:
>
> * a bandwidth limit on a per-user basis. I mean, I need to be able to
> set, for a user, a value for his upstream and downstream bw, which is
> sent by
elmalhi abdelghani wrote:
> hello, my name is elmalhi and i´ m a student in Germany,
>
> so i want too playing with freeradius 1.1.5 but i have a bug :
>
> *** glibc detected *** radiusd: double free or corruption (fasttop):
> 0x086ab1c8 ***
Get "-r branch_1_1" from CVS.
Alan DeKok.
--
ht
hello, my name is elmalhi and i´ m a student in Germany,
so i want too playing with freeradius 1.1.5 but i have a bug :
*** glibc detected *** radiusd: double free or corruption (fasttop): 0x086ab1c8
***
i want know if freeradius run under Fedora core 6 whitout problems.
regards.
Change it in the sqlcounter code !
First functionality shouldnt be a problem if you know your NAS !
Regards,
E:S
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Mathieu Lemaitre
Sent: Donnerstag, 22. März 2007 12:31
To: freeradius-users@lists.freerad
HI all,
I'm running freeradius 1.0.2 on a debian stable. For new clients, I need
to implement 2 functions:
* a bandwidth limit on a per-user basis. I mean, I need to be able to
set, for a user, a value for his upstream and downstream bw, which is
sent by the radius as a reply attribute. Are th
> Thibault Le Meur wrote:
> > I've patched the radiusplugin to add Framed-IP-Address to
> the re-auth
> > request but rlm_ippool still allocates a new IP Address
> (I'm using FR
> > 1.1.4).
>
> Ok. It seems like rlm_ippool should be updated to look for
> Framed-IP-Address in the request.
>
On Wed 21 Mar 2007 11:50, Ramm-Ericson, Johannes wrote:
> Hello Freeradius users!
>
> I have a recurring problem that I'm wondering if any of you have run
> into. I am currently running freeradius 1.1.4 (haven't had time to
> upgrade yet) on Suse Linux SLES 10 together with a Myql DB engine.
>
> I
Hi,
> Can any one help//
not on this list, since it doesn't concern the *RADIUS* server. If you need a
hotspot solution, take a look at Chillispot, it does what you want.
Stefan
--
Stefan WINTER
Stiftung RESTENA - Réseau Téléinformatique de l'Education Nationale et de
la Recher
Hi guys!
I have two minor problems with the radius counter. I am using the radius
counter for counting the "sessiontimeout", which works quite good.
counter sessiontimeout {
filename = ${logdir}/db.sessiontimeout
key = User-Name
count-attribute = Acct-Session-Time
>
> > Thibault Le Meur wrote:
> > > I've patched the radiusplugin to add Framed-IP-Address to
> > the re-auth
> > > request but rlm_ippool still allocates a new IP Address
> > (I'm using FR
> > > 1.1.4).
> >
> > Ok. It seems like rlm_ippool should be updated to look for
> > Framed-IP-Address
Hi,
I have installed free radius to work with mysql on Ubuntu 6.0.6 with
radiusclient Nomadicx AG 2000 and it works fine.
At present on Nomadix , internal web server is on and it gives the login and
logout pages whenever a mysql databse username and passwords are submitted
,session starts on rad
Alexander V. Klepikov wrote:
> It seemes to me, it's almost impossible to write code which will allow
> sqlsocket->conn to provide accurate information about connection state. But
> again, I'm not a programmer.
If that's true, then we still need to audit all of the sql code. Some
code does "
Hello, Alan!
You wrote on Wed, 21 Mar 2007 12:57:46 +0100:
After Nicolas Baradakis's patch some things changed. Now I know that if
connection to PostgreSQL DB became broken, libpq does not free
pg_sock->conn, so PQfinish(pg_sock->conn) MUST be called.
AD> If pg_sock->conn is freed, that poin
Scott Hughes wrote:
> When I run the radtest utility that comes with FR, I get an access-reject,
> even though the user is in the radius database. Running FR with the -X
> parameter, it does appear to be check the database.
>
> Am I testing correctly for this type of FR & MySQL setup?
Likely
Erico Augusto wrote:
> I'm trying to forward username and password to my own app, using
> post-auth section, to perform user authentication, as described below
> ... is that possible?
Yes. See the "exec" module. Why do you think the pap module has
anything to do with it?
Alan DeKok.
--
ht
33 matches
Mail list logo