smb.conf http://pastebin.ca/437671
radius.conf http://pastebin.ca/437670
clients.conf http://pastebin.ca/437668
eap.conf http://pastebin.ca/437667
krb5.conf http://pastebin.ca/437666
OK, some more googling :P
and Ive turned up this intresting howto which I will be trialing:
http://deployingradius.
Jacob Jarick wrote:
> How do I configure the users file to authenticate against the AD, the
> howto I followed says u do not need to configure the users file.
If you're using PEAP, yes. If you're just using PAP, you need to tell
the server what to do.
> I read the users.txt man page but it was
there could be some libs lurking around, but for the moment I will
stick with 1.1.3 until I resolve these authentication issues. My Job
depends on it.
On 4/13/07, Alan DeKok <[EMAIL PROTECTED]> wrote:
> Jacob Jarick wrote:
> > *** glibc detected *** ./sbin/radiusd: double free or corruption
> ...
ok will try another user, thanks again for the tips allan.
On 4/13/07, Alan DeKok <[EMAIL PROTECTED]> wrote:
> Jacob Jarick wrote:
> > I start the wireless connection on XP, enter in user and password,
> > freeradius runs the ntlm_auth command but then it spits out this
> > hge message. Its so
Freeradius 1.1.3
smb.conf http://pastebin.ca/437671
radius.conf http://pastebin.ca/437670
clients.conf http://pastebin.ca/437668
eap.conf http://pastebin.ca/437667
krb5.conf http://pastebin.ca/437666
How do I configure the users file to authenticate against the AD, the
howto I followed says u do n
Hi all
iam planning to deploy DSL Services along with Triple play service
I would like to use FreeRadius for my test application/ and performance well
going to live environment
could some suggest me. is this Free Radius can be used for this kind of
application
if this supports, can some one gu
Jacob Jarick wrote:
> A local test using radtest fails but I am unsure why. It looks like
> its trying to authenticate against the unix passwd file,
Yes. See the "users" file. It sets authentication to /etc/passwd (or
system) if there's no other method set.
> I only need
> FR to auth against
Jacob Jarick wrote:
> *** glibc detected *** ./sbin/radiusd: double free or corruption
...
> Its pretty much the same issue I had with 1.1.5 on fedora 6
Are you sure you've removed all of the 1.1.5 libraries and binaries?
And the immediate cause of the bug appears to be libltdl, if the
backtr
Jacob Jarick wrote:
> I start the wireless connection on XP, enter in user and password,
> freeradius runs the ntlm_auth command but then it spits out this
> hge message. Its so big the terminals buffer isnt big enough, but
> I have copied and pasted everything I can.
$ script logfile
$ radius
Freeradius 1.1.3
smb.conf http://pastebin.ca/437671
radius.conf http://pastebin.ca/437670
clients.conf http://pastebin.ca/437668
eap.conf http://pastebin.ca/437667
krb5.conf http://pastebin.ca/437666
A local test using radtest fails but I am unsure why. It looks like
its trying to authenticate aga
Me again guys, I have adjusted my config files etc (see links betow),
but now Im stuck on this new error and it has me a bit baffled.
Freeradius 1.1.3
smb.conf http://pastebin.ca/437671
radius.conf http://pastebin.ca/437670
clients.conf http://pastebin.ca/437668
eap.conf http://pastebin.ca/437667
Im having trouble getting rad test and my wireless clients to
authenticate. I have followed "FreeRADIUS Tutorial for AD
intergration" step by step.
Im using freeradius 1.1.3 to authenticate against a windows 2003 server.
I would use a later version but they all (including 1.1.6) segfault on fedora
Starting - reading configuration files ...
reread_config: reading radiusd.conf
Config: including file: /usr/local/etc/raddb/proxy.conf
Config: including file: /usr/local/etc/raddb/clients.conf
Config: including file: /usr/local/etc/raddb/snmp.conf
Config: including file: /usr/local/etc/rad
Ryan Kramer wrote:
> I SUSPECT something might not be escaped in a manner the MS AD server
> likes, or maybe just the fact it has any escape sequences built in at
> all is what is causing it to toss it.
No. As I have said already, the problem is that the LDAP queries are
being escaped. Please
On 4/12/07, Alan DeKok <[EMAIL PROTECTED]> wrote:
Ryan Kramer wrote:
> Apparently something in the ldap_escape_func is broken when talking to
> Microsoft AD.
The code does not distinguish between Microsoft AD and other LDAP
servers.
Correct, it is very simple code and doesn't care. My gue
Jacob Jarick wrote:
> How would I then tell radius to remove the "domain\\" from "domain\\user"
Configure the "ntdomain" instance of the "realms" module, and make
sure it's listed in the "authorize" section. Then, configure the realm
by name in proxy.conf.
Alan DeKok.
--
http://deployingra
Kevin Bonner wrote:
> It surprises me that it still applies cleanly (just offset) with the current
> CVS head.
The SMUX code hasn't changed much. It should probably be replaced
with AgentX code, but that can be done later...
> Feel free to test the patch and report results in the bug or on
Ryan Kramer wrote:
> Apparently something in the ldap_escape_func is broken when talking to
> Microsoft AD.
The code does not distinguish between Microsoft AD and other LDAP servers.
> I replaced the code of that function with the much more
> lenient code of the 1.0.1 ldap_escape_func, and it
On Thu 12 Apr 2007, Ryan Kramer wrote:
> > No. It's part of the LDAP query.
> >
> > In order to avoid external users logging in with names that are valid
> > LDAP queries, the untrusted user input is escaped before it is passed to
> > the LDAP module.
>
> Apparently something in the ldap_escap
How would I then tell radius to remove the "domain\\" from "domain\\user"
On 4/13/07, Alan DeKok <[EMAIL PROTECTED]> wrote:
> Jacob Jarick wrote:
> > Hello, I am researching my current problem with freeradius not
> > authenticating.
> >
> > The user is rejected because the name is not found, our
Hi all!!
We had correctly working freeradius, but it suddenly failed in the authenticate
users. It began to work correctly after we restart the service.
Can we avoid this problem?
I attach the error log.
Thanks in advance
German
__
Correo Yah
On Thursday 12 April 2007 10:32:18 Kevin Bonner wrote:
> On Thursday 12 April 2007 04:40:47 Milan Holub wrote:
> > Radius itself seems to react on radius packets; only snmp is ignored
> > after the snmp-write query. Completely same behaviour is observed when
> > doing reload via HUP signal(using my
No. It's part of the LDAP query.
In order to avoid external users logging in with names that are valid
LDAP queries, the untrusted user input is escaped before it is passed to
the LDAP module.
Apparently something in the ldap_escape_func is broken when talking to
Microsoft AD. I repla
Ryan Kramer wrote:
> I've recently moved to 1.1.5, and went from a system that worked
> perfectly with MS LDAP to one that will no longer find the user groups,
> using the identical config. Anyone have any ideas? The obvious one is
> that 1.1.5 throws in all kinds of escape characters, but i'm as
Zitat von [EMAIL PROTECTED]:
> Hi,
>
>> * debian:
>> building worked just out of the box, but when trying to install
>> "freeradius-dialupadmin_1.1.6-0_all.deb" it complains about missing
>> php4, but actually php5 is installed (and should work as earlier
>> version of dialupadmin did). the rest of
Alan DeKok wrote:
> Arran Cudbard-Bell wrote:
>
>> Yes where are you located in the world ?
>>
>
> GMT +1.
>
>
Ah GMT here, Though would like to be GMT + 1 well the southern part
anyway :)
Mmm Pizza.
>> I've been quite impressed by your ability to post at all times of the
>> day/nigh
Arran Cudbard-Bell wrote:
> Yes where are you located in the world ?
GMT +1.
> I've been quite impressed by your ability to post at all times of the
> day/night. :)
I have a day job which permits me to spend a large amount of time on
FreeRADIUS. I have a small child who permits me to not s
Arran Cudbard-Bell wrote:
> Seems only to be broken for ipaddr attributes.
>
> Still works with string attributes
OK, that helps.
I did some profiling a while ago, and noticed that the server was
printing IP addresses to strings all the time... even when they weren't
used. The result wa
ann kok wrote:
> Regarding to separate ip spool
> eg: radius 1. ip from x.x.x.2 - x.x.x.127
> radius 2. ip from x.x.x.128 to x.x.x.254
>
> if the radius1 is used up the ip, ls the client
> automatically asking the radius2 to get the ip?
No.
But you can configure radius1 to proxy the request
Alan DeKok wrote:
> Markus Krause wrote:
>
>> first thanks for your great work on freeradius!
>>
>
>
Second that.
> You're welcome. A lot of the recent developments that make 2.0
> realistic are a result of my recent move across 9 time zones. :)
>
>
>
Yes where are you located i
Jacob Jarick wrote:
> Hello, I am researching my current problem with freeradius not authenticating.
>
> The user is rejected because the name is not found, our AD (w2k3)
> sends usernames to freeradius in this format "domainname\\username".
That's not a 2-character delimiter. It's a backslash
Markus Krause wrote:
> first thanks for your great work on freeradius!
You're welcome. A lot of the recent developments that make 2.0
realistic are a result of my recent move across 9 time zones. :)
> * suse linux enterprise server 10:
> the file suse/freeradius.spec contains the line
>
>
CHui wrote:
> I am running both TTLS and PEAP. Everything seems ok but the radius.log
> is filling up fast with these error messages. Is the error log
> configurable?
No.
Upgrade to 1.1.6. The messages will go away.
Alan DeKok.
--
http://deployingradius.com - The web site of the
Hi,
> * debian:+
> building worked just out of the box, but when trying to install
> "freeradius-dialupadmin_1.1.6-0_all.deb" it complains about missing
> php4, but actually php5 is installed (and should work as earlier
> version of dialupadmin did). the rest of it (i tested right now sql,
I have followed all your steps on how to get freeradius to work with AD, but
still no luck.
How do I go about getting assistance with my configuration?
Donny
On 4/12/07, Alan DeKok <[EMAIL PROTECTED]> wrote:
Prateek Gupta wrote:
>
>>>Can you point to a specification saying how this hashing wo
I've recently moved to 1.1.5, and went from a system that worked perfectly
with MS LDAP to one that will no longer find the user groups, using the
identical config. Anyone have any ideas? The obvious one is that
1.1.5throws in all kinds of escape characters, but i'm assuming that
is output
only.
Jacob Jarick wrote:
> I had the same issue on fedora 6, the temporary solution is to roll
> back to FreeRADIUS Version 1.1.3. There is an rpm availble if you
> google.
1.1.6 was just released, which fixes this, and other issues.
Alan DeKok.
--
http://deployingradius.com - The web site
There is a line in (my)sql.conf:
# Remove stale session if checkrad does not see a double login
deletestalesessions = yes
that enables it. I don't know if there is such an entry in mssql.conf.
Ivan Kalik
Kalik Informatika ISP
Dana 12/4/2007, "satish patel" <[EMAIL PROTECTED]> piše:
No. Idle-Timeout will work if NAS doesn't realize that user is not
online any more. It doesn't help if stop packets are lost. Only
checkrad or such routines that check user status with NAS will help
there.
Ivan Kalik
Kalik Informatika ISP
Dana 12/4/2007, "satish patel" <[EMAIL PROTECTED]> piše:
Read the last two days on the mailing list archives. It's all they've
been talking about.
It seems to work. But i see freeradius 1.1.6 correct a bug about
HUP.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alexander Serkin wrote:
> Alan DeKok wrote:
>> Alexander Serkin wrote:
>>> The problem is that regular expression check of
>>> NAS-IP-Address =~ "xxx.xxx.97.(85|86)"
>>> does not work.
>> In the CVS head?
>
> Yes i played with CVS head today.
> Checked huge amount of regexp variants - none wor
Hi all,
I use freeradius 1.0.1. I did a script that do a kill - HUP of radiusd when
someone add a NAS in the "nas" Mysql table.
It seems to work. But i see freeradius 1.1.6 correct a bug about HUP.
Can you tell me if i'm impacted by the bug corrected in 1.1.6
Thank you for your help
Thomas-
List
Hi Alan and all core developpers involved in this release,
first thanks for your great work on freeradius!
I just downloaded the 1.1.6 release via ftp and tried to build debian
packages on Etch and rpms on SLES10, here is the almost successful
story: ;-)
* debian:+
building worked just out o
I am running both TTLS and PEAP. Everything seems ok but the radius.log is
filling up fast with these error messages. Is the error log configurable?
Thu Apr 12 09:14:51 2007 : Error: TLS_accept:error in SSLv3 read client
certificate A
Thu Apr 12 09:14:51 2007 : Error: rlm_eap: SSL error
I had the same issue on fedora 6, the temporary solution is to roll
back to FreeRADIUS Version 1.1.3. There is an rpm availble if you
google.
It compiles fine on gentoo though.
On 4/12/07, BOQUET Stephanie <[EMAIL PROTECTED]> wrote:
>
>
>
> Hi,
> when I execute radiusd, it ends with "Abandon" : a
Hello, I am researching my current problem with freeradius not authenticating.
The user is rejected because the name is not found, our AD (w2k3)
sends usernames to freeradius in this format "domainname\\username".
I have tried enabling the nt hack under the ldap section with no luck.
reading thr
Hi,
when I execute radiusd, it ends with "Abandon" : a " glibc detected *
radiusd : double free or corruption" error occured.
Thanks for helping me !
Stephanie-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Alan
Thank you for your mail
We are using a LNS this time
We are using 2 radius servers. When one radius is
down, 2nd radius can help for authenticate
Regarding to separate ip spool
eg: radius 1. ip from x.x.x.2 - x.x.x.127
radius 2. ip from x.x.x.128 to x.x.x.254
if the radius1 is used up t
for a temp fix I would make your perl script ping said ip before
checking for idle (perhaps a sleep timer) or you could simply have
each supposed active ip pinged every 1 - 2 minutes by a seperate perl
script.
Would you mind posting your checkrad.pl script, Im a perl hacker myself :)
On 4/12/07,
On Thursday 12 April 2007 04:40:47 Milan Holub wrote:
> - when trying to force reload using snmp:
> `snmpset -m /devel/freeradius/cvs/radiusd/mibs/RADIUS-AUTH-SERVER-MIB.txt
> -c verysecret localhost radiusAuthServConfigReset.0 i 2`
> then 1st reload is OK but after then when trying to either run t
hello,
i well try my freeradius with mssql, so i have installed Freeradius 1.3 ,
FreeTDS 0.64 and unixodbc 2.2...
i have mssql.conf,odbc.ini,odbcinst.ini,freetds.conf configured .
so if i run my radiusd with debug mode i see alyaws this error:
that means : failed connection.?
rlm_sql (sql): Driv
checkrad work only for simultaneous detection not fix my stop time entry in sql
it is possible to modify checkrad to fix sql stop time in radacct table ?
[EMAIL PROTECTED] wrote: If you are happy with reliability then fix checkrad
and it will clean
these random drops. That is the utility that r
I have faceing same problem when some time NAS send ACCT-STOP packet and packet
would be lost then user session would be open and next time whne user try to
login he/she got error multilogin so that i have implement checkrad.pl script
and check simultaneouse users through SNMP and it is working
Alan DeKok wrote:
> Alexander Serkin wrote:
>> The problem is that regular expression check of
>> NAS-IP-Address =~ "xxx.xxx.97.(85|86)"
>> does not work.
>
> In the CVS head?
Yes i played with CVS head today.
Checked huge amount of regexp variants - none worked.
--
Sincerely Yours,
Alexand
Alexander Serkin wrote:
> The problem is that regular expression check of
> NAS-IP-Address =~ "xxx.xxx.97.(85|86)"
> does not work.
In the CVS head?
> What has changed since 1.1.5?
The CVS head is massively re-written.
Alan DeKok.
--
http://deployingradius.com - The web site of
Prateek Gupta wrote:
>
>>>Can you point to a specification saying how this hashing works?
>
> A-->B(nsis server)->C(radius server)
>
> User A generates a large buffer which contains various Authentication
> Attributes, A hash of this string is generated using MD5 algorithm with
>
HI all,
We're using FR authenticating against LDAP to implement our wireless
solution. Basically, we are looking at the LDAP field of record type and
determining if it is a staff or a student, and assigning a vlan based on
that. Pretty simple and it works. However, there are two issues with this:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The only new features in this release are a few dictionaries. All of
the other changes are bug fixes, including the double-free's that were
in 1.1.5. We also fixed approximately 30 bugs found by Coverity
(http://scan.coverity.com).
One of the bu
You could use the same ip pool across two NAS servers if you were only using
one radius server to assign IPs. I recommend you either make one radius
server handle only one NAS, so the ip pools don't collide, or used
rlm_sqlipool across them both as Peter pointed out.
Jan
On 12/04/07, Peter Nixon
Can you point to a specification saying how this hashing works?
A-->B(nsis server)->C(radius server)
User A generates a large buffer which contains various Authentication
Attributes, A hash of this string is generated using MD5 algorithm with a
key known to both users A and C, T
Alexander Serkin wrote:
> Gurus,
> may be i'm pulling some common mistake with my configuration being
> tested against cvs snapshot, but no idea which one.
> I've an sql profile telling:
>
> some.dotted.user Cleartext-Password = cisco
>NAS-IP-Address =~ "xxx.xxx.97.(85|86)"
>
Th
OK,
1st off here is the document I have been following:
http://www.swami.se/swami/space/Categories/EduRoam/Workshop+about+eduroam+implementation/freeRadius_AD_tutorial.pdf
I have managed to get all tests and commands working except for
radtest (which i found out via google) and having an xpro clie
Alexander Serkin wrote:
> yes i did. In users file:
> users: Matched entry DEFAULT at line 106:
>
> DEFAULTHuntgroup-Name == MSK, Realm == NULL, Auth-Type
> := Local
Don't set Auth-Type. It's wrong, and it's breaking the server.
DO tell the server what the users "know
Arran Cudbard-Bell wrote:
> What was Cleartext-Password introduced for ?
Because putting "User-Password" in the "users" file was wrong.
User-Password is an attribute that goes in an Access-Request.
Cleartext-Password does not go in any packet. Instead, is an internal
server configuration, th
Milan Holub wrote:
> Hi Alexander,
>
> On Thu, Apr 12, 2007 at 02:52:49PM +0400, Alexander Serkin wrote:
>> Doesn't matter, Arran. Tried User-Password and '==' with the same
>> result: module "sqlauth" returns ok but then:
>>
>>rad_check_password: Found Auth-Type Local
>> auth: type Local
>>
If you are happy with reliability then fix checkrad and it will clean
these random drops. That is the utility that radiusd calls to check
stale entries and in sql.conf you can enable deletion of such entries.
Just make sure that such users are not listed as active by the hotspot.
If NAS thinks they
Alan DeKok wrote:
> Arran Cudbard-Bell wrote:
>> Hmm I don't know how Cleartext-Password is mapped, always thought it was
>> a legacy attribute.
>
> No. It's new in 1.1.4 && following. See "man rlm_pap".
>
>> Try User-Password ? Also it's == not = for check items .
>
> No. Use Cleartext-
Hi Alexander,
On Thu, Apr 12, 2007 at 02:52:49PM +0400, Alexander Serkin wrote:
> Doesn't matter, Arran. Tried User-Password and '==' with the same
> result: module "sqlauth" returns ok but then:
>
>rad_check_password: Found Auth-Type Local
> auth: type Local
> auth: No password configured
Arran Cudbard-Bell wrote:
> Hmm I don't know how Cleartext-Password is mapped, always thought it was
> a legacy attribute.
No. It's new in 1.1.4 && following. See "man rlm_pap".
> Try User-Password ? Also it's == not = for check items .
No. Use Cleartext-Password, and :=.
Also check t
Arran Cudbard-Bell wrote:
> Alexander Serkin wrote:
>> Gurus,
>> may be i'm pulling some common mistake with my configuration being
>> tested against cvs snapshot, but no idea which one.
>> I've an sql profile telling:
>>
>> some.dotted.user Cleartext-Password = cisco
>> NAS-IP-Addre
Alexander Serkin wrote:
> Gurus,
> may be i'm pulling some common mistake with my configuration being
> tested against cvs snapshot, but no idea which one.
> I've an sql profile telling:
>
> some.dotted.user Cleartext-Password = cisco
>NAS-IP-Address =~ "xxx.xxx.97.(85|86)"
>
Hm
Gurus,
may be i'm pulling some common mistake with my configuration being
tested against cvs snapshot, but no idea which one.
I've an sql profile telling:
some.dotted.user Cleartext-Password = cisco
NAS-IP-Address =~ "xxx.xxx.97.(85|86)"
authentication request:
User-Na
Thanks for your prompt reply Alan,
My 1st post so forgive the omission, I will clear the logs then post
radtest and the log info tomorrow once at work.
On 4/12/07, Alan DeKok <[EMAIL PROTECTED]> wrote:
> Jacob Jarick wrote:
> > Hi I have recently setup freeradius on fedora 6 and I need it to
> > a
Jacob Jarick wrote:
> Hi I have recently setup freeradius on fedora 6 and I need it to
> authenticate against windows ADS. Currently the requests come through
> the AP but are rejected by freeradius.
The reason is in the logs.
> [EMAIL PROTECTED] raddb]# radtest Administrator tfxsol 127.0.0.1:1
Hi all,
I'm wondering about procedure of precessing radcheck&radgroupcheck
database tables. On http://wiki.freeradius.org/Rlm_sql we can read:
Group processing then begins if any of the following conditions are met:
* The user IS NOT found in radcheck
* The user IS found in radcheck, but
Milan Holub wrote:
> - when query the radiusAcc and radiusAuth everything works fine(no
> segmentation faults); multiple queries give correct result
Thanks.
> - when trying to force reload using snmp:
> `snmpset -m /devel/freeradius/cvs/radiusd/mibs/RADIUS-AUTH-SERVER-MIB.txt
> -c verysecret
Alexander Serkin wrote:
...
> auth: Failed to validate the user.
> Login incorrect: [carta.skylink.msk.ru/cisco] (from client localhost
> port 0 cli 250099013297573)
> ]event.c:1277] Out of memory
It looks like you don't have a Post-Auth Reject {} section in
radiusd.conf. That's OK. I'll fix
Hi Alan,
although I remember seeing some posts regarding read_groups are in CVS
it's not true. You can setup the config parameter in sql.conf but it's
ignored!
Here is a simple patch which solves the issue:
Index: src/modules/rlm_sql/rlm_sql.c
On 4/12/2007, "Milan Holub" <[EMAIL PROTECTED]> wrote:
>==> is Accounting-STOP reaching your radius?
>you can find out by running in debug mode: freeradius -X
>
>==> is the correct query run on your database? check accounting_ queries in
>your sql/mysql-dialup.conf
>* check your DB log files: eg.
On 4/12/2007, "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> wrote:
>+ what cause of this problem ?
>Either NAS thinks that users are still connected or your RADIUS server is
>not receiving Stop packages. If NAS (NAS not radacct table) shows users
>as connected you can add Idle-Timeout of about 5 minutes
Hi.
Some problems with
FreeRADIUS Version 2.0.0-pre0, for host i686-pc-linux-gnu, built on Apr
12 2007 at 12:58:32
taken from cvs today:
rad_recv: Access-Request packet from host 127.0.0.1 port 46565, id=8,
length=95
User-Name = "carta.skylink.msk.ru"
User-Password = "cisco"
Hi Alan,
On Wed, Apr 11, 2007 at 05:51:16PM +0200, Alan DeKok wrote:
> Milan Holub wrote:
> > Hi all,
> >
> > when I've compiled in snmp support (--with-snmp) on current cvs head I got
> > following segmentation fault(does not matter whether NAS are stored in DB
> > or in clients.conf):
>
>
Dana 12/4/2007, "PD" <[EMAIL PROTECTED]> piše:
>snip
+ what cause of this problem ?
>snip
Either NAS thinks that users are still connected or your RADIUS server is
not receiving Stop packages. If NAS (NAS not radacct table) shows users
as connected you can add Idle-Timeout of about 5 minutes in u
Prateek Gupta wrote:
> User A sends the NSIS request with its keyed hash (generated using User
> A's key) appended to it to the NSIS server. Now the NSIS server needs to
> authenticate that request with a Radius server.
Can you point to a specification saying how this hashing works?
> Is there
Dear members,
Thank you so far for your help, but I guess I have do describe my problem a
second time. I try to set up a security solution for a network using
freeradius. I want to port authenticate all Clients on a HP Switch and assign a
vlan to each port dynamically. The WXPSP2 Hosts are membe
Operator should be :=. Check first that you have sql checking enabled in
radiusd.conf:
# Session database, used for checking Simultaneous-Use. Either the
radutmp
# or rlm_sql module can handle this.
# The rlm_sql module is *much* faster
session {
# radutmp
#
# See "Simul
On Thu, Apr 12, 2007 at 07:42:16AM +, PD wrote:
> I still have another problem...
> many of radacct table records are incompleted.
> We know the user already disconnected (even by click logout botton or
> just shut his/her computer down), but the information did not saved.
>
> At Radacct table
On 4/12/2007, "Milan Holub" <[EMAIL PROTECTED]> wrote:
.cut...
>==> I believe you have a typo in the tables:
>radgroupcheck: groupname=POSTPAID
>usergroup: groupname=POSPAID
I still have another problem...
many of radacct table records are incompleted.
We know the user already disconnected (even b
On 4/12/2007, "Milan Holub" <[EMAIL PROTECTED]> wrote:
>Hi,
>
>On Thu, Apr 12, 2007 at 07:14:48AM +, PD wrote:
>> Dear all,
>>
>> We has the problem regarding the above subject...
>> mysql> select * from radgroupcheck;
>> ++---+--++---+
>> | id | GroupName |
On Wed 11 Apr 2007, Murray Hooper wrote:
> Are there any open source programs that parse the accounting logs produced
> by freeradius? I can find a couple in Google, but they appear to have
> been left behind in 1999.
Hi Murray
I have been using some code I wrote called detail2db.pl, which is a
Hi,
On Thu, Apr 12, 2007 at 07:14:48AM +, PD wrote:
> Dear all,
>
> We has the problem regarding the above subject...
> mysql> select * from radgroupcheck;
> ++---+--++---+
> | id | GroupName | Attribute| op | Value |
> ++---+---
Dear all,
We has the problem regarding the above subject...
mysql> select * from radgroupcheck;
++---+--++---+
| id | GroupName | Attribute| op | Value |
++---+--++---+
| 1 | POSTPAID | Simultaneous-Use | == | 1
On Wed 11 Apr 2007, ann kok wrote:
> Hi all
>
> I am using two radius servers for our DSL clients.
>
> but our client has ip conflict issue.
>
> it looks like the first radius issues the ip to the A
> DSL client. but seondary radius doesn't know this ip
> already allocated and issue this ip to B DS
93 matches
Mail list logo