Trying to upgrade from 1.14 to 1.16 for stability
gains (hopefully). Unfortunately, it's segfaulting on
the first request that comes in. The LDAP libraries
haven't changed and to ensure that there aren't any
collisions with 1.14 installation, everything (conf,
libs, binaries) are in a new location.
ObDisclaimer: I have googled my best google, and read all the docs I can
find, so please be gentle if this is a dumb question.
Is it possible with freeradius to use SQL to retrieve certain return
attributes (in this case rate limiting values for PPPOE sessions), whilst
still handling authentica
Hi, it looks like I used a certificate with the wrong OID. I used a
cert minted with their "SubCA" template which doesn't have the (OID
1.3.6.1.5.5.7.3.1).
In "playing" with the Microsoft CA on Windows 2003 server, I've found
that the Certificate made using the "Web Server" template is the one
r
nikitha george wrote:
> I am using freeradius-1.1.4 with PEAP-MSCHAPV2. Each session starting
> from Access-Request till Access-Accept it takes more than 250ms to
> complete. Is it the normal performance of freeradius-1.1.4 or anything
> suspicious in this regard?
It depends on your CPU speed, e
Gerard Mansvelder wrote:
> Does anyone know if freeradius has VSA's for 3com5500
Look in the distribution:
$ ls share/dictionary*
> and if not, Where I can get them
3com would be a good place to start.
> and how I should import them.
$ man dictionary
Alan DeKok.
--
http://deployingra
On 4/27/07 2:32 AM, "Alan DeKok" wrote:
> If you're not going to use the Perl module, just delete the entire
> rlm_perl directory.
>
> Alan DeKok.
Thanks, that worked. Free Radius 1.1.6 is now running on my OSX Tiger
Server. YEA!!! Thanks a Million Alan
Joseph Sullivan
-
List info
I'm trying to set up a system with 3 radius servers and want to store
all accounting data on all 3 systems. This worked well in a 2 server
system with radrelay running on both systems.
rad1 <---> rad2
It this situation radrelay uses the Client-IP-Address attr to decide if
something is a duplicat
Hi,
Does anyone know if freeradius has VSA's for 3com5500, and if not, Where I can
get them and how I should import them.
Thanks,
Gerard. ( mailto:freeradius-users@lists.freeradius.org )
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> I am using freeradius-1.1.4 with PEAP-MSCHAPV2. Each session starting from
> Access-Request till Access-Accept it takes more than 250ms to complete. Is
are you doing it against an LDAP server?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Well, it matched something in the users file:
users: Matched entry DEFAULT at line 154
Dana 27/4/2007, "shrikant Bhat" <[EMAIL PROTECTED]> piše:
>Yes I figured that. thanks for that. But the issues is the user I am
>trying to authenticate is not listed in users file or in AD, so I dont
>underst
On Line 154 I have default Auth-Type = ntlm_auth. If I comment this
out I get the Access-reject packet.
thanks,
SB
On 4/27/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> Well, it matched something in the users file:
>
> users: Matched entry DEFAULT at line 154
>
>
> Dana 27/4/2007, "shrikant B
Hi All,
I am using freeradius-1.1.4 with PEAP-MSCHAPV2. Each session starting from
Access-Request till Access-Accept it takes more than 250ms to complete. Is
it the normal performance of freeradius-1.1.4 or anything suspicious in this
regard? When i try to send many Request simultaneously then t
Yes I figured that. thanks for that. But the issues is the user I am
trying to authenticate is not listed in users file or in AD, so I dont
understand how is it authenticating this user.
I have attached debug .
thanks for the help.
**
Error seems to be because shared secret is testing123 not testing 123.
But you need to paste output od radiusd-X after Access-Request. Open two
ssh sessions and do radtest from one and radiusd -X from the other.
Ivan Kalik
Kalik Informatika ISP
Dana 27/4/2007, "shrikant Bhat" <[EMAIL PROTECTED]>
And what happens when you get Access-Request?
Dana 27/4/2007, "shrikant Bhat" <[EMAIL PROTECTED]> piše:
>Hello Alan,
>I have built and installed 1.1.6 version of FreeRadius. When I test
>using radtest it authenticates any user with any pasword, what I mean
>by this is it doesnt seem to contact t
Yes. Use NAS-IP-Address as check item. If you need a list of groups
and/or users/callerIDs/etc. that are allowed then use a huntgroup.
Ivan Kalik
Kalik Informatika ISP
Dana 26/4/2007, "Norman Zhang" <[EMAIL PROTECTED]> piše:
>Is there a way to set FreeRADIUS to authenticate against specific gro
I get this error
[EMAIL PROTECTED] ~]# radtest raduser radpass localhost 0 testing 123
Sending Access-Request of id 47 to 127.0.0.1 port 1812
User-Name = "raduser"
User-Password = "radpass"
NAS-IP-Address = 255.255.255.255
NAS-Port = 0
Framed-Protocol = PPP
r
Opens fine for me.
Ivan Kalik
Kalik Informatika ISP
Dana 27/4/2007, "satish patel" <[EMAIL PROTECTED]> piše:
>it is not opening
>
> http://www.navicat.com/
>
>
>[EMAIL PROTECTED] wrote: http://www.navicat.com/
>
>Ivan Kalik
>Kalik Informatika ISP
>
>
>
>
>Dana 26/4/2007, "satish patel"
> piše:
Yes. This looks wrong:
[EMAIL PROTECTED]:/radius
Fix it in mssql.conf
Ivan Kalik
Kalik Informatika ISP
Dana 27/4/2007, "satish patel" <[EMAIL PROTECTED]> piše:
>Freeradius + mssql more help project :- http://linux.tulipit.com
>
>RPM installation
>
>[EMAIL PROTECTED] ha.d]# rpm -qa | grep f
Joseph Sullivan wrote:
> When I run Make, it errors with
> *** Warning: Linking the shared library rlm_perl.la against the
> *** static library
If you're not going to use the Perl module, just delete the entire
rlm_perl directory.
Alan DeKok.
--
http://deployingradius.com - The
Hello Alan,
I have built and installed 1.1.6 version of FreeRadius. When I test
using radtest it authenticates any user with any pasword, what I mean
by this is it doesnt seem to contact the ADS to lookup the user
information and authenticate. I have attached the debug
*
Hi.
[EMAIL PROTECTED] wrote:
> either use your current tool but include the XP extensions as required,
Just to be precise. The named extensions are PKIX extensions for serverAuth
(OID 1.3.6.1.5.5.7.3.1) (at the RADIUS server) and clientAuth (OID
1.3.6.1.5.5.7.3.2) (for EAP-TLS on the supplicant).
You have to look up for
1. In the eap.conf under tls it is clear;
# This can never exceed the size of a RADIUS
# packet (4096 bytes), and is preferably half
# that, to accomodate other attributes in
Hi Marc,
are you aware of
"PEAP authentication is not successful when you connect to a third-party
RADIUS server"
http://support.microsoft.com/kb/885453
Maybe it is somehow related?
Other updates I installed on XP SP2 for WLAN 802.1x and PEAP/EAP-TLS are
Hotfix 917021 (Wireless Client Update)
Well I have another angle I will be attacking the problem from on the weekend.
I will be installing and configuring OpenLDAP on my linux server
making it replicate the ADS 2003 server then following the
gentoo-wiki's Freeradius and OpenLDAP implementation howto.
So the modified layout plan:
clien
Freeradius + mssql more help project :- http://linux.tulipit.com
RPM installation
[EMAIL PROTECTED] ha.d]# rpm -qa | grep freetds
freetds-0.62.1-1
freetds-devel-0.62.1-1
freetds-unixodbc-0.62.1-1
[EMAIL PROTECTED] ha.d]# rpm -qa | grep unixODBC
freeradius-unixODBC-1.0.1-2.RHEL4
unixODBC-kde
it is not opening
http://www.navicat.com/
[EMAIL PROTECTED] wrote: http://www.navicat.com/
Ivan Kalik
Kalik Informatika ISP
Dana 26/4/2007, "satish patel"
pi¹e:
>Dear
>
> I have running freeradius + mssql but now i wann put all databases in
> mysql so i am gonn use mysql with
Thanks very much Nick,
i will look for all these.
2007/4/26, Nick Owen <[EMAIL PROTECTED]>:
On 4/25/07, Ouahiba MACHANI <[EMAIL PROTECTED]> wrote:
> Thanks Nick for replaying.
>
> can you give me exemples of such systems?
>
If you are looking for a software-based two-factor authentication syst
28 matches
Mail list logo