Re: Denying access without restarting radiusd [SEC=UNCLASSIFIED]

Hi, > Hello All, > > I have a freeradius v1.51 as can be seen bellow ranning on a > linux server. err, no. you have radclient version 1.51 - the tools are at different version levels. to check what version of freeradius, radiusd -v > Can someone show me how to deny

Re: 2.0.0-pre1 - cannot build on FreeBSD

Hi Nicolas (and everyone), In message <[EMAIL PROTECTED]>, David Wood <[EMAIL PROTECTED]> writes >In message <[EMAIL PROTECTED]>, David Wood ><[EMAIL PROTECTED]> writes >>For future robustness, rather than a version number check (it's just >>possible that FreeBSD 5.x will get a working gethostbya

RE: Denying access without restarting radiusd [SEC=UNCLASSIFIED]

___ From: [EMAIL PROTECTED] g [mailto:[EMAIL PROTECTED] adius.org] On Behalf Of Emmanuel A Kwarteng Sent: Tuesday, 29 May 2007 00:42 To: freeradius-users@lists.freeradius.org Subject: Denying access without restarting radiusd

Re: log file for free radius 1.1.6 eap-tls authentication

Hi 1 I know its eap-tls and certificate based. Earlier i was using Navis radius .In that for eap-tls we have to add certificate name to a specific user file. Like that here also user file is there can i make use of the user file so that only that user get authenticated, 2 Logs are not

Re: 2.0.0-pre1 - cannot build on FreeBSD

In message <[EMAIL PROTECTED]>, David Wood <[EMAIL PROTECTED]> writes >For future robustness, rather than a version number check (it's just >possible that FreeBSD 5.x will get a working gethostbyaddr_r(), much as >I doubt it), here's an alternative patch to that in bug #454, using >

Re: 2.0.0-pre1 - cannot build on FreeBSD

Hi Nicolas, In message <[EMAIL PROTECTED]>, Nicolas Baradakis <[EMAIL PROTECTED]> writes >David Wood wrote: > >> As an aside, FreeBSD 6.2-RELEASE-p4 i386, which is the OS on my >> development box, finishes up with #define GETHOSTBYNAMERSTYLE GNUSTYLE >> in confdefs.h - so there won't be a similar

Re: 2.0.0-pre1 - cannot build on FreeBSD

David Wood wrote: > As an aside, FreeBSD 6.2-RELEASE-p4 i386, which is the OS on my > development box, finishes up with #define GETHOSTBYNAMERSTYLE GNUSTYLE > in confdefs.h - so there won't be a similar problem with redefining > gethostbyname_r on FreeBSD - but there may be on other operating

Re: howto limit the acces of users

I have no idea, since I don't use dialup admin, but looking at this: http://www.freeradius.org/dialupadmin.html you should be able to do it all with that. User radius settings administration is where you can sort out attributes and main page should give you info about time used. In MySQL, settin

Re: JRS Service configurations + Wiki

Peter Nixon wrote: > On Mon 28 May 2007, Arran Cudbard-Bell wrote: > >> Alan D, >> >> Would you mind having configuration documents for 3rd party services >> like JRS on the FreeRADIUS wiki ? >> >> Alan B, >> >> Would JANET mind having configuration documents for JRS on the >> FreeRADIUS wiki ?

Re: 2.0.0-pre1 - cannot build on FreeBSD

Hi Nicolas, In message <[EMAIL PROTECTED]>, Nicolas Baradakis <[EMAIL PROTECTED]> writes >David Wood wrote: > >> I've put in quite a bit of work today towards porting 2.0.0-pre1 to >> FreeBSD, with the intention of submitting a FreeRADIUS 2 port as soon as >> possible. >> >> Unfortunately, there'

Re: Rlm_python - need documentation

On Mon 28 May 2007, UriCALL Support wrote: > Hi All, > > I am in need of developing my own application using rlm_python. Can > anybody inform me about some documentation available? From what I have > found on Internet it looks like an isolate project with lack of users ... > Anybody able to share t

Re: JRS Service configurations + Wiki

On Mon 28 May 2007, Arran Cudbard-Bell wrote: > Alan D, > > Would you mind having configuration documents for 3rd party services > like JRS on the FreeRADIUS wiki ? > > Alan B, > > Would JANET mind having configuration documents for JRS on the > FreeRADIUS wiki ? > > It is meant to be a repository

howto limit the acces of users

Ok, but when i create a new user, using dialup admin, how do i define how long could he stay connected. In the mysql db where could i find the correspondance User-Name <-> Time spent ot time left. Is it stored in the db ? Sorry for all those stupid questions but i didn't manage to find any doc

Re: howto limit the acces of users

Have a look at Login-Time, Session-Timeout and counters (daily and SQL daily and monthly are in radiusd.conf). user1 - Session-Timeout or no reset counter user2 - daily counter or Login-Time (if it is particular time of day) Ivan Kalik Kalik Informatika ISP Dana 28/5/2007, "vik" <[EMAIL PROTECT

howto limit the acces of users

Hello, I would like to have for each user a time limit, for instance: user1 4 hours user2 2 hours/day user3 illimited etc... Thx in advance. - Original Message From: "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> To: FreeRadius users mailing list Sent: Thursday, May 17, 2007 11:08:12 AM Subj

Re: JRS Service configurations + Wiki

Hi, > Alan D, > > Would you mind having configuration documents for 3rd party services > like JRS on the FreeRADIUS wiki ? > > Alan B, > > Would JANET mind having configuration documents for JRS on the > FreeRADIUS wiki ? > > It is meant to be a repository for everything FreeRADIUS after al

JRS Service configurations + Wiki

Alan D, Would you mind having configuration documents for 3rd party services like JRS on the FreeRADIUS wiki ? Alan B, Would JANET mind having configuration documents for JRS on the FreeRADIUS wiki ? It is meant to be a repository for everything FreeRADIUS after all ... and it's easier if a

Re: Wiki

Done On May 28, 2007, at 03:50, Arran Cudbard-Bell wrote: > >> I was hoping for that type of page go in the Examples section. >> Perhaps Cookbook might be a better name for the section. >> > Ok , would you mind changing the section name ? Then i'll start > adding a > few recipes. > - > List in

Denying access without restarting radiusd

Hello All, I have a freeradius v1.51 as can be seen bellow ranning on a linux server. [EMAIL PROTECTED] raddb]# radclient -v radclient: $Id: radclient.c,v 1.51 2002/10/28 21:11:29 aland Exp $ built on May 9 2003 at 09:18:10 I have included a file access.deny in the users file and wants to deny

Re: 2.0.0-pre2 has "Magic feature number one" :)

[EMAIL PROTECTED] wrote: > makes as much sense as this weird page: > > http://www.geocities.com/m_valuedlets/T3M.html "exceeded limits" > certainly if we can examine the VMPS packets we should be able to control > and handle things a little bit easier - you've probably seen those > VMPS packet

Re: 2.0.0-pre2 has "Magic feature number one" :)

Hi, > [EMAIL PROTECTED] wrote: > > VMPS support in FreeRADIUS 2.0? I'm *very* happy with that idea! ;-) > > Yup. It's there now. I've done some simple tests, and it works. > > The new config unlanguage (I'm beginning to like that word) makes > testing it HUGELY easier. makes as much sense

Re: 2.0.0-pre2 has "Magic feature number one" :)

[EMAIL PROTECTED] wrote: > VMPS support in FreeRADIUS 2.0? I'm *very* happy with that idea! ;-) Yup. It's there now. I've done some simple tests, and it works. The new config unlanguage (I'm beginning to like that word) makes testing it HUGELY easier. Alan DeKok. -- http://deployingra

Re: 2.0.0-pre2 has "Magic feature number one" :)

Hi, > Plus, OpenVMPS is not under active development, so there's no > maintainers. It claims it's part of another project (that I won't > name), but that project includes the *binary* of OpenVMPS, and not the > source. GPL concerns may apply... VMPS support in FreeRADIUS 2.0? I'm *very* happ

Re: Freeradius-Proxied-To, radrelay and 2.0

Milan Holub wrote: > Firstly I wanted to put the entry into preproxy_users where it did not > work properly: I could see that the realm was set correctly to "LOCAL" > but at the same time there was an attempt to send the packet to remote > home_server: > Proxying request 0 to realm LOCAL, home serv

Re: Freeradius-Proxied-To, radrelay and 2.0

Milan Holub wrote: ... > ==> I works for me well(incomming accounting/authorization packet containing > Freeradius-Proxied-To is no more sent to IP present as a value of the > attribute); this might not work for home servers which listen on > non-standard ports(due to dst_port passed in to home_ser

Re: log file for free radius 1.1.6 eap-tls authentication

This is EAP-TLS. This user has a valid user certificate and is accepted. If you don't want to go via certificates but use user/password, use EAP-TTLS with MS-CHAPv2 (or PAP or any other auth protocol). Ivan Kalik Kalik Informatika ISP Dana 28/5/2007, "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> piše:

Rlm_python - need documentation

Hi All, I am in need of developing my own application using rlm_python. Can anybody inform me about some documentation available? From what I have found on Internet it looks like an isolate project with lack of users ... Anybody able to share the experience with me? Is it stable for production?

Re: 2.0.0-pre2 has "Magic feature number one" :)

Arran Cudbard-Bell wrote: > Neat , unfortunately only Cisco switches seem to support it, and we run > entirely on HP Procurves. > Guess it means people will no longer have to use OpenVMPS to proxy :) Plus, OpenVMPS is not under active development, so there's no maintainers. It claims it's part

Re: log file for free radius 1.1.6 eap-tls authentication

Hi pls find the o/p of radius -X.Also the log file is not coming. [EMAIL PROTECTED] sbin]# radiusd -X Starting - reading configuration files ... reread_config: reading radiusd.conf Config: including file: /etc/raddb/proxy.conf Config: including file: /etc/raddb/clients.conf Config: incl

Re: 2.0.0-pre2 has "Magic feature number one" :)

On Mon 28 May 2007, Alan Dekok wrote: > I've just committed a preliminary patch to add "magic feature #1" that > I've mentioned a few times. Cool Waiting patiently for "magic feature #2" :-) -- Peter Nixon http://www.peternixon.net/ PGP Key: http://www.peternixon.net/public.asc - List in

Re: Newbie-quiz: Can't get authentication to work.

You have forced Auth-Type System in your user configuration and have overruled the server trying to (correctly) do MS-CHAP. Delete that Auth-Type from the check line and it should work. Ivan Kalik Kalik Informatika ISP Dana 28/5/2007, "Giobbi Piero" <[EMAIL PROTECTED]> piše: >Hello all. > >Just

Newbie-quiz: Can't get authentication to work.

Hello all. Just started out with Freeradius and got it installed and working (Debian Etch, FR 1.1.4). Im hooked up our firewall to authenticate to FR-server and the "link" works, so i guess the basics are ok. Now i have added a user in the system and in the Users-file: test-system Aut

Re: 2.0.0-pre2 has "Magic feature number one" :)

Alan Dekok wrote: > I've just committed a preliminary patch to add "magic feature #1" that > I've mentioned a few times. > > The feature is VMPS support. :) > > ... > listen { > type = vmps > ipaddr = 10.1.2.3 > port = 1589 > clients

Re: log file for free radius 1.1.6 eap-tls authentication

Post the radiusd -X output of user not in users file being accepted. Ivan Kalik Kalik Informatika ISP Dana 28/5/2007, "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> piše: >Hi all > I have two quieres >1 > I have changed the log_auth= yes >Still i am not able to get logs.Pls find my configs > pre

Re: 2.0.0-pre1 - cannot build on FreeBSD

David Wood wrote: > I've put in quite a bit of work today towards porting 2.0.0-pre1 to > FreeBSD, with the intention of submitting a FreeRADIUS 2 port as soon as > possible. > > Unfortunately, there's a problem which I don't have the autoconf skills > to patch quickly. When checking (and late

Re: Wiki

> I was hoping for that type of page go in the Examples section. > Perhaps Cookbook might be a better name for the section. > Ok , would you mind changing the section name ? Then i'll start adding a few recipes. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.ht

2.0.0-pre2 has "Magic feature number one" :)

I've just committed a preliminary patch to add "magic feature #1" that I've mentioned a few times. The feature is VMPS support. :) ... listen { type = vmps ipaddr = 10.1.2.3 port = 1589 clients = vmps_clients }

RE: problem connecting from windows xp to pptp server

Yes. Then that radius client is broken. You will need to sort it out with the lot that made PPTP server. Post "Where's my password" question on their list. Ivan Kalik Kalik Informatika ISP Dana 28/5/2007, "Danny Milshtein" <[EMAIL PROTECTED]> piše: >Hi, > > > >All the check options are checked.

Re: Free Radius

Bob Irwin wrote: > I'm a serious Newb with Radius, and I have a question regarding support > for "Pool Hint". This is supported under "Radiator" (a radius server we > use elsewhere on our network), and we need to replicate it in FreeRADIUS > for a much smaller application. I'm wondering if FreeRA

Free Radius

Hi, I'm a serious Newb with Radius, and I have a question regarding support for "Pool Hint". This is supported under "Radiator" (a radius server we use elsewhere on our network), and we need to replicate it in FreeRADIUS for a much smaller application. I'm wondering if FreeRADIUS supports it at

Re: log file for free radius 1.1.6 eap-tls authentication

Hi all I have two quieres 1 I have changed the log_auth= yes Still i am not able to get logs.Pls find my configs prefix = /usr/local exec_prefix = ${prefix} sysconfdir = /etc localstatedir = ${prefix}/var sbindir = ${exec_prefix}/sbin logdir = /usr/local/var/log/radius raddbdir = ${sysconf