There was a post on this by Mike;
You'll have to set up two instances of the EAP module. The first
instance will have the TLS submodule set up with the information for
Cert1.pem (and the appropriate key and CA cert). The second instance
will have its TLS submodule set with the info for Cer
Thank you! It would be nice if FreeRadius could have more support for Gigawords
built in!
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: 22 May 2007 11:15 PM
To: FreeRadius users mailing list
Subject: Re: Gigaword support
Have a
On 2007-05-30 01:08, Krzysztof Olędzki wrote:
> On 2007-05-30 00:28, Dennis Skinner wrote:
>> Mati Katz wrote:
>>> hello
>>> i'm using the 1.1.5 version of freeradius.
>>> i have problem i setup a client in clients.conf that is a host name
>>> like fkatz.dyndns.org because my NAS has dynamic ip. Wh
On 2007-05-30 00:28, Dennis Skinner wrote:
> Mati Katz wrote:
>> hello
>> i'm using the 1.1.5 version of freeradius.
>> i have problem i setup a client in clients.conf that is a host name
>> like fkatz.dyndns.org because my NAS has dynamic ip. When i try to
>> login at first time (i use DD-WRT + ch
Mati Katz wrote:
> hello
> i'm using the 1.1.5 version of freeradius.
> i have problem i setup a client in clients.conf that is a host name
> like fkatz.dyndns.org because my NAS has dynamic ip. When i try to
> login at first time (i use DD-WRT + chillispot built-in) i succeeded
> but after i recei
hello
i'm using the 1.1.5 version of freeradius.
i have problem i setup a client in clients.conf that is a host name
like fkatz.dyndns.org because my NAS has dynamic ip. When i try to
login at first time (i use DD-WRT + chillispot built-in) i succeeded
but after i receive new dynamic ip from my ISP
Multiple RADIUS clients can be defined in the clients.conf file. Is there a way
to define the location of a server certificate for each client? I'm envisioning
a single freeRadius server supporting multiple client authenticators. I want
each authenticator to be able to send a unique certificate
> > Alan D,
> >
> > Would you mind having configuration documents for 3rd party
> services
> > like JRS on the FreeRADIUS wiki ?
> >
> > Alan B,
> >
> > Would JANET mind having configuration documents for JRS on the
> > FreeRADIUS wiki ?
> >
> > It is meant to be a repository for everything
Hi all,
cleartext, unix crypt and MD5 - Passwords work fine in both, users file
and db.
does sha1-hashed pwds work?
another question:
can i use symmetric password encryption in users-File or radcheck table?
thx for your help
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/li
Hello
I'm trying to install FR 1.1.6 (from .tar file) on Solaris 8, with openssl
0.9.8e (also installed from .tar file), and when I do the "make", the types
rlm_eap_peap and rlm_eap_tls fail. When I do the "compile" they find the
OpenSSL libs
The error is:
In file included from eap_peap.h:25,
Hi Alan,
On Tue, May 29, 2007 at 11:37:15AM +0200, Alan Dekok wrote:
> The fix has already been committed.
==> yes, it works, thanks:)
Milan Holub
holub (at) thenet (dot) ch
--
TheNet-Internet Services AG,
im Bernertechnopark, Morgenstr. 129
CH-3018, Ber
Milan Holub wrote:
> it looks like latest CVS head has problems with expansion of ${var} in
> assignments:
The fix has already been committed.
Alan DeKok.
--
http://deployingradius.com - The web site of the book
http://deployingradius.com/blog/ - The blog
-
List info/subscribe/unsu
Hi Alan,
it looks like latest CVS head has problems with expansion of ${var} in
assignments:
rlm_sql (sql): database query error, SELECT id, ipaddr, shortname, type, secret
FROM ${nas_table} where secret <> 'DISABLED' group by ipaddr: You have an error
in your SQL syntax; check the manual that
Hi,
I'll give 2.0-pre1 a try, to see if it works. I will revert to 1.1.6 if needed.
> The supplicant is tunnelling additional data inside of EAP-TLS.
> FreeRADIUS doesn't support that
Supplicant - do you mean Mikrotik AP or wpa_supplicant on the client? I'm not sure what exactly Mikrotik does
Jan Schermer / ET NETERA wrote:
> I'm setting up a Mikrotik wireless AP with a freeradius server behind it
> and EAP-TLS, client connects "fine" (those errors are meaningless,
> right? can I get rid of them?):
Upgrade to 1.1.6.
> but after a while, the connection is renegotiated (maybe because
1. That's not how certificates work. You add those that you want to
PREVENT from connecting (for whatever reason) to Certificate Revocation
List (CRL). You suposedly do have control over who are certificates
issued to. If you have no control over CA then you shouldn't be using
them.
2. Is anything
Hi,
I'm setting up a Mikrotik wireless AP with a freeradius server behind it
and EAP-TLS, client connects "fine" (those errors are meaningless,
right? can I get rid of them?):
Tue May 29 11:47:56 2007 : Error: TLS_accept:error in SSLv3 read
client certificate A
Tue May 29 11:47:56 2007 :
David Wood wrote:
> Fortunately it's a two line change in the port's Makefile to delete
> configure after applying the patch and run configure.in through autoconf
> 2.61 - though if I don't need to do that, I don't, as it means that the
> port doesn't force systems without autoconf 2.61 to build
Hi,
> Would you mind having configuration documents for 3rd party services
> like JRS on the FreeRADIUS wiki ?
as the work item leader for eduroam in Europe, I'd say: we also wouldn't mind
if you'd give permission to put all this fine documentation into the Roaming
Cookbook v2 (or v3), if you d
Peter,
thank you for your fast response.
Can u also provide me some example of script, so I could understand how the
module works? Again, it is bit difficult for me to find it out from the
documentation which comes with freeradius.
Ta,
Dan
>
> On Mon 28 May 2007, UriCALL Support wrote:
>>
20 matches
Mail list logo