rick norman wrote:
- Original Message -
From: [EMAIL PROTECTED]
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Subject: Re: EAP-MD5clientrlm_eap_md5 : Password is required for EAP-MD5
Authentication...
Date: Mon, 06 Aug 2007 00:39:26 +0100
Use
Hello Ivan,
Thu, 02 Aug 2007 12:21:02 +0100, you wrote:
Send us the log (radiusd -X) with your accounting request. Lets see if
this query gets executed.
Ivan Kalik
Kalik Informatika ISP
The output of radiusd -X is thus:
mail:~ # radiusd -X
Starting - reading configuration files ...
You need to stop the server (killall radiusd) and restart in debug mode
(radiusd -X).
Ivan Kalik
Kalik Informatika ISP
Dana 6/8/2007, [EMAIL PROTECTED] [EMAIL PROTECTED] piše:
Hello Ivan,
Thu, 02 Aug 2007 12:21:02 +0100, you wrote:
Send us the log (radiusd -X) with your accounting request.
Hi people!
thanks for answering and solving my problems with the mysql
database... I importet the sql-file into the database an it worked
... ;-)
But now another question...
Which type of parameters can I insert in the MySQL db for freeradius?
example in radreply or radgroupreply,
Hi Michael,
But now another question...
Which type of parameters can I insert in the MySQL db for freeradius?
example in radreply or radgroupreply, like Framed-IP-Address,
Framed-Routing or Idle-Timeout etc. ... Is there somewhere a list???
The parameters are RADIUS attributes, as defined
The parameters are RADIUS attributes, as defined in the various RFCs
about RADIUS. Which ones to use depends on what you want to do.
BTW, a list is on
http://www.freeradius.org/rfc/attributes.html
Stefan
--
Stefan WINTER
Stiftung RESTENA - Réseau Téléinformatique de l'Education Nationale
http://www.freeradius.org/rfc/attributes.html
What freeradius version are you using? That profile is some years out of
date. In last few versions you shouldn't be setting up Auth-Type at all
and you should use Cleartext-Password with := as op.
Ivan Kalik
Kalik Informatika ISP
Dana 6/8/2007,
well sorry for confusing...
i was asking for changes so as to work in the way:
RADIUS--SAMBA--LDAP
so that it can work for those EAP passwords
thanx for your support and suggestion
regards
shantanu
-
Once upon a time there was 1 GB storage in your
[EMAIL PROTECTED] schrieb:
Send Freeradius-Users mailing list submissions to
freeradius-users@lists.freeradius.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.freeradius.org/mailman/listinfo/freeradius-users
or, via email, send a message with subject
What password encryption are you using? If it's not NT hash MSCHAP
won't work with or without samba and ntlm_auth.
Ivan Kalik
Kalik Informatika iSP
Dana 6/8/2007, shantanu choudhary [EMAIL PROTECTED] piše:
well sorry for confusing...
i was asking for changes so as to work in the way:
Hi Ivan,
Mon, 06 Aug 2007 09:07:22 +0100, you wrote:
You need to stop the server (killall radiusd) and restart in debug mode
(radiusd -X).
Ivan Kalik
Kalik Informatika ISP
I don't know if this is related to this problem but I get a lot of this in my
radius log files:
Mon Aug 6 13:19:34 2007
) for request 37
Processing the accounting section of radiusd.conf
modcall: entering group accounting for request 37
radius_xlat: '/var/log/radius/radacct/x.x.x.x/detail-20070806'
rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d
expands to /var/log/radius/radacct/x.x.x.x/detail
Chack if your NAS is keeping fields used to create acct_unique constant.
It seems that one or more of them are changing for the same session.
Ivan Kalik
Kalik Informatika ISP
Dana 6/8/2007, [EMAIL PROTECTED] [EMAIL PROTECTED] piše:
Hi Ivan,
Mon, 06 Aug 2007 09:07:22 +0100, you wrote:
You
) for request 37
Processing the accounting section of radiusd.conf
modcall: entering group accounting for request 37
radius_xlat: '/var/log/radius/radacct/x.x.x.x/detail-20070806'
rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d
expands to /var/log/radius/radacct/x.x.x.x/detail
Hello all,
I am using Freeradius-1.0.2 in some tests I have to do, and I get the
following error unable to get certificate CRL.
I attached the radius log for this problem(trace_unable_CRL).
If I set check_crl = no in the tls section of eap.conf file I get
another error: fatal
Hi,
I have Debian Etch installed with Freeradius and dialupadmin packages.
Versions are
ii freeradius 1.1.3-3 a
high-performance and highly configurable RADIUS server
ii freeradius-dialupadmin 1.1.3-3 set of PHP
scripts for
Kevin Bailey wrote:
What are the differences between clients and NAS's? - Where should they
be defined?
A Network Access Server (NAS) is a RADIUS client. It should be
defined in clients.conf
I seem to have been able to connect the client box by adding an entry
into client.com
/n.a.s.1/detail-20070806'
rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d
expands to /var/log/radius/radacct/n.a.s.1/detail-20070806
modcall[accounting]: module detail returns ok for request 101
modcall[accounting]: module unix returns noop for request 101
radius_xlat
preacct (returns ok) for request 101
Processing the accounting section of radiusd.conf
modcall: entering group accounting for request 101
radius_xlat: '/var/log/radius/radacct/n.a.s.1/detail-20070806'
rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d
expands to /var/log/radius
ok) for request 101
Processing the accounting section of radiusd.conf
modcall: entering group accounting for request 101
radius_xlat: '/var/log/radius/radacct/n.a.s.1/detail-20070806'
rlm_detail: /var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d
expands to /var/log/radius/radacct/n.a.s
Alan DeKok wrote:
Kevin Bailey wrote:
What are the differences between clients and NAS's? - Where should they
be defined?
A Network Access Server (NAS) is a RADIUS client. It should be
defined in "clients.conf"
I seem to have been able to connect the
You can also put them in the table called nas if you are using SQL.
You will need to set readclients to yes (at the very end of sql.conf).
Ivan Kalik
Kalik Informatika ISP
Dana 6/8/2007, Kevin Bailey [EMAIL PROTECTED] piše:
Alan DeKok wrote:
Kevin Bailey wrote:
What
so what changes we have to make so that it works as you have suggested??
-
Why delete messages? Unlimited storage is just a click away.-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I need to use Calling-Station-Id (or AcctSessionId) as NAS-Port and provide
dynamic Ips using rlm_ippool.
Using attr_rewrite it´s possible to make this change (Calling-Station-Id =
NAS-Port), but the freeradius/modules C code define port as int. My
calling-station-id have 15 numerics chars of
I'm using freeradius version1.1.0_2 on freebsd 6.1.
The radius client is running locally and talks to radiusd through
loopback.
The users file in raddb contains the line
con_d User-Password == con_d
Following is radiusd -X output. I don't understand the failure.
rad_recv: Access-Request packet
Install SecureW2 on Windows PCs and set it to use EAP-TTLS-PAP. Enable
ttls and change default eap protocol to pap (in ttls section).
Ivan Kalik
Kalik Informatika ISP
Dana 6/8/2007, shantanu choudhary [EMAIL PROTECTED] piše:
so what changes we have to make so that it works as you have
Send a (PAP) request with radtest. Does that work?
Ivan Kalik
Kalik Informatika ISP
Dana 6/8/2007, rick norman [EMAIL PROTECTED] piše:
I'm using freeradius version1.1.0_2 on freebsd 6.1.
The radius client is running locally and talks to radiusd through
loopback.
The users file in raddb
Found the problem. I drilled down and looked at the rlm_eap_md5.c code
and realized my client was building the challenge response improperly.
Thanks for your help.
Rick Norman
[EMAIL PROTECTED]
Thanks for your help.
- Original Message -
From: [EMAIL PROTECTED]
To: FreeRadius users
rick norman wrote:
Found the problem. I drilled down and looked at the rlm_eap_md5.c code
and realized my client was building the challenge response improperly.
Ah, yes. Using the FreeRADIUS list to get support for your own
implementation of a client, without saying so.
Why do people
Hi,
We use freeradius mainly to proxy requests for wholesale customers of
ours. For some of them we provide additional services such as session
tracking and ip allocation. Currently we do it with our modified
version of rlm_sql.
The modification is just an extension of the module (no changes to
On Tue 07 Aug 2007, Pshem Kowalczyk wrote:
Hi,
We use freeradius mainly to proxy requests for wholesale customers of
ours. For some of them we provide additional services such as session
tracking and ip allocation. Currently we do it with our modified
version of rlm_sql.
The modification
31 matches
Mail list logo
