Hi,
I want a specific user (call him john) NOT to be able to login through a
specific nas.
So I thought, just add this to radcheck
INSERT INTO `radcheck` (`UserName`, `Attribute`, `op`, `Value`) VALUES
('john','NASIdentifier','!=','nas-id')
(nas-id is the nasidentifier of the specific nas)
Anyw
Roy D. Hockett wrote:
> Has anyone seen the reject_delay setting in radiusd.conf effect the
> response time to subsequent access-accept responses?
It doesn't affect Access-Accepts.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Has anyone seen the reject_delay setting in radiusd.conf effect the
response time to subsequent access-accept responses? I haven't seen
anything on this in the mailing list, but I wanted to check before I
look into the code.
Thanks,
--Roy
/***
Thanks Alan. I have actually figured out some openssl commands that
seem to have worked ok for me. I'll post them a little later for what
it's worth to anyone.
Alan DeKok wrote:
Mack Ragan wrote:
Using the provided script "CA.all", trying to create self-signed certs
on a new freeradius b
Mack Ragan wrote:
> Using the provided script "CA.all", trying to create self-signed certs
> on a new freeradius box and running into a missing serial file problem.
> Executing the commands in the script line-by-line shows that the command
> "openssl ca -policy policy_anything -out newcert.pem -
On Thu, 2007-09-06 at 13:56 -0400, Mack Ragan wrote:
> Hi,
>
> Using the provided script "CA.all", trying to create self-signed certs
> on a new freeradius box and running into a missing serial file problem.
> Executing the commands in the script line-by-line shows that the command
> "openssl
Francesco Cristofori schrieb:
What isn't compliant?
The script /etc/init.d/freeradius is not compliant with these
guidelines:
http://www.linuxbase.org/spec/refspecs/LSB_3.0.0/LSB-Core-generic/LSB-Co
re-generic/iniscrptact.html
The script does not implement the "status" act
Hi,
Using the provided script "CA.all", trying to create self-signed certs
on a new freeradius box and running into a missing serial file problem.
Executing the commands in the script line-by-line shows that the command
"openssl ca -policy policy_anything -out newcert.pem -passin
pass:what
Hi,
> Hi all
>
> When starting the radius, the error is showing "the
> file size is exceeding"
>
> check /var/log/freeradius/radwtmp is 2G
>
> 1/ how can I avoid it but we still keep the log file?
>
> 2/ ls the limitation in linux or in freeradius
> program?
> if it is in linux, can I increase
Hi all
When starting the radius, the error is showing "the
file size is exceeding"
check /var/log/freeradius/radwtmp is 2G
1/ how can I avoid it but we still keep the log file?
2/ ls the limitation in linux or in freeradius
program?
if it is in linux, can I increase the file size limit?
I am u
Francesco Cristofori wrote:
> I'd like to integrate FR 1.1.7 installation with Heartbeat-2 but it
> seems that the initscript /etc/init.d/freeradius is not LSB compliant,
> so integration is not straightforward.
>
> Is there anybody working on this (very small) issue?
I've written an initscript
> What isn't compliant?
The script /etc/init.d/freeradius is not compliant with these
guidelines:
http://www.linuxbase.org/spec/refspecs/LSB_3.0.0/LSB-Core-generic/LSB-Co
re-generic/iniscrptact.html
The script does not implement the "status" action and isn't compliant to
the behavour described
I want to use the result from a sql query in something like this:
...
switch "%{sqlnastype:SELECT nas.type FROM `nas` WHERE
nas.nasname ='%{NAS-IP-Address}'}" {
case "Cisco" {
...
It works, and it is a great feature.
The point is, it seems to work only if there is an
authorize_check_q
O/H hyunok έγραψε:
Hello,
I have a freeradius 1.1.7 server setup with ppp and pptp using a mysql
DB for user authentication.
dialup admin web Online Users page ==> 5 online
real online pptp user ===> 7 online
Why different?
Hello,
I have a freeradius 1.1.7 server setup with ppp and pptp using a mysql
DB for user authentication.
dialup admin web Online Users page ==> 5 online
real online pptp user ===> 7 online
Why different?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Francesco Cristofori wrote:
> Hi all,
> I'd like to integrate FR 1.1.7 installation with Heartbeat-2 but it
> seems that the initscript /etc/init.d/freeradius is not LSB compliant,
> so integration is not straightforward.
What isn't compliant?
> Is there anybody working on this (very small) iss
Dan Searle wrote:
> Hello? Is there anybody out there?
Are you going to read previous responses on this list?
http://lists.freeradius.org/pipermail/freeradius-users/2007-August/065807.html
> Can someone who knows how CHAP
> works please explain to me how this could be happening?
See the pre
Hi all,
I'd like to integrate FR 1.1.7 installation with Heartbeat-2 but it
seems that the initscript /etc/init.d/freeradius is not LSB compliant,
so integration is not straightforward.
Is there anybody working on this (very small) issue?
Greetings,
Francesco.
-
List info/subscribe/unsub
Hey guys ,
Throw some light on how to configure MNID to be send in the access accept
response packet to the client for wireless networks authentication if AT
hardware identifier is sent to the server as vendor specific information.
-
Why delete messages
Hi,
No, again I can assure you that the same password is sent in both
cases, and it matches the password on the server (stored in clear
text).
Thursday, September 6, 2007, 11:04:12 AM, you wrote:
> Password on the server is most likely the same. Password sent most likely
> isn't.
> Ivan Kalik
Pretty Woman wrote:
> I have a problem connecting Freeradius to a mssql
> server.
...
> rlm_sql_unixodbc: Connection failed IM002
> [unixODBC][Driver Manager]Data source name not found,
> and no default driver specified
See the Unixodbc documentation for the meaning of those errors.
> [EMAIL P
Hi,
I can assure you the password is exactly the same in both cases. I'll
try and setup a test user later on and post the results. But the
passwords in the two traces I posted below were the same.
Dan...
Thursday, September 6, 2007, 10:47:34 AM, you wrote:
> And how can anyone help? You have de
And how can anyone help? You have deleted the most relevant parts of the
debug (CHAP attributes and the password, which, according to the server,
are not the same in both cases). If you don't want to use data from a
real user, create a test one and post that.
Ivan Kalik
Kalik Informatika ISP
Dan
Hi,
Hello? Is there anybody out there? Can someone who knows how CHAP
works please explain to me how this could be happening?
Does a CHAP challenge time-out after a certain amount of time? Does
the rlm_chap module hold a copy of old CHAP challenge's and prevent
the same one being re-used to stop
Hello,
I have a problem connecting Freeradius to a mssql
server.
I installed FreeTLS and UNIXodbc and tested their
connection to the mssql server and it worked.
Please tell me what could be the problem ?
radiusd -X reads:
rlm_sql (sql): Driver rlm_sql_unixodbc (module
rlm_sql_unixodbc) loaded
Patric wrote:
Hi Guys,
Just a quick question, as the per the subject line :
If my freeradius server receives a connection attempt from a NAS not
listed in the NAS table (as specified in sql.conf : nas_table = "nas"),
will that attempt appear in the radius.log, or would such information
only
Hi Guys,
Just a quick question, as the per the subject line :
If my freeradius server receives a connection attempt from a NAS not
listed in the NAS table (as specified in sql.conf : nas_table = "nas"),
will that attempt appear in the radius.log, or would such information
only appear in debug
27 matches
Mail list logo
