We need to see the debug (radiusd -X) to see what gets matched etc.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Walter Gould wrote:
Alan DeKok wrote:
Walter Gould wrote:
I am following the document "FreeRADIUS Active Directory Integration
HOWTO" from the freeradius Wiki. I am having problems with creating
SSL certificates. When I follow the instructions at the bottom of this
doc and run the CA.all s
Hi
I want to do 802.1x PEAP authentication on FreeRADIUS. Authentication
(username/password checking) needs to be done on another RADIUS server
(Safeword server), which is uncapable to handle EAP requests.
What I do have working:
* PEAP with users in a local MySQL database on the FreeRADIUS serve
Alan DeKok wrote:
Walter Gould wrote:
I am following the document "FreeRADIUS Active Directory Integration
HOWTO" from the freeradius Wiki. I am having problems with creating
SSL certificates. When I follow the instructions at the bottom of this
doc and run the CA.all script, I see the fol
Walter Gould wrote:
> I am following the document "FreeRADIUS Active Directory Integration
> HOWTO" from the freeradius Wiki. I am having problems with creating
> SSL certificates. When I follow the instructions at the bottom of this
> doc and run the CA.all script, I see the following errors:
List,
I am following the document "FreeRADIUS Active Directory Integration
HOWTO" from the freeradius Wiki. I am having problems with creating
SSL certificates. When I follow the instructions at the bottom of this
doc and run the CA.all script, I see the following errors:
+ openssl pkcs12
http://wiki.freeradius.org/SQL_HOWTO
Tell him to read the bit named "Populating SQL".
Ivan Kalik
Kalik Informatika ISP
Dana 25/10/2007, "Doc. Caliban" <[EMAIL PROTECTED]> piše:
>The db admin here is telling me that there as to be some standardized
>way of adding users to the database. I don't
Use daily counter or sqlcounter depending on where do you store
accounting data.
Ivan Kalik
Kalik Informatika ISP
Dana 25/10/2007, "hadi golestani" <[EMAIL PROTECTED]> piše:
>Hi,
>I'm using freeRadius with poptop and it's logging all accounting issues
>well, but how can I add some rules to rest
manIP wrote:
hereunder is the output debug:
rad_recv: Access-Request packet from host x.x.x.x:2658, id=49, length=58
User-Name = "xxx"
User-Password = "xxx"
Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
modcall[authorize]: mod
On 10/26/07, Alan DeKok <[EMAIL PROTECTED]> wrote:
>
> ram wrote:
> > Radius checks the authentication and send to the user for the
> authorisation.
> > when use authenticated and authorised. and same time i want to trigger
> > the script to open a
> > Iptable rules and his bandwidth with TC
> ..
>
Hi all,
Thanks again!
I've tried to put return(2) and it does not work because my client receives
an Access-Accept.
If I let exit(2), the server does not send anything so the client fall in
time out. The user will not have access but he will make many attempts as
long as he does not receive an Acc
Hi,
I have a working PHP script that may help. You can load it from
http://swarmhotspots.com/bb.php.txt The sript is designed to reply to
Chillispot authentication requests but should be easy to modify for other
NAS's.
Hope it helps.
Regards,
Sean Bracken
http://swarmhotspots.com
-
Lis
Alan DeKok wrote:
Patric wrote:
Something just occurred to me that I dont think I tried before.
What happens if instead of doing an
exit(2);
you do a
return(2);
This way your script will still exit clean, so freeradius wont pick it
up as a script failure, but hopefully will still get the res
Patric wrote:
> Something just occurred to me that I dont think I tried before.
> What happens if instead of doing an
>
> exit(2);
>
> you do a
>
> return(2);
>
> This way your script will still exit clean, so freeradius wont pick it
> up as a script failure, but hopefully will still get the re
sorry, had read docs in older version (only got round to looking into
2.0.0-pre last night as attempt to answer my own ?)
Thanks for quick response!
Andy
On 26/10/2007, Alan DeKok <[EMAIL PROTECTED]> wrote:
> Andy Billington wrote:
> > Is there a way to define NAS info / secrets in a SQL database
Alan DeKok wrote:
There is no need to change the code.
If your script exits with a non-zero exit code, then the
authentication fails. If this isn't happening, then something else is
going on, or you're not doing what you're saying you're doing.
Rather than discuss what you think you're d
manIP wrote:
Hi everyone!
Thank your for your answers...
Alan, Patric has totally right. I've set the reject_delay to "0" and the
result was the same.
I really don't want to touch to the source code and I am sure we can
find another way
1) if there is a server timeout, is it assumed as an Ac
manIP wrote:
> 1) if there is a server timeout, is it assumed as an Access-reject (or
> does the user will be given access ?)
Yes.
> 2) for instance, executing a script from another language which exit 2
> from PHP...I tried it with a sh script and it does not work
Nonsense. See the FAQ for
Hi everyone!
Thank your for your answers...
Alan, Patric has totally right. I've set the reject_delay to "0" and the
result was the same.
I really don't want to touch to the source code and I am sure we can find
another way
1) if there is a server timeout, is it assumed as an Access-reject (or do
Hi everyone!
Thank your for your answers...
Alan, Patric has totally right. I've set the reject_delay to "0" and the
result was the same.
I really don't want to touch to the source code and I am sure we can find
another way
1) if there is a server timeout, is it assumed as an Access-reject (or d
rlm_exec
See radiusd.conf for examples.
josh.
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of ram
> Sent: 26 October 2007 07:50
> To: FreeRadius users mailing list
> Subject: How to triger an application after a authentication done
>
> Hi
>
ram wrote:
> Radius checks the authentication and send to the user for the authorisation.
> when use authenticated and authorised. and same time i want to trigger
> the script to open a
> Iptable rules and his bandwidth with TC
..
> how can i achieve this ?
Write scripts on the Linux router to
2f636c30303030362e6f2d746573742e656f6e2d656e65726769652e6e6574
Message-Authenticator = 0x4e1f71180c7d110bd7d5cf1b3fbf8d5a
NAS-Port-Type = Ethernet
NAS-Port = 50002
NAS-IP-Address = 10.230.30.214
Processing the authorize section of radiusd.conf
modcall: entering group au
23 matches
Mail list logo