António Rio Costa wrote:
> 1 Can radiusclient-ng authenticate in IAS If so how? I've tried it
> and IAS says that there is an malformed radius message.
Use wireshark to grab copies of the packets. Put the pcap files on a
web page, and post the URL here.
> 2 Putting freeradius in the midll
Adam W. Sewell wrote:
> I've been working trying to setup freeradius to work with peap/mschapv2
> backended by a mysql database on Enterasys switches. I've got almost
> everything working except for when a user authenticates with a 802.1x
> supplicant with peap/mschapv2, freeradius sends an acce
Phil Mayers wrote:
...
> Similar expressions in the "authorize" section appear to work.
>
> Anyone have any ideas?
Weird. No idea why that happens. I'll try to reproduce it.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
OS: FB 7.0
FR: 2.0.5
Let we analyze below if statement using unlang with Ldap-Group:-
++? if (("%{NAS-Port-Type}" =~ /^ISDN|^Sync/) && ((ldap1-Ldap-Group ==
"UNLIMITED") || (ldap2-Ldap-Group == "UNLIMITED")))
expand: %{NAS-Port-Type} ->
?? Evaluating ("%{NAS-Port-Type}" =~
Hi Alan,
Thanks for the info. Iam running 2.0.2
Regards
Gopi
On Tue, Jul 29, 2008 at 6:14 PM, Alan DeKok <[EMAIL PROTECTED]>wrote:
> Gopinath Reddy N wrote:
> > I would like to know whether peap-tls(peap as outer authentication, tls
> > as inner authentication method) is supported in freeradius
Hello,
Thanks for all the RADIUS messages. They are very helpful.
I am able to successfully implemented digest authentications in FreeRADIUS and
have been using
it ever since. This is after getting help from the great people on this
mailing.
I wonder if anyone here has any experience Cisco A
Hi all,
I'm trying to put toghether one way to register softphones into openser
doing the users authentication in IAS.
I would like to put some questions into the list in way to clear out my
doubts.
1 Can radiusclient-ng authenticate in IAS If so how? I've tried it and
IAS says that there is a
I've been working trying to setup freeradius to work with peap/mschapv2
backended by a mysql database on Enterasys switches. I've got almost everything
working except for when a user authenticates with a 802.1x supplicant with
peap/mschapv2, freeradius sends an access-accept packet but does not
We've got some switches that don't include the MAC address in the
Calling-Station-Id of accounting packets. To simplify the config, I use
an unlang expression to add it:
if ((!Calling-Station-Id) && (NAS-Port-Type == Ethernet) && (User-Name
=~ /(..)(..)(..)(..)(..)(..)/)) {
update request {
Hello everyone,
I am having an issue where when a user attempts to authenticate the
following error is logged:
Error: rlm_ldap: could not set LDAP_OPT_X_TLS_REQUIRE_CERT option to
allow
FreeRADIUS receives appropriate information as to whether or not the
credentials used were correct, but
Pshem Kowalczyk wrote:
> I'm not sure what you mean by 'execute' but you can configure a
> virtual server that simply reads a detail file. Packets 'received'
> this way are treated as any other packets received over the network.
> If you make multiple copies of the packets (to multiple detail files
Hi
I'm not sure what you mean by 'execute' but you can configure a
virtual server that simply reads a detail file. Packets 'received'
this way are treated as any other packets received over the network.
If you make multiple copies of the packets (to multiple detail files)
you can process them loca
Hi folks,
Is there a simple way to send accounting logs (of FR 2.0.5) to syslog ?
I mean the various detail files: auth_log, reply_log,
pre||post_proxy_log ...
It is possible to append them to radius.log (who can be maintained by
syslog) but i think is a bad idea.
thanks for any clues...
--
Hi there,
I wonder if there's an easy way/guide to reproduce the
freeradius 1.x radrelay behavior?
I'm afraid that the copy-to-home-server solution does not
execute the accounting requests, but only relays them. Am I right?
I want to execute accounting requests and relay these packets to anothe
Gopinath Reddy N wrote:
> I would like to know whether peap-tls(peap as outer authentication, tls
> as inner authentication method) is supported in freeradius. Some of my
> clients use peap-tls so want to know whether its supported by freeradius
It works in 2.0.5 last I checked.
> I tried using
Hi,
I would like to know whether peap-tls(peap as outer authentication, tls as
inner authentication method) is supported in freeradius. Some of my clients
use peap-tls so want to know whether its supported by freeradius.
I tried using a setup that works for tls for peap-tls but it fails saying
"r
Dear all,
I'm in process migrating from FR 1.1.X to FR 2.0.5 but stuck with Ldap-Group
using unlang.
I'm trying to convert below line in users file to unlang in authorize
section.. but it's not working..
Using FreeBSD 7.0.
users:-
==
DEFAULT Called-Station-Id == "Y5", ldapmain1-Lda
Phil Mayers wrote:
> We've recently moved our servers to FreeRadius 2, and we've been having
> reports of some problems with our wireless service.
...
> ...specifically, it seems that the xlat of this string is treating
> embedded "\" as escape characters.
That needs to be fixed. I'll take a lo
Cristian Novac wrote:
...
>> I assume that I have to include in the etc/raddb/eap.conf file the
>> LIST OF DEVICE ROOT CERTIFICATES.
>> If so, can you tell me how to do that?
Read eap.conf? This is documented.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/
Cristian Novac wrote:
CURRENT CONDITIONS:
I'm currently using FreeRadius server in a system where the server is
authenticating to the client using a server certificate.
For now, the client is authenticating through username and password.
The method used is EAP-TTLS.
---
THE
My scenario is as follow:
I use more then one strong authentication system, which is OTP (One Time
Password) based and has a RADIUS interface. I use the same users repository
for the various authentication systems and wish to differ between the
authentication systems, using Free RADIUS .Net.
I woul
21 matches
Mail list logo
