Hello
I am trying to run Simultaneous-Use parameter on freeradius 2.0.5 which i
have 2 virtual servers on.
There can be same usernames on both virtual servers, so im not sure about
how it works but i prefer to use sql instead of radutmp file for
simultaneous check.
Anyway,
I added the following
Oguzhan Kayhan wrote:
I am trying to run Simultaneous-Use parameter on freeradius 2.0.5 which i
have 2 virtual servers on.
There can be same usernames on both virtual servers, so im not sure about
how it works but i prefer to use sql instead of radutmp file for
simultaneous check.
The
Oguzhan Kayhan wrote:
I am trying to run Simultaneous-Use parameter on freeradius 2.0.5 which
i
have 2 virtual servers on.
There can be same usernames on both virtual servers, so im not sure
about
how it works but i prefer to use sql instead of radutmp file for
simultaneous check.
The
Oguzhan Kayhan wrote:
Different virtual servers using different sql databases, so it wont be a
problem to use same username i think (or am i wrong?)
If you do that, yes, it should work.
In 1.1.7 version to test the sim-use i was using this setting so without
loggin in i was able to test
Ok, thanks, I got the latest git .. and I get this upon compilation :|
gcc -g -O2 -D_REENTRANT -D_POSIX_PTHREAD_SEMANTICS -Wall -D_GNU_SOURCE
-DNDEBUG -DEAPLIB -I. -I.. -I/root/radiusd/src -DOPENSSL_NO_KRB5 -c
eap_tls.c -o eap_tls.o /dev/null 21
/usr/bin/libtool --mode=link gcc -release 2.0.6 \
Would it make more sense then to use a Perl program instead for the
authorization and then have that program:
- verify credentials against ldap.
- do the regexp matching on the entitlement field?
Thanks,
Matt
[EMAIL PROTECTED]
-Original Message-
From: Alan DeKok [mailto:[EMAIL
S Adrian wrote:
Ok, thanks, I got the latest git .. and I get this upon compilation :|
...
libtool: link: `eapcommon.lo' is not a valid libtool object
It looks like you built it partly with one version of libtool, and
partly with another version.
which isn't good .. but still
regarding my
Hi everybody!
I am using freeradius 2.0.5, and i have a problem whith the proxy option
default_fallback, my server do proxy to 3 providers and i have a default
realm configured to fallback, but when home servers die the proxy set
them died, but don`t do the fallback.
Anyone have a
Marcelo Henique Cabral Ariza wrote:
I am using freeradius 2.0.5, and i have a problem whith the proxy option
default_fallback, my server do proxy to 3 providers and i have a default
realm configured to fallback, but when home servers die the proxy set
them died, but don`t do the fallback.
Unfortunately I lost the previous message of this thread, where Alan
Dekok's respond is presented.
Anyway, the content of it was he offered to use groups membership. He
also gave a specific file: rlm_passwd which should be configured in
order to achieve groups membership as an
Ronen Kfir wrote:
I would like to use FreeRADIUS as proxy to IAS servers. The question now
is how do I create those FreeRADIUS groups and how do I manage the
groups membership within FreeRADIUS.
Read man rlm_passwd? This is documented.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
[EMAIL PROTECTED] wrote:
I would like to build radiusd with all necessary libraries statically linked
in. I have tried the following command
./configure --enable-shared=no --enable-static=yes
That should work *if* you have static libraries available.
During linking phase, there are a
On Tue, Aug 05, 2008 at 04:40:05PM +0200, Alan DeKok wrote:
[EMAIL PROTECTED] wrote:
I would like to build radiusd with all necessary libraries statically linked
in. I have tried the following command
./configure --enable-shared=no --enable-static=yes
That should work *if* you have
Hello all,
I want to use Freeradius to assign IP addresses to clients from main_pool.
After all set up (I think), L2tp tunnel is established but user cannot get
an IP from Freeradius. From the Reply message, I see no IP is replied to
user.
Could anyone take a look at the debug and give me
On Tue, 2008-08-05 at 16:40 +0200, Alan DeKok wrote:
I have no idea why vendors don't supply static libraries. It's not
like disk space is expensive these days.
Many of them do supply static libraries, but they are part of a
different package. At least on Red Hat-based systems, if you have
Hello my name is martin and I'm from Argentina.
I'm trying to configure for use with FreeRADIUS eap + tls and ldap, but
recently started doing this and I am wrong in the first configurations, what
I did was set a cleinte which is a AP's and when I run radiusd-X -x strip me
this mistake even if
Xiaochen Jing wrote:
I want to use Freeradius to assign IP addresses to clients from
main_pool. After all set up (I think), L2tp tunnel is established but
user cannot get an IP from Freeradius. From the Reply message, I see no
IP is replied to user.
And the debug log says why.
Could
it seems to me like a certificate`s password problem.
take a look at server.cnf ca.cnf and clients.cnf.
or read the document that came with the package how to remove all
certificates and create the 3some ( :) ) of them.
2008/8/5 Martin Silvero [EMAIL PROTECTED]:
Hello my name is martin and I'm
Hello im from Argentina and im configure freeradius with eap+tls but give me
one error:
Tue Aug 5 13:11:37 2008 : Error: rlm_eap: SSL error error:06065064:digital
envelope routines:EVP_DecryptFinal_ex:bad decrypt
Tue Aug 5 13:11:37 2008 : Error: rlm_eap_tls: Error reading private key
file
Alan
Thanks for the tip.
After running /sbin/ldconfig -v , I was able to execute radiusd.
The only weird thing is that the daemon is not showing when I type ps aux.
Even after running /usr/sbin/radiusd, nothing happens.
My ps aux | grep radiusd shows only the following:
root 25770 0.0
Hi,
After running /sbin/ldconfig -v , I was able to execute radiusd.
The only weird thing is that the daemon is not showing when I type ps aux.
Even after running /usr/sbin/radiusd, nothing happens.
yep - at this point you run
radiusd -X
to see whats wrong
alan
-
List
Hi All,
I have freeradius 1.1.7 running on RHEL 5. radtest works with a local
user setup, and also with authentication via Active Directory. However,
anything outside the radius server host does not get a reply. I have
configured a Multitech MA820 and also tried ntradping, and both get the
Hi,
Hi All,
I have freeradius 1.1.7 running on RHEL 5. radtest works with a local
user setup, and also with authentication via Active Directory. However,
anything outside the radius server host does not get a reply. I have
configured a Multitech MA820 and also tried ntradping, and both
take a look at client file. there you can specify which clients ( IP
addresses ) are allowed .
add the public ip of your outside clients/nas.
2008/8/5 Yoho, Cindy [EMAIL PROTECTED]:
Hi All,
I have freeradius 1.1.7 running on RHEL 5. radtest works with a local
user setup, and also with
On Tue, 2008-08-05 at 18:17 +0100, [EMAIL PROTECTED] wrote:
your host is firewalled and therefore FR doesnt see the packet
at all?
Also, if the server host is multihomed, then the response packet may be
coming from a different source IP than the original request was sent to,
in which case
regarding this settlement, and delete certificates and regenerate, but
remains the same mistake:
Tue Aug 5 15:01:28 2008 : Error: rlm_eap: SSL error error:06065064:digital
envelope routines:EVP_DecryptFinal_ex:bad decrypt
Tue Aug 5 15:01:28 2008 : Error: rlm_eap_tls: Error reading private key
Hello,
We are trying to figure out how to do an auth from one client but not from
another. Let me explain: For our DSL clients we use a separate radius
server and backup server. For everything else (dialup, news) we use
other servers. Our problem comes in that we set all DSL clients on
Hi,
I've been looking at getting an appliance from a company called Avenda
Systems (www.avendasystems.com).
Its a RADIUS appliance with a nice GUI, but I think FreeRADIUS offers all
the features that it does.
Does anyone have any experience of it? Or a comparison between it and
FreeRADIUS?
Also
Hi Alan/Ivan:
Thanks for your great work of helps/guides that makes us progress step
by step.
Now my question is how I can set accounting work within inner-tunnel as
I need to use eap-ttls/pap to autho/authen users via wireless AP.
In fact I read this message: There are no accounting requests
29 matches
Mail list logo