Hi All,
New to freeradius I am needs to be said...
I have been struggling for days trying to get freeradius installed on
Centos 5.2 i386, I get basic pap authentication working but when i try
and use authentication with mysql as the db i get errors saying can't
find module sql when running
On Thu, Nov 27, 2008 at 10:50:45AM +0200, Bashir Jahed wrote:
I have been struggling for days trying to get freeradius installed on
Centos 5.2 i386, I get basic pap authentication working but when i try
and use authentication with mysql as the db i get errors saying can't
find module sql when
Yes I did install it, first thing i did...
-Original Message-
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
org] On Behalf Of Jos Vos
Sent: 27 November 2008 11:10
To: FreeRadius users mailing list
Subject: Re: Centos 5.2 How To
On Thu, Nov 27, 2008 at 10:50:45AM +0200, Bashir Jahed
Hi,
I have been struggling for days trying to get freeradius installed on
Centos 5.2 i386, I get basic pap authentication working but when i try
and use authentication with mysql as the db i get errors saying can't
find module sql when running radiusd -X As soon as i uncomment sql
in
I installed from rpm, rpmbuild against kernel from the src file.
Installed all modules put out by build as well as all modules for
freeradius via yum. What is the best way to install freeradius, via
source/yum or rpm?
-Original Message-
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
On Thu, Nov 27, 2008 at 11:19:52AM +0200, Bashir Jahed wrote:
I installed from rpm, rpmbuild against kernel from the src file.
Installed all modules put out by build as well as all modules for
freeradius via yum. What is the best way to install freeradius, via
source/yum or rpm?
Not sure
Hi,
hmm, I'm not sure at all that you can have multi line
attr filter matches... ie if you have seperate entries
for each allowed type - i think that the very last defined
one is the one takenwhat you need to do is have
a REGEX for the accetped types eg
Trapeze-VLAN-Name ==
Hi,
I've got a working (my)sql freeradius2.1 configuration where users are put in
groups (usergroup). I added an 'IP' column to radgroupcheck table so that I can
force radius clients into some groups (via %{Client-IP-Address} ) .
This allows me to say who can connect from where (WiFi, Dialup,
Hi,
Through my experience, if you set the dhcp client id to anything (my
personal favourite is 'cheese') on the Mac it suddenly bursts into life.
Weird I know, but it seems to work...
confirmed this behaviour myself - I'm not sure such information
is widely known - but its very useful.
I'm a user of daloRADIUS. I set up successfuly coovaAp for redirection. Now i
want to configure FreeRADIUS for authentification. Here are some settings:
Server FreeRADIUS:
Bind address: *
Port: 0.
Must i use Listen options and add the real address? that is 192.168.1.14?
What about clients.conf
hi,
Server FreeRADIUS:
Bind address: *
Port: 0.
Must i use Listen options and add the real address? that is 192.168.1.14?
you ust configure the listen options. as for using the real address, you
should only need to do that if the device had multiple IPs and multiple NICS
What about
Must i use Listen options and add the real address? that is 192.168.1.14?
No.
What about clients.conf file? Must i add also the NAS address
Yes.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello!
but this log are of Radius, you tell me a problem is in the
supplicant? but I try with many supplicant and I have the same error.
Ever had a case like this? because I come with this problem long ago
and do not get results despite dealing with various forms and follow
the documentation.
Hi everyone:
Sorry for my english. I don't speak very well.
I'm working with ippool in FreeRadius. I have some problems with that,
because when FreeRadius assigns all IP available in ippool, ipppool's
databases stuck him self.
I found this page:
Ok,
I have re-installed, updated, installed freeradius. Freeradius-mysql,
mysql, mysql-devel. Created db, imported tables from examples in
/usr.share/doc/freradius/.../...sql as per docs. Created db user, edited
sql.conf file to match, uncommented sql in authorize and accounting
section of
Bashir Jahed wrote:
Ok,
I have re-installed, updated, installed freeradius. Freeradius-mysql,
mysql, mysql-devel. Created db, imported tables from examples in
/usr.share/doc/freradius/.../...sql as per docs. Created db user, edited
sql.conf file to match, uncommented sql in authorize and
Fernando wrote:
Hi all,
after configure EAP2 module and test it with EAP-MD5 (it works
properly) I want use the EAP-PSK and/or EAP-GPSK . But if I add in
eap2 module ...
eap2 {
psk {
}
}
When I run radiusd... it fails showing that psk is unknown, how
can these not native
Osvaldo Campos M. - Administrador Red STI wrote:
I found this page:
http://www.mavetju.org/unix/freeradius-ippool-tool-man.php
This tool dumps the contents of the FreeRadius ippool databases for
analyses or for removal of active entries (stuck entries?)
Do you work with this tool?...
[EMAIL PROTECTED] wrote:
Hi,
hmm, I'm not sure at all that you can have multi line
attr filter matches... ie if you have seperate entries
for each allowed type - i think that the very last defined
one is the one takenwhat you need to do is have
a REGEX for the accetped types eg
Sergio Belkin [EMAIL PROTECTED] wrote:
I am using OpenWRT Kamikaze and sometimes there is a problem with Mac
OS clients. Clients get Access-Accept, but Mac OS says that only gets
a self asigned IP and then it can't surf the web. Problem happens
using either TTLS or PAP.
It is a problem
#yum install mysql-devel mysql
(see what is missing and install it with yum)
FreeRadius install from tar.gz archive (www.freeradius.org - Downloads).
2.1.1 works perfectly.
# wget .
# tar -xvzf freeradiustar.gz
# ./configure
# make
# make install
Location is /usr/local/etc/raddb
On Thu, Nov 27, 2008 at 03:16:50PM +0100, Marinko Tarlac wrote:
configure is your friend. Read output and install what is needed.
Just one comment from a system management point of view: if you run
CentOS, meant as a stable production OS, you probably wants to care
for not screwing up your
Thanks guys,
I managed to get it started, When i do a radcheck i now get the
following error...
rad_recv: Access-Request packet from host 127.0.0.1:38949, id=33,
length=58
User-Name = radius
User-Password = radpass
NAS-IP-Address = 255.255.255.255
NAS-Port = 1812
You have eap-sim examples in /src/tests.
Ivan Kalik
Kalik Informatika ISP
Dana 27/11/2008, Fernando [EMAIL PROTECTED] piše:
[EMAIL PROTECTED] wrote:
So, I don't know how to configure EAP-SIM in freeradius as default EAP
method.
Don't bother. Whatever is the default method, it will get
I managed to get it started, When i do a radcheck i now get the
following error...
..
users: Matched entry DEFAULT at line 152
..
rlm_sql (sql): sql_set_user escaped user -- 'radius'
radius_xlat: 'SELECT id, UserName, Attribute, Value, op FROM
radcheck WHERE Username =
Hi,
Just one comment from a system management point of view: if you run
CentOS, meant as a stable production OS, you probably wants to care
for not screwing up your system. Installing software without an
RPM, especially software that already is provided by the distro
itself, is the *worst*
Hey guys,
i force in WIndows Client to use only mschap2, but the problem continue:
-
Module: Instantiated radutmp (radutmp)
Listening on authentication *:1812
Listening on accounting *:1813
Ready to process requests.
rad_recv: Access-Request packet from host 150.162.67.254:32858, id=109,
i force in WIndows Client to use only mschap2, but the problem continue:
-
Module: Instantiated radutmp (radutmp)
Listening on authentication *:1812
Listening on accounting *:1813
Ready to process requests.
rad_recv: Access-Request packet from host 150.162.67.254:32858, id=109,
length=53
Where a particular distro typically supports a particular application,
like FreeRadius, through its normal repository/package manager it is a
very bad idea to simply configure/build from source. The original poster
of this assertion is absolutely correct. The .spec for the rpmbuild
often calls
Jos Vos wrote:
On Thu, Nov 27, 2008 at 03:16:50PM +0100, Marinko Tarlac wrote:
configure is your friend. Read output and install what is needed.
Just one comment from a system management point of view: if you run
CentOS, meant as a stable production OS, you probably wants to care
for
Hello,
i am new to freeraidus.
Have set up a radius server for a linksys ap.
- debian server: compiled a freeradius with eap/tls support
- mysql db:
- tried dialupadmin and phpMyprepaid: but those had problems in their
sql scripts ( default values for timestamp and smallint ).
- corrected
On Thu, Nov 27, 2008 at 06:00:20PM +0100, Marinko Tarlac wrote:
Just one comment from a system management point of view: if you run
CentOS, meant as a stable production OS, you probably wants to care
for not screwing up your system. Installing software without an
RPM, especially software
Hey TNT,
On Thu, Nov 27, 2008 at 2:54 PM, [EMAIL PROTECTED] wrote:
i force in WIndows Client to use only mschap2, but the problem continue:
-
Module: Instantiated radutmp (radutmp)
Listening on authentication *:1812
Listening on accounting *:1813
Ready to process requests.
rad_recv:
Since I changed to Freeradius 2.1.1 the ippols are not selected
successfull. In 2.0.x my config is
file: users
# default ippools per NAS
$INCLUDE users.ippools
file: users.ippools
# Addresspool for ll-us
DEFAULT NAS-IP-Address == 172.16.30.2, Pool-Name := ll-us_pool
Fall-Through =
Hi Elom
What version of freeradius are you using??
In version 2.0.4 you can't do that
- Original Message -
From: ELOM ETSE
To: Liran Tal
Cc: freeradius-users@lists.freeradius.org
Sent: Thursday, November 27, 2008 8:41 AM
Subject: SOS FreeRADIUS
I'm a user of
Hi!!
The format of ${raddbdir} /clients.conf defines NAS by its IP pool.
And what if I'd like to have a pool of NASes each using unique secret
but not to specyfy their IP or domain names to the freeradius config
files?
Is it possible to do so?
When I was trying to create 2 client sections for
Le 27.11.2008 07:17, Douglas Macedo a écrit :
Hey TNT,
On Thu, Nov 27, 2008 at 2:54 PM, [EMAIL PROTECTED]
mailto:[EMAIL PROTECTED] wrote:
i force in WIndows Client to use only mschap2, but the problem
continue:
-
Module: Instantiated radutmp (radutmp)
Absolutely not.
How does the RADIUS server know which NAS is talking to it?It needs to know which secret to use.
Dave.Nov 27, 2008 01:01:41 PM, freeradius-users@lists.freeradius.org wrote:
Hi!!The format of ${raddbdir} /clients.conf defines NAS by its IP pool.And what if I'd like to have a pool
Sebo PL wrote:
Hi all!
Is it possible to test whether EAP works from the shell?
I'm looking for something simullar to:
Sure there is:
http://deployingradius.com/scripts/eapol_test/
Kind regards,
--
Lech Karol Pawłaszek ike
You will never see me fall from grace [KoRn]
-
List
Hey,
i copy the dictionary to /etc/radiusclient. But now the connections don't
target the Radius Server.
--
epiderme:/etc/radiusclient# ls -l
total 68
-rw-r--r-- 1 root root 6593 2008-11-27 15:02 dictionary
-rw-r--r-- 1 root root 12388 2006-10-29 08:54 dictionary.ascend
-rw-r--r-- 1 root root
Le 27.11.2008 10:15, Douglas Macedo a écrit :
Hey,
i copy the dictionary to /etc/radiusclient. But now the connections
don't target the Radius Server.
--
epiderme:/etc/radiusclient# ls -l
total 68
-rw-r--r-- 1 root root 6593 2008-11-27 15:02 dictionary
-rw-r--r-- 1 root root 12388
Hi,
Or what else? Is just running ./confugure; make; make install (and
not using RPMs at all) better than taking a Fedora src.rpm to start with?
for some people, yes (though only so long as all the supporting
libraries and dev packages have been installed via RPM first ;-) )
I've gone down
On Thu, Nov 27, 2008 at 08:48:17PM +, [EMAIL PROTECTED] wrote:
I've gone down the route of using the SPEC file to build the latest
release several times - but in most cases its just GIT repository all
the time
(the main issue with RPMs is they give the idea of stability
and often are
Are you going to post the end of this message?
Ivan Kalik
Kalik Informatika ISP
Dana 27/11/2008, Jerome Blomart [EMAIL PROTECTED] piše:
Hello,
i am new to freeraidus.
Have set up a radius server for a linksys ap.
- debian server: compiled a freeradius with eap/tls support
- mysql db:
-
And the only thing I found is this:
http://wiki.eduroam.cz/rad_eap_test/
wpa_supplicant's eapol_test, JRadius Simulator
But I'm confused about this script cause I just can't see any
'chalange' or etc in # freeradius -X when $ rad_eap_test
It's nothing to do with the testing tool.
rad_recv:
And what if I'd like to have a pool of NASes each using unique secret
but not to specyfy their IP or domain names to the freeradius config
files?
Is it possible to do so?
It might be in the future. dynamic-clients virtual server works just with
Packet-Src-IP-Address now. There are plans to make
file: users
# default ippools per NAS
$INCLUDE users.ippools
It looks like include doesn't work in users (? any more).
file: users.ippools
# Addresspool for ll-us
DEFAULT NAS-IP-Address == 172.16.30.2, Pool-Name := ll-us_pool
Fall-Through = Yes
Just copy the content of users.ippools
It might be in the future. dynamic-clients virtual server works just with
Packet-Src-IP-Address now. There are plans to make NAS-Identifier
available to it as well. You will be able to set different shared
secrets then.
I'm waiting for such NAS-ID exactly and hope it might be based on the
Hello,
This message is more precisely direted to Alan.
I have noticed that the Class attribute as defined in rfc2865 is a
string value, but looking at dictionary that comes with freeradius i saw
that it's an octet value.
As far as I know none of the rfc updating 2865 redefine the class attribute.
Alexandre,
that's work. The problem is that the dictionaries of radiusclient, isn't
correct. The default microsoft dictionary don't work perfectly.
I use this page to modify my dictionary.microsoft:
http://wiki.freeradius.org/PopTop#The_radiusclient_setup_part_.28on_the_Poptop_server.29
Now
It might be in the future. dynamic-clients virtual server works just with
Packet-Src-IP-Address now. There are plans to make NAS-Identifier
available to it as well. You will be able to set different shared
secrets then.
I'm waiting for such NAS-ID exactly and hope it might be based on
Alexandre Chapellon wrote:
I have noticed that the Class attribute as defined in rfc2865 is a
string value, but looking at dictionary that comes with freeradius i saw
that it's an octet value.
FreeRADIUS was the first to mark some attributes as binary versus
ascii. The original RFC's didn't
52 matches
Mail list logo