hi,
I am using EAP-TTLS authentication in radius. and i want to use
Session-Timeout. but i am not getting where i have to set session time out.
if some one can help.
thanks,
mitul modi
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hi,
I wonder if anyone can help or has seen such behaviour. We are
running FreeRADIUS on site extensively - for wireless and
wired authentication. the perennial issue of printers + 802.1X
has raised its head again - and this time we're trying
to hit it head on - configure them to use 802.1X !
(ie
Hi,
I am trying to remove the realm from User-Name when FreeRADIUS receive the
access request.
If it have realm in User-Name, the FR will proxy it to other RADIUS server.
and i wish the FR will remove the realm from User-Name when it receive any
access request from NAS-IP-Address=192.168.1.1 ,
I have installed everything software packages on RHEL4 update 7,but still can
not make freeradius 2.1.3 on it.below is the error message:
...
...
Making all in main...gmake[4]: Entering directory
`/root/freeradius-server-2.1.3/src/main'/root/freeradius-server-2.1.3/libtool
--mode=compile gcc
I didn't enabled it but maybe the debian-build made it for me without
noticing it.
Anyway it's definetely the udpfromto problem. For debugging I just
forced the define of HAVE_AF_INET6 (that it was not defined and so made
udpfromto_init return -1) and now the code works.
Or better, there is a
ecard wrote:
Now I check this in 2.0.1.
This work right in 2.0.1, but not in 2.1.3.
Last version where this work is 2.0.5.
It's likely the same bug that affected the users file. This will be
fixed in 2.1.4.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
张虓 wrote:
I have installed everything software packages on RHEL4 update 7,but
still can not make freeradius 2.1.3 on it.below is the error message:
...
listen.c:99:1: directives may not be used inside a macro argument
OK.. This will be fixed in 2.1.4.
Alan DeKok.
-
List
hi,
i am new to free radius. can any one help how i can cinfigure
Session-Timeout?
i am using EAP-TTLS with chap password.
i have added credentials for user name and password in users file.
thanks,
mitul modi
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
the problem is always
listen.c:99:1: directives may not be used inside a macro
argumentlisten.c:98:54: unterminated argument list invoking macro rad_assert
in main/src/listen.c
By the way,I have try to install 2.1.3 on serval machine with RHEL4U7 but face
the same problem.
a.l.m.bu...@lboro.ac.uk wrote:
verily, we created userIDs for the printers in the Active
Directory (same as normal users - and they happily
use 802.1X for wifi and wired).
however, we have hit a problem - when configuring some
HP printers to use PEAP, it 'just doesnt work(tm)' :-(
The
Arran Cudbard-Bell wrote:
As far as i'm aware this has never worked,
Weird. I know I tested it before it went in.
I'll try to take a look at it before 2.1.4.
Alan, If the last round of the EAP conversation didn't require data to
be sent to the inner server the outer.User-Name attribute
Setting the flag --without-udpfromto inside debian/rules solved the
issue.
Probably debian/ubuntu testers added it in the default config because
they didn't test it with ipv6, I don't know.
Anyway now it works, thanks all for the help
-
List info/subscribe/unsubscribe? See
Godfrey Peart wrote:
My FR 2.1 is set to authenticate users via PEAP + EAP-TTLS, this works
fine but some users are being rejected
because their wireless client allows the setting of an outer identity:
anonymous or something else, which is not a valid username.
You need to separate the
Andrew Gin wrote:
I've trawled looking for a solution for this, but there doesn't seem
to be a clearcut answer. I am using Freeradius 1.1.7.
Upgrade to 2.1.3.
I'm trying to make it so that in the users file, passwords are stored
as a SHA hash.
So my users file looks like this:
asdf
Markus Gaugusch wrote:
I'm using freeradius 2.1.1 (openSUSE 11.1 version). I want to implement
two virtual hosts, both using pam authentication, but different pam config.
That should be easy.
According to the comments in modules/pam, pam_auth can be overridden in
authorize config, but
Hi,
the problem is always
listen.c:99:1: directives may not be used inside a macro
argumentlisten.c:98:54: unterminated argument list invoking macro rad_assert
in main/src/listen.c
By the way,I have try to install 2.1.3 on serval machine with RHEL4U7 but
face the same problem.
Jonathan Gazeley wrote:
This is pretty much the config I had already. My eap.conf already
specifies a virtual inner server. The only difference was that I had
'use_tunneled_reply = no', so I changed that to 'yes'.
My inner virtual server, 'inner-tunnel' already had an 'update reply'
block
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alan DeKok wrote:
a.l.m.bu...@lboro.ac.uk wrote:
verily, we created userIDs for the printers in the Active
Directory (same as normal users - and they happily use 802.1X
for wifi and wired).
however, we have hit a problem - when configuring some
a.l.m.bu...@lboro.ac.uk wrote:
get the same issue with 2.1.3 - editing the source so the macro isnt defined
ends up with code that compiles but then crashes when run - I'm waiting
for 2.1.4
Err... you should be able to just delete the 5-10 lines in
src/main/listen.c that reference the macro.
Hi
my problem is I am trying to configure authentication with ldap + VLAN.
according to the group the user is connected to what I want to send a
VLAN, you need to know to begin testing is where I set this filter, I
set in to ldap file?
I already created some rules in the authorize section of
Hi,
So once you enable authentication and the printer fails to
authenticate, it won't let you Telnet into the jetdirect card or use
the web interface until you do a cold restart (and clear all the
802.1X settings)...
tell me about it! even if you let it onto via a failed auth = okay
it still
Hi,
The printers are *claiming* that they're doing PEAPv0. However, the
protocol they're running is actually PEAPv2.
..on this note, any update on when/if FR will do PEAPv1 and PEAPv2?
(i note more and more devices are coming with such options -
eg Nokia S60 smartphones have all the boxes
a.l.m.bu...@lboro.ac.uk wrote:
Hi,
The printers are *claiming* that they're doing PEAPv0. However, the
protocol they're running is actually PEAPv2.
..on this note, any update on when/if FR will do PEAPv1 and PEAPv2?
(i note more and more devices are coming with such options -
eg Nokia
Hi all,
I'm trying to authenticate to a LDAPS backend but failing. Any suggestions?
My freeradius version:
—
radiusd: FreeRADIUS Version 2.1.1, for host i686-pc-linux-gnu, built on Nov 21
2008 at 07:54:33
My ldap module settings:
—---
ldap
Dear Expert
I use Freeradius 1.1.7 +ubuntu+coova-chilli.
I need to limit the client access only web and ssh.
Is it possible to set on freeradius attribute?
if it 's possible , please advice me .
Thank you in advance
Chuan Chudabut
-
List info/subscribe/unsubscribe? See
Can anyone help me to configure PAM authentication with
freeradius ? can anyone have step by step guide for pam authentication or
suggest me the tutorials to follow
Any tips and guide on this issue will be highly appreciated. Thanks in
advance
-
List
26 matches
Mail list logo