Hello i am keeping session information in mysql only..
What i notice is, when a user logs in, only after a few mins i see the sql
tables are updated about this user.
So, if i check max-session number via sql too, user can log in a few times
because, the user can not be found as online on sql
Peter Param a écrit :
Hi all,
I'm trying to authenticate to a LDAPS backend but failing. Any suggestions?
Is it an LDAP server answering on LDAPS connections (LDAP+SSL on port
636) or an LDAP server answering on LDAP connections that are then
secured by Start-TLS (LDAP on port 389 +
it is an LDAP server answering on LDAPS connections (LDAP+SSL on port 636)
...but it also supports the latter even tho an acl is set to not allow port 389
use start_tls=no fails also, it seems to have a problem with the cert and/or
cert directory:
rlm_ldap: attempting LDAP reconnection
Peter Param a écrit :
it is an LDAP server answering on LDAPS connections (LDAP+SSL on port 636)
...but it also supports the latter even tho an acl is set to not allow port 389
use start_tls=no fails also,
Maybe but keep it to no
it seems to have a problem with the cert and/or cert
yes.but how can I specify Calling-Station-Ids based on valid and invalid
ips?
I want that radius checks that if Calling-Station-Id is valid radius sends
ippool 1 for vpn server and if Calling-Station-Id is invalid sends ippool2.
Where this compare is set in radius server?
Message: 2
Date: Sat,
Hi,
We are migrating from other RADIUS software to FreeRADIUS. In order to avoid
changing existing users database objects, I'm trying to fix the User-Name
attribute format in NAS request and it seems that preprocess module is the
right place to do that. But after adding new default rule in
Hi,
I use freeradius 1.1.7 for autenticate users to provide Internet
connectivity. I have groups of usernames who has access from anywhere. However,
I have others groups which only has access from one NAS (promotional codes). I
know how to block these accounts from my Postgres Database:
Hi
I configure Freeradius 2.1.3 how it describes in
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO
but it doesn't work.
here is debug output:
FreeRADIUS Version 2.1.3, for host i386-redhat-linux-gnu, built on Dec 8
2008 at 16:00:08
Copyright (C) 1999-2008 The
Hello all,
I am using freeradius 2.1.0 on two ubuntu machines, one of which is
configured as server and one as proxy.
The network is configured in ipv6 but that's not the problem here
(everything regarding ipv6 works well now)
I am trying to create a testbed where there is three machines:
-one
P.S: another quick question. It is possible with some logging option (or
in other ways) to save the attributes that the server adds to the auth
accept message locally in a file in the proxy machine? I saw that there
is some options to add/modify the attributes in the reply, but it is
possible to
On Feb 9, 2009, at 4:05 PM, sth wrote:
I'd like to integrate the function of an older RADIUS server (FR
1.0.1)
into the new one (FR 2.1.3), which handles 802.1X. The old FR box
handles authentication for a VPN concentrator. It has some static
users
defined, then defaults to PAM (which, in
Victor Shkamerda wrote:
Hi,
We are migrating from other RADIUS software to FreeRADIUS. In order to avoid
changing existing users database objects, I'm trying to fix the User-Name
attribute format in NAS request and it seems that preprocess module is the
right place to do that. But after
andrey.trubni...@unicreditgroup.ru wrote:
Hi
I configure Freeradius 2.1.3 how it describes in
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO
but it doesn't work.
...
Sending Access-Challenge of id 130 to 10.6.0.86 port 1645
EAP-Message =
use start_tls=no fails also,
Maybe but keep it to no
did that, still fails with the same message
it seems to have a problem with the cert and/or cert directory:
rlm_ldap: attempting LDAP reconnection
rlm_ldap: (re)connect to ldap1.stvincents.com.au:636, authentication 0
rlm_ldap: setting
I have exactly the same problem with Fedora 9 and 10 only. It works
perfectly fine in Fedora 8 with the exact same configuration. I have spent
hours trying to fix this, and could not figure it out.
Thomas E. Casartello, Jr.
Staff Assistant - Wireless Technician/Linux Administrator
Information
Hi all,
We enabled Simultaneous-Use checking with checking against accouting
data stored in MySQL database. However, found that some of the Stop
records are not received and this makes Simultaneous-Use checking fail.
Seems roaming users will always encountered this problem. I wonder if
I've to
hi,
thanks for the reply.
i have tried this thing but when i am doing so its taking this as a default
entry and giving error for user name and password
i have entered username and cleartext-password in user file.
also i have configured the mysql database for authentication and accounting.
so
I have a working radius server (ver 1.1.3). which I am using for
802.1x authentication of wired switch ports. I would like to
dynamically assign users vlans. I have cisco gear and have achieved
basic vlan allocation by configuring a Default entry in the users
file. So the vlan allocation part
Am Freitag, 13. Februar 2009 07:17:17 schrieb Paul Dealy:
I have a working radius server (ver 1.1.3). which I am using for
802.1x authentication of wired switch ports. I would like to
dynamically assign users vlans. I have cisco gear and have achieved
basic vlan allocation by configuring a
19 matches
Mail list logo