>Did you try RE-BUILDING the server when you only had one version of
>OpenSSL installed?
I did that and the SSL_CTX_ERROR message is now gone and radiusd runs
successfully. However it won't accept encrypted authentication requests:
rlm_ldap: ldap_get_conn: Checking Id: 0
rlm_ldap: ldap_get_conn
Hi,
When Post-Auth-Type REJECT is executed I need to insert two or more
rows into a SQL data base.
here is what I have at present
sites-enabled/default
Post-Auth-Type REJECT {
sql
}
sql.conf -> sql/mysql/dialup.conf
postauth_query = "INSERT INTO ${aut
Hi,
Their isnt' a backup.
So I'm having problems with:
postauth_query = "INSERT INTO ${authcheck_table} VALUES
(NULL,'%{User-Name}','Password', '==',
'%{User-Password:-Chap-Password}');"
postauth_query = "INSERT INTO ${usergroup_table} values
('%{User-Name}','Dynamic','');"
I
>I've been successfully using FreeRADIUS 1.1.4 to authenticate users
>against Active Directory using LDAP and a plaintext password.
>
>In the authorize section FreeRADIUS anonymously binds to our LDAP server
>(Active Directory) and searches for the user identified in the
>Access-Request (in my case
User-Name = "bill"
Sun Mar 15 17:59:37 2009 : Info: +- entering group authorize
{...}
Sun Mar 15 17:59:37 2009 : Info: ++[preprocess] returns ok
Sun Mar 15 17:59:37 2009 : Info: [auth_log] expand:
/var/log/radius/radacct/%{Client-IP-Address}
>the username i am using is scoe,the domain name is ITDEPT.COM,the password
>is testing
So, you need to strip out the domain.
>i am using a single access point as client and i am not using any proxy
>server.
>Is it still necessary to make the changes in proxy.conf file??
Yes, you won't be prox
>[suffix] No '@' in User-Name = "ITDEPT.COM\scoe", looking up realm NULL
>[suffix] No such realm "NULL"
>++[suffix] returns noop
>You left username as it is.
the username i am using is scoe,the domain name is ITDEPT.COM,the password
is testing
..
>[mschap] No Cleartext-Password configured. Ca
On Sun, Mar 15, 2009 at 4:35 PM, wrote:
>>Is there a better way ??
>
> Don't they have a backup of their user database on a tape/DVD?
>
Unlikely. We had a similar situation once (also with DSL ATM), and the
only user data we got was usernames and encrypted (with some unknown
encryption) password
Chris Phillips wrote:
> Yahooo! that's the one! Debug instantly said that it will stop
> processing the request and no response is to be sent. Brilliant.
OK. In order for this to work properly, you WILL need to grab the
latest "stable" branch from git.freeradius.org. It has another fix tha
>The high level goal is to have a new radius server "slurp" all the
>users on a DSL ATM aggregation link into a SQL database.
>We are taking over a bunch of users from a defunct ISP and don't have
>the UserName / Password data.
>
>What I'm thinking is that there should be a way to have Post-Auth-Ty
On Sat, Mar 14, 2009 at 8:08 AM, Alan DeKok wrote:
> Chris Phillips wrote:
> > Thanks, frustrating this, maybe I'll need to revert to ideas about a
> > cron job to do some housekeeping checks...
>
> One more thought:
>
> authorize {
>...
>redundant {
>redundant {
11 matches
Mail list logo