Re: Seqfault with multiple

t...@kalik.net wrote: Hello to Alan and the rest of the list. I wanted to report this to the bug tracker but it appears to be down right now so I am sending it to the list. I had a situation where I needed to remove all of the attributes from a reply except for Service-Type to one specific clien

Re: Seqfault with multiple

>Hello to Alan and the rest of the list. I wanted to report this to the >bug tracker but it appears to be down right now so I am sending it to >the list. > >I had a situation where I needed to remove all of the attributes from a >reply except for Service-Type to one specific client. Unlang seemed t

Seqfault with multiple

Hello to Alan and the rest of the list. I wanted to report this to the bug tracker but it appears to be down right now so I am sending it to the list. I had a situation where I needed to remove all of the attributes from a reply except for Service-Type to one specific client. Unlang seemed to

Re: Account preProcessing

>Currently my institution allows for registered users to create guest accounts >for visitors to enable wireless access for the guest users (Wireless access is >controlled via Captive Portal/PAP with a Kerberos Directory backend).. >Registered users create the guest accounts using the guest users

Re: FreeRADIUS / ippool / Wireless

>If it can't be done, I would love to hear any feedback people have about how >to map wireless users to IP addresses. Has anyone else figured out a way to >be able to record this kind of data without resorting to matching MAC >addresses from the radius accounting records with data in a DHCP ser

Account preProcessing

Good Afternoon All; Currently my institution allows for registered users to create guest accounts for visitors to enable wireless access for the guest users (Wireless access is controlled via Captive Portal/PAP with a Kerberos Directory backend). Registered users create the guest accounts using

FreeRADIUS / ippool / Wireless

Hi, I'm using FreeRADIUS 2.1.3 on FreeBSD 7.1 to authorize users on my Cisco 1200 WAPs. I was wondering if it is possible to use ippools to assign client IPs rather than having them use DHCP, and I Googled around a bit and found a message that said this can't be done. I was curious if it can'

undefined reference to `lt_preloaded_symbols'

I am running Ubuntu 8.10 and trying to build the debian package for FreeRADIUS 2.1.4 as described on the FreeRADIUS web site. When I issue the command: fakeroot dpkg-buildpackage -b -uc The process starts but at some point along the way, I get this error message: libtool: link: gcc .libs/radi

Re: Error binding to port for 0.0.0.0 port 1812

>Unfortunately, your suggestion didn't have any result. >I'm using SUSE 11.0 OS... So, find SuSE maintainer and ask him. >Do I have to initiate freeRADIUS through "freeradius -X" ? That's not likely to work either. radiusd is already running. Try good old: killall radiusd Then start it again (

Re: Error binding to port for 0.0.0.0 port 1812

Yes.. But this port is used just for freeradius!! That's why I can't figure out a solution for this... 2009/3/24 Alan DeKok > Bruno Noronha wrote: > > I didn't understand what you meant... I issued lsof and verified only > > one service running on 1812 port! > > Which means you can't run *anot

Re: copy-acct-to-home-server

Emmanuel Rafaralahisoa wrote: > I wish to configure 1 proxy radius server and 2 backend radius servers. > One backend server is the real database for aauth and billing. The other > one is inside a traffic shapper. I want to duplicate all accounting > packets to this trafic shapper. After reading

Re: Error binding to port for 0.0.0.0 port 1812

Bruno Noronha wrote: > I didn't understand what you meant... I issued lsof and verified only > one service running on 1812 port! Which means you can't run *another* server on the same port. This is Unix 101. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/us

Re: Error binding to port for 0.0.0.0 port 1812

Unfortunately, your suggestion didn't have any result. I'm using SUSE 11.0 OS... Do I have to initiate freeRADIUS through "freeradius -X" ? 2009/3/24 > >I received the following error when starting debug mode or issuing > >"freeradius reload" and catching the error in radius.log: > > > > This is

Re: Error binding to port for 0.0.0.0 port 1812

>I received the following error when starting debug mode or issuing >"freeradius reload" and catching the error in radius.log: > This is nothing to do with freeradius. People who made your distribution made that reload script. Find out who maintains freeradius for your distribution and ask them to

Re: Error binding to port for 0.0.0.0 port 1812

I didn't understand what you meant... I issued lsof and verified only one service running on 1812 port! 2009/3/24 Anders Holm > No, you haven't stopped radius then. Only one service per port. man lsof if > you're not sure which process is holding on to the port. > > Sent from my iPhone > > On 24

Re: monitoring FR's EAP/PEAP capabilities...

>Has anyone written code to test FR's EAP/PEAP functionality that would >work with MS-CHAPv2? I see that 'radeapclient' will do MD5, but need to >monitor FreeRADIUS talking to its oracle though rlm_mschap. Something >that tested just MS-CHAPv2 would be fine, too, although it seems like >rlm_mschap

Re: Error binding to port for 0.0.0.0 port 1812

No, you haven't stopped radius then. Only one service per port. man lsof if you're not sure which process is holding on to the port. Sent from my iPhone On 24 Mar 2009, at 20:12, Bruno Noronha wrote: Dawgs, I received the following error when starting debug mode or issuing "freeradius re

Error binding to port for 0.0.0.0 port 1812

Dawgs, I received the following error when starting debug mode or issuing "freeradius reload" and catching the error in radius.log: Tue Mar 24 16:16:05 2009 : Error: Failed binding to socket: Address already in use Tue Mar 24 16:16:05 2009 : Error: /etc/raddb/radiusd.conf[240]: Error binding to p

Re: copy-acct-to-home-server

>I wish to configure 1 proxy radius server and 2 backend radius servers. One >backend server is the real database for aauth and billing. The other one is >inside a traffic shapper. I want to duplicate all accounting packets to >this trafic shapper. After reading many times the proxy.conf and >/s

monitoring FR's EAP/PEAP capabilities...

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi there, Has anyone written code to test FR's EAP/PEAP functionality that would work with MS-CHAPv2? I see that 'radeapclient' will do MD5, but need to monitor FreeRADIUS talking to its oracle though rlm_mschap. Something that tested just MS-CHAPv2

Re: Windows Authentication and Authorization via LDAP on FreeRadiusv2.1.4 Configuration Help!!!

>Thanks for all the info and missed reading the comments at the end of the >radiusd.conf. I uncommented out the ldap portions of >/usr/local/etc/raddb/sites-enabled. My config in modules section is > >ldap { >server = "ciq-dc1.ciq.com" >port = 636

Re: ldap+freeradius

>Please why crypt-passwords don't work in ths case? > It has nothing to do with crypt. Password you have entered to log in and password that is stored in users file are not the same. Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

copy-acct-to-home-server

Hi all, I wish to configure 1 proxy radius server and 2 backend radius servers. One backend server is the real database for aauth and billing. The other one is inside a traffic shapper. I want to duplicate all accounting packets to this trafic shapper. After reading many times the proxy.conf an

Re: Windows Authentication and Authorization via LDAP on FreeRadius v2.1.4 Configuration Help!!!

Am Dienstag, 24. März 2009 17:29:26 schrieb Edwin Isada: > Thanks for all the info and missed reading the comments at the end of the > radiusd.conf. I uncommented out the ldap portions of > /usr/local/etc/raddb/sites-enabled. My config in modules section is > > ldap { > s

Re: ldap+freeradius

Am Dienstag, 24. März 2009 18:15:26 schrieb David N'DAKPAZE: > Please which protocol more secure can i use with ldap as database? the answer to this question was in one of my first replies to your mail. AGAIN! See: http://deployingradius.com/documents/protocols/compatibility.html http://deployingr

Re: ldap+freeradius

>From your log. >> [pap] Passwords don't match -- Philippe-Alexandre Lemelin - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: ldap+freeradius

Please why crypt-passwords don't work in ths case? 2009/3/24 Alan DeKok > David N'DAKPAZE wrote: > > I've seen it and there it is said that we can use crypt passwords but > > inmy case i have an access-reject: > ... > > [pap] login attempt with password "testing" > > [pap] Using CRYPT encryption

Re: ldap+freeradius

David N'DAKPAZE wrote: > I've seen it and there it is said that we can use crypt passwords but > inmy case i have an access-reject: ... > [pap] login attempt with password "testing" > [pap] Using CRYPT encryption. > [pap] Passwords don't match That should be clear. Alan DeKok. - List info/sub

Re: EAP/TLS -- FreeRadius -- 802.1x

Thank you for your pointers Alan, I now have a port based authentication using wpa_supplicant, freeradius and a dell switch. Next step would be to use something more secure than the default MD5 i'm using. I'll keep reading. Thank you again. On Wed, Mar 18, 2009 at 12:35 PM, phil lemelin wrote:

Re: ldap+freeradius

I've seen it and there it is said that we can use crypt passwords but inmy case i have an access-reject: rad_recv: Access-Request packet from host 127.0.0.1 port 58647, id=108, length=5 7 User-Name = "steve" User-Password = "x"

Re: ldap+freeradius

Am 24.03.2009 um 18:15 schrieb David N'DAKPAZE: Please which protocol more secure can i use with ldap as database? As I wrote in the email as answer to my email (and an URL I missed to find the whole day as answer to your problems), see http:// deployingradius.com/documents/protocols/compa

Re: ldap+freeradius

I've use it but the authentication have failed SRV-RADIUS:/var/log# radtest steve testing localhost 1812 x Sending Access-Request of id 151 to 127.0.0.1 port 1812 User-Name = "steve" User-Password = "x" NAS-IP-Address = 172.30.10.71 NAS-Port = 1812 rad_recv:

Re: ldap+freeradius

Forget what I have written, see http://deployingradius.com/documents/ protocols/compatibility.html Am 24.03.2009 um 18:05 schrieb Nicolas Goutte: Am 24.03.2009 um 18:00 schrieb David N'DAKPAZE: I want to use crypt -passwords (pap) but Idon't know where to define it. Only cleartext-password

Re: ldap+freeradius

Please which protocol more secure can i use with ldap as database? 2009/3/24 Nicolas Goutte > > Am 24.03.2009 um 18:00 schrieb David N'DAKPAZE: > > I want to use crypt -passwords (pap) but Idon't know where to define it. > Only cleartext-passwords are accepted. Can somebody help me > > > PAP

Re: ldap+freeradius

>I want to use crypt -passwords (pap) but Idon't know where to define it. >Only cleartext-passwords are accepted. Can somebody help me > For cypted passwords use attribute Crypt-Password: Crypt-Password := "... Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.f

Re: ldap+freeradius

Am 24.03.2009 um 18:00 schrieb David N'DAKPAZE: I want to use crypt -passwords (pap) but Idon't know where to define it. Only cleartext-passwords are accepted. Can somebody help me PAP needs cleartext passwords (see http://en.wikipedia.org/wiki/ Password_authentication_protocol ) Have a n

Re: ldap+freeradius

I want to use crypt -passwords (pap) but Idon't know where to define it. Only cleartext-passwords are accepted. Can somebody help me 2009/3/24 > >Client RADIUS { > .. > > That should be: > > client RADIUS { > .. > > Ivan Kalik > Kalik Informatika ISP > > - > List info/subscribe/unsubscribe? See

Re: CHAP authentication issue

Alan Cooper wrote: > Can you indulge my curiousity and point out (or point me at the docs > that explain) what changed? User-Password is an attribute that goes into a RADIUS packet. Cleartext-Password is the "known good" password that the server has. You can use Cleartext-Password to do PA

Re: modules instance name restrictions

Thibault Le Meur wrote: > * I defined my own pap module with the name 'pap-myorg' and expected it > to set Auth-Type to PAP-MYORG, but in fact it wasn't setting the > Auth-Type at all (moreover I saw no notice in the log about not beeing > able to set the Auth-Type). > * I changed the instance name

Re: PAM-Radius authentication issue on Ubuntu 7.4: can not authenticate SSH users not present in /etc/passwd

Hu, Fengliang (Procurve Networking) wrote: > I did some research from the website and some emails dated in 2006 said > that PAM_Radius can only authenticate user accounts in /etc/passwd file. > Is that right? Yes. There is no documented way in PAM to get UID/GID/etc from the PAM module (e.g. pa

Re: Windows Authentication and Authorization via LDAP on FreeRadius v2.1.4 Configuration Help!!!

Thanks for all the info and missed reading the comments at the end of the radiusd.conf. I uncommented out the ldap portions of /usr/local/etc/raddb/sites-enabled. My config in modules section is ldap { server = "ciq-dc1.ciq.com" port = 636

PAM module unknown

Hi, I can compile the FreeRADIUS PAM module without any errors. But when I try to use it I always get a module unknown error. For example: AUTH-PAM: BACKGROUND: user 'john' failed to authenticate: Module is unknown This is how I compiled the module: gcc -fPIC -c pam_radius_auth.c gcc -shared -o

Re: Windows Authentication and Authorization via LDAP on FreeRadius v 2.1.4 Configuration Help!!!

Edwin Isada wrote: > Hello All, > > Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly > have any experience and I've been using version 1.1.3 for the past few > weeks and had authentication working properly for Cisco devices. I > decided to install the latest version 2.1.4 a

RE: fake user and unregistered user forwarding

>How can do set freeradius static access interface. > I hope that means static IP address. You can fix the address server listens on - in listen section of radiusd.conf. Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

RE: fake user and unregistered user forwarding

Yes, I know. But ask a freeradius question. How can do set freeradius static access interface. Thnks for information. -Original Message- From: freeradius-users-bounces+uaydinli=gmail@lists.freeradius.org [mailto:freeradius-users-bounces+uaydinli=gmail@lists.freeradius.org] On Beh

Re: Windows Authentication and Authorization via LDAP on FreeRadius v2.1.4 Configuration Help!!!

>Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly have >any experience and I've been using version 1.1.3 for the past few weeks and >had authentication working properly for Cisco devices. I decided to install >the latest version 2.1.4 and forgot to save all my configuration

RE: fake user and unregistered user forwarding

>I need a idea.Im using freeradius on cisco equipment and mrtg tool. Remote >users are come other virtual-access interface.Cannot receve remote users >data traffics. > >How can do assign static virtual-access interface on remote users.That is >possible? This is not a cisco or MRTG list. Ivan Kali

Re: Windows Authentication and Authorization via LDAP on FreeRadius v 2.1.4 Configuration Help!!!

Am Dienstag, 24. März 2009 15:58:09 schrieb Edwin Isada: > Hello All, > > Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly > have any experience and I've been using version 1.1.3 for the past few > weeks and had authentication working properly for Cisco devices. I decided >

Windows Authentication and Authorization via LDAP on FreeRadius v 2.1.4 Configuration Help!!!

Hello All, Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly have any experience and I've been using version 1.1.3 for the past few weeks and had authentication working properly for Cisco devices. I decided to install the latest version 2.1.4 and forgot to save all my config

Re: problem with ldap authentication

Alan DeKok wrote: Frank Bonnet wrote: freeradius is used by chillispot on the machine, does your answer means chillispot is sending a CHAP request ? Yes. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html OK thanks for your (constructive ;-)) a

RE: fake user and unregistered user forwarding

Hi, First, Sorry for bad English. I need a idea.Im using freeradius on cisco equipment and mrtg tool. Remote users are come other virtual-access interface.Cannot receve remote users data traffics. How can do assign static virtual-access interface on remote users.That is possible? Rega

Re: problem with ldap authentication

Frank Bonnet wrote: > freeradius is used by chillispot on the machine, does your answer means > chillispot is sending a CHAP request ? Yes. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: problem with ldap authentication

Alan DeKok wrote: Frank Bonnet wrote: Believe me ... if I knew how not to send I would do it Fix the NAS. You bought it, you know what make/model it is, so you can find documentation for it. Maybe try asking the vendor for documentation? My question is how to instruct freeradius et use /

Expiration vs WISPr-Session-Terminate-Time

Hi, Today I did some test with radreply.WISPr-Session-Terminate-Time and radcheck.Expiration. It is supposed both attributes do the same, but Expiration is from AAA server side, meanwhile Session-Terminate-Time is from NAS side. However, there is a difference if you want to to set a

Re: problem with ldap authentication

Frank Bonnet wrote: > Believe me ... if I knew how not to send I would do it Fix the NAS. You bought it, you know what make/model it is, so you can find documentation for it. Maybe try asking the vendor for documentation? > My question is how to instruct freeradius et use /etc/passwd > in the

Re: problem with ldap authentication

t...@kalik.net wrote: rad_recv: Access-Request packet from host 127.0.0.1:32817, id=0, length=214 User-Name = "bonj" CHAP-Challenge = 0xbba7f4f69dfb6cf2342f1cbba4e7e482 CHAP-Password = 0x00f7fbe0aa077445403b77c55ab120f811 You send a chap request!!! Believe me ... if I kn

Re: problem with ldap authentication

> rad_recv: Access-Request packet from host 127.0.0.1:32817, id=0, > length=214 > User-Name = "bonj" > CHAP-Challenge = 0xbba7f4f69dfb6cf2342f1cbba4e7e482 > CHAP-Password = 0x00f7fbe0aa077445403b77c55ab120f811 >> >> You send a chap request!!! > >Believe me ... if I knew h

Re: problem with ldap authentication

t...@kalik.net wrote: I KNOW we cannot use /etc/passwd for chap authentication my question is HOW to use /etc/passwd with freeradius ? Great. So, you are aware it's not going to work with chap. And what do you do: rad_recv: Access-Request packet from host 127.0.0.1:32817, id=0, length=214

Re: problem with ldap authentication

>I KNOW we cannot use /etc/passwd for chap authentication >my question is HOW to use /etc/passwd with freeradius ? > Great. So, you are aware it's not going to work with chap. And what do you do: >>> rad_recv: Access-Request packet from host 127.0.0.1:32817, id=0, length=214 >>> User-Name = "

Re: problem with ldap authentication

t...@kalik.net wrote: OK now I'm still in trouble ... even after removing LDAP statements here is the log of the session, how to setup the User-password to the right value to use /etc/passwd file ? thanks rad_recv: Access-Request packet from host 127.0.0.1:32817, id=0, length=214 User-

Re: ldap+freeradius

>Client RADIUS { .. That should be: client RADIUS { .. Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: ldap+freeradius

thank you, now it is ok 2009/3/24 David N'DAKPAZE > yes. > > 2009/3/24 Laurent Besson > > Le Tuesday 24 March 2009 12:33:40 David N'DAKPAZE, vous avez écrit : >> > Excuse me, i know that it is that clients.conf the server is using >> because >> > when i modify a client which appears in the deb

Re: ldap+freeradius

yes. 2009/3/24 Laurent Besson > Le Tuesday 24 March 2009 12:33:40 David N'DAKPAZE, vous avez écrit : > > Excuse me, i know that it is that clients.conf the server is using > because > > when i modify a client which appears in the debug output the server > > considers this changes and te debug o

Re: ldap+freeradius

Am Dienstag, 24. März 2009 12:51:31 schrieb David N'DAKPAZE: > clients.conf: > Client RADIUS { > ipaddr= 172.30.1.10 > # # secret and password are mapped through the "secrets" file. > secret= xx > shortname = RADIUS > # # the following three fields a

Re: freeRaidus-PAM:: .so file error

> Why are you developing something for a server version years out of date??? Why not use current version? Read doc/bugs about how to debug this.One of the products am working with is using FR 1.1.5The same .so library is working for another FR1.1.5 which is compiled.pamtester is displaying segmen

Re: ldap+freeradius

Le Tuesday 24 March 2009 12:33:40 David N'DAKPAZE, vous avez écrit : > Excuse me, i know that it is that clients.conf the server is using because > when i modify a client which appears in the debug output the server > considers this changes and te debug output isn't the same > > 2009/3/24 > > > >I

Re: ldap+freeradius

clients.conf: # -*- text -*- ## ## clients.conf -- client configuration directives ## ## $Id$ ### # # Define RADIUS clients (usually a NAS, Access Point, etc.). # # Defines a RADIUS client. # # '127.0.0.1' is another name

Re: ldap+freeradius

Post the debug *and* clients.conf. Mask the passwords this time. Ivan Kalik Kalik Informatika ISP Dana 24/3/2009, "David N'DAKPAZE" piše: >Excuse me, i know that it is that clients.conf the server is using because >when i modify a client which appears in the debug output the server >considers

Re: ldap+freeradius

Excuse me, i know that it is that clients.conf the server is using because when i modify a client which appears in the debug output the server considers this changes and te debug output isn't the same 2009/3/24 > >I've add other clients in the client .conf but when i debug the server > they > >d

Re: ldap+freeradius

>I've add other clients in the client .conf but when i debug the server they >don't appear in the output of radiusd -X. ii dont know why. > Because that is not the file server is using. Read the debug - it lists which clients.conf file server is reading. Edit that one. Ivan Kalik Kalik Informatik

Re: ldap+freeradius

Am Dienstag, 24. März 2009 12:21:06 schrieb David N'DAKPAZE: > I've add other clients in the client .conf but when i debug the server they > don't appear in the output of radiusd -X. ii dont know why. radiusd knows the clients it displays during the debug output. Please recheck your setup WHERE y

Re: ldap+freeradius

I've add other clients in the client .conf but when i debug the server they don't appear in the output of radiusd -X. ii dont know why. 2009/3/24 > >The server doesn't see it but i've put it; i don't it ignores it > > > > Put it where? In the clients.conf file listed in the debug? Or in some > o

Re: ldap+freeradius

>The server doesn't see it but i've put it; i don't it ignores it > Put it where? In the clients.conf file listed in the debug? Or in some other clients.conf file server is not using! Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.htm

Re: How to log failed login attempts?

>i am using FreeRADIUS 2.0.5. Successfull logins into cisco routers are >logged great (using Accounting), but i need to log also the failed >attempts. In /var/log/radius.log radius does log the failed attempts, >BUT if in clients.conf i have created client as 10.0.0.0/8 (a network, >not a host), th

Re: problem with ldap authentication

>OK now I'm still in trouble ... even after removing LDAP statements >here is the log of the session, how to setup the User-password to >the right value to use /etc/passwd file ? >thanks > > > >rad_recv: Access-Request packet from host 127.0.0.1:32817, id=0, length=214 > User-Name = "bonj" >

Re: ldap+freeradius

The server doesn't see it but i've put it; i don't it ignores it 2009/3/24 > >I've put it in; the output of radiusd -X is: > > > .. > > client GW-RADIUS { > >ipaddr = 172.30.3.121 > >require_message_authenticator = no > >secret = "moov123" > >shortname = "GW-RADIU

Re: ldap+freeradius

Am Dienstag, 24. März 2009 11:12:50 schrieb David N'DAKPAZE: > client GW-RADIUS { >         ipaddr = 172.30.3.121 >         require_message_authenticator = no >         secret = "moov123" >         shortname = "GW-RADIUS" >         nastype = "cisco" >  } >  client 172.30.2.14 { >         ipaddr = 1

Re: problem with ldap authentication

Frank Bonnet wrote: Alan DeKok wrote: Frank Bonnet wrote: is it possible to use freeradius with NIS instead of LDAP ? thanks Yes. NIS is just a different way of getting users to "seem" to be in /etc/passwd. So there shouldn't be anything to do. Just install the server, and it should work.

Re: ldap+freeradius

>I've put it in; the output of radiusd -X is: > .. > client GW-RADIUS { >ipaddr = 172.30.3.121 >require_message_authenticator = no >secret = "moov123" >shortname = "GW-RADIUS" >nastype = "cisco" > } > client 172.30.2.14 { >ipaddr = 172.30.2.14 >

How to log failed login attempts?

Hi, i am using FreeRADIUS 2.0.5. Successfull logins into cisco routers are logged great (using Accounting), but i need to log also the failed attempts. In /var/log/radius.log radius does log the failed attempts, BUT if in clients.conf i have created client as 10.0.0.0/8 (a network, not a host

Re: freeRaidus-PAM:: .so file error

gt;User-Password = "password"  Processing the authorize section of >radiusd.confmodcall: entering gr! > oup authorize for request 0  modcall[authorize]: module "preprocess" returns > ok for request 0radius_xlat:  > '/var/log/radius/radacct/detail-20090324

Re: ldap+freeradius

I've put it in; the output of radiusd -X is: FreeRADIUS Version 2.1.3, for host i686-pc-linux-gnu, built on Mar 12 2009 at 17:24:19 Copyright (C) 1999-2008 The FreeRADIUS server project and contributors. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. You ma

Re: ldap+freeradius

Post your clients.conf and startup output of radiusd -X (before you send any requests). Ivan Kalik Kalik Informatika ISP Dana 24/3/2009, "David N'DAKPAZE" piše: >My problem is that i have define 2 clients but radius works with only the >first nas. please see the output of the radtest: >Ignoring

Re: problem with ldap authentication

>>> is it possible to use freeradius with NIS instead of LDAP ? >>> thanks >> >> Yes. NIS is just a different way of getting users to "seem" to be in >> /etc/passwd. So there shouldn't be anything to do. Just install the >> server, and it should work. >> >> Alan DeKok. > >you mean uncomment

Re: ldap+freeradius

Am Dienstag, 24. März 2009 10:50:58 schrieb David N'DAKPAZE: > My problem is that i have define 2 clients but radius works with only the > first nas. please see the output of the radtest: > Ignoring request to authentication address * port 1812 from unknown client > 172.30.10.71 port 38509 > Ready

Re: ldap+freeradius

My problem is that i have define 2 clients but radius works with only the first nas. please see the output of the radtest: Ignoring request to authentication address * port 1812 from unknown client 172.30.10.71 port 38509 Ready to process requests. Ignoring request to authentication address * port

freeRaidus-PAM:: .so file error

ot;  Processing the authorize section of radiusd.confmodcall: entering gr! oup authorize for request 0  modcall[authorize]: module "preprocess" returns ok for request 0radius_xlat:  '/var/log/radius/radacct/detail-20090324'rlm_detail: /var/log/radius/radacct/detail-%Y%m%d expands to

Re: ldap+freeradius

Am Dienstag, 24. März 2009 09:33:51 schrieb David N'DAKPAZE: > Please it seems that ldap works only with pap.Is it true? tell me how to > configure many clients (nas) in clients.conf Gamarjoobat, See the protocol and authentication server compatibility charts for more info. http://deployingradius

Re: ldap+freeradius

Please it seems that ldap works only with pap.Is it true? tell me how to configure many clients (nas) in clients.conf 2009/3/23, Alan DeKok : > > David N'DAKPAZE wrote: > > Hello, > > Please I 'd to know how to use an ldap as a database of freeradius. I > > use freeradius-server-2.1.3. Is it possi