On Tue, Mar 31, 2009 at 7:10 AM, Alan DeKok al...@deployingradius.com wrote:
Fajar A. Nugraha wrote:
Hi,
I'm using freeradius 2.1.3 (self-compiled as RPM), and trying to use
Autz-Type.
Don't. In 2.1.3, unlang is better. Read man unlang, and create
your policy that way.
Thanks Ivan and
Hello
[Update: fixed script so that it won't set incorrect attributes, but
problem persist]
I'm trying to set up FreeRADIUS with rlm_perl module to have ability
to interoperate with our billing/provisioning system.
FreeRADIUS version:
# radiusd -v
radiusd: FreeRADIUS Version 1.1.7, for host
I have spend more than a week, trying every hint i could extract from
google. But I am still unable to get a working PEAP setup. Could someone
please point out my glaringly obvious mistake.
Versions:
freeradius built from 2.1.4 source (but it reports 2.1.5 on start!)
eapol_test from
On 31/3/09 02:46, Tseveendorj tseveend...@gmail.com wrote:
John Hawkes-Reed wrote:
[ ... ]
Hi John
Thank you for trying to help me.
It has but I didn't know this is exactly right. Something looks like
following
inside /usr/local/etc/rc.d/mysql-server
# PROVIDE: mysql
# REQUIRE:
I'm running freeradius-1.1.7: NAS server sends Acct-Status-Start
packet, then freeradius processes it, and confirms with
Acct-Status-Reply. But if the reply packet is lost due UDP-nature, NAS
sends second Acct-Status-Start. In this situation I have two duplicate
records in radacct table. How
I have spend more than a week, trying every hint i could extract from
google. But I am still unable to get a working PEAP setup. Could someone
please point out my glaringly obvious mistake.
The main mistake is that authentication - works:
Sending Access-Accept of id 9 to 130.225.51.87 port
On Tue, Mar 31, 2009 at 1:50 PM, Fajar A. Nugraha fa...@fajar.net wrote:
Thanks Ivan and Alan. So is this syntax correct in Authorize section?
if (control:Realm == domain1.com) {
sql1
}
After some testing, apparently it should be request:Realm or simply Realm
[Update: fixed script so that it won't set incorrect attributes, but
problem persist]
I'm trying to set up FreeRADIUS with rlm_perl module to have ability
to interoperate with our billing/provisioning system.
FreeRADIUS version:
# radiusd -v
radiusd: FreeRADIUS Version 1.1.7, for host
Unique will solve your problem but keep in mind that this will consume more
resources.
On Tue, Mar 31, 2009 at 11:50 AM, Bogomolov Andrei d...@clink.ru wrote:
I'm running freeradius-1.1.7: NAS server sends Acct-Status-Start
packet, then freeradius processes it, and confirms with
I am trying to figure out how to properly setup freeradius with
rlm_python. The module loads and scripts execute, but I seem to miss
something when I try to return value pairs to be used in the reply
packet (Access-Accept). I have tried with the following script:
def authorize (params):
Hi.
I managed to get FreeRADIUS to work with PEAP and WPA2 authentication
using a Linksys WRT54GL wireless router.
The weird problem I'm now having is a follows:
If the client logging onto the Wi-Fi network tries to login with
incorrect credentials (incorrect user or pass) then he gets an
I managed to get FreeRADIUS to work with PEAP and WPA2 authentication
using a Linksys WRT54GL wireless router.
The weird problem I'm now having is a follows:
If the client logging onto the Wi-Fi network tries to login with
incorrect credentials (incorrect user or pass) then he gets an
Unique will solve your problem but keep in mind that this will consume more
resources.
That is not a very good solution. True, there will be only one insert in
the table but if you make sql fail the insert, sql module will fail as
will accounting, so no response will go back to the NAS. And it
The examples in src/modules/rlm_python gave me some hints and I
figured it out. Thanks anyway.
On Tue, Mar 31, 2009 at 3:43 PM, Hristo Trendev dist.li...@gmail.com wrote:
I am trying to figure out how to properly setup freeradius with
rlm_python. The module loads and scripts execute, but I seem
Please now i have a new problem; i use an Active Directory database and when
i do a radtest, it is always access-reject like this:
rad_recv: Access-Request packet from host 172.41.10.71 port 42678, id=153,
length=61
User-Name = azerty5
User-Password = x
On 31/3/09 02:46, Tseveendorj tseveend...@gmail.com wrote:
Hi John
Thank you for trying to help me.
It has but I didn't know this is exactly right. Something looks like
following
inside /usr/local/etc/rc.d/mysql-server
# PROVIDE: mysql
# REQUIRE: LOGIN
# KEYWORD: shutdown
inside
Config now reads
#DEFAULTAuth-Type = System
Still not working though
Gonna run through a couple iterations here as I do not think I am expressing
the problem properly. First I would like to lay the ground rules.
1: Compare Attribute User-Name to a list of usernames in a text file.
sorry, it includes the prepaid module that i write. u can not reproduce.
test shell
#!/bin/bash
i=0
while true
do
date
time ../radclient -p 16 -q -s -t 3 -r 3 -f auth_test 127.0.0.1:1812 auth xx
i=`expr $i \+ 1`
echo $i
done
Just in case this can help you, take a look at
http://linux-mm.org/OOM_Killer
Basically the linux kernel has mechanism to kill processes when it
runs out of memory. In this case kill signal should not be SIGTERM but
googling I found it may be possible in some cases the kernel use this
signal.
thanks,
logs (dmesg, messages, radius.log) does not have any special tips.
Date: Tue, 31 Mar 2009 16:02:01 -0300
Subject: Re: What can cause the Exiting normally without prompting
From: listas.luaf...@gmail.com
To: freeradius-users@lists.freeradius.org
Just in case this can help you,
Please now i have a new problem; i use an Active Directory database and when
i do a radtest, it is always access-reject like this:
http://deployingradius.com/documents/configuration/active_directory.html
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See
Hi, I've setup two different Linux machines with FR and still can't get MAC
authentication working with Calling-Station-Id in the radchk table. I've
checked FAQ and have googled for hours. I've tried a hosted and local mySQL
server.
Right now I'm using FR 2.1.1 on openSUSE. I didn't install
Config now reads
#DEFAULT Auth-Type = System
Still not working though
Erm, what is not working?
Gonna run through a couple iterations here as I do not think I am expressing
the problem properly. First I would like to lay the ground rules.
1: Compare Attribute User-Name to a list of
Hi, I've setup two different Linux machines with FR and still can't get MAC
authentication working with Calling-Station-Id in the radchk table. I've
checked FAQ and have googled for hours. I've tried a hosted and local mySQL
server.
If you only bothered looking at debug and configuration files
D'Oh. Its what Cent 5 installed (being a touch lazy... Sorry will rectify and
touch base when on current code)
-Original Message-
From: freeradius-users-bounces+lfross=ucdavis@lists.freeradius.org
[mailto:freeradius-users-bounces+lfross=ucdavis@lists.freeradius.org] On
Behalf
Great, works now. Thanks!
Is there a way to load the Database Value field with multiple MAC addresses,
and freeradius check against themso I can specify multiple devices the
user can use?
- Eric
-Original Message-
From: freeradius-users-bounces+me=egeier@lists.freeradius.org
I can't get SQL xlat to work in the Clients file. I'm trying to do a DB
query for the Shared Secret.
I'm getting invalid Message-Authenticator (Shared secret is incorrect)
errors.
The select statement works fine when ran on my DB server.
Have any suggestions?
Thanks, Eric
-
List
Scott Lambert wrote:
On 31/3/09 02:46, Tseveendorj tseveend...@gmail.com wrote:
Hi John
Thank you for trying to help me.
It has but I didn't know this is exactly right. Something looks like
following
inside /usr/local/etc/rc.d/mysql-server
# PROVIDE: mysql
# REQUIRE: LOGIN
# KEYWORD:
I have a FR 2.0.3 server running under FreeBSD 6.3 which intermittently
exits with a segmentation fault. I tried searching the list for known
seg fault issues with 2.0.3 and only found one which sounded like it
only happens when running under gdb. Do you think upgrading to 2.1.3
(it's the latest
Ivan, its interesting. Our NAS is linux pppoe-server with pppd last
version. Pppd retransmits Acct-Status in 10 seconds. Is it possible to
increase freeradius keep of tracking time, you talking about, from 5 to
15 seconds? Where is this place in configs/sources?
t...@kalik.net wrote:
30 matches
Mail list logo