Bryan Graham wrote:
> /opt/csg/etc/raddb/sites-enabled/default[198]: Failed to find module
> "attr_rewrite".
> /opt/csg/etc/raddb/sites-enabled/default[62]: Errors parsing authorize
> section.
That message is produced when the module doesn't exist, OR when it has
failed to initialize properly.
Am Dienstag, 7. April 2009 06:04:44 schrieb Tseveendorj:
> Hello,
>
> Does FreeRADIUS have mrtg module for monitoring bandwidth usage?
>
> Sincerely,
> Tseveen.
You can also make use of the logmatch feature of net-snmp to monitor RADIUS
messages in the logfile and make MRTG retrieve these values.
Tseveendorj wrote:
> I'm providing internet to customers via ADSL2+. I have cisco router and
> FreeRADIUS 2.1.3.
> Customer can make double connection via PPPoE.
>
> How to disable double connection ?
> What kind of attribute can do that ?
doc/Simultaneous-Use
Alan DeKok.
-
List info/subscri
Tseveendorj wrote:
> Does FreeRADIUS have mrtg module for monitoring bandwidth usage?
No. You can out accounting information in a DB, and then look at that.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Larry Ross wrote:
> In my passwd module I have the following. (made sense to have the group
> name appear as if it came from the authenticator... hence the ~)
...
> format = "~Group-Name:*,User-Name"
Do NOT re-use the "Group-Name" attribute. That is already used for
Unix groups.
tnt-4 wrote:
>
>>We are going to proxy EAP to another site with all freeradius (we are
using
>>2.1.4, another site using 1.x), but there are some interest problems
>>occurred, details are as follows:
>>
>>Our site only accept non @domain format for inner EAP tunnel
>>authentication since user D
Hello,
Does FreeRADIUS have mrtg module for monitoring bandwidth usage?
Sincerely,
Tseveen.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I'm providing internet to customers via ADSL2+. I have cisco router and
FreeRADIUS 2.1.3.
Customer can make double connection via PPPoE.
How to disable double connection ?
What kind of attribute can do that ?
Thanks for any help.
Sincerely,
Tseveen.
-
List info/subscribe/unsubscri
Hello all :)
So after getting my testing box current with FR 2.1.5 I have my config 97%
there, but I am having a interesting situation occur that I am hoping is fairly
straight forward.
Overview of config.
User accounts authenticated against Kerberos KDC (Working 100%)
User Account Attributes h
Hi,
>
> oh, how I wish Lenny were a code name for MacOSX rather than Debian...
> anyway,
Linophile
> or lovely friend Lenny or having a few issues compared to his friend
> George.
> Lenny wants to have the lovely Wifi...but cant. You see, Lenny has
'issues'
> and some of these issues wont be a
I'm using freeradius 2.1.4, hand compiled, and running on Solaris 10,
in a zone.
I have attr_rewrite in my authorize { } section of the
sites-enabled/default. A raidusd -X shows the following (relevant) lines:
including configuration file /opt/csg/etc/raddb/modules/attr_rewrite
.
.
conns:
On Sat, Apr 4, 2009 at 1:16 AM, wrote:
> Hi,
>
>> The howto you sent me says "If all goes well, you should see
>> authentication succeeding (NT_STATUS_OK). You should also see the
>> NT_KEY output, which is needed in order for FreeRADIUS to perform
>> MS-CHAP authentication." I (0x0) the output b
hi,
taking some Steinbeck metaphor too far...
oh, how I wish Lenny were a code name for MacOSX rather than Debian... anyway,
or lovely friend Lenny or having a few issues compared to his friend George.
Lenny wants to have the lovely Wifi...but cant. You see, Lenny has 'issues'
and some of these i
I think I agree with you and will compile 1.7 from source. Would likely make
this whole thing much easier as it seems like your suggesting. I will try
make an rpm and send it to the PclinuxOS repositories as well if possible.
That way other users will be able to get the up to date binary. :)
On Mo
Ville Leinonen wrote:
> I try to stop authorization proccess if user is not found in ldap.
> If it's found then eap-tls is allowed.
redundant {
ldap1
ldap2
}
if (notfound) {
reject
}
Alan DeKok.
-
List info/subscr
daniel knox wrote:
> Basically I had to use radius 1.7 something as it was in the repos.
Source code *does* exist for newer versions.
> I have NTPassword in my ldap directory so i could use PEAP, however
> maybe through miss-configuration by me or the fact that my entry does
> not have a prece
Thanx for your answer, Freeradius is now able to do local authentification
for this Wimax Solution, which is great.
Now I'm trying to do the following
ASN < EAP/TTLS --> Radius A (Proxy) < Inner CHAP Request >
Radius A
The idea would be that Radius B only do simple authentication (i
Okies long day trying to deploy radius, i think it might be in a working
state though.
Basically I had to use radius 1.7 something as it was in the repos. If
problems persist Ill try and compile a binary up for the distro they are
using (pclinuxOS). Off topic I agree with people that a server orie
>Haven't gotten much sleep thanks to this, and I'm not sure where to go next.
>So thank you all in advance for any advice/recommendations.
How about you do what is suggested in every peace of documentation and
daily on this list and post the output from radiusd -X. Include server
startup since co
>Please, I just install it with Freeradius and SQL.
>
>How can I limit user by time of the day?
See Login_time attribute.
>
>And how do I limit user to maximum bandwidth?
Look into your NAS vendor documentation (or dictionary) for such
attribute. If it's got one you can use it.
Ivan Kalik
Kalik
>So i cannot do this about using freeradius, but i can make it
>using IAS (see link)?
>
>http://h40060.www4.hp.com/procurve/includes/application-notes/index.php?cc=uk&lc=en&content=ans2-en
>
But that's not LDAP, that's Active Directory. Active Directory can be
made to reveal a clear text password
>We are going to proxy EAP to another site with all freeradius (we are using
>2.1.4, another site using 1.x), but there are some interest problems
>occurred, details are as follows:
>
>Our site only accept non @domain format for inner EAP tunnel
>authentication since user DB only store user name wi
Hi,
I try to stop authorization proccess if user is not found in ldap.
If it's found then eap-tls is allowed.
Br,
Ville
-Original Message-
From: freeradius-users-bounces+ville.leinonen=solodel@lists.freeradius.org
on behalf of Alan DeKok
Sent: Mon 06/04/2009 14:45
To: FreeRadius u
Jacky Chan wrote:
> We are going to proxy EAP to another site with all freeradius (we are using
> 2.1.4, another site using 1.x), but there are some interest problems
> occurred, details are as follows:
>
> Our site only accept non �...@domain” format for inner EAP tunnel
> authentication since us
Ville Leinonen wrote:
> I have a little problem in my radius configuration in my
> redudant ldap section rad ver is 2.1.5.
>
> redundant {
>ldap-srv1
>ldap-srv2
>notfound = reject
> }
That is not the correct format. It does not follow any of the
examples or documentation.
> Any su
Hi,
I have a little problem in my radius configuration in my
redudant ldap section rad ver is 2.1.5.
redundant {
ldap-srv1
ldap-srv2
notfound = reject
}
Gives this error message:
/usr/local/etc/raddb/sites-enabled/default[167]: Entry with no value is invalid
/usr/local/etc/raddb/sites-e
Hi,
> Dear All,
>
> I use freeradius 1.1.7 and I am thinking of migrate to new ver. 2.x
> so i want to ask which ver is better ?
2.1.4 by a long long way
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hi,
the os is changed from x86_64 to x86, this is no longer the problem.
x86_64 os are probably the cause of this problem.
From: switchp...@hotmail.com
To: freeradius-users@lists.freeradius.org
Subject: RE: What can cause the "Exiting normally" without prompting
Date: Tue, 31 Mar 20
28 matches
Mail list logo