Hello,
I got it. I defined Pool-Name attribute in wrong place.
Tseveen.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I just subscribed so I won't be able to quote properly but I hope at
least the message is associated with the right thread (I found it on
the web archive of the mailing list). I've been using FreeRADIUS for
about 4 year now and it is a wonderful product - there's no question
why
Were you also depending on the rlm_perl threads to
make connections to multiple DBs? I know that I can
make an array of db handlers within one perl thread
and use them interchangeably, but the functionality
I had in the 2.0.x release where every perl thread
had its own connection to the DBs and
Hello,
I just subscribed so I won't be able to quote properly but I hope at
least the message is associated with the right thread (I found it on
the web archive of the mailing list). I've been using FreeRADIUS for
about 4 year now and it is a wonderful product - there's no question
why
Yes this was the main reason but there are others too.
С поздрави
Борислав Димитров
e-mail: b.dimit...@ngsystems.net
GSM: 0889 28 54 57
NG Systems
Лавеле 32, ет: 4,
София, България
On 15.04.2009, at 11:06, Apostolos Pantsiopoulos wrote:
Were you also depending on the rlm_perl threads to
Borislav Dimitrov wrote:
I just subscribed so I won't be able to quote properly but I hope at
least the message is associated with the right thread (I found it on the
web archive of the mailing list). I've been using FreeRADIUS for about 4
year now and it is a wonderful product - there's no
Hi
I am running freeradius 2.1.4. Alan has mentioned that unlang logic
should be restricted to Post-Auth (afterall, that is what it is there
for). In order for me to do this, I need to know in the Post-Auth-Type
REJECT which module caused the reject.
Currently, I can do this in the
Hi,
The lack of the _clones options is not my (primary) problem but I
think it was a good functionality. I understand that simplifying,
refactoring and optimizing the code is important and that the changes
done are probably for the better but being unable to instantiate
several rlm_perl
Hello,
I configured bandwidth shape in FreeRADIUS's MySQL with following
in radgroupreply table
Cisco-AVPair:= ip:sub-policy-Out=256Kbps
but today I defined Pool-Name attribute
in radcheck table
tseveen Pool-Name := pool
the problem is when I defined Pool-Name
Enable auto_header in pap (raddb/modules/pap).
Ivan Kalik
Kalik Informatika ISP
-Original Message-
From: freeradius-users-bounces+tnt=kalik@lists.freeradius.org
[mailto:freeradius-users-bounces+tnt=kalik@lists.freeradius.org] On
Behalf Of James Devine
Sent: 14 April 2009 17:09
this is result of
freeradius -X
reread_config: reading radiusd.conf
Config: including file: /etc/freeradius/proxy.conf
Config: including file: /etc/freeradius/clients.conf
Config: including file: /etc/freeradius/snmp.conf
Config: including file: /etc/freeradius/eap.conf
Config:
Hi,
I have a simultaneous-use information belongs to a users radgropcheck..
What i want is, if i enter a value to users radcheck, it should bypass the
radgroupcheck value..how it is possible??
For now, whatever i make the simultaneous use value for user, it uses the
default settings from the
insert into nas (nasname, shortname, secret) values (client
127.0.0.1,localhost,passwordradius);
The word client is part of the configuration file, not be part of the
nasname. It should have been.
insert into nas (nasname, shortname, secret) values
(127.0.0.1,localhost,passwordradius);
I have performed the following actions, however, the listener files are
still being deleted when the home accounting server is down.
Alan DeKok wrote:
1) Don't write to the detail file twice.
I have commented out ALL detail lines from all active configuration
files (including
Hi,
i have been following this great guide
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO
on how to integrate freeradius with AD. I am getting confused about
kerberos5. Do i have to additionally install krb5 from ports? Or maybe
it should be on my system already
Please point me to documentation that shows how to set up AES Key-wrap
of the MK issued to the authenticator.
I am trying to support FIPS140-2. Is this possible?
Thank you,
Bill
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
That didn't seem to work. What I am trying to do is authenticate an access
request in which I am given a mac address for both the username and
password, so I was going to try to use the mac address attribute for both.
The authorization matches my filter, but authentication fails even with
I'm trying to set up AES Key-wrap of MK issued to the authenticator. Is
this possible?
If it is, will someone please explain how to do it?
Thank you,
Bill
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
James Devine wrote:
That didn't seem to work. What I am trying to do is authenticate an
access request in which I am given a mac address for both the username
and password, so I was going to try to use the mac address attribute for
both. The authorization matches my filter, but
Apostolos Pantsiopoulos wrote:
I understand that there may some benefits in the current
implementation (2.1.x) such as less threads, smaller memory
footprint etc. but why change something that has been tested
and working in the first place?
A quest to make it better. If we were satisfied
Borislav Dimitrov wrote:
Anyways my main trouble is being unable to use multiple rlm_perl
instances like this (I've put the comments to illustrate the flexibility
of using *_clones which is now gone):
Ah... OK. That was *not* the intent of the change. I'll take a look
at fixing it for the
JDL wrote:
I have performed the following actions, however, the listener files are
still being deleted when the home accounting server is down.
Please run it in debugging mode. The output is likely too large to
post here, but only debugging mode will tell you what's happening.
It will
Hi,
On 15.04.2009, at 20:31, Alan DeKok wrote:
Borislav Dimitrov wrote:
Anyways my main trouble is being unable to use multiple rlm_perl
instances like this (I've put the comments to illustrate the
flexibility
of using *_clones which is now gone):
Ah... OK. That was *not* the intent of
...
Wed Apr 15 13:43:45 2009 : Info: [ldap] looking for check items in
directory...
Wed Apr 15 13:43:45 2009 : Debug: rlm_ldap: aaasimultaneoususe -
Simultaneous-Use == 1
Wed Apr 15 13:43:45 2009 : Info: [ldap] looking for reply items in
directory...
Wed Apr 15 13:43:45 2009 : Debug: WARNING: No
The user does have a password set in userPassword, but the request doesn't
have this password, I am only getting the mac address in the request to
authenticate the user.
On Wed, Apr 15, 2009 at 2:38 PM, Ivan Kalik t...@kalik.net wrote:
...
Wed Apr 15 13:43:45 2009 : Info: [ldap] looking for
I have performed the following actions, however, the listener files are
still being deleted when the home accounting server is down.
# Mark this home server alive ONLY when it starts being responsive
status_check = status-server
You have altered this from robust-proxy-accounting
this is result of
freeradius -X
reread_config: reading radiusd.conf
Config: including file: /etc/freeradius/proxy.conf
Config: including file: /etc/freeradius/clients.conf
Config: including file: /etc/freeradius/snmp.conf
Config: including file: /etc/freeradius/eap.conf
Config:
Yes, group attributes with := will overwrite user attributes in sql. List
files after sql and put user specific attributes that shouldn't overwriten
by group ones there.
Ivan Kalik
Kalik Informatika ISP
-Original Message-
From: freeradius-users-bounces+tnt=kalik@lists.freeradius.org
Is avpair still returned in Access-Accept? If it is problem is with Cisco,
not freeradius.
Ivan Kalik
Kalik Informatika ISP
-Original Message-
From: freeradius-users-bounces+tnt=kalik@lists.freeradius.org
[mailto:freeradius-users-bounces+tnt=kalik@lists.freeradius.org] On
Behalf
I just upgraded to FreeRadius 2.1.1, as per some off-list advice, but
still am having issues with this... I've Googled and read docs to no
avail, probably as I don't know much of anything about Radius at all -
and just need this (seemingly relatively simple) thing.
I'm running FreeRADIUS 2.1.1
Thanks Ivan Kalik,
Access-Accept returns only IP address. Why it gives only ip address?
rad_recv: Access-Accept packet from host 192.168.0.8 port 1645, id=123,
length=26
Framed-IP-Address = 192.168.0.60
sorry for fool question. But I need that question to know freeradius.
Sincerely,
Alan DeKok wrote:
Tseveendorj wrote:
I'm providing internet to customers via ADSL2+. I have cisco router and
FreeRADIUS 2.1.3.
Customer can make double connection via PPPoE.
How to disable double connection ?
What kind of attribute can do that ?
doc/Simultaneous-Use
Alan DeKok.
freeradius-users-requ...@lists.freeradius.org :
Message: 7
Date: Tue, 14 Apr 2009 19:25:59 +0200
From: Alan DeKok al...@deployingradius.com
Subject: Re: 3Com 3226 .1X to freeradius fails
To: FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Message-ID:
Yes, group attributes with := will overwrite user attributes in sql. List
files after sql and put user specific attributes that shouldn't overwriten
by group ones there.
Ivan Kalik
Kalik Informatika ISP
All my user properties and group properties are on sql actually.
Doesnt it makes sense
34 matches
Mail list logo
