> I have used
>
> ntlm_auth --request-nt-key --username=user --password=xxx
> --domain=COMPANY1.LOCAL --require-membership-of=COMPANY1-VPN-USERS
>
> ntlm_auth --request-nt-key --username=otheruser --password=xxx
> --domain=COMPANY2.LOCAL --require-membership-of=COMPANY2-VPN-USERS
>
> and
thanks for the link.
I want to know if we can give radius server ip address and secret in
pam.conf file.
I tried to configure radius server with CLI, but it doesn't seems to work.
Can you please tell me how to configure radius server in radius client to
work.
Ivan Kalik wrote:
>
>> I want to
> thanks for the link.
>
> I want to know if we can give radius server ip address and secret in
> pam.conf file.
No.
> I tried to configure radius server with CLI, but it doesn't seems to work.
> Can you please tell me how to configure radius server in radius client to
> work.
Did you actually r
Rokkhan wrote:
> I have a working Freedius 1.0.5 server since year 2005 and i want to
> improve it, migrating a Freeradius 2.1.1-6 version, the latest version
> i have found for my Sles10 Sp2 server.
See the freeradius.org web page. It has RPMs of the newer versions
for suse.
> When i run serv
Roy Kartadinata wrote:
> I didn't see any error on error log, it looks clean. But this is what
> the log looks like when it started to run out of memory the other night:
>
> Wed Jul 22 22:03:42 2009 : Error: Rejecting request 16183416 due to lack
> of any response from home server xxx.xxx.xxx.xxx
Maybe detail file is to large ?
I had a similar problem when server goes off because of this...
Alan DeKok wrote:
Roy Kartadinata wrote:
I didn't see any error on error log, it looks clean. But this is what
the log looks like when it started to run out of memory the other night:
Wed Jul 22 22
Hi Ivan,
I have gone thorugh the link and check all the files. I also tried to
compare with my existing installation:
1) As per the given link, it seems that pam.conf is configured as:
login auth sufficient /usr/lib/security/pam_radius_auth.so.1
login auth required /usr/lib/
Sorry, was away, the password is the file users
2009/7/24, Igor Smitran :
> Igor Smitran wrote:
>> As far as i can see, you removed pap from authorize section, which means
>> that you tried to change default setup...
>>
> My bad, pap does exist in authorize, but freeradius doesn't know where
> is
> 2) pam_radius_auth.conf is set at radius server (/etc/raddb/server), which
> contains server ip address and secret.
...
> But I could not find where radius server ip is configured in radius
> client.
> I am not able to find how radius client knows about radius server. Please
> let me know if I am
Boian Jordanov wrote:
>
> On Jul 26, 2009, at 12:59 AM, wrote:
>
>> Igor wrote:
>>
>>> I have tried 2.1.7 and got same error. I will try to compile it with
>>> --enable-developer and see if i can find out anything from gdb output.
>>> I realy don't know why would this happen because exactly the s
> Sorry, was away, the password is the file users
And the entry looks like ... what? This is bit of your debug:
[suffix] Looking up realm "cdr.cu" for User-Name = "t...@cdr.cu"
[suffix] No such realm "cdr.cu"
++[suffix] returns noop
[eap] No EAP-Message, not doing EAP
++[eap] returns noop
++[unix
> I didn't try it yet and i am not very good in C. Error that I and Neal
> had is something regarding OS or...? I don't see anyone else having this
> problem except me and Neal.
> Also, i didn't see any comment from Alan. If this is something that was
> already been discussed here i am sorry for br
Yes that I understand.
I think there is some confusion. Let me explain, we have 2 separate machine.
On one machine (Linux), radius server is setup and running independantly. on
this machine, we have made the
changes(/etc/raddb/server/pam_radius_auth.conf )
On another machine, which is client mach
Ok, I'll try to update 2.1.6.
I have not found newer rpm packages than i installed in my server on
freeradius.org, because when I go to the download section and I select
Binary packages for Suse, it sends me to the page where i took from
packages the first time
(http://download.opensuse.org/reposit
Hi Ivan,
I think there is some confusion. Let me explain, we have 2 separate machine.
On one machine (Linux), radius server is setup and running independantly. on
this machine, we have made the
changes(/etc/raddb/server/pam_radius_auth.conf )
On another machine, which is client machine (On Sol
Thank you very much!
With the information that you sent me I could run freeraius + mysql
when I do a radtest, it's working
radtest pepe caca localhost 1 testing123
Sending Access-Request of id 109 to 127.0.0.1 port 1812
User-Name = "pepe"
User-Password = "caca"
NAS-IP-
> 1. Do we configure ip address of Radius server (on linux) at Radius client
> (on Solaris machine) ?
Yes, on client machine in pam_radius_auth.conf.
> 2. Do we give username details on Radius server (on linux) machine?
Yes, you enter usernames/passwords in users file (sql, ldap, whatever).
IMPO
Thank you for your message. I am away until August 7th. I will respond
to your message on my return . For urgent matters, please contact
helpd...@stgeorges.bc.ca .
Cheers,
Gilbert Lo
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Gustavo Marcello wrote:
> auth: type Local
You are forcing Auth-Type := LOCAL
DO NOT DO THAT.
Delete that configuration from where ever you added it.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi.
How to set up freeradius on redhat 4 to use etc_passwd?
I'm new in freeradius, so please forgive me a lamer question.
KG
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi i install openssl and ldap and compile success
Thank you
Ing. Julio Villacís G.
Ingeniero de Servicios
Comware S.A.
(593 4) 2690170 Ext. 4500
www.comware.com.ec
Guayaquil-Ecuador
-Mensaje original-
De: freeradius-users-bounces+jvillaci=comware.com...@lists.freeradius.org
[mailto:free
Hi i have a problema when execute CA.all generate the follwing messages
failed to update database
TXT_DB error number 2
Any idea
Thank in advance
Ing. Julio Villacís G.
Ingeniero de Servicios
Comware S.A.
(593 4) 2690170 Ext. 4500
www.comware.com.ec
Guayaquil-Ecuador
<>-
Li
On 07/28/2009 11:39 AM, Kaz Zurad wrote:
Hi.
How to set up freeradius on redhat 4 to use etc_passwd?
I'm new in freeradius, so please forgive me a lamer question.
First of all there is no such thing as redhat 4. Did you mean RHEL 4?
Fedora 4? Anyway, it doesn't matter, just clarifying.
You
Hi list,
Where should one report bugs in freeradius-client?
https://bugs.freeradius.org/bugzilla does not have a component
for freeradius client.
Thanks,
--
Best regards / s pozdravem
Petr Uzel, Packages maintainer
-
SUSE LI
I was searching for this in my conf files, but I don't find it.
where it should be?
I'm not sure that I am forcing
Auth-Type := LOCAL
Alan DeKok escribió:
Gustavo Marcello wrote:
auth: type Local
You are forcing Auth-Type := LOCAL
DO NOT DO THAT.
Delete that configuration
Thank you. I meant RHEL 4. I will try to install and implement it.
On Tue, Jul 28, 2009 at 11:02 AM, John Dennis wrote:
> On 07/28/2009 11:39 AM, Kaz Zurad wrote:
>>
>> Hi.
>> How to set up freeradius on redhat 4 to use etc_passwd?
>>
>> I'm new in freeradius, so please forgive me a lamer question
Than you, John, for the clue.
But I have another question.
For RHEL4 is only available version 1.0.1. Can I use version dedicated
for Fedora from this site http://koji.fedoraproject.org?
On Tue, Jul 28, 2009 at 11:02 AM, John Dennis wrote:
> On 07/28/2009 11:39 AM, Kaz Zurad wrote:
>>
>> Hi.
>> Ho
I had set it up that way - it uses the *NIX password file by default unless
you specify otherwise.
I can verify and check back with you if you like?
G
On Tue, Jul 28, 2009 at 11:39, Kaz Zurad wrote:
> Hi.
> How to set up freeradius on redhat 4 to use etc_passwd?
>
> I'm new in freeradius, so pl
> Hi i have a problema when execute CA.all generate the follwing messages
Upgrade to version 2.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Tue, 28 Jul 2009, Kaz Zurad wrote:
Thank you. I meant RHEL 4. I will try to install and implement it.
I am using CentOS 4 which is the 'free' version of RHEL 4,
You should be able to install the freeradius rpm package via yum (or
perhaps already installed with initial install). You don't n
On Tue, 28 Jul 2009, Kaz Zurad wrote:
Than you, John, for the clue.
But I have another question.
For RHEL4 is only available version 1.0.1. Can I use version dedicated
for Fedora from this site http://koji.fedoraproject.org?
You should find your version sufficient for simple needs.
Otherwise, I
Hi i am upgrade the version yet but the CA.all not generate serial. I find a
fix in the file CA.pl and line to create serial and this moment is ok.
The link of the fix is
http://fixunix.com/openssl/156838-ca-all-script-problem-openssl-freeradius.h
tml
Thank you
Ing. Julio Villacís G.
Ingeniero
Hi, i want to accept all request coming from a specific nas-ip-assdress , i
used to configure like this (in users file):
DEFAULT NAS-IP-Address == "192.168.150.25", Auth-Type := Accept
Fall-Through = Yes
The above settings are not working now, this is the debug of a transaction:
r
The problem is that the sql module returns reject
you can remove the sql from authorization
On Tue, Jul 28, 2009 at 8:53 PM, Miguel
Miranda wrote:
> Hi, i want to accept all request coming from a specific nas-ip-assdress , i
> used to configure like this (in users file):
>
> DEFAULT NAS-IP-Address
Well, that is not the only one nas i have , the sql module is requiered for
several other nas and hotspots users...
On Tue, Jul 28, 2009 at 12:25 PM, Dimitrios Giannakopoulos <
d.gianna...@gmail.com> wrote:
> The problem is that the sql module returns reject
> you can remove the sql from authoriz
Than you.I'm going to set up freeradius not only for cisco firewall
but for wireless conn. What I also need to know to correctly confugure
freeradius.
On Tue, Jul 28, 2009 at 12:20 PM, Charles Gregory wrote:
> On Tue, 28 Jul 2009, Kaz Zurad wrote:
>>
>> Thank you. I meant RHEL 4. I will try to ins
Hi Miranda
I use the same users file and authorization configuration (with sql)
and it is work fine.
On Tue, Jul 28, 2009 at 9:28 PM, Miguel
Miranda wrote:
> Well, that is not the only one nas i have , the sql module is requiered for
> several other nas and hotspots users...
>
> On Tue, Jul 28, 2
Me too, but my questions is about the nas-ip-address entry that i posted as
example, acording to the docs, all users should be accepted, no matter what
user/pass combitantion they are using.
and in my case freeradius rejects the access
On Tue, Jul 28, 2009 at 1:19 PM, Dimitrios Giannakopoulos <
d.
> Than you.I'm going to set up freeradius not only for cisco firewall
> but for wireless conn. What I also need to know to correctly confugure
> freeradius.
That you shouldn't bother setting up wireless with 1.0.1. Upgrade.
http://wiki.freeradius.org/Red_Hat_FAQ
Ivan Kalik
Kalik Informatika ISP
> Hi, i want to accept all request coming from a specific nas-ip-assdress ,
> i
> used to configure like this (in users file):
>
> DEFAULT NAS-IP-Address == "192.168.150.25", Auth-Type := Accept
> Fall-Through = Yes
> The above settings are not working now, this is the debug of a
>
I tried to do it, but no success.
I'm also use this
http://www.howtoforge.org/authentication-authorization-and-accounting-with-freeradius-and-mysql-backend-and-webbased-management-with-daloradius
but... the same. No success.
On Tue, Jul 28, 2009 at 3:20 PM, Ivan Kalik wrote:
>> Than you.I'm going
Glen, if you don't mind... I'll glad
On Tue, Jul 28, 2009 at 12:17 PM, Glen Millard wrote:
> I had set it up that way - it uses the *NIX password file by default unless
> you specify otherwise.
> I can verify and check back with you if you like?
> G
>
> On Tue, Jul 28, 2009 at 11:39, Kaz Zurad wr
Have you tried it with "*Fall-Through = No" or without "**Fall-Through"*?
http://freeradius.org/radiusd/man/users.html
2009/7/28 Miguel Miranda
> Me too, but my questions is about the nas-ip-address entry that i posted as
> example, acording to the docs, all users should be accepted, no matter
Hi,
> > DEFAULT NAS-IP-Address == "192.168.150.25", Auth-Type := Accept
> > Fall-Through = Yes
fall-through = yes
this means that the next modules will be hit (eg sql!)
if you want to accept then
Fall-Through = No
alan
-
List info/subscribe/unsubscribe? See http://www.freerad
> I didn't try it yet and i am not very good in C. Error that I and Neal
> had is something regarding OS or...? I don't see anyone else having this
> problem except me and Neal.
The error is in rlm_perl and appears related to thread data management, not the
O/S and not perl (I run FreeBSD and you
Hi all,
I am trying to get a captive portal working so my wireless users can
enter their Windows domain credentials and get internet access.
I've been working with chilispot/hotspotlogin.cgi and/or Copspot (an
implementation of chilispot for IPCOP) both of which try to do CHAP
with freeradius. Ch
> I am trying to get a captive portal working so my wireless users can
> enter their Windows domain credentials and get internet access.
>
> I've been working with chilispot/hotspotlogin.cgi and/or Copspot (an
> implementation of chilispot for IPCOP) both of which try to do CHAP
> with freeradius.
> No, you can't.
>
> http://deployingradius.com/documents/protocols/compatibility.html
Thanks for this.
>
>> NTLM auth does
>> work if I use WPA2
>
> Because that uses peap as authentication protocol.
Do you have any ideas about getting chilispot to work with users who
are retrieved from AD via w
Hi everyone,
I have a problem concerning my configuration and I am wondering if somebody
can help me.
---
*freeradius-server-2.1.6* is installed without warning on* CentOS
Hi everyone,
I have a problem concerning my configuration and I am wondering if somebody
can help me.
--
-
*freeradius-server-2.1.6* is installed without warning on* CentO
On 07/28/2009 08:32 PM, RANDRIAMAMPIONONA José Johnny wrote:
Hi everyone,
I have a problem concerning my configuration and I am wondering if
somebody can help me.
--
-
*
> Do you have any ideas about getting chilispot to work with users who
> are retrieved from AD via winbind and ntlm_auth
I don't know Chilispot, but if it can pass a cleartext password, then you can
use ntlm_auth in a script to do the authentication. For other devices that
send an A/D user and
Ivan Kalik wrote:
> Why? Alan is not the only developer. Read the copyright for rlm_perl code.
I know that Boian is responsible for making our life easier :) I was
asking if this patch is going to be included in next release. That is
the comment i was expecting. Sorry for misunderstanding.
Igor
Garber, Neal wrote:
> The error is in rlm_perl and appears related to thread data management, not
> the O/S and not perl (I run FreeBSD and you run CentOS; we even have
> different versions of perl). Boian can explain the change far better than I
> can; but, my interpretation of the change is t
On Jul 29, 2009, at 9:32 AM, Igor Smitran wrote:
know that Boian is responsible for making our life easier :) I was
asking if this patch is going to be included in next release. That is
the comment i was expecting. Sorry for misunderstanding.
Sure I will pull the changes back to repository.
55 matches
Mail list logo
