Luiz Gustavo de Villa Scandelari wrote:
> I would like to receive some help on authentication with AD using CHAP
> Passwords.
http://deployingradius.com/documents/protocols/compatibility.html
It's impossible. Use a real LDAP server.
> I suppose that happens because I cannot read the AD user p
vol...@ufamts.ru wrote:
> Alan DeKok wrote:
>> Yes. Just configure "sql" in the accounting section, *and* configure
>> it to proxy.
>>
>> Alan DeKok.
> But if proxy does not respond, FR will insert duplicate records into SQL
> table :( Is there some way to avoid it?
What do you mean "duplic
> Well... that's a good reason to make sure we do it right. Any day
> where we can replace another RADIUS server with FreeRADIUS is a good day.
My feelings exactly :)
> I suspect that it will. The mschap module should also pass the Name
> field when calling ntlm_auth, too. And maybe print a wa
me either, i am use simulatineous-use attribute and got same problem like u,
but i disconnect user that using simultaneous-use attribut manually from radius
server using this command
radview
this command will show connected user. the user using simultaneous-use attribut
that forget to log o
Hello I am new with freeradius ,I wan to know if is posible
to restrict an acces to the network using the telelephon number
of who is calling for the acces to the network by the ppp conection
How I can use radius for match user password and telephone number
combination as conditions for acces to m
On 14/08/2009 20:43, vol...@ufamts.ru wrote:
John Morrissey wrote:
I'm looking to process RADIUS accounting locally (SQL) as well as proxy it
to a remote host (to some third party software that also wants to receive a
copy of all accounting).
Is this possible with FreeRADIUS?
Yes. Works great
> But if *proxy* does not respond, FR will insert duplicate records into SQL
> table :( Is there some way to avoid it?
>
Sorry, of course I meant "Home server does not respond"
Best regards,
Denis Volkov
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Fri, Aug 14, 2009 at 09:43:05PM +0200, Alan DeKok wrote:
> John Morrissey wrote:
> > I'm looking to process RADIUS accounting locally (SQL) as well as proxy
> > it to a remote host (to some third party software that also wants to
> > receive a copy of all accounting).
>
> Yes. Just configure
Hello everyone,
I would like to receive some help on authentication with AD using CHAP
Passwords. I´ve already configured the radius (v 2.1.6) to authenticate in
the AD (Microsoft) using LDAP and clear-text passwords, until now it works
perfectly, but in the radius debug appear the following me
Alan DeKok wrote:
>
> Yes. Just configure "sql" in the accounting section, *and* configure
> it to proxy.
>
> Alan DeKok.
But if proxy does not respond, FR will insert duplicate records into SQL
table :( Is there some way to avoid it?
Best regards,
Denis Volkov
-
List info/subscribe/unsubscr
John Morrissey wrote:
> I'm looking to process RADIUS accounting locally (SQL) as well as proxy it
> to a remote host (to some third party software that also wants to receive a
> copy of all accounting).
>
> Is this possible with FreeRADIUS?
Check sites-available/copy-acct-to-home-server
Best reg
John Morrissey wrote:
> I'm looking to process RADIUS accounting locally (SQL) as well as proxy it
> to a remote host (to some third party software that also wants to receive a
> copy of all accounting).
>
> Is this possible with FreeRADIUS?
Yes. Just configure "sql" in the accounting section,
Garber, Neal wrote:
> I don’t profess to be an MS-CHAP expert, so what I’m about to say may be
> completely off-base.. After performing many tests (see below) and
> reviewing RFC2579 and the code in rlm_mschap.c, I’m hypothesizing that
> the problem is with how rlm_mschap calculates the challenge h
I realize that this issue has been brought up many times in the past. However,
I believe I have new information that I haven't seen reported before..
I'm having a problem with Windows XP supplicant authenticating to FR with
PEAP/MSCHAPv2 where authentication fails "sometimes" depending upon var
I'm looking to process RADIUS accounting locally (SQL) as well as proxy it
to a remote host (to some third party software that also wants to receive a
copy of all accounting).
Is this possible with FreeRADIUS?
john
--
John Morrissey _o/\ __o
j...@horde.net
Stun Box wrote:
> The mystery is why there is two backslash for each "User-Name"
> excepted in the accounting request ? (I ask, because it does the mess
> in my sql base for accounting).
Because the server understands \t, ", and \n in strings. For this to
work, it has to treat the backslash cha
> Depends on the NAS. But yeah, doing this breaks things. The best thing you >
> can do is log the error in the post-auth section.
In V1 of FR, the rlm_mschap module used to create a Module-Failure-Message
request attribute containing the output of ntlm_auth, if ntlm_auth failed
(rlm_ldap does
Hello everybody,
I'm doing some tests with wpa_supplicant(freebsd) + aironet 1252 +
freeradius2.1.6 (freebsd portage). And I have a mystery I can not
explain.
I test 2 user with a domain. This is my configuration files for
wpa_supplicant. They have just their first user letter mismatching.
USER_
I forgot a couple of lines to the debugging I want to add.
It almost seems like to me that Radius isn't getting the password from the
client.
- Original Message -
From: "Eric Bourkland"
To: "FreeRadius users mailing list"
Sent: Friday, August 14, 2009 9:40:08 AM GMT -05:00 US/Canada E
Need some help pointing me in the right direction. I think I know what the
problem is but I don't know where to look. I think the problem is my
freeRadius server and openLDAP server are not talking perfectly.
I am trying to do MS-chapv2 authentication so that windows machines can connect
to o
On 14/08/2009 07:51, Alan DeKok wrote:
Michael Bryant wrote:
unlang? set a variable to the value of MS-CHAP-Error and then set the
Reply-Message
to be some text with that variable in it.
Unfortunately, this sends it back in the next packet, which is an
Access-Challenge, not in the final Acces
On 14/08/2009 07:57, Alan DeKok wrote:
Sunardo Panjaitan wrote:
This the output of radiusd -X :
rad_recv: Access-Request packet from host 10.1.0.6 port 1024, id=5, length=139
...
EAP-Message = 0x0201000501
...
Found Auth-Type = Accept
Auth-Type = Accept, accepting the user
You
Hello.
I want freeradius to authenticate users with Cleartext-Password locally and
proxy others with realms.
I use SQL for users, groups, nas and huntgroups.
The problem:
When logging in with the user with Cleartext-Password all passwords are
accepted.
The proxied users need the correct password.
Search this list.. We already discuss about simultaneous use and closing
connections.
Deepak wrote:
Hi,
I am simulating the problem on what if the AP goes down (due to
various reasons). I observed that user is not properly disconnected
and result is stale session. When the AP is up and when th
24 matches
Mail list logo
