You need additional attributes if you use vendor attributes. Special attributes
are related to the NAS you use.
The migration from MySQL to PostgreSQL is easy since there is th postgresql DB
schema in the instalacion sources (find some file with sql extension).
The use of a DHCP server d
Doc Phillips wrote:
> I'm trying to prevent rogue devices from connecting to production and
> obviously only allow valid users & devices. The current setup states
> members of domain computers or domain users are allowed to auth against
> the radius server. Do you know if its possible through fre
Anoop C wrote:
> Hi
> We are running EAP-TLS authentication for office users using WiFi
> network. This is a certificate based authentication and we are using Free
> RADIUS.
> I would like to know whether we can assign IP address dynamically to the
> users through FREE RADIUS server ie RADI
Vijay Badola wrote:
> I have seen the Changelog of release freeradiusd-2.1.7.
> It says there is full support of ‘CoA and Disconnect messages’.
> My question is:
>
> (i) Is it possible to send disconnect/COA message
> internally from code?
From C? Yes. The
Hi,
I have seen the Changelog of release freeradiusd-2.1.7.
It says there is full support of 'CoA and Disconnect messages'.
My question is:
(i) Is it possible to send disconnect/COA message
internally from code?
(ii)If yes then how?
(iii)
Hi
We are running EAP-TLS authentication for office users using WiFi
network. This is a certificate based authentication and we are using Free
RADIUS.
I would like to know whether we can assign IP address dynamically to the
users through FREE RADIUS server ie RADIUS server works as DHCP se
Hello,
I tried asking the post with no response but was hoping you could assist in
my search. I'm currently running a M$ implementation of radius (IAS) for a
small number of users/computers (roughly 300 users and 700 devices all
microsoft based).
I'm trying to prevent rogue devices from connecti
Hi Marcel,
Are you able to share your work around, because I have the same problem.
Either on-list or direct email?
Thx
Nev-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> I want freeradius calls an external script and send to it the User-Name it
> gets from the NAS in an access-request radius packet.
>
> So I am using the echo module, I configure as:
>
> #
> # The name of the program to execute, and it's
> # arguments. Dynamic translation is do
> How I reply to my email go in the thread. I need set some attribute?
No, just reply to the message with your title.
> The next step is migrate my users to MySQL or PostgreSQL database. So I
> need alter the file sites-available/default to include the line sql and
> remove the lines unix and fi
Thanks Ivan Kalik,
Now my server is authenticating the users (Linux and Windows).
First.
How I reply to my email go in the thread. I need set some attribute?
Second.
The next step is migrate my users to MySQL or PostgreSQL database. So I need
alter the file sites-available/default to include t
Hello,
I want freeradius calls an external script and send to it the User-Name it
gets from the NAS in an access-request radius packet.
So I am using the echo module, I configure as:
#
# The name of the program to execute, and it's
# arguments. Dynamic translation is done on
Hi,
> But I still got small problem, when i run in de debug mode i saw this
> warning. I'm not fully sure what it asks me to do? Any advice on this?
its fairly clear isnt it? the error is written very clearly. follow
the advice.
> !!! Please update your configuration so that the "known good"
> !
ok now since i know where autorize and authenticate and accounting modules
went i feel much better =)
But I still got small problem, when i run in de debug mode i saw this
warning. I'm not fully sure what it asks me to do? Any advice on this?
++[pap] returns updated
Found Auth-Type = PAP
Thanks Ivan Kalik,
Now my server is authenticating the users (Linux and Windows).
First.
How I reply to my email go in the thread. I need set some attribute?
Second.
The next step is migrate my users to MySQL or PostgreSQL database. So I need
alter the file sites-available/default to include t
Thanks Ivan Kalik,
Now my server is authenticating the users (Linux and Windows).
First.
How I reply to my email go in the thread. I need set some attribute?
Second.
The next step is migrate my users to MySQL or PostgreSQL database. So I need
alter the file sites-available/default to include t
Thanks Ivan Kalik,
Now my server is authenticating the users (Linux and Windows).
The next step is migrate my users to MySQL or PostgreSQL database. So I need
alter the file sites-available/default to include the line sql and remove the
lines unix and files. Is this?
Second.
I set the
Fra
> But, how I said, I don't need proxy, Then I have commented the line proxy
> proxy_requests = no
> #$INCLUDE proxy.conf
... and broke the server (inner-tunnel processing). Well done! Now put it
back the way it was.
Peap works by doing internal proxy to LOCAL realm. So, you *do* need to
proxy.
Thanks to all,
But, how I said, I don't need proxy, Then I have commented the line proxy
proxy_requests = no
#$INCLUDE proxy.conf
See http://pastebin.com/m52c747e3 to my radiusd.conf
Therefore, I don't know why the log is
Sun Oct 18 19:20:54 2009 : Info: [pap] No clear-text password in the requ
Thanks to all,
But, how I said, I don't need proxy, Then I have commented the line proxy
proxy_requests = no
#$INCLUDE proxy.conf
See http://pastebin.com/m52c747e3 to my radiusd.conf
Therefore, I don't know why the log is
Sun Oct 18 19:20:54 2009 : Info: [pap] No clear-text password in the requ
but, how I get the Calling Station Id ?
2009/10/19 Ivan Kalik
> > Hi, I need to redirect a customer to a page with the pool and I need to
> > get
> > his UserName.
> >
> > I tougth to use the MK API to acess, I used the NASIPAddress, UserName
> and
> > Password,
> >
> > The redirect and acess
> Hi, I need to redirect a customer to a page with the pool and I need to
> get
> his UserName.
>
> I tougth to use the MK API to acess, I used the NASIPAddress, UserName and
> Password,
>
> The redirect and acess MK API its easy, but my problem is how to get the
> UserName of one customer if I hav
Ivan Kalik a écrit :
>>> Trying to set up machine authentification, I have been able to rewrite
>>> my user-name to match my requirements in my Open ldap: get rid of the
>>> host/ and add $ ( host/machinename --> machinename$) using hints.
>>> But it ends up with this error after ldap authorisation
Hi, I need to redirect a customer to a page with the pool and I need to get
his UserName.
I tougth to use the MK API to acess, I used the NASIPAddress, UserName and
Password,
The redirect and acess MK API its easy, but my problem is how to get the
UserName of one customer if I have alot of custom
>> Trying to set up machine authentification, I have been able to rewrite
>> my user-name to match my requirements in my Open ldap: get rid of the
>> host/ and add $ ( host/machinename --> machinename$) using hints.
>> But it ends up with this error after ldap authorisation:
>> [eap] Identity does
Matthieu Lazaro a écrit :
> Hello list,
>
> I have a little question about hints and EAP.
>
> Trying to set up machine authentification, I have been able to rewrite
> my user-name to match my requirements in my Open ldap: get rid of the
> host/ and add $ ( host/machinename --> machinename$) using h
>>> Hi, I have a freeRadius 2.1.7 server with three virtual servers
>>> listening to different kinds of clients. I would like to know whether
>>> it
>>> is possible to define different log files for these virtual servers,
>>> instead of the global log file defined in radiusd.conf.
>>>
>>
>> No.
>
Hi,
> My SQL include and module authorization is enabled in instantiate section
> Im not 100% sure what "virtual server" do in new radius.
>
> I guess you are probably right about that fact that my radius is not
> accsesing SQL to see the users there,.. so since my Include is enabled i
> guess i n
Alan DeKok wrote:
Francisco Javier Valdera Garcia wrote:
Hi, I have a freeRadius 2.1.7 server with three virtual servers
listening to different kinds of clients. I would like to know whether it
is possible to define different log files for these virtual servers,
instead of the global log file
> I had some older Debian 4.0 (etch) servers, with freeradius v1.1.3
> installed
> from packages.
>
> I then upgraded to Debian 5.0 (lenny), which comes with freeradius v2.0.4
>
> After upgrading I ran into some problems with my radgroupcheck rules.
>
> In radgroupcheck, I have some rules to restri
> There's no such path in /etc/raddb
> I'm running version 1.1.3
Upgrade. That version is many years out of date. In 1.1.3 module will be
in radiusd.conf.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> I'm trying configure the freeRADIUS on my wireless network but i'm having
> problems.
>
>
>
> My scnario:
>
> Debian Lenny+MySQL5.0+freeRADIUS 2.1.7
>
>
>
> clients - ((( AP ))) [freeRADIUS server]
>
>
>
> When I execute the radiustest I get
>
> rad_recv: Access-Accept packet from host 1
Venseen wrote:
> Hi, I have to insert cooked Message-authenticator in Free-radius srver
> Message,
You will need to edit the source code to do this. FreeRADIUS does
*not* generate invalid Message-Authenticators.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/lis
Hi,
> There's no such path in /etc/raddb
> I'm running version 1.1.3
if you upgrade to 2.1.7 then there will be such a $PATH
and file :-)
okay - you need to look in the main radiusd.conf file for where
the uniq line is mentioned - however, i cant recall whether you can just slap
that new NAS-Port
Check your proxy / realms configuration. The reason why it fails is described
in the logs:
Sun Oct 18 19:20:54 2009 : Info: [pap] No clear-text password in the request.
Not performing PAP.
Sun Oct 18 19:20:54 2009 : Info: ++[pap] returns noop
Sun Oct 18 19:20:54 2009 : Info: WARNING: You set P
--- On Sun, 10/18/09, Alan Buxey wrote:
> XP caches successful connections - Vista does too IIRC so
> I'm not
> sure why you are seeing different behaviour.. anyhow..you
> can clear
> the credentials by blatting a registry on eg logout or
> login.
OK, thanks for the suggestion.
And thanks, Micr
No ideas to help me a little?
At least to know if what described is possible.
Thank's
Simon
Simone Felici ha scritto in data 16/10/2009 11.26:
Hello to all,
I've freeradius installed on a CentOS 4.5: freeradius-1.1.5-0.
I would like to add a new field to my radacct table to log a new value
t
37 matches
Mail list logo
