Hello,
I'm working with Freeradius 2.1.8 and I have created my vendor dictionary.
I need to use Authen::Radius (perl). This package needs 'vendor' declaration
in every 'ATTRIBUTE' line in vendor dictionaries.
Following man RADIUS dictionary file
Hi,
I want to use CHAP for authenticating the user. When I am sending CHAP-Password
to FreeRADIUS, I am getting the following error.
Found Auth-Type = CHAP
+- entering group CHAP {...}
[chap] rlm_chap: password supplied has wrong length
++[chap] returns invalid
Failed to authenticate the user.
Karuna G. Kumar wrote:
I want to use CHAP for authenticating the user. When I am sending
CHAP-Password to FreeRADIUS, I am getting the following error.
Found Auth-Type = CHAP
+- entering group CHAP {...}
[chap] rlm_chap: password supplied has wrong length
Your RADIUS client does not
Ana Gallardo wrote:
$ radtest u...@realm pass radius 0 claveClient
radclient: dict_init: /usr/share/freeradius/dictionary.XXX: unknown
option XXX
You didn't define XXX as a vendor.
And there's no reason to keep the vendor name a secret. The
name/number for the vendor is available in
Nelson Vale wrote:
Sorry, the problem occurs only with the (double quotes) character and
not to the other two characters.
Try re-building from git.freeradius.org, branch v2.1.x. There's a fix
which should help.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Hi,
is there a way to convert the %S in a unixtimestamp?
I try to use unix_timestamp() but it only prints this string in the
sql_relay file.
Is there a list of all attributes which i can use in the sql_log?
Thanks in advanced,
Jan
-
List info/subscribe/unsubscribe? See
Alan,
Thanks for your response. As you suggested, I used radclient command to test
the CHAP. Now the server sends Access-Accept.
But, what I observed is that the problem araises again even with radclient when
I send User-Password attribute along with CHAP-Password attribute in the
request.
Karuna G. Kumar wrote:
But, what I observed is that the problem araises again even with radclient
when I send User-Password attribute along with CHAP-Password attribute in the
request. There is no problem when I don't send User-Password with
CHAP-Password. Any thoughts on this why it is
Hi all.
Somehow I'm new in freeradius. and beacuse I live in Iran I can't access
this mail archive from web easy.(They are censored whole mail archive
and I don't know why!!) So I ask this here and sorry if its a duplicate
message :)
using mikrotik RuterOS and any thing is OK, the problem is
Hello Alan,
$ radtest u...@realm pass radius 0 claveClient
radclient: dict_init: /usr/share/freeradius/dictionary.XXX: unknown
option XXX
You didn't define XXX as a vendor.
I think I did...
$ cat /usr/share/freeradius/dictionary.rinuex
# -*- text -*-
#
# dictionary.rinuex
#
#
#
Hi its me again,
an other question is, who to log unauthorized clients from nas devices?
In the man page only accounting and post-auth is listet for rlm_sql_log.
When i do the sql_log in the post_auth only the successful clients where
logged.
I want to log nas clients authorized and non
All,
I've set up FR2 to log acct data to mysql and that appears to be working.
I'm curious about how to enable the logging of specific attributes that are
being sent by the NAS. Specifically:
rad_recv: Accounting-Request packet from host x.x.x.120 port 51637, id=50,
length=95
Alan DeKok wrote:
Are you asking this list for free support so that you can write your
own RADIUS client?
No. Not at all :-)
I just want to know whether I need to send User-Password also in the request
packet for CHAP. That's it.
-Karun.
-Original Message-
From:
Hello all,
we are trying to install Radius Manager from DmaSoftlab. We need to install
Freeradius and we gt problems with the make
We get this errors:
*
modcall.lo radiusd.lo stats.lo session.lo
threads.lo util.lo valuepair.lo
quote
Update CFLAGS to add -DIE_LIBTOOL_DIE
/quote
(Alan DeKok 2010-03-26 Thread FreeRADIUS 2.1.7 and 2.1.8 fail to
build)
Have a nice day!
Am 09.06.2010 um 13:32 schrieb Martín @ Ibersystems:
Hello all,
we are trying to install Radius Manager from DmaSoftlab. We need to
install
Ana Gallardo wrote:
Hello Alan,
$ radtest u...@realm pass radius 0 claveClient
radclient: dict_init: /usr/share/freeradius/dictionary.XXX: unknown
option XXX
You didn't define XXX as a vendor.
I think I did...
$ cat /usr/share/freeradius/dictionary.rinuex
Which
f0rud wrote:
work fine, Mikrotik dissconnect user with successs BUT i get this :
Sending Disconnect-Request of id 107 to 192.168.0.6 port 1700
Acct-Session-Id = 8141
User-Name = testuser
rad_recv: Disconnect-ACK packet from host 192.168.0.6 port 1700, id=107,
length=36
I had the same problem with FR 2.x and the shared secret is correct. FR
1.x works fine, clients.conf is correct,
I didn't had much time to deal with this problem so I didn't want to
bother you on this list. ..
Alan DeKok wrote:
f0rud wrote:
work fine, Mikrotik dissconnect user
On Wed, 2010-06-09 at 13:53 +0200, Alan DeKok wrote:
So... fix the shared secret. Nothing else will solve the problem.
It is fixed The Mikrotik report that OK and Disconnect the user and
log the entry as a success.
20:25:11 pppoe,ppp,info pppoe-f0rud: terminating... - administrator
request
On Wed, 2010-06-09 at 13:32 +0200, Martín @ Ibersystems wrote:
Hello all,
we are trying to install Radius Manager from DmaSoftlab. We need to
install Freeradius and we gt problems with the make
We get this errors:
*
Why are some of my messages getting bounced by the list? Gmail sometimes
sends me back messages saying that it tried in vain to send out and was
refused by the recipient?
N
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Because it is gmail.
On Wed, 2010-06-09 at 08:51 -0400, Natr Brazell wrote:
Why are some of my messages getting bounced by the list? Gmail
sometimes sends me back messages saying that it tried in vain to send
out and was refused by the recipient?
N
-
List info/subscribe/unsubscribe? See
Hi,
thanks for the answer, but we get the same error doing this.
; (
Martín Ruiz
Ibersystems Solutions, SL
Dpto. Redes Inalámbricas
Tel. 902 430 367
669 37 95 21
Fax 93 758 63 01
http://www.ibersystems.es [http://www.ibersystems.es/]
martinr...@ibersystems.es
f0rud fzerorub...@gmail.com writes:
So Mikrotik accept this (and then I can say shared secret is OK),
Sure? Did you try deliberately using a wrong secret to verify that the
NAS validates the request?
but
radclient report this as failed. how its possible? in this case server
is NAS and
2010/6/9 Alan DeKok al...@deployingradius.com
Nelson Vale wrote:
Sorry, the problem occurs only with the (double quotes) character and
not to the other two characters.
Try re-building from git.freeradius.org, branch v2.1.x. There's a fix
which should help.
The user's DN is OK now
Hello,
I use LDAP groups for EAP-PEAP Authentication in wifi WPA context. For now, I
used a DEFAULT line in users file like this :
DEFAULT ldap_1x-Ldap-Group != radius , Auth-Type := Reject
Reply-Message = ACCES REFUSE
I have a LDAP Group named radius but I don't know howto permit
I'm very new to freeradius, and I need to test whether my configuration is
correctly accepting MS-CHAPv2 requests. I'm not sure exactly how to do this
with radtest (or am I using the wrong tool?)
Andrew J. Chiarello
Network Engineer
Bryn Mawr College
610-526-7966
achiare...@brynmawr.edu
On Wed, 2010-06-09 at 15:16 +0200, Bjørn Mork wrote:
f0rud fzerorub...@gmail.com writes:
So Mikrotik accept this (and then I can say shared secret is OK),
Sure? Did you try deliberately using a wrong secret to verify that the
NAS validates the request?
Yes, with wrong secret , NAS add
On Wed, 2010-06-09 at 15:12 +0200, Martín @ Ibersystems wrote:
Hi,
thanks for the answer, but we get the same error doing this.
; (
Just do a clean before that
make clean
./configure --with-system-libtool
make all
make install
and another way :
quote Update CFLAGS to add
Andrew Chiarello wrote:
I'm very new to freeradius, and I need to test whether my configuration
is correctly accepting MS-CHAPv2 requests. I'm not sure exactly how to
do this with radtest (or am I using the wrong tool?)
You can't use it with radtest. Maybe in version 2.1.10.
Alan DeKok.
CFLAGS don't work Neither. We will try this make clean.. and if it doesn't
work, we will use Ubuntu server 8.0.4.
We always are using Debian, but we are unable to install the broadcom
ethernet card in Debian. In Ubuntu server 10.0.4 we have the card but can't
install FRadius. Let's see in
Is there any cli tool I can use to send an MS-CHAPv2 test?
- Original Message -
From: Alan DeKok al...@deployingradius.com
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Wednesday, June 9, 2010 11:33:30 AM
Subject: Re: radtest with MS-CHAPv2?
Andrew
On Wed, 2010-06-09 at 17:43 +0200, Martín @ Ibersystems wrote:
CFLAGS don't work Neither. We will try this make clean.. and if it
doesn't work, we will use Ubuntu server 8.0.4.
We always are using Debian, but we are unable to install the broadcom
ethernet card in Debian. In Ubuntu server
I have just installed in Ubuntu Karmic Koala Server. It works great.
Maybe u should use apt instead of compiling it from the source.
Best
On Wed, Jun 9, 2010 at 3:56 PM, f0rud fzerorub...@gmail.com wrote:
On Wed, 2010-06-09 at 17:43 +0200, Martín @ Ibersystems wrote:
CFLAGS don't work
On 09/06/2010 17:56, James J J Hooper wrote:
Hi Alan, All,
Since upgrading to 2.1.9, FR is segfaulting frequently (every 20 minutes
with load, every ~8 hours with less load).
Attached -X at startup, and the last 100 lines before segfault.
If someone can explain how to drive GDB (or any other
Andrew Chiarello wrote:
Is there any cli tool I can use to send an MS-CHAPv2 test?
No.
There's a Windows tool, but I forget the name.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Martín @ Ibersystems wrote:
CFLAGS don't work Neither. We will try this make clean.. and if it
doesn't work, we will use Ubuntu server 8.0.4.
Edit Make.inc, and add the -DIE_LIBTOOL_DIE to CFLAGS. Then:
$ cd src/main
$ make clean all
Alan DeKok.
-
List info/subscribe/unsubscribe? See
James J J Hooper wrote:
Since upgrading to 2.1.9, FR is segfaulting frequently (every 20 minutes
with load, every ~8 hours with less load).
Ouch.
Attached -X at startup, and the last 100 lines before segfault.
If someone can explain how to drive GDB (or any other method to track
this
Tomorrow we'll try.
Thanks,
Martín Ruiz
Director técnico
902430367 - 669379521
www.ibersystems.es
Enviado desde mi iPhone
El 09/06/2010, a las 22:21, Alan DeKok al...@deployingradius.com
escribió:
Martín @ Ibersystems wrote:
CFLAGS don't work Neither. We will try this make clean.. and
Network Specialist
Information Services
University of Bristol
http://www.wireless.bristol.ac.uk http://www.jamesjj.net
--
Note re: cryptpasswd:
/usr/local/dnsnode/src/radiusd/git-20100609/freeradius-server/install-sh
-c -m 755 cryptpassword /usr/local/bin/radcrypt
install
I'm having difficulties getting rlm_krb5 to authenticate to Active
Directory. The AD server is Windows 2003 R2. The freeradius server is
FreeBSD 8.0-RELEASE-p2 with freeradius-2.1.9 and heimdal-1.0.1
installed. The appropriate freeradius heimdal build switches were used
when building all this
On Wed, Jun 09, 2010 at 10:00:14PM +0100, James J J Hooper wrote:
OK - GDB log attached.
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread -1208649024 (LWP 2425)]
0x08067c64 in received_proxy_response (packet=0x8430a20) at event.c:3075
3075 } else if
(cd .libs gcc -DIE_LIBTOOL_DIE -c -fno-builtin radiusdS.c)
rm -f .libs/radiusdS.c .libs/radiusd.nm .libs/radiusd.nmS .libs/radiusd.nmT
gcc .libs/radiusdS.o -o .libs/radiusd .libs/acct.o .libs/auth.o
.libs/client.o .libs/conffile.o .libs/crypt.o .libs/exec.o .libs/files.o
.libs/listen.o
43 matches
Mail list logo