I tried to login from another client, but it´s the same problem.
TLS Alert write:fatal:handshake failure
TLS_accept:error in SSLv3 read client certificate B
rlm_eap: SSL error error:140890C7:SSL
routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate
SSL: SSL_read failed in a system
Estaré ausente de la oficina desde el 20/09/2010 y no volveré hasta el
26/09/2010.
Responderé a su mensaje cuando regrese. Si tiene alguna emergencia, puede
contactar con accesos_...@telefonica (900 111 245 opción 3, 2) o Jose
Manuel Gomez Perez (jmgo...@telefonica.es)
_
Hi,
> Start the server in debugging mode (radiusd -X), and run radtest from another
> terminal window:
> $ radtest testing password 127.0.0.1 0 testing123
>
> Server rejects with the following debug:
ou've removed all the utput apart from the bit YOU were interested in.
can you confirm, from
Hi Freeradius user group,
I am relatively new to using Freeradius. Thanks for all your help
and patience in advance:
I would like to have one Freeradius server hosting multiple ldap instances
and associate each SSID with particular LDAP ou to authenticate. For
example:
1) Marketing SSID assoc
On 09/20/2010 05:29 PM, Neil Prockter wrote:
Would the KEY changing every few minutes be expected? (under
samba3.0/ad2003 it remained the same) By key I mean the output of
"/usr/local/samba/bin/ntlm_auth --request-nt-key --username=bob
--challenge=deadshortbeef --nt-response=deadlongerbeef"
N
On 09/20/2010 08:45 PM, Schwartz, Curtis H. (GSFC-443.0)[SGT, INC] wrote:
Edit the users file, and add the following line of text at the top,
before anything else:
testing Cleartext-Password := "password"
You say this, but then:
++[files] returns noop
Are you sure you edited the right fi
On 09/20/2010 03:44 PM, Leander S. wrote:
If your using SQL then I would simply modify the SQL querry to INSERT
everything in lower case only PLUS to SELECT everything in lowercase
only. You can simply modify those querries afaik. I just figured that as
That is not what is being asked.
The OP
New download of Freeradius 2.1.9. Compiled and accepted all defaults. This is
right out the box and the first self test is failing. Can anyone provide some
helpful hints?
Followed directions:
Edit the users file, and add the following line of text at the top, before
anything else:
testing Clea
Thanks.
the clients, in my case, are those juniper devices. the configuration is fairly
straightforward:
radius-server {
192.168.255.128 secret testing123
}
class operator-local {
permissions view-configuration;
}
user remote {
uid 3000;
class operator-local;
}
for "users", i
Have you tried disjoining and rejoining the domain after the upgrade?
It sounds crazy but I have seen similar problems fixed this way.
Jake Sallee
Godfather Of Bandwidth
Network Engineer
Fone: 254-295-4658
Phax: 254-295-4221
-Original Message-
From: freeradius-users-bounces+jake.sallee
Hello,
Well things have taken a turn for the worse. At the weekend we upgraded
the last AD Domain controller to 2008r2 (still in AD2003 mode) and the
radius servers instantly stopped working with "named pipe disconnected"
and now "ntlm --username" and "wbinfo -a" no longer work.
I have a samba 3
ironr...@yahoo.com wrote:
>
> I beieve there is a lower() function you can use in the sql statement.
>
That sort of talk belongs over on the DWTF :)
Cheers
--
Alexander Clouter
.sigmonster says: Biz is better.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 20.09.10 15:51, schrieb Alexander Clouter:
PENZ Robert wrote:
and I've different switch types. Some send the MAC address lower case
the others upper case. For switches which send it lower it case it
works (as the macs are stored lower case in the db). How can I convert
them all in the clear
On 2010/09/20 04:01 PM, PENZ Robert wrote:
Hi!
But thats not the problem. The mac address matches in the SQL statement but I
need also to return the mac address to the radius. In this reply the mac
address is lower case. And now the radius checks that against its upper case
version it gets fr
Marius Pesé wrote:
> Hi Alan, I assumed that to be the case because uncommenting sql_log didn't
> work and the comment says:
> # Instead of sending the query to the SQL server,
> # write it into a log file.
> So essentially uncommenting the line should call modules/sql_log which
PENZ Robert wrote:
>
> and I've different switch types. Some send the MAC address lower case
> the others upper case. For switches which send it lower it case it
> works (as the macs are stored lower case in the db). How can I convert
> them all in the clear text password attribute to lower ca
Hi!
But thats not the problem. The mac address matches in the SQL statement but I
need also to return the mac address to the radius. In this reply the mac
address is lower case. And now the radius checks that against its upper case
version it gets from the switch. I cannot return the mac alway
I beieve there is a lower() function you can use in the sql statement.
Sent from Verizon Wireless
-Original Message-
From: PENZ Robert
Sender: freeradius-users-bounces+ironrake=yahoo@lists.freeradius.org
Date: Mon, 20 Sep 2010 14:11:14
To: FreeRadius users mailing list
Reply-To: Free
Hi!
I'm running
# rpm -qa | grep radius
freeradius2-mysql-2.1.7-7.el5
freeradius2-2.1.7-7.el5
freeradius2-python-2.1.7-7.el5
freeradius2-utils-2.1.7-7.el5
and I've different switch types. Some send the MAC address lower case the
others upper case. For switches which send it lower it case it wor
Hi!
Ah, did not know about the default extreme config. I just went along the
official Howto from Extreme Networks and it stated that I need to put the lines
into the dictionary... Thx for the Info ;-)
Mit freundlichen Grüßen
Robert Penz
-Ursprüngliche Nachricht-
Von: freeradius-us
Hi everyone ...
I need to put up a certain scenario for radius. I have 2 Called-Station-Id
numbers 11 an 12, first number should always be accepted
for auth users, the second one should be accessed after the user hits 10
hours quota on first number.
I was wonder if this configuration i
Chidanand Gangur wrote:
> Sorry, I did not clearly understand your response.
I am saying that you can reference the proxy reply Packet-Type. It works.
> Are you saying that, it will be possible to write
> if (proxy-reply:Packet-Type == "Access-Accept"){
> update proxy-reply{
> attr = value
>
PENZ Robert wrote:
> # rpm -qa | grep radius
> freeradius2-mysql-2.1.7-7.el5
...
> and I copied following into the /etc/raddb/dictionary
Why? What's wrong with the "dictionary.extreme" file that is included
with the server?
After 10 years of doing FreeRADIUS, I *still* don't understand why
m
Hi!
I'm running
# rpm -qa | grep radius
freeradius2-mysql-2.1.7-7.el5
freeradius2-2.1.7-7.el5
freeradius2-python-2.1.7-7.el5
freeradius2-utils-2.1.7-7.el5
and I copied following into the /etc/raddb/dictionary
VENDOR Extreme 1916
ATTRIBUTE Extreme-CLI-Authorization
Hi Alan,
Sorry, I did not clearly understand your response.
Are you saying that, it will be possible to write
if (proxy-reply:Packet-Type == "Access-Accept"){
update proxy-reply{
attr = value
.
}
}
in freeRADIUS version 2.1.10
Thanks,
Chidanand
On Fri, Sep 17, 2010 at 2:33 PM, Alan DeK
Marius Pesé wrote:
> I’m using mySQL to log accounting data, and also want to save the
> queries (not the packets) to a text file to use with a different
> program. Since that is both in sites-enabled/default, they seem to be
> mutually exclusive.
No. Why would you conclude that?
Alan DeKok.
26 matches
Mail list logo