> Could you please summarize what you did to log the output from
> ntlm_auth and MS_CHAP-Error?
Sure. I should mention that other options are available now that didn't exist
when I created the solution below...
I have a PERL script that runs during authorize that obtains user/group or
machin
> I am using freeradius to authenticate users to have access to Internet.
> I want my user to use their group which is their department to be able to
> have internet because I need tractability. To understand my problem I'm
> going to use an example,
> User-Name: bob
> Groupe-name: communication
You could try this method ...
Don't 'strip' the realm and store complete usernames in your users file
(or database).
So your username would be "j...@business" or "b...@communication".
Regards,
Jason
-Original Message-
From: freeradius-users-bounces+jhodges=pocket@lists.freeradius
> Define a "communication" realm, and don't define a "business" realm.
But I have other users in the business department, for exemple Jhon, and i
want freeradius to accept if he uses j...@business. However, I don’t want
freeradius to accept if he uses j...@communication. The problem is that
thes
zouzou wrote:
> I am using freeradius to authenticate users to have access to Internet. I
> want my user to use their group which is their department to be able to have
> internet because I need tractability. To understand my problem I’m going to
> use an example,
> User-Name: bob
> Groupe-name:
I'm using freeradius 2.1.7.
I am using freeradius to authenticate users to have access to Internet. I
want my user to use their group which is their department to be able to have
internet because I need tractability. To understand my problem I’m going to
use an example,
User-Name: bob
Groupe-
William Rettig wrote:
> Is the FreeRADIUS-provided EAP test client able to simulate a TLS client?
Yes and no. See "radeapclient".
Realistically, use "eapol_test". See http://deployingradius.com for
complete instructions on testing FreeRADIUS && EAP.
Alan DeKok.
-
List info/subscribe/unsu
Jevos, Peter wrote:
> Fall-through attribute doesn’t work in this case, cause it is “falling”
> all the time ( even though it matches the condition )
You're not getting what I'm saying. The "users" file does *not* run
during the "authenticate" phase. So it makes no sense to ask about
modifying
On Wed, Nov 10, 2010 at 10:27 AM, Alan DeKok wrote:
>
>
> Because the huntgroup checks match *request* attributes.
>
> Update the "passwd" module to add the group name as a request attribute.
>
> Alan DeKok.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
Jevos, Peter wrote:
> How can I skip to the second DEFAULT if the first DEFAULT doesn’t pass ?
Use the "Fall-Through" attribute. See comments in the default "users"
file.
> So if request comes from the 10.1.1.2 and user doesn’t pass through
> authentication, it should be forwarded to
Jevos, Peter wrote:
> How can I skip to the second DEFAULT if the first DEFAULT doesn’t pass ?
Use the "Fall-Through" attribute. See comments in the default "users"
file.
> So if request comes from the 10.1.1.2 and user doesn’t pass through
> authentication, it should be forwarded to another D
Hello,
Is the FreeRADIUS-provided EAP test client able to simulate a TLS
client?
Bill
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
inetjunkmail wrote:
> I'm using the "files" option for all processes but I want to use
> user groups so I can reference them in my huntgroups definitions as
> groups of users permitted to authentication to that group of
> devices. I tried modifying the etc_group module and the grou
Thanks.
I'll just add it to the master dictionary file in /etc/raddb for now and
watch for changes.
Ben
> -Original Message-
> From: freeradius-users-
> bounces+wiechman.lists=gmail@lists.freeradius.org
> [mailto:freeradius-users-
> bounces+wiechman.lists=gmail@lists.freeradius
Debug info below
On Tue, Nov 9, 2010 at 2:09 PM, inetjunkmail wrote:
> I know I'm missing something obvious but I'm stuck here so I apologize in
> advance for the silly question.
>
> I'm using freeradius 2.1.7.
>
> I'm using the "files" option for all processes but I want to use user
> groups so
Hello,
I have two users: test1 and test2
I would like to grant test1 access by this syntax of username ;
Username: te...@domaine1 ( exp: domaine1= DRH)
I would like to grant test2 access by this syntax of username;
Username: te...@domaine2 ( exp: domaine1=DG)
And I would not like to grant t
We are proxy some requests to a radius server that is outside our control.
Sometimes the server is unavailable and does not respond. When it does not
respond then out radius server does not respond to our lns and the lns marks
our server as dead.
My understanding is that by using the Post-Pro
Ben Wiechman wrote:
> It appears that the Mikrotik dictionary was removed from
> /usr/share/dictionary in commit 38cee089d7f88a4e517d when the Motorola WiMAX
> dictionaries were added. Was this intentional or an oversight?
Probably an oversight. We can fix it for the next release.
Alan DeKok
Philley Kalisha Mandiza wrote:
> How can I configure my mail installation so that it authenticates
> AGAINST the freeradius database and NOT the mysql database?
See the mail server documentation for how to configure RADIUS
authentication.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http
Hi , I searched web via google , but i am not able to find the patch for AKA
support for free radiusAll are pointing to
http://bugs.freeradius.org/show_bug.cgi?id=386but this is no longer exists ,
did anybody have the patch? please send me the patch.
-
List info/subscribe/unsubscribe?
20 matches
Mail list logo
