bharathan wrote:
...
That's enough to be unsubscribed.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 03/23/2011 08:30 PM, Michael Lecuyer wrote:
The MSCHAPs include the given name when calculating the hashes.
Stripping the domain will therefore not work. The client is using the
domain\name in the hash and you're asking the server to use just the name.
Actually that's not true; the mschap
On 03/23/2011 07:08 PM, Thomas Wunder wrote:
But when it comes to MSCHAP authentication I've got a problem:
I get errors like
[mschap] ERROR: User-Name (testpc\tom1) is not the same as MS-CHAP Name (tom1) from
EAP-MSCHAPv2
(...which sounds consequent) I've tried solve that problem by changing
Hi,
I have an idea I thought will be quite easy to implement, but it
turned out I can't figure how to do this on my own.
Company I work for issues software (Java) tokens for our employees
that need external access. They're based on proprietary system (CERB)
and we're using them with a great
On 03/24/2011 08:37 AM, stasheck wrote:
For WiFi, we are using H3C WX30xx Access Controllers, which try to use
EAP, which in turn doesn't provide clear-text password that could be
used for cerb exec.
It depends on your EAP methods.
EAP-PEAP/MSCHAP (the only useful EAP method built into
2011/3/24 Phil Mayers p.may...@imperial.ac.uk:
On 03/24/2011 08:37 AM, stasheck wrote:
For WiFi, we are using H3C WX30xx Access Controllers, which try to use
EAP, which in turn doesn't provide clear-text password that could be
used for cerb exec.
It depends on your EAP methods.
Robert Roll robert.r...@utah.edu wrote:
I'd like to try load balancing EAP/PEAP/MSCHAPV2 using freeradius. I
looked at the proxy.conf and it seems that there are two options,
because you have to insure the same end client talks to the same
radius server. There seems to be client-balance
Thanks,
The following seems to work pretty well for us.
authorize {
update control {
#Load-Balance-Key := %{NAS-IP-Address} %{NAS-Port} %{User-Name}
%{Calling-Station-ID}
Load-Balance-Key := %{Calling-Station-ID}
}
I had taken a snap shot of unique client-mac addresses we
Hi
sorry, I do not know if this issue was discussed earlier. Wonder if it is
possible to change parameters of the session on the fly eg Rate-Limit.
Thank you for your attention
Euler Thomas Garcia
email / msn: euler.gar...@pocos-net.com.br
-
List info/subscribe/unsubscribe? See
The hotel authentication is typically not done using 802.1x.
Or it's simply a shared password.
The other piece is a gateway that typically traps your HTTP traffic
and forces another authentication before it will forward your traffic
to the outside world.
Another EAP combination would be PEAP
Hi,
After configuring /etc/freeradius/radiusd.conf with:
logdir = syslog
log_destination = syslog
and replacing all ${logdir}/ by the real path
and launching freeradius with good flags:
/usr/sbin/freeradius -l syslog -g local2
and configuring /etc/syslog.conf:
local2.* @myserver.mydomain
Pierre Durand wrote:
But how sending also detailed logs
(/var/log/freeradius/radacct/IP/detail-* i need?
raddb/sites-available/copy-acct-to-home-server
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
twobacons wrote:
2. I see this error posted a quite often on the forums, but I can't get it
to go away:
rlm_eap: Ignoring EAP-Type/tls because we do not have OpenSSL support.
rlm_eap: Ignoring EAP-Type/ttls because we do not have OpenSSL support.
rlm_eap: Ignoring EAP-Type/peap because we
We're experiencing a similar issue. We upgraded to 2.1.9.3 and everything
worked fine for server 1 with no complaints.
But for server 2 we set it up with the same Freeradius version, but we
configured it with a Verisign certificate.
The servers are configured the exact same way for each except
On 03/18/2011 12:39 PM, Fajar A. Nugraha wrote:
On a side note, in RHEL6's freeradius-perl RPM, rlm_perl is unusable:
Can't load '/usr/lib64/perl5/auto/Data/Dumper/Dumper.so' for module
Data::Dumper: /usr/lib64/perl5/auto/Data/Dumper/Dumper.so: undefined
symbol: Perl_sv_cmp at
I trying to push a IP from a IP-Pool using Sqlippool.
Doing the Auth via LAP+Wireless i got:
[sqlippool] No Pool-Name defined.
[sqlippool] expand: No Pool-Name defined (did
%{Called-Station-Id} cli %{Calling-Station-Id} port %{NAS-Port} user
%{User-Name}) - No Pool-Name defined (did
Free Radius Fans,
First - thanks to the people who contribute to this product!
Our environment - Wireless 802.1x, Novell NDSLdap to lookup passwords or
mysql, Peap with mschapv2.
I observe when a client successfully authenticates to the radius server
there are two Auth: Login OK: messages -
On Fri, Mar 25, 2011 at 10:12 AM, john.hayw...@wheaton.edu wrote:
Free Radius Fans,
First - thanks to the people who contribute to this product!
Our environment - Wireless 802.1x, Novell NDSLdap to lookup passwords or
mysql, Peap with mschapv2.
I observe when a client successfully
18 matches
Mail list logo