Re: how to conf VLAN assign,mac-auth-bypass, and redirect url?

Arran Cudbard-Bell-5 wrote: > >> can anyone show me how to conf VLAN assign,mac-auth-bypass, and >> redirect url? > > For VLAN assignment see http://www.rfc-editor.org/rfc/rfc3580.txt, the > other features you mentioned are specific to your NAS model and vendor, so > I suggest you contact

Re: Config for TLS, TTLS and PEAP and subject validation

Daniel Bertolo wrote: > I currently run FreeRADIUS 2.1.6 ... > authenticate { > Auth-Type eap { > eap > if (!"%{TLS-Client-Cert-Subject}" =~ /\/O=MyCompany\// ) { That won't work in 2.1.6. You need at least 2.1.10. > - This would belong in the "outer" request as there is n

Re: dynamic CRL

On 11 Aug 2011, at 20:46, Travis Dimmig wrote: >> Travis Dimmig wrote: >>> Apologies ahead of time if this information is easily available >>> somewhere else, but everything I found seemed to be a few years out of >>> date. Does freeRadius now have the ability to re-read a certificate >>> revoca

RE: dynamic CRL

> Travis Dimmig wrote: > > Apologies ahead of time if this information is easily available > > somewhere else, but everything I found seemed to be a few years out of > > date. Does freeRadius now have the ability to re-read a certificate > > revocation list, or does it still require a restart afte

Re: dynamic CRL

Travis Dimmig wrote: > Apologies ahead of time if this information is easily available > somewhere else, but everything I found seemed to be a few years out of > date. Does freeRadius now have the ability to re-read a certificate > revocation list, or does it still require a restart after addition

Re: SSH to use CHAP

Thanks for your reply Alexander! Actually I have already implemented a radius client that communicate with radius server using CHAP for SSH connection (i.e. I got one set of username and password for SSH login and another set for radius login). The radius server will store all the key user credent

Config for TLS, TTLS and PEAP and subject validation

Hi I currently run FreeRADIUS 2.1.6 and have a working configuration for EAP-TTLS and PEAP that is used for a WPA2 network. In addition to that, I would like to allow our users to use their user certificate from a public issuer to connect using EAP-TLS. This means that I have to check if the subje

dynamic CRL

Apologies ahead of time if this information is easily available somewhere else, but everything I found seemed to be a few years out of date. Does freeRadius now have the ability to re-read a certificate revocation list, or does it still require a restart after additions to the CRL? Travis Dimm

Re: Freeradius and group membership check

On 08/11/2011 10:01 AM, Vlad Glagolev wrote: Hello there, I'm here to say that I've found kind of misconfiguration/bug in Freeradius. The version is 2.1.10, and the platform is i386 (i686) OpenBSD. when I try to use group membership check, I see strange behaviour: instead of commas there are

Freeradius and group membership check

Hello there, I'm here to say that I've found kind of misconfiguration/bug in Freeradius. The version is 2.1.10, and the platform is i386 (i686) OpenBSD. when I try to use group membership check, I see strange behaviour: instead of commas there are symbols (those are in ASCII?) like that: [file

Re: SNMP

David Peterson wrote: > Is SNMP available yet in the latest code? see scripts/snmp-proxy/ Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

SNMP

Is SNMP available yet in the latest code? David - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html