I using radiusd: FreeRADIUS Version 2.1.11.
I cannot seem to get the RHEL5 (2.6.18-238.9.1.el5) ntlm_auth program to
properly authenticate the challenge and nt-response packets.
If I set the password using clear-text and also set
MS-CHAP-Use-NTLM-Auth, the authentication works fine. The versio
I found the documentation of what needs to be done to support both NTDOMAIN\
and @realm styles in the same vhost. In sites-available/inner-tunnel, it says:
# If you are using multiple kinds of realms, you probably
# want to set "ignore_null = yes" for all of them.
# Oth
Hello Arran and Alan,
Arran is right. Yes! Thanks guys for yours patience.
I would love to send you guy a tarball of my configs.
Currently, I away from my server for the next 2 days. And I will send u guys
once I am back in office. :)
Alex
--
View this message in context:
http://freeradius.10
Of course!
Didnt instantiate it properly!
Thanks!
On Fri, Aug 26, 2011 at 9:31 AM, Arran Cudbard-Bell <
a.cudba...@freeradius.org> wrote:
>
> >
> > Here is the module:
> > sql sql_local {
> > database = "mysql"
> > driver = "rlm_sql_${database}"
> > server = "localhost"
>
Grace M. wrote:
> A quick reading about radsec (http://wiki.freeradius.org/RadSec) shows
> that its not supported by freeradius??
The git "master" branch has RadSec support. See
http://git.freeradius.org.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users
Jake,
I sent a same message on Packet Fence list.
Tks Marlon
2011/8/25 Sallee, Stephen (Jake)
> I just finished a deployment that did exactly that! This may be a
> subject more suited for their mailing list (which I am on as well).
>
> ** **
>
> Message me on that list and I bet we can g
On 26 Aug 2011, at 12:38, Alan Buxey wrote:
> Hi,
>
>> I think he's saying he created a directory to put all the dynamic clients
>> files, and that he's symlinked the virtual server correctly.
>
> at which point I would ask, WHY bother with the dynamic-client
> VS at all?? if all that is happe
Again thanks Arran.
This is quite a handful!
A quick reading about radsec (http://wiki.freeradius.org/RadSec) shows that its
not supported by freeradius??
What about the "encrypted tunnel" way, can you lead me to a tutorial or MAN
page that may help me?
Many thanks.
Grace.
- Original
Hi,
> I think he's saying he created a directory to put all the dynamic clients
> files, and that he's symlinked the virtual server correctly.
at which point I would ask, WHY bother with the dynamic-client
VS at all?? if all that is happening is that standard client {}
entries are going into it,
Hello Alan,
Yes, this 'dynamic-clients' is a file, the original and default file as you
mentioned in the previous message. The content is as follows. If you
noticed? the directory was assigned with a dynamic-clients folder resides in
raddb folder.
client dynamic {
ipaddr = 0.0.0.0
On 26 Aug 2011, at 12:10, Alan Buxey wrote:
> Hi,
>
>> [root@server sites-enabled]# pwd
>> /usr/local/etc/raddb/sites-enabled
>> [root@server sites-enabled]# ls -al
>> total 0
>> lrwxrwxrwx 1 root root 33 2011-08-22 15:58 control-socket ->
>> ../sites-available/control-socket
>> lrwxrwxrwx 1 roo
On 26 Aug 2011, at 12:08, Grace M. wrote:
> Thank you Arran for quick reply.
>
> Since the NAS(s) will be in other networks, they will appear to my server as
> dynamic *public ips* and sometimes the NAS(s) will be multiple
> in one external NATed network (such will appear as from 1 public ip).
On 26 Aug 2011, at 11:39, Alexander Clouter wrote:
> Arran Cudbard-Bell wrote:
>>
* Tunnel-Private-Group-Id:0 = "5"*
>>> string != integer
>>>
>>> Tunnel-Private-Group-Id is a string.
>>
>> Eww gross. Ok I thought unlang did the conversions automagically
>> But obviously not
>
Hi,
> [root@server sites-enabled]# pwd
> /usr/local/etc/raddb/sites-enabled
> [root@server sites-enabled]# ls -al
> total 0
> lrwxrwxrwx 1 root root 33 2011-08-22 15:58 control-socket ->
> ../sites-available/control-socket
> lrwxrwxrwx 1 root root 26 2011-08-22 15:58 default ->
> ../sites-availabl
Arran Cudbard-Bell wrote:
>
>>> * Tunnel-Private-Group-Id:0 = "5"*
>>>
>> string != integer
>>
>> Tunnel-Private-Group-Id is a string.
>
> Eww gross. Ok I thought unlang did the conversions automagically
> But obviously not
>
Apparently it does work, the OP seems to neglected to mention
Thank you Arran for quick reply.
Since the NAS(s) will be in other networks, they will appear to my server as
dynamic *public ips* and sometimes the NAS(s) will be multiple
in one external NATed network (such will appear as from 1 public ip). In this
case I will need to specify a range of puplic
Hello Alan,
Very thankful for your reply and correct my understanding.
(Shown below) I actually did the symlink to dynamic-clients file. This file
allows me to indicate the directory where client definitions are stored. I
uncommented this -> directory = ${confdir}/dynamic-clients/ <- however this
On 26 Aug 2011, at 11:49, Grace M. wrote:
> Guyz,
>
> I have FreeRADIUS Version 2.1.10 working with mysql to authenticate uses
> connected to a number of NAS(s).
>
> Now, I would like to authenticate NAS(s) which should connect to my freerad
> from other networks (outside my lan) which have
Guyz,
I have FreeRADIUS Version 2.1.10 working with mysql to authenticate uses
connected to a number of NAS(s).
Now, I would like to authenticate NAS(s) which should connect to my freerad
from other networks (outside my lan) which have dynamic IPs.
Anyone with a trick on how to configure clien
On 26 Aug 2011, at 11:16, Barry Murphy wrote:
> Hey guys,
>
> We're an ISP providing ADSL services ourselves and on behalf of our
> wholesalers. I have a bunch of realms that are LOCAL and proxied which work
> with no issues. I'm trying to add realms of competitors to our radius so when
> cus
Hi,
> Hello,
>
> I have manually moved the 192.168.169.74 file into raddb/dynamic-clients
> folder after i start radius daemon. (radiusd -X -x)
>
> I did make sure that raddb/sites-available/dynamic_clients contains
> directory = /usr/local/etc/raddb/dynamic-clients
>
> I sent a packet to the se
Hey guys,
We're an ISP providing ADSL services ourselves and on behalf of our
wholesalers. I have a bunch of realms that are LOCAL and proxied which work
with no issues. I'm trying to add realms of competitors to our radius so when
customers are migrated from our competitors to our network they
Look Into Jradius
On Fri, Aug 26, 2011 at 1:02 PM, Rajkumar Balaji <
rajkumar.balaj...@gmail.com> wrote:
> Hi,
>
> If anyone knows how to connect FreeRADIUS using JAVA
> Please help me to solve this
>
> Thanks
>
> Regards
> Rajkumar
> -
> List info/subscribe/unsubscribe? See
> http://www.fre
Hi everyone,
I am new to FreeRADIUS.
I have a requirement to store and retrieve it back to java to Authorize the
user
Please help me to resolve this.
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
If anyone knows how to connect FreeRADIUS using JAVA
Please help me to solve this
Thanks
Regards
Rajkumar
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
> Here is the module:
> sql sql_local {
> database = "mysql"
> driver = "rlm_sql_${database}"
> server = "localhost"
> login = "radius"
> password = ""
> radius_db = "radius-MAB"
> read_groups = no
> sqltrace =
hi
thought so at the beginning but I did :)
The startup of freeradius shows that the module is loaded (called
local-sql.conf):
...
Thu Aug 25 16:26:48 2011 : Debug: including configuration file
/etc/raddb/modules/files
Thu Aug 25 16:26:48 2011 : Debug: including configuration file
/etc/raddb/module
Hello,
I have manually moved the 192.168.169.74 file into raddb/dynamic-clients
folder after i start radius daemon. (radiusd -X -x)
I did make sure that raddb/sites-available/dynamic_clients contains
directory = /usr/local/etc/raddb/dynamic-clients
I sent a packet to the server yet i still recei
28 matches
Mail list logo