Basically, I want to provide some data that's obtained from an external source
to my VPN client that is made available to JRADIUS via FreeRADIUS. I need this
data to be available for the authorization phase because it will be used by
JRADIUS for determining whether a user is authorized for acce
hi,
as Alan ays..if you installed by package manager, ensure you;ve got all
the freeradius packages. if you've been editing files, then check
radiusd.conf and ensure you are including eap.conf
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 11/16/2011 09:53 PM, Houston-III, Lester L wrote:
What I want to do now is have the StrongSwan VPN client inject some
custom data into the EAP message so that data can be propagated through
to JRADIUS for use in the post authorization method. Maybe something
like creating my own attribute or
On 11/16/2011 10:09 PM, Houston-III, Lester L wrote:
Well, I'm trying to use information included in the EAP message for
post authorization using JRADIUS. I was hoping that I could somehow
inject some custom data that would be propagated to JRADIUS from
FreeRADIUS then I could perform some proc
Well, I'm trying to use information included in the EAP message for post
authorization using JRADIUS. I was hoping that I could somehow inject some
custom data that would be propagated to JRADIUS from FreeRADIUS then I could
perform some processing on this data during the post authorization ph
On 11/16/2011 06:59 PM, Houston-III, Lester L wrote:
Does the EAP plugin support Vendor Specific Attributes (VSA)? Can any
of the EAP attributes be modified to contain my own set of data? How can
I inject custom data into my EAP message?
Why do you think you want to do this?
EAP methods typic
I'm trying to clear some confusion I'm experiencing. This is probably not the
right place to ask this question, but I haven't been having much luck finding
any answers on the web. I have a FreeRADIUS server running that is acting as a
backend authenticator for my VPN server, which is StrongSwa
On 16 Nov 2011, at 21:46, Houston-III, Lester L wrote:
> Can you elaborate a little more or point me to some documentation. How do
> you modify the EAP-Message attribute?
man unlang.
The same you would with any other RADIUS attribute.
update reply {
EAP-Message := "0xD3ADB33F"
}
-Ar
Can you elaborate a little more or point me to some documentation. How do you
modify the EAP-Message attribute?
>Can any of the EAP attributes be modified to contain my own set of data? How
>can I inject custom data into my >EAP message?
>
>Yes. Modify the EAP-Message attribute.
>
>-Arran
>
>A
On 16 Nov 2011, at 19:59, Houston-III, Lester L wrote:
> Does the EAP plugin support Vendor Specific Attributes (VSA)?
No.
> Can any of the EAP attributes be modified to contain my own set of data? How
> can I inject custom data into my EAP message?
Yes. Modify the EAP-Message attribute.
-
Does the EAP plugin support Vendor Specific Attributes (VSA)? Can any of the
EAP attributes be modified to contain my own set of data? How can I inject
custom data into my EAP message?
lester.l.houston-...@boeing.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.
No. It doesn't. If you need to reread then you can HUP the daemon (later
releases) or reload service. If you want dynamic values then SQL is one way
(though not for clients directly as they are read on startup too, you need to
use the dynamic clients virtual server).
fastusers is worth a look t
Hello,
I am new to FreeRADIUS..
Does the files module periodically reload the users file into memory, if so
how often?
Thanks for your time.
-S
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Angelica Delgado wrote:
> Following is the whole output of radiusd -X:
The only way that the EAP module wasn't found is that you haven't
installed the relevant RPMs. Go do that.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Following is the whole output of radiusd -X:
FreeRADIUS Version 2.1.7, for host i386-redhat-linux-gnu, built on Dec 30
2009 at 13:47:58
Copyright (C) 1999-2009 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
Yo
Ready to process requests.
...and that's it. Where's the incoming query to be dealt with?
alan
--
Message may be brief as it has been sent from my mobile
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Your freeradius server was built with EAP support (openSSL support) ?
this was not the whole output of radiusd -X
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ronaldo Afonso wrote:
> That's the server output:
...
> Ready to process requests.
So... the server isn't receiving packets.
Try "radtest", as suggested in the FAQ.
If that doesn't work, investigate why the firewall on your system is
blocking RADIUS traffic.
Alan DeKok.
-
List info/su
Angelica Delgado wrote:
> I am getting the following error, when eap is enable on inner-tunnel:
>
> /etc/raddb/sites-enabled/inner-tunnel[228]: Failed to find module "eap".
Well... you don't have the EAP module.
Or, you could look at the *rest* of the error messages to see what's
going on.
Alan,
That's the server output:
root@rafonso-laptop:~# freeradius -v
freeradius: FreeRADIUS Version 2.1.8, for host i486-pc-linux-gnu, built on
Jan 5 2010 at 02:49:11
Copyright (C) 1999-2009 The FreeRADIUS server project and contributors.
There is NO warranty; not even for MERCHANTABILITY or
I am getting the following error, when eap is enable on inner-tunnel:
/etc/raddb/sites-enabled/inner-tunnel[228]: Failed to find module "eap".
/etc/raddb/sites-enabled/inner-tunnel[178]: Errors parsing authenticate
section.
Thanks.
Angelica
On Wed, Nov 16, 2011 at 12:39 AM, Alan DeKok wrote:
>
All working okay for you now? Did you follow the other advice regarding users
file format?
alan
--
Message may be brief as it has been sent from my mobile
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I'm havig the same problem on my Centos server.
Can you explain how did you solve?
Thanks in advance.
Giovanni
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/radzap-Nothing-to-send-tp4822106p4998169.html
Sent from the FreeRadius - User mailing list archive at Nabble.co
Ronaldo Afonso wrote:
> radeapclient -c3 -r1 -s -x 127.0.0.1 auth localhost-secret http://www.freeradius.org/list/users.html
I'm havig the same problem on my Centos server.
Can you explain how did you solve?
Thanks in advance.
Giovanni
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/radzap-Nothing-to-send-tp4822106p4998155.html
Sent from the FreeRadius - User mailing list archive at Nabble.co
Thanks a LOT Alan for your answer.
The radius works very well. It auths the MAC's locally and resend the
windows domains users query to a Windows NPS Server.
Toni
2011/11/14 Alan Buxey
>
> Hi,
>
> > I a newbie freeradius user and I have a new problem. I have a switch
> > that send auth request
Hi all,
I'm trying to make a test environment to authenticate users via EAP-SIM.
I followed some freeradius documentation
(freeradius-server-2.1.12/src/tests/eapsim-03) but when I start the
radeapclient it just get stuck waiting for some FreeRadius server "response"
The scenario is a Fre
Thanks Alan, Sven.
SQL server is on the same virtual machine with freeradius. I'm also
creating a web application to manage users, certificates, server settings
etc - it will be hosted on the same machine.
I just thought that keeping ANY passwords ANYWHERE in plaintext form is not
a good idea. Bu
28 matches
Mail list logo