Hi. Yet another MSCHAPv2 thread.
It's related to this one:
http://lists.cistron.nl/pipermail/freeradius-users/2008-July/msg00156.html
(I will post my output if needed, but I believe is almost the same)
Ivan Kalik states That's because it's doing EAP mschapv2 not plain
mschap. It's normal
to get
Alberto Martínez wrote:
Also, I'd like to know a little more about the ntlm_auth issue
before downgrading (I hate to do that).
Upgrade to the latest stable release of Samba. It was a Samba bug.
See eap.conf. Look for Samba
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Hi,
The thread ends with Problem solved: ntlm_auth of Samba 3.2.0 seems
not to work with Freeradius 2.0.5. After downgrading Samba to 3.0.29
everything is fine again. which contrasts with the
rlm_mschap: adding MS-CHAPv2 MPPE keys
++[mschap] returns ok
MSCHAP Success
part. Also, I'd
According to
http://wiki.freeradius.org/Build#Building+Debian+packages
a debian package can be compiled from freeradius sources.
On squeeze it fails. Mabe it has to do with libtool?
Is there a known workaround?
libtool: compile: gcc -g -O2 -O2 -Wall -D_GNU_SOURCE -D_REENTRANT
Wegener, Norbert wrote:
According to
http://wiki.freeradius.org/Build#Building+Debian+packages
a debian package can be compiled from freeradius sources.
On squeeze it fails. Mabe it has to do with libtool?
Is there a known workaround?
Arg... the system has lt_dladvise_init(), but not
Hello,
I just stumbled across this which made me worry a bit:
commit f8f58e4bec03d832ad4480b90e7dd531ae0d787d
Author: Alan T. DeKok al...@freeradius.org
Date: Wed Oct 19 17:20:37 2011 +0200
Only string can have encrypt=2
diff --git a/src/lib/dict.c b/src/lib/dict.c
index f613664..bdf8065
Unfortunately that has not been the solution.
I grabbed the latest git version,
verified
--without-rlm_sql_unixodbc \
--with-system-libtool \
--with-system-libltdl
but:
/usr/bin/libtool --mode=compile gcc -I/root/git/freeradius-server
This does help greatly, thanks Phil.
On Oct 15, 2011, at 4:41 AM, Phil Mayers wrote:
On 10/14/2011 10:43 PM, subcon wrote:
I've searched for this sort of posting, but found issues unrelated that
responded to my search string, so I decided to post it here.
OK, currently I have Radius
Hello.
I am running 2.1.10. Is it possible to log to files and syslog (both)?
Regards
Mika
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Logging-to-destination-files-AND-syslog-tp5010771p5010771.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
On Oct 15, 2011, at 12:41 PM, Alan DeKok wrote:
subcon wrote:
Imagine I want to store x509 certificate data (specifically a client
certificate) in an attribute in LDAP (perhaps as a binary attribute, etc).
That's outside of the scope of FreeRADIUS.
Obviously. I had not actually said
Mika wrote:
Hello.
I am running 2.1.10. Is it possible to log to files and syslog (both)?
No. Use something like rsyslog to send logs to multiple destinations.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Removing
--enable-developer \
in debian/rules solved that problem.
With best regards,
Norbert Wegener
Atos IT Solutions and Services
AIS MS NC PSU SDC
Bruchstraße 5
45883 Gelsenkirchen, Germany
Tel.: +49 (209) 94565716
Fax: +49 (201) 8165581284
Bjørn Mork wrote:
I just stumbled across this which made me worry a bit:
...
The reason I'm worrying is dictionary.erx, where I know there are other
types (integer, octets and ipaddress) with encrypt=2 set.
Yes, but the commit has a typo.
And the second issue that made me worry: Why didn't
so it took me a while, but i finally tracked down a MAC to continue
troubleshooting...at this point windows machines can login with RAIDUS
auth... below is the output from an attempt with a MAC:
[root@ops2 raddb]# radiusd -X
FreeRADIUS Version 2.1.12, for host x86_64-redhat-linux-gnu, built
Matthew Arguin wrote:
so it took me a while, but i finally tracked down a MAC to continue
troubleshooting...at this point windows machines can login with RAIDUS
auth... below is the output from an attempt with a MAC:
Can you READ the output? Or paste the output into the debug tool
web page
I'm a newby to freeradius2 (from cistron), and I have it starting up,
and logging. However, it isn't attempting to load the users file.
I do not see any line in the radiusd.conf file which references users.
I can remove the users file, and freeradius2 doesn't complain about it.
Please, what am I
Jim Pazarena wrote:
I'm a newby to freeradius2 (from cistron),
Wow... you haven't upgraded in a while.
and I have it starting up,
and logging. However, it isn't attempting to load the users file.
It loads it in the default configuration.
I do not see any line in the radiusd.conf file
Absolutely no excuse... I should have read about it... Next time I will read
more carefully.
Anyway everything works now! Thank you very much Alan Dekok!
Difan
-Original Message-
From: freeradius-users-bounces+difan.zhao=guest-tek@lists.freeradius.org
Alan DeKok al...@deployingradius.com writes:
It's a typo. The real message is about encrypt=3
Thanks. I'm going to relax again then :-)
Bjørn
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
So I'm moving from an old 1.1.3 (running on rhel5) to 2.1.10 (rhel6). We use
EAP-TTLS PAP which authenticates against openldap and
dynamically assigns vlans based on ldap group properties. I seem to have
gotten the authentication working, but the vlan assignment
doesn't appear to be
if you take the standard initial 2.1.10 config and then edit the bits you
need, then you'll see that for this setup, the most
important file
for you to deal with is the inner-tunnel virtual serverthats what handles
the EAP. so long as you've edited eap.conf correctly
so that
the certs
On 2011-11-21 10:56 AM, Alan DeKok wrote:
Jim Pazarena wrote:
I'm a newby to freeradius2 (from cistron),
Wow... you haven't upgraded in a while.
correct. FreeBSD 7.0 i386 cistron 1.6.8
to FreebSD 8.2 amd64 freeradius 2.1.12
and cistron doesn't run on the 64-bit OS.
and I have it
On Tue, Nov 22, 2011 at 4:31 AM, Jim Pazarena j...@paz.bz wrote:
I do not see any line in the radiusd.conf file which references users.
It's not. It's in raddb/modules/files.
Ah. I had my users file in raddb
NOT in raddb/modules
So I moved it to modules,
You shoulnd'nt.
I have a LDAP server performing authentication on FR clients where EAP-TLS is
being used as the mechanism, but the LDAP module is not using TLS. Is there a
way to use the client certificate common-name as the UID in the LDAP
authentication. I'm thinking that I just need to modify the filter
Is there a way to truncate the UID used by the LDAP module? My system is using
an UID structured like an email I would like to use everything in front of the
'@' as the UID. Is this possible?
Lester Houston 111
Boeing Research Technology
Electronics Prototyping and Integration Center (EPIC)
Hello sir,
while activating the free radius server with eap
authentication via vmware virtual machine i got error like Failed
binding to authentication address 192.168.1.102 port 1812
and i attched the output file.
output file.odt
Description:
On Tue, Nov 22, 2011 at 12:05 PM, Harshavardhan Ch
harshavardhan...@intelligraphics.com wrote:
Hello sir,
while activating the free radius server with eap
authentication via vmware virtual machine i got error like Failed binding
to authentication address 192.168.1.102 port
/attachments/2021/f16dbfc8/attachment.html
-- next part --
A non-text attachment was scrubbed...
Name: output file.odt
Type: application/vnd.oasis.opendocument.text
Size: 21020 bytes
Desc: not available
Url :
https://lists.freeradius.org/pipermail/freeradius
28 matches
Mail list logo