I'm using WPA2-EAP-TLS to verify certificates, and matching certificates
to accounts in LDAP to verify accounts are in good standing.
This morning around 7AM local time I blocked an offending user from the
wifi network by adding their account to the disabled-users group in the
ldap directory.
On Thu, Feb 9, 2012 at 7:49 AM, Will Richmond wrote:
> thx all, i am stuck on this point now:
>
> mschap {
> passchange {
> local_cpw = "%{xlat:...}
> }
>
> Does there exist an "xlat:" that NT-hashs new cleartext password, deletes the
> change pass xtrl attribute in users file and th
thx all, i am stuck on this point now:
mschap {
passchange {
local_cpw = "%{xlat:...}
}
Does there exist an "xlat:" that NT-hashs new cleartext password, deletes the
change pass xtrl attribute in users file and then writes the new pass there? or
am I going about this the wr
I'm trying to find some sample accounting data from freeradius,
preferably in a mysql database to run some test analyses on. I'm
considdering using Freeradius + Mysql accounting in my environment, and
don't have the infrastructure to generate test data, and would like to
analyze some to see wh
On Thu, Feb 9, 2012 at 3:38 AM, Will Richmond wrote:
> Thx alan, I found/read read the docs, but still trying to determine this:
> Which config file contains this setting:
>
> To actually force a client to change passwords, you must set the expiry bit
> in the SMB-Account-Ctrl value - for exampl
Thx alan, I found/read read the docs, but still trying to determine this: Which
config file contains this setting:
To actually force a client to change passwords, you must set the expiry bit in
the SMB-Account-Ctrl value - for example:
update control {
# U == user
# e == expired
SMB-Acco
On Thu, Feb 9, 2012 at 12:51 AM, Fazal Ahmed Malik wrote:
> Hi,
>
> I have implemented daily usage limit and also volume limit but users are
> still able to connect.
> Radius logs says,
>
> Auth: Invalid user (rlm_counter: Maximum daily usage time reached):
> [fam/fam] (from client mynetwork port
Hi,
I have implemented daily usage limit and also volume limit but users are
still able to connect.
Radius logs says,
Auth: Invalid user (rlm_counter: Maximum daily usage time reached):
[fam/fam] (from client mynetwork port 2 cli 0013726e6f35)
User can connect.
Any help.
Thanks and regards,
Hi,
Do you know if is possible to reject a login with radgroupcheck?
In latest versions of FreeRADIUS, if we want to reject a user's request that
tries to do login with some attributes, we should to use radcheck because if
we use radgroupcheck FreeRADIUS doesn't produce a reject.
In radcheck we
On 2012/02/08 06:24 PM, Phil Mayers wrote:
On 08/02/12 15:56, John Doppke wrote:
Does someone know if freeradius can update an LDAP user attribute as part
of post processing?
As far as I'm aware, that's not currently possible via rlm_ldap.
You could use a wrapper script around "ldapmodify", c
On 08/02/12 15:56, John Doppke wrote:
Does someone know if freeradius can update an LDAP user attribute as part of
post processing?
As far as I'm aware, that's not currently possible via rlm_ldap.
You could use a wrapper script around "ldapmodify", called via the
"exec" module.
-
List info/
Does someone know if freeradius can update an LDAP user attribute as part of
post processing?
Would it be via xlat or unlang?
tia
-John
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Will Richmond wrote:
> special thx to phil and alex for inital help testing FR with password change.
> With some help today, I managed to download, compile and install the latest
> copy of FR source code on centOS server. I cannot however get a password
> change prompt to appear on my calling-st
13 matches
Mail list logo
