Timmy wrote:
I have browsed the source code of Freeradius 2.1 and also the
freeradius.org main site, there is still no IBM DB2 connection available.
You haven't looked very hard then.
It exists, and people use it.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Brian Gold wrote:
Ok, new pastebin: http://pastebin.com/5f2W3PjN
I've confirmed that I don't have Auth-Type := LDAP anywhere in my
configuration.
Did you try checking the set_auth_type entry in the ldap module
config, as suggested in another post?
The sambaNTPassword hash was incorrect.
Hello !
Maybe somebody knows, how to configure FreeRADIUS server with my SQL for
authentication at the specific time?
For example:
There is a reservation page. Users can reserve specific time slot, for
1-3hours. Random username and password would be generated for that user to
log in at that
Matthew Newton wrote:
I've just replicated the problem by repeatedly HUPping freeradius,
with about 10 second gaps between. On the 8th or so try, the same
issue hit. Stopping and starting FR fixed it.
Maybe valgrind helps. It doesn't say anything for me...
I'm wondering if the mschap
Timmy wrote:
I have browsed the source code of Freeradius 2.1 and also the
freeradius.org main site, there is still no IBM DB2 connection available.
You haven't looked very hard then.
It exists, and people use it.
Alan DeKok.
I see. The debian guy doesn't maintain the DB2 driver.
You should use the Login-Time attribute. look here to see how its used -
http://wiki.freeradius.org/Rlm_logintime
Ideally, you would add a row for each user (not optimal) with Login-Time
attribute with value like 'Al1600-1700' which means they will be able to
login only between 1600 and 1700 on
On 2012-04-13 06:27 PM, shiv wrote:
You should use the Login-Time attribute. look here to see how its used -
http://wiki.freeradius.org/Rlm_logintime
Ideally, you would add a row for each user (not optimal) with Login-Time
attribute with value like 'Al1600-1700' which means they will be able to
Hello guys.
Thank you for your answers. I just installed dialup admin. There is no
functions to manage at what time users can connect and at what time they can
not. :(
I'm looking for solution like Jeremy Stretch already has on his lab :
http://packetlife.net/wiki/how-community-lab-works/
On 2012-04-13 09:49 PM, jomajo wrote:
Hello guys.
Thank you for your answers. I just installed dialup admin. There is no
functions to manage at what time users can connect and at what time they can
not. :(
I'm looking for solution like Jeremy Stretch already has on his lab :
jomajo wrote:
Thank you for your answers. I just installed dialup admin. There is no
functions to manage at what time users can connect and at what time they can
not. :(
What you are trying to do is relatively unusual. There is no
pre-existing solution for you.
You will need to create it
I'm wondering if the mschap module somehow gets its internal state
muddled on a HUP, and starts sending the wrong challenge response.
ntlm_auth from the command line works fine when FR has a problem.
Hi,
I had some sparetime and was able to have a deeper look at it. What I
did is basically
I've been having some issues with proxy authentications failing in a
federated TCP/TLS configuration. Investigation shows that the connections
are failing with an error on the server end of Info: Ignoring new
connection due to client max_connections. A little more digging seems to
show that the
Jason Rohm wrote:
I've been having some issues with proxy authentications failing in a
federated TCP/TLS configuration. Investigation shows that the connections
are failing with an error on the server end of Info: Ignoring new
connection due to client max_connections. A little more digging
Alan,
Thanks for the response. Additional comments below.
On 4/13/12 10:04 AM, Alan DeKok al...@deployingradius.com wrote:
Jason Rohm wrote:
I've been having some issues with proxy authentications failing in a
federated TCP/TLS configuration. Investigation shows that the
connections
are
On 13/04/12 16:04, Alan DeKok wrote:
Don't do that. That kind of a configuration on a firewall is bad.
To be fair, my experience has been that most firewalls will timeout
inactive connections. Some won't even let you turn it off.
TCP keepalive might be an option here?
-
List
Jan Weiher wrote:
I had some sparetime and was able to have a deeper look at it. What I
did is basically running freeradius -X and then hup'd it until it got
borked. Seems to me like the mschap module gets somehow lost during the hup:
That's enough to tell what's going on.
Try grabbing
Hi!
I am talking just about time-based authentication, at the specific time.
But now there is a problem with MD5 encryption. Take a look please:
...
++[sql] returns ok
rlm_counter: Entering module authorize code
rlm_counter: Could not find Check item value pair
++[daily] returns noop
With ClearText Password this is working!
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/FreeRADIUS-time-based-authentication-with-MySQL-tp5637543p5638691.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See
jomajo wrote:
I am talking just about time-based authentication, at the specific time.
But now there is a problem with MD5 encryption. Take a look please:
No. *You* need to read the output. The problem is clear.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Yes, the problem is clear:
[pap] Configured MD5 password has incorrect length
[pap] Passwords don't match
But I'm looking how to solve this problem.
Password is correct.
--
View this message in context:
Hello Everybody:
I just set a FreeRadius server for a few days,it works fine, but i still have a
lot of confusions about to understand this server.
The first one, Athoriztion! FreeRadius is AAA server, I know what the
Authentication does,I know what the Accounting does, but I dont know what the
Hi Joey,
On Sat, Apr 14, 2012 at 12:06:06AM +0800, ZhenJoey wrote:
The first one, Athoriztion! FreeRadius is AAA server, I know
what the Authentication does,I know what the Accounting does,
but I dont know what the Athorization does.
Try reading doc/aaa.rst in the source, which gives a good
jomajo wrote:
Yes, the problem is clear:
[pap] Configured MD5 password has incorrect length
[pap] Passwords don't match
But I'm looking how to solve this problem.
Password is correct.
Really? The debug message says otherwise.
I guess it's impossible to solve. The passwords are
Hi,
On Fri, Apr 13, 2012 at 05:23:22PM +0200, Alan DeKok wrote:
Jan Weiher wrote:
I had some sparetime and was able to have a deeper look at it. What I
did is basically running freeradius -X and then hup'd it until it got
borked. Seems to me like the mschap module gets somehow lost during
Dear Snan.
I appreciate your question, but I think you need to create another thread
for it.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/FreeRADIUS-time-based-authentication-with-MySQL-tp5637543p5638907.html
Sent from the FreeRadius - User mailing list archive at
Dear Alan, I can post everything to you.
I installed and configured Dialup Administration. I am able to create
groups and users.
As I'm not so famillar with freeradius, I'm trying to do the basics.
Create user:
http://freeradius.1045715.n5.nabble.com/file/n5638927/user.png
There is a table
Authorization , is someone actually allowed to use the resource they are
logging into. Eg time of day, belong to right group, coming from right place,
still have data allowance etc
Authentication, is their password correct
alan
--
This smartphone has free WiFi worldwide with eduroam, now
Hi,
And there is a full freeradius -X command output:
yep :
[pap] Configured MD5 password has incorrect length
did you read the txt that Alan already mentioned?
I'd personally choose cleartext-password with {md5} at the beginning of the
value with auto_header = yes in pap module..
alan
-
This just replaces some wrong port numbers in comments. This incorrect 689
port has also made it onto the wiki, FWIW.
diff --git a/raddb/mods-available/ldap b/raddb/mods-available/ldap
index c9520f4..218e69d 100644
--- a/raddb/mods-available/ldap
+++ b/raddb/mods-available/ldap
@@ -73,7 +73,7
Am 13.04.2012 18:48, schrieb Matthew Newton:
Hi,
On Fri, Apr 13, 2012 at 05:23:22PM +0200, Alan DeKok wrote:
Jan Weiher wrote:
I had some sparetime and was able to have a deeper look at it. What I
did is basically running freeradius -X and then hup'd it until it got
borked. Seems to me
Hi,
On Fri, Apr 13, 2012 at 02:36:17PM -0400, Brian Julin wrote:
This just replaces some wrong port numbers in comments. This
incorrect 689 port has also made it onto the wiki, FWIW.
That reminds me - the ldap module config (for both v2.1.x and
master) does not mention the port option, which
31 matches
Mail list logo
