On 19/09/12 17:03, Stefano Zanmarchi wrote:
Hallo,
I've configured freeradius to authenticate users with PEAP, using
openldap to store NTLM hashes. It works fine.
Now I'd like to authorize only people who have the ldap attribute
"haDirittoEduroam" set to Y
(or the other way round: not to authoriz
Hallo,
I've configured freeradius to authenticate users with PEAP, using
openldap to store NTLM hashes. It works fine.
Now I'd like to authorize only people who have the ldap attribute
"haDirittoEduroam" set to Y
(or the other way round: not to authorize users with
"haDirittoEduroam" set to N).
Bel
On 19 Sep 2012, at 14:33, Tatiana DIBANDA wrote:
> Arran
> My first configuration:
> In the default and inner-tunnel file we had eap2 {ok = return} in the
> Authorize section,allowed eap2 in the authentication section and eap2 in the
> post-process.
> When we started my server: segmentatio
On Wed, Sep 19, 2012 at 6:47 PM, Gregg Douglas wrote:
> I did the upgrade and it works like a charm, thanks for the warning, I think
> I will look into upgrading to 2.2.0.
http://wiki.freeradius.org/building/Build#Building-SUSE-packages
Tested on opensuse 12.1 anyway, should work for SLE11 as we
On 19 Sep 2012, at 12:12, ramakrishna wrote:
> Hi
>
> I am using freeRADIUS 2.1.12 and i am facing one problem with the load of
> Requests coming from RADIUS client.
>
> I see the error "WARNING: Child is hung for request xxx in component
> module " in radius.log file. Please find the radi
Use your first config to test whether the patch worked (it should generate an
error and exit).
You now appear to be getting a different segfault
Please provide a backtrace for this segfault.
-Arran
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I did the upgrade and it works like a charm, thanks for the warning, I
think I will look into upgrading to 2.2.0.
Thanks to every for all the help!!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Gah, sorry everyone. This is my mobile device being oh-so-helpful and
sending empty emails when I fat-finger the menu.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Gregg Douglas wrote:
>>
>>
>>>
>> Damn, sorry, my fault.
>>
>> That should be:
>>
>> key = "%{tolower:%{User-Name}}"
>>
>> Sorry for the confusion
>>
>
>No problem, still does the same
>
>Info: [files] WARNING: Unknown module "tolower" in string expansion
>"%{tolower:%{User-Name}}"
>
>Wed Sep 1
On 19/09/12 12:19, Gregg Douglas wrote:
>Definitely upgrade :)
>http://download.opensuse.org/repositories/network:/aaa/SLE_11/
This repo contains version freeradius-server-2.1.12-5.1.x86_64, will
this include the "tolower" ?
Yes.
Be aware that there is a security issue with 2.1
>
>
>
> >Definitely upgrade :)
>
> >http://download.opensuse.org/repositories/network:/aaa/SLE_11/
>
> This repo contains version freeradius-server-2.1.12-5.1.x86_64, will this
include the "tolower" ?
> ... or, if for whatever reason you can't (or won't) upgrade, probably
> use something other t
Hi
I am using freeRADIUS 2.1.12 and i am facing one problem with the load of
Requests coming from RADIUS client.
I see the error "WARNING: Child is hung for request xxx in component
module " in radius.log file. Please find the radiusd.conf
configuration i am using. Please suggest how to get rid
so, for now i have solvd my problem:
add a new attribute in dictionary:
ATTRIBUTEActivate-Account-At3080integer
this will filled with the unix-timestamp for activating time. and here
are the "unlang" code:
authorize {
...
if("%l" && "%{check:Activate-Account-At}") {
On Wed, Sep 19, 2012 at 5:32 PM, Gregg Douglas wrote:
> Hi,
>
> Freeradius version: freeradius-server-2.1.1-7.10.1
> OS: SLES11sp2 + Post SP2 Patches
>
> I did not compile FreeRadius I used the default OS supplied rpms.
Definitely upgrade :)
http://download.opensuse.org/repositories/network:/aaa
Hi,
Freeradius version: freeradius-server-2.1.1-7.10.1
OS: SLES11sp2 + Post SP2 Patches
I did not compile FreeRadius I used the default OS supplied rpms.
Gregg
On Wed, Sep 19, 2012 at 12:18 PM, alan buxey wrote:
> Hi,
>
> what version are you running? 2.1.12 (or ideally 2.2.0 ?)
>
> alan
> -
On 19 Sep 2012, at 00:20, Kriston wrote:
> On Tue, September 18, 2012 17:34, Arran Cudbard-Bell wrote:
>>
>> On 18 Sep 2012, at 22:22, "Kriston" wrote:
>>
>>> I have users who log in as "usern...@example.com" and just as "username".
>>> How do I append @example.com only to those users who don
On Wed, Sep 19, 2012 at 4:57 PM, Gregg Douglas wrote:
>>
>> >>files {
>> >> key = "%{lower:%{User-Name}}"
>>
>> >> Wed Sep 19 11:18:59 2012 : Info: [files] WARNING: Unknown module
>> >> "lower" in
>> >> string expansion "%{lower:%{User-Name}}"
>>
>> >Peeking at raddb/policy.conf, it seems
Hi,
what version are you running? 2.1.12 (or ideally 2.2.0 ?)
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
>>
> Damn, sorry, my fault.
>
> That should be:
>
> key = "%{tolower:%{User-Name}}"
>
> Sorry for the confusion
>
No problem, still does the same
Info: [files] WARNING: Unknown module "tolower" in string expansion
"%{tolower:%{User-Name}}"
Wed Sep 19 11:59:48 2012 : Info: [files]ex
>
>
> >>files {
> >> key = "%{lower:%{User-Name}}"
>
> >> Wed Sep 19 11:18:59 2012 : Info: [files] WARNING: Unknown module
> "lower" in
> >> string expansion "%{lower:%{User-Name}}"
>
> >Peeking at raddb/policy.conf, it seems you should use "tolower"
> >instead of "lower" instead.
>
> Still
On 19 Sep 2012, at 08:50, Franks Andy (RLZ) IT Systems Engineer
wrote:
> Thanks Arran,
> I'll give it a try. I did find something to do with %1 / %I (can't
> remember which)
%1expands to the first regexp match, %l should expand to a UNIX timestamp.
You'll be looking for something like:
if (
On Wed, Sep 19, 2012 at 9:38 AM, Fajar A. Nugraha wrote:
> On Wed, Sep 19, 2012 at 2:24 PM, Gregg Douglas wrote:
> > Hi,
> >
> > If I use the suggestion as follows in the my files file, the users file
> is
> > still case sensitive:
> >
> > myfiles {
> > key = "%{lower:%{User-Name
On 09/19/2012 10:33 AM, Gregg Douglas wrote:
Wed Sep 19 11:18:59 2012 : Info: [files] WARNING: Unknown module
"lower" in string expansion "%{lower:%{User-Name}}"
Damn, sorry, my fault.
That should be:
key = "%{tolower:%{User-Name}}"
Sorry for the confusion.
-
List info/subscribe/u
On Wed, Sep 19, 2012 at 4:33 PM, Gregg Douglas wrote:
> files {
> key = "%{lower:%{User-Name}}"
> Wed Sep 19 11:18:59 2012 : Info: [files] WARNING: Unknown module "lower" in
> string expansion "%{lower:%{User-Name}}"
Peeking at raddb/policy.conf, it seems you should use "tolower"
instea
On 09/18/2012 10:22 PM, Kriston wrote:
I have users who log in as "usern...@example.com" and just as "username".
How do I append @example.com only to those users who don't have @example.com
already? I have a fairly generic FreeRADIUS 2.1.10 installation that
connects to a MySQL server.
I've tri
On Wed, Sep 19, 2012 at 9:42 AM, Alan DeKok wrote:
> Gregg Douglas wrote:
> > Hi,
> >
> > If I use the suggestion as follows in the my files file, the users file
> > is still case sensitive:
> >
> > myfiles {
>
> That is not quite correct.
>
> You can edit the default "files" configuration
Thanks Arran,
I'll give it a try. I did find something to do with %1 / %I (can't
remember which) and dividing by "epoch" so may be able to use that too?
If in doubt give it a go eh?
Thanks
Andy
-Original Message-
From:
freeradius-users-bounces+andy.franks=sath.nhs...@lists.freeradius.org
> Yes, in post-auth.
>
> post-auth {
>update reply {
> ...
>}
> }
Thank you, that's an easy way to set it globally for all users - or I can do
a database dip there if required.
> Generally people will do this kind of thing in the inner-tunnel virtual
> server and set "use_tunneled_
Gregg Douglas wrote:
> Hi,
>
> If I use the suggestion as follows in the my files file, the users file
> is still case sensitive:
>
> myfiles {
That is not quite correct.
You can edit the default "files" configuration. It has a
commented-out example of using the key. Uncomment it, and
On Wed, Sep 19, 2012 at 2:24 PM, Gregg Douglas wrote:
> Hi,
>
> If I use the suggestion as follows in the my files file, the users file is
> still case sensitive:
>
> myfiles {
> key = "%{lower:%{User-Name}}"
> }
>
>
> In the users file the username is all lower case - piet
Hi,
If I use the suggestion as follows in the my files file, the users file is
still case sensitive:
myfiles {
key = "%{lower:%{User-Name}}"
}
In the users file the username is all lower case - piet
piet LDAP-Group=="radius", Auth-Type:=Accept
Reply-Message="You
Kriston wrote:
> Thanks, Steve, I think I'm really close and I appreciate your suggestion as
> to why the variable substitution isn't working the way I thought it would.
Those suggestions are wrong, unfortunately. Randomly experimenting
with configurations is a guaranteed way to go nowhere.
32 matches
Mail list logo
