2012/06/04 15:52:41:686525 :rlm_eap_tls: <<< TLS 1.0
Alert [length 0002], fatal unknown_ca
This means WiMAX supplicant sends TLS Alert message. This is because
supplicant do not trust CA that have issued AAA server certificate.
CA certificate of the CA that have issued AAA server certific
Sending Access-Accept of id 188 to 172.16.3.225 port 1814
User-Name = "markus"
MS-MPPE-Recv-Key =
0x19bfda63662c5eda0d0cfd34c617f262ae8611b10aab33c89598e9478000e667
MS-MPPE-Send-Key =
0xa653fb00f50ffb9b86c15b777bc4d6807912c23511749aef1d030b87cb3b0619
EAP-Message = 0x03e4
Hi list,
I have a fairly large user base doing WPA2-enterprise from various
OS'es and smartphones, our FreeRADIUS is running v.2.1.12 and is
authenticating via LDAP and things are running pretty well, only snag
I have currently with this is when people change their password. I
realize this has be
Hi,
I have freeradius server ( ver. 2.1.10 ) compiled
with openssl-0.9.8l. Now by method given in raddb/certs I created the
certificates on a machine having OpenSSL 1.0.0e.
After loading ca.pem,server.pem & private.pem ( which is copy of server.pem
) certificates under raddb/certs and then
On Mon, Oct 22, 2012 at 9:32 PM, Prateek Kumar wrote:
> Hi,
>I have freeradius server ( ver. 2.1.10 ) compiled with
> openssl-0.9.8l. Now by method given in raddb/certs I created the
> certificates on a machine having OpenSSL 1.0.0e.
>
> After loading ca.pem,server.pem & private.pem ( whi
Hi,
> I have freeradius server ( ver. 2.1.10 ) compiled
>with openssl-0.9.8l. Now by method given in raddb/certs I created the
>certificates on a machine having OpenSSL 1.0.0e.
new OpenSSL and old OpenSSL may have issues with things like this - depending
on the settings of that
So I have to compile freeradius with new openssl version else use old
openssl for creating certificates. Also will I have to change random & dh
file every time I change the server.pem & ca.pem. Thanks for your inputs.
Regards,
Prateek
-
List info/subscribe/unsubscribe? See http://www.freeradius.o
On 10/22/2012 10:32 AM, Prateek Kumar wrote:
rlm_eap: SSL error error:06074079:digital envelope
routines:EVP_PBE_CipherInit:unknown pbe algorithm
rlm_eap_tls: Error reading private key file /etc/raddb/certs/private.pem
Just in case it helps to understand what the error message is attempting
t
Hi Guys,
thank you for your answers. I killed the attribute user-name on my global
radius server in post-proxy and post-auth sections by unlang.
Now I have got the full username on my server, because it is not overwritten by
other radius communicatons.
The realm is not in the radacct table of
On Mon, Oct 22, 2012 at 11:13 PM, wrote:
> Hi Guys,
>
> thank you for your answers. I killed the attribute user-name on my global
> radius server in post-proxy and post-auth sections by unlang.
>
> Now I have got the full username on my server, because it is not overwritten
> by other radius co
You need to run radiusd with the -X flag:
radiusd -X
Aidan.
On 23/10/2012, at 7:55 AM, George Innocent wrote:
> Hello;
>
> I have been running the radius and can only see the radius.log files; what is
> the directory for debug logs.
>
>
>
> --
> -
> List info/subscribe/unsubscribe? See ht
On 10/22/2012 05:55 PM, George Innocent wrote:
Hello;
I have been running the radius and can only see the radius.log files;
what is the directory for debug logs.
Debugging info is only written to stdout, never to a log. If you read
the documentation you would know that without having to bothe
Thanks Alan,
So basically the correct way would be create a vendor dict, and there
can I use any number or I need to follow some guideline?
2012/10/20 Alan DeKok :
> Tiago wrote:
>> I think its not my case, because I'll need to get these attributes on
>> my NAS (rp-pppoe server) and with it set
essing the accounting section of
radiusd.confmodcall: entering group accounting for request 2radius_xlat:
'/usr/local/var/log/radius/radacct/192.168.22.79/detail-20121022:18'rlm_detail:
/usr/local/var/log/radius/radacct/%{Client-IP-Address}/detail-%Y%m%d:%H expands
to /usr/local/
I've read where radclient can be used to send a change-of-authorization message
(COA) from the server to a NAS to change the bandwidth limit but I have not
been able to find an example of this.
Does any have an example of radclient sending a coa message to change the
bandwidth limit?
-
List in
15 matches
Mail list logo
