Hi,
> I have configured freeradius to entertain EAP-TLS requests. And i am
> using the freeradius certificate (shipped with software). I got stuck
> at end, now i don't know how to send EAP-TLS request to server.
> I read man radeapclient, but it only support md5. Could you please
> tell me how co
Hi,
>I hope someone can point me in the right direction here. I am trying to
>build FR version 2.1.12 with the option "--with-experimental-modules" on
>Debian Linux Squeeze 2.6.32-5-amd64 because I need to build support for
>Wimax stuff. However I get the following compiling error
Hi,
> It compiles properly but when I run the daemon it can't find the freeradius
> libs.
>
> I get this at the end of compile:
> PATH="$PATH:/sbin" ldconfig -n /usr/local/lib
> --
> Libraries have been installed in:
>/usr/lo
That might be your /etc/ld.so.conf - see the man pages for ld.so and check
/usr/local/lib is there or in rpath (ldd radiusd)
Alternatively
./configure --prefix /usr
David Peterson wrote:
>It compiles properly but when I run the daemon it can't find the
>freeradius
>libs.
--
Sent from my mo
Hi,
I hope someone can point me in the right direction here. I am trying to
build FR version 2.1.12 with the option "--with-experimental-modules" on
Debian Linux Squeeze 2.6.32-5-amd64 because I need to build support for
Wimax stuff. However I get the following compiling error(s):
===
che
It compiles properly but when I run the daemon it can't find the freeradius
libs.
I get this at the end of compile:
PATH="$PATH:/sbin" ldconfig -n /usr/local/lib
--
Libraries have been installed in:
/usr/local/lib
If you ever
Srinu Bandari wrote:
> EAP key identifier must be sent as a part of Access-Accept message in EAP
> Key-Name AVP (Radius Attribute Type 102).
OK. Please try the v2.x.x branch from git. Read
raddb/sites-available/default. Look for "EAP-Key-Name".
The key is generated by default. For securi
On 14/02/13 16:57, David Peterson wrote:
It looks like it was my flawed git skills hard at work.
So now I am fighting libtool. What is the best method for a successful
compile and install for Ubuntu where the libtool gets in your way.
Take off and nuke the entire site from orbit. It's the on
It looks like it was my flawed git skills hard at work.
So now I am fighting libtool. What is the best method for a successful
compile and install for Ubuntu where the libtool gets in your way.
I am stuck here if I use --with-system-libtool option
.libs/modules.o: In function `setup_modules':
David Peterson wrote:
> What might I be missing when I get this error: (Version 2.x.x)
>
> Making all in rlm_eap_pwd...
>
> make[9]: Entering directory
> `/usr/src/freeradius-server/src/modules/rlm_eap/types/rlm_eap_pwd'
>
> make[9]: *** No rule to make target `rlm_eap_pwd.h', needed by
> `rlm_ea
Hi,
>What might I be missing when I get this error: (Version 2.x.x)
>
>Making all in rlm_eap_pwd...
>
>make[9]: Entering directory
>`/usr/src/freeradius-server/src/modules/rlm_eap/types/rlm_eap_pwd'
>
>make[9]: *** No rule to make target `rlm_eap_pwd.h', needed by
>`rlm_
ahmed.sa...@stfc.ac.uk wrote:
> Anybody got any idea about the following?
Read the rlm_passwd documentation. It seems you haven't done that.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Anybody got any idea about the following?
Regards,
Ahmed.
-Original Message-
From: Sajid, Ahmed (STFC,RAL,SC)
Sent: 13 February 2013 15:01
To: FreeRadius users mailing list
Subject: RE: User mapping
Hi Alan,
Thanks for the quick reply.
So, pam module can't be used.
How can I set it
What might I be missing when I get this error: (Version 2.x.x)
Making all in rlm_eap_pwd...
make[9]: Entering directory
`/usr/src/freeradius-server/src/modules/rlm_eap/types/rlm_eap_pwd'
make[9]: *** No rule to make target `rlm_eap_pwd.h', needed by
`rlm_eap_pwd.c'. Stop.
-
List info/sub
Phil Mayers wrote:
> Does anyone know if there's known-good test data we can compare against,
> or a client/application that validates it? Does eapol_test
> implement/check it?
It doesn't seem to.
If someone has a packet trace from ACS, that should be enough.
Alan DeKok.
-
List info/subscr
On 14/02/13 14:01, Alan DeKok wrote:
Srinu Bandari wrote:
EAP key identifier must be sent as a part of Access-Accept message in EAP
Key-Name AVP (Radius Attribute Type 102).
Sure. But it's been hard to find out what is put *into* it. That
link has been missing.
This what Cisco Document
Srinu Bandari wrote:
> EAP key identifier must be sent as a part of Access-Accept message in EAP
> Key-Name AVP (Radius Attribute Type 102).
Sure. But it's been hard to find out what is put *into* it. That
link has been missing.
> This what Cisco Documentation states:
>
> "The switch has no
On 02/14/2013 08:26 AM, David Peterson wrote:
Are we still using git fetch origin v2.1.x:v2.1.x to get v2.2?
$ git branch -r
origin/HEAD -> origin/master
origin/master
origin/v1.1.x
origin/v2.1.x-apple
origin/v2.x.x
According to the above there is no v2.1.x branch. BTW, git remote is
On 14/02/13 13:26, David Peterson wrote:
Are we still using git fetch origin v2.1.x:v2.1.x to get v2.2?
No. v2.x.x is the branch name now.
git clone ...
git checkout v2.x.x
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 14/02/13 13:13, David Peterson wrote:
I am trying to design a system with full redundancy. I know I can use
FreeRadius proxy and/or multiple front ends with a MySQL master-master
for the data. For IP redundancy I can install heartbeat so all of that
is fine. My biggest unknown is DHCP. How
Are we still using git fetch origin v2.1.x:v2.1.x to get v2.2?
David
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I am trying to design a system with full redundancy. I know I can use
FreeRadius proxy and/or multiple front ends with a MySQL master-master for
the data. For IP redundancy I can install heartbeat so all of that is fine.
My biggest unknown is DHCP. How does the new FreeRadius DHCP server store
l
On Thu, 2013-02-07 at 23:51 -0500, Norman Zhang wrote:
> Hi,
>
> Using freeradius2-2.1.12. I need to setup read-write access for both
> Cisco NX-OS and IOS devices. I did the following,
>
> DEFAULT Group == operator-rw, Auth-Type = System
> Service-Type = NAS-Prompt-User,
> cisco
> customized params, and this is what HG are for. But how to Reject
> the user, if it has no associated HG?
Ok I found searching more that I can achieve this by adding:
if (Huntgroup-Name == ''){
reject
}
--
Lorenzo Milesi - lorenzo.mil...@yetopen.it
GPG/PGP Key-Id: 0xE704E230 - http://ke
Hi.
I was wondering, is it possible to replace the NAS-Identifier features by
playing with Huntgroups?
The idea is to have one user which can access in several NAS with customized
params, and this is what HG are for. But how to Reject the user, if it has no
associated HG?
I'm having some trou
25 matches
Mail list logo
