HI I am having problems authenticating client computers onto the wireless
network using a Cisco AP1252 via FreeRadius 2.1.10 on Ubuntu 12.04.2 serves
Setup:
I
have a Cisco AP1252 wireless Access Point connected to a Cisco ASA5510
on subnet X.X.5.ZThe access point ip address is X.X.5.101
T
On Thu, May 23, 2013 at 6:48 AM, Arran Cudbard-Bell
wrote:
>
> On 22 May 2013, at 18:11, Alan DeKok wrote:
>
>> Divyesh Raithatha wrote:
>>> Has someone successfully configured a high-availability MySQL cluster as
>>> a back-end for FreeRadius?
>>
>> Yes. There's even a white paper on it from M
Vincent Rusilowicz wrote:
> I have a Multi Tennant VPN gateway that I terminate multiple customers
> on. If I authenticate sessions to local database on router there is no
> segregation, so one customer can authenticate to another customers VPN
> (inserting the connection into that specific VRF) w
Scenario/Problem:
==
Upon successful authentication of a user, have to send default WiMAX attribute
(Initial Service Flow [ISF]) as part of "Access-Accept"; Only if specific WiMax
attributes (user specific service flows) are *not* defined for the user in
radreply;
Example:
On 22 May 2013, at 18:11, Alan DeKok wrote:
> Divyesh Raithatha wrote:
>> Has someone successfully configured a high-availability MySQL cluster as
>> a back-end for FreeRadius?
>
> Yes. There's even a white paper on it from MySQL.
>
>> Trying to find out what architecture was used to achieve
Divyesh Raithatha wrote:
> Has someone successfully configured a high-availability MySQL cluster as
> a back-end for FreeRadius?
Yes. There's even a white paper on it from MySQL.
> Trying to find out what architecture was used to achieve the cluster or
> high availabilty and how successful you
Mantas Šiurkus wrote:
> I uncommented two lines in freeradius/modules/ldap
That helps.
> [ldap] userPassword -> Password-With-Header == "pass123"
That's not the standard format for a password. However... if you're
doing to store plain-text passwords in LDAP, you can edit
raddb/ldap.attrma
Newbie question.
Has someone successfully configured a high-availability MySQL cluster as a
back-end for FreeRadius?
Trying to find out what architecture was used to achieve the cluster or
high availabilty and how successful you have been in a Production
Environment.
1. Master/Master Replicatio
Hi,
>Here is the entry from the clients.conf:
>
>client goya {
>
> ipv6addr= fe80::215:17ff:fed0:d278
>
># netmask = 128
>
> secret = test
>
> shortname = test-net
>
>}
what does this do...
client fe80::215
HI All,
I'm testing freeradius server version 2.2.0. Worked fine using IPv4.
When I switched to IPv6 I got the following error:
Ignoring request to authentication address :: port 1812 from unknown
client fe80::215:17ff:fed0:d278 port 41189
Here is the entry from the clients.conf:
client
On 2013.05.22 21:13, Alan DeKok wrote:
Mantas Šiurkus wrote:
I have configured FreeRADIUS to work with OpenLDAP. Created user in
OpenLDAP. Radtest from localhost works perfect. But I can't connect from
other devices (android phone, etc..). In logs I get:
[ldap] No default NMAS login sequence
[l
I figured out why my method did not work. Rookie mistake, in
raddb/sites-available/smoothtest I did not put my closing bracket "}' at the
end of the entire file, but at the end of the authorize section, sorry about
the confusion here.
I am still intrigued by your suggestion as it seems a lot
Hi,
> I have configured FreeRADIUS to work with OpenLDAP. Created user in
> OpenLDAP. Radtest from localhost works perfect. But I can't connect
> from other devices (android phone, etc..). In logs I get:
how is the password stored in the LDAP?
what authentication methods (eg EAP type) are you us
Mantas Šiurkus wrote:
> I have configured FreeRADIUS to work with OpenLDAP. Created user in
> OpenLDAP. Radtest from localhost works perfect. But I can't connect from
> other devices (android phone, etc..). In logs I get:
>
> [ldap] No default NMAS login sequence
> [ldap] looking for check items i
Hello,
I have configured FreeRADIUS to work with OpenLDAP. Created user in
OpenLDAP. Radtest from localhost works perfect. But I can't connect from
other devices (android phone, etc..). In logs I get:
[ldap] No default NMAS login sequence
[ldap] looking for check items in directory...
[ldap]
Thank you all for your replies. Our passwords are SALTED SHA1 encoded, so
the chart you so kindly directed me to states we would have to use EAP-GTC
with PAP. Seems I have quite a steep learning curve in a short amount of
time.
On Wed, May 22, 2013 at 12:13 AM, Phil Mayers wrote:
> On 05/22/201
I have a Multi Tennant VPN gateway that I terminate multiple customers on. If
I authenticate sessions to local database on router there is no segregation, so
one customer can authenticate to another customers VPN (inserting the
connection into that specific VRF) with any local username password
Vincent Rusilowicz wrote:
> I have reloaded the server and started from scratch again. I was able
> to authenticate with the default config, when adding client and user
> info. In my effort to try and convert each client to use a separate
> virtual so separate user files
You still haven't expl
Hi,
>I'm new to radius so I have some basic questions regarding the design and
>deployment of our freeradius server.
>We want to use freeradius for our BYOD deployment. We have the following:
>Ubuntu, OpenLDAP, Ruckus Zone Director and a Safe_Connect NAC. Our
>passwords are not
On 05/22/2013 12:58 AM, Tena Gore wrote:
I'd like to verify that I'm on the right track here with setting up the
protocols and types to use.
See:
http://deployingradius.com/documents/protocols/compatibility.html
We have to use PAP because of not having clear text passwords?
Well, you said
20 matches
Mail list logo