Guys,
Having a problem with CHAP and freeradius (PAP works ok, and I'm using
clear text passwords, I have this in the check table "Cleartext-Password :=
password").
I get this in the debug
[chap] login attempt by "xx" with CHAP password
[chap] Using clear text password "passwo
Hi,
how does freeradius calculate duration time? My NAS sends start and stop
packet. In mysql table I can see accstarttime and accstoptime. Is the
duration time automaticly created from start time and stop time or
should NAS also send duration time?
In other words is it possbile that freerad
Hi,
On Wed, Jun 5, 2013 at 7:43 AM, Miha wrote:
> Hi,
>
> how does freeradius calculate duration time?
MySQL query grabs the information from "radacct"
i.e.
sqlcounter forevertimecounter {
counter-name = "Max-All-Session-Time"
check-name = "Max-All-Session"
On 06/05/2013 04:45 AM, Kranthi K wrote:
Hi All,
I am Newbie to free radius. I installed freeradius version 2.2.0. i want
to configure the EAP-SIM Authentication. Can anyone tell me the steps
how to implement it.
What's with the sudden interest in EAP-SIM? Is there a school project
running s
On Wed, Jun 5, 2013 at 2:43 PM, Miha wrote:
> Hi,
>
> how does freeradius calculate duration time? My NAS sends start and stop
> packet. In mysql table I can see accstarttime and accstoptime. Is the
> duration time automaticly created from start time and stop time or should
> NAS also send duratio
> Am Dienstag, 4. Juni 2013, 10:45:01 schrieb Russell Mike:
>> Hi List
>>
>> After googling for few days still not so much clear. Therefore, i have
>> decided to implement three *"A"* in three different steps. For now, i
>> only
>> want to use Authorize function of FR. i do not want authentication
> Am Dienstag, 4. Juni 2013, 10:45:01 schrieb Russell Mike:
>> Hi List
>>
>> After googling for few days still not so much clear. Therefore, i have
>> decided to implement three *"A"* in three different steps. For now, i
>> only
>> want to use Authorize function of FR. i do not want authenticatio
Marco Marzetti wrote:
> mysql> SELECT * FROM radgroupcheck;
> ++---+++--+
> | id | groupname | attribute | op | value|
> ++---+++--+
> | 1 | TECNICI | Huntgroup-Name | == | APPARATI |
> ++---+---
On 06/05/2013 05:29 AM, Prabhpal S. Mavi wrote:
Am Dienstag, 4. Juni 2013, 10:45:01 schrieb Russell Mike:
Hi List
After googling for few days still not so much clear. Therefore, i have
decided to implement three *"A"* in three different steps. For now, i
only
want to use Authorize function of F
Strong, Mark wrote:
> I get this in the debug
>
> [chap] login attempt by "xx" with CHAP password
> [chap] Using clear text password "password" for user xx
> authentication.
> [chap] Password check failed
(a) the "clear text" password is wrong
(b) the client isn't doing CHAP
John Dennis wrote:
> You're both right, now shake hands and make up :-) The problem with the
> term authorization in radius is used in a non-standard way that leads to
> confusion. The normal use of the term authorization (authz) indicates
> what a principal is permitted to do and a principal must
Hi!
I need to send devices with expired or revoked certificates to a remediation
vlan, but my reject vlan is for guest access. Both checks happen at the end of
the EAP process where the switch expects a reject or accept packet. I need now
to change the reject for the expired to a accept. Settin
On 05/06/13 15:23, PENZ Robert wrote:
Hi!
I need to send devices with expired or revoked certificates to a
remediation vlan, but my reject vlan is for guest access. Both checks
happen at the end of the EAP process where the switch expects a
reject or accept packet. I need now to change the rejec
Dear Alan DeKok & John Dennis
Thanks for your input, words and clarification. Explanation was very good.
Moreover, good to have people like you on the list.
Regards
Prabhpal Singh
On Wed, Jun 5, 2013 at 1:34 PM, Alan DeKok wrote:
> John Dennis wrote:
> > You're both right, now shake hands and m
Il giorno mer, 05/06/2013 alle 09.14 -0400, Alan DeKok ha scritto:
> Marco Marzetti wrote:
> > mysql> SELECT * FROM radgroupcheck;
> > ++---+++--+
> > | id | groupname | attribute | op | value|
> > ++---+++--+
Hi John & Alan, Kindly clarify
Does this means, it is posible to use only authorize function of FR and
process all authentication requests with following virtual server?
1.
server accept_all_requests {
authorize {
update control {
Auth-Ty
Russell Mike wrote:
> Hi John & Alan, Kindly clarify
This isn't a private list. Messages should NOT be addressed to
individual people.
Just reply to a message. It's simpler, and more polite.
> Does this means, it is posible to use only authorize function of FR and
> process all authenticat
On Wed, Jun 5, 2013 at 4:17 PM, Alan DeKok wrote:
> Russell Mike wrote:
> > Hi John & Alan, Kindly clarify
>
> This isn't a private list. Messages should NOT be addressed to
> individual people.
>
Apologies Everyone. Well noted for future
>
> Just reply to a message. It's simpler, and more
Marco Marzetti wrote:
> Also, if i understand it correctly, it makes sense to me since "==" is a
> filtering
> operator while ":=" add the attribute to the list for further checking
>
> Anyway, i've updated the record above and putting ":=" and it doesn't work.
It depends what you want to do.
Hi Phil,
Thanks for your reply, It will be greatful if you show some way to
implement the EAP-SIM.
Thanks
On Wed, Jun 5, 2013 at 6:15 PM, Phil Mayers wrote:
> On 06/05/2013 04:45 AM, Kranthi K wrote:
>
>> Hi All,
>>
>> I am Newbie to free radius. I installed freeradius version 2.2.0. i want
>
20 matches
Mail list logo
