Hello,
I try to log users if they connect to radius, is it possible to track
that without all other informations from debug mode?
So best would be I only see that: [TIME]: foobar logged in
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 30.11.2011 15:53, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> in my enviroment I got three AP's runnning, all with the same essid,
>> after a while the connection seems lost
> WHAT connection?
>
> If it's the connection between the AP and the PC, this
Hi,
in my enviroment I got three AP's runnning, all with the same essid,
after a while the connection seems lost and a reconnection starts to
another AP and then I get the resumption error but I have no idea why I
lost the connection. No Errors in radius debug and a good reception is
given.
The re
Am 27.11.2011 10:17, schrieb Phil Mayers:
> On 11/27/2011 12:51 AM, Mr Dash Four wrote:
>>
>>> No, the shared secret is not transmitted over the wire.
>>> For additinal information see RFC2865, §2:
>>>
>>> "When a password is present, it is hidden using a method based on the
>>> RSA Message Digest
Am 26.11.2011 22:04, schrieb Mr Dash Four:
> I ma trying to set up freeRADIUS server implementing (wireless) user
> authentication (running wpa_supplicant) via AP (running hostapd).
>
> After reading various howto's and documentation as well as looking at
> numerous sources on the Internet, I can't
Am 24.11.2011 16:33, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> for example how does exactly auth. works or the radius protocol works
> We don't document RADIUS. See the RFCs for that.
>
> As for how the server works, see the doc directory. There are a lot
> of
Am 24.11.2011 16:04, schrieb Alan Buxey:
> Hi,
>> Hi,
>>
>> are there any and I don't see them, besides man pages/config files?
> what is it that you are after? what do you define by 'technical' ?
>
> alan
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
for
Hi,
are there any and I don't see them, besides man pages/config files?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 20.11.2011 13:05, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> thats what I tried, but I get no info from the other client, only if I
>> them ping each other. Encryption is wpa+aes and what I should see if it
>> is encrypted? tls infos?
> This is a network connectiv
Hi,
I'm a little bit confused, I configure radius with self signed cert,
peap+mschap, so if I tried to connect with an android or apple device I
get the question if I want to accept the server cert, thats ok, but with
windows or linux I get the error that there is no cert, but it still
works, why
Am 20.11.2011 12:08, schrieb Alan Buxey:
> Hi,
>
>> is there any possibility to test if two machines with the same login can
>> sniff each others traffic?
> yes you can test that. though depending on what wireless configuration you
> have
> and method of encryption you might not get what you think
Hi,
is there any possibility to test if two machines with the same login can
sniff each others traffic?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 19.11.2011 19:37, schrieb Andreas Rudat:
> realy strange the machine where ubuntu AND xp is running both failes and
> windows is saying the zertificate is invalid/expired?? both are using
> the same one!
>
>
> Am 19.11.2011 19:17, schrieb Andreas Rudat:
>> Hi,
>>
realy strange the machine where ubuntu AND xp is running both failes and
windows is saying the zertificate is invalid/expired?? both are using
the same one!
Am 19.11.2011 19:17, schrieb Andreas Rudat:
> Hi,
> I get the error from time to time, I use one self signed cert for alle
> cl
Hi,
I get the error from time to time, I use one self signed cert for alle
clients and some times I get this error from one ubuntu client, do you
have any idea?
so self+signed cert + mschapv2
TLS Alert read:fatal:bad certificate
Sat Nov 19 18:52:30 2011 : Error: TLS_accept:failed in SSLv3 rea
Hi,
perhaps it is the wrong mailing list but I try it :)
my samba pdc is running in a different subnet than my radius clients.
So, samba ist running x.x.15.x and my Wlan+Radius users using x.x.16.x
I use wins instead of dns. I joined with my client the domain
successfully, but if I try to login I
Hi Alan,
much thanks for that info!
Andreas
Am 18.11.2011 23:59, schrieb Alan Buxey:
> Hi,
>> Hi,
>>
>> hope anyone knows that, if I connect successfully with an xp client, I
>> have never again to put in my login data, so windows has to save my
>> login stuff anywhere but where? I would like to
Hi,
hope anyone knows that, if I connect successfully with an xp client, I
have never again to put in my login data, so windows has to save my
login stuff anywhere but where? I would like to delete my login data.
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/lis
Am 12.11.2011 23:00, schrieb Sven Hartge:
> Sven Hartge wrote:
>> Andreas Rudat wrote:
>>> Am 11.11.2011 03:56, schrieb Fajar A. Nugraha:
>>>> On Fri, Nov 11, 2011 at 8:29 AM, Gary Gatten wrote:
>>>>> I agree with Jake, in that I *think* it would b
Am 11.11.2011 03:56, schrieb Fajar A. Nugraha:
> On Fri, Nov 11, 2011 at 8:29 AM, Gary Gatten wrote:
>> I agree with Jake, in that I *think* it would be possible to have a plugin
>> or whatever interface with LDAP/AD in the same manner ntlm_auth does. I
>> don't think one *needs* a cleartext pa
ah, I see, if I disconnect from wlan, there is also no response from
radius no disconnect response.
Am 28.10.2011 15:49, schrieb Andreas Rudat:
> Am 28.10.2011 08:55, schrieb Fajar A. Nugraha:
>> On Fri, Oct 28, 2011 at 1:46 PM, Andreas Rudat wrote:
>>> sorry for that. I u
Am 28.10.2011 08:55, schrieb Fajar A. Nugraha:
> On Fri, Oct 28, 2011 at 1:46 PM, Andreas Rudat wrote:
>> sorry for that. I use 802.1x
> 802.1 wired? wireless?
>
>> and I'm wondering if I connect again
> What do you mean by "connect again"? unplug the
Am 28.10.2011 08:33, schrieb Fajar A. Nugraha:
> On Fri, Oct 28, 2011 at 1:18 PM, Andreas Rudat wrote:
>> Am 27.10.2011 22:57, schrieb Alan DeKok:
>>> Andreas Rudat wrote:
>>>> if I connect to my radius server, I don't need my password anymore, also
>>>
Am 27.10.2011 22:57, schrieb Alan DeKok:
> Andreas Rudat wrote:
>> if I connect to my radius server, I don't need my password anymore, also
>> if I restart radius or my workstation. But why?
> The PC caches the credentials.
>
> Alan DeKok.
> -
> List i
Hi,
if I connect to my radius server, I don't need my password anymore, also
if I restart radius or my workstation. But why?
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I edit the wrong site... sorry
Am 26.10.2011 15:48, schrieb Andreas Rudat:
> Hello,
>
> I work with this tutorial
> http://deployingradius.com/documents/configuration/active_directory.html
>
> all works fine, since I try to use ntlm_auth with radius directly
>
>
> I a
Hello,
I work with this tutorial
http://deployingradius.com/documents/configuration/active_directory.html
all works fine, since I try to use ntlm_auth with radius directly
I added a user tester / testen
users:
at the top DEFAULT Auth-Type := ntlm_auth
tester Cleartext-Password := "testen"
an
Am 23.10.2011 22:04, schrieb Phil Mayers:
> On 10/23/2011 06:03 PM, Andreas Rudat wrote:
>
>> another problem, I tried to test the connection with
>>
>> ntlm_auth --request-nt-key --domain=foo.bar --username=test
>> --password=test
>>
>> and get the me
Am 23.10.2011 17:48, schrieb Andreas Rudat:
> Am 23.10.2011 17:26, schrieb James J J Hooper:
>> On 23/10/2011 16:02, Andreas Rudat wrote:
>>> Hello,
>>>
>>> I understand it correctly, that I can't use peap + mschapv2 with
>>> ldap? Im realy con
Am 23.10.2011 17:26, schrieb James J J Hooper:
> On 23/10/2011 16:02, Andreas Rudat wrote:
>>
>> Hello,
>>
>> I understand it correctly, that I can't use peap + mschapv2 with
>> ldap? Im realy confused atm, what I can realy use, everytime I think
>&
Hello,
I understand it correctly, that I can't use peap + mschapv2 with ldap? Im realy
confused atm, what I can realy use, everytime I think its fine, I found another
unsecure thing :/
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 21.10.2011 18:28, schrieb Phil Mayers:
On 21/10/11 17:03, Andreas Rudat wrote:
Hi,
I'm using samba as pdc and ldap as user database. That all works fine.
Now I want to use the ldap database for user auth. for radius.
But when I'm looking here
http://deployingradius.com
Hi,
I'm using samba as pdc and ldap as user database. That all works fine.
Now I want to use the ldap database for user auth. for radius.
But when I'm looking here
http://deployingradius.com/documents/configuration/active_directory.html
and some other sources, I read everywhere the same. "Konf
Am 02.10.2011 20:54, schrieb yzy-oui-fi:
How would you manage with PFSENSE and Freeradius, without using captiv
portal for Lan Interface Auth??? Squid Proxy? VPN ?
That was my question :)
But its solved, I dont need lan.
Thanks
Le dimanche 02 octobre 2011 à 18:22 +0200, Andreas Rudat a
is not really a freeradius Issue
Thanks, but I dont want to use captive portal. It would be great if I
could tell radius that user can only connect if it used min. one Radius
Client, for example the AP.
Andreas
Le dimanche 02 octobre 2011 à 17:31 +0200, Andreas Rudat a écrit :
Hello,
I use
Hello,
I use radius for my wlan auth but I also want it for lan but how? I use
pfsense with radius 2.x It works fine with wlan but how I use it for
lan? If I connect via lan port on my AP I can reach everything without
radius auth.
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http:/
Am 25.09.2011 23:07, schrieb Alan DeKok:
Andreas Rudat wrote:
HI Alan,
yes that is what I want, but my ldap doesn't work atm ;-)
See the FAQ for "it doesn't work"
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
sorry,
HI Alan,
yes that is what I want, but my ldap doesn't work atm ;-)
But thanks.
Andreas
Am 25.09.2011 17:02, schrieb Alan DeKok:
Andreas Rudat wrote:
Thats also bad only nt-hash is not good, I tried to set up Ad but got
heavy problems with setting it up.
I have no idea why. See m
Am 25.09.2011 13:43, schrieb Fajar A. Nugraha:
Should work if you have enough knowledge about all three components.
The main "problem" would be that FR and samba uses different schema
for storing user passwords, but if you're familiar with triggers then
it should be possible. Just try it.
yeah th
Hi again,
erm it should work if I use mysql for samba accounts and using ntlm_auth
+ ms-chap on radius?
Am 25.09.2011 13:03, schrieb Andreas Rudat:
Hi,
is that combination possible?
Radius and Samba should use the same sql database for accounting. Are
there any problems or hints?
Thanks
Hi,
is that combination possible?
Radius and Samba should use the same sql database for accounting. Are
there any problems or hints?
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I want to use a ssh tunnel between radius and my user database on
another machine, anyone tried that? I think it should work port
forwarding on port 139 of samba or sql port?
Thanks
Andreas
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am 22.09.2011 03:23, schrieb 2394263740:
Hello,
Here is my freeradius enviroment.
The freeradius is used for WIFI users access authentication.
OS: Linux Enterprise Server 6.1
Radius: free radius server 2.1.11
Database: Mysql
The freeradius server was put on internet.
Sometime, the WIFI router nee
Am 21.09.2011 22:09, schrieb Alan DeKok:
Andreas Rudat wrote:
but is it usefull to use kerberos with two machines?
Most of the time: no.
I think it would be
a contradiction of kerberos and would it work without AD/ldap?
I have no idea what that means.
And could
I use a sql database
Hello,
I have two machines. Freeradius + Samba as PDC. I auth. wlan clients
against Radius and I want to store any user data on my Samba. The
client auth, will be realized with PEAP+MSCHAPv2. So the problem is the
bad thing with MSCHAPv2 and NTLMv1. So an other way could be kerberos
and I re
45 matches
Mail list logo