Hi,
Thanks!
Is there a way that I can set log level in RADIUS to make it log like when in
debug mode? Coz I cannot trace exactly what causes the 'Invalid user' log in
RADIUS. I have already confirmed that for this case it is not the password. So
now, I'm left to look into other causes.
Hi,
Where do I put this piece of code? Can I do this invocation in the authorize
block? Or is it something I put in the radiusd.conf? And where do I put the
custom procedure itself? Is it in /etc/freeradius/modules?
Sorry about this. I'm confused about the placement. First time to add a custom
Hi,
How do i enable logging of user accept and deny logins in log file? I tried to
put sql_log in post-auth but didn't work.
thanks!
det
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I had tried to use the reply_log. It logs access or reject in log file but does
not include the username. How do I add the username info?
From: Det Det det.explo...@yahoo.com
To: FreeRadius mailing list freeradius-users@lists.freeradius.org
Sent: Thursday
hey thanks! that did it.
From: Arran Cudbard-Bell a.cudba...@freeradius.org
To: Det Det det.explo...@yahoo.com; FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Sent: Monday, October 24, 2011 6:09 PM
Subject: Re: Stop Logging in radpostauth
Hi,
How do I stop logging in radpostauth table? Is commenting out the query that
inserts to radpostauth a correct way of doing that?
thanks!
det
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
it mean
access-request = check attribute? Sorry if this is another wrong question. Just
want to clarify.
It is only used in
Access-Request packets.
thanks!
det
From: Alan DeKok al...@deployingradius.com
To: Det Det det.explo...@yahoo.com; FreeRadius users mailing
hey thanks! got it working using that configuration below. It also worked when
placed in instantiate block.
From: Arran Cudbard-Bell a.cudba...@freeradius.org
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Cc: Det Det det.explo
Hi there,
how to find out whether the attribute is a check/reply attribute?
thanks!
det
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
: Fajar A. Nugraha l...@fajar.net
To: Det Det det.explo...@yahoo.com; FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Sent: Friday, September 30, 2011 3:11 PM
Subject: Re: Using DB instead of radutmp for simultaneous-use tracking
On Fri, Sep 30, 2011 at 1:50 PM, Det Det det.explo
Hi,
How to make sqlippool accept redundant SQL as below?
sqlippool {
sql-instance-name = redundant_sql
ippool_table = radippool
...
}
radiusd.conf
...
redundant redundant_sql {
sql1
sql2
}
...
if I use sql-instance-name = sql1 or sql-instance-name = sql2,
Hi there,
In the accounting section, radutmp is used for tracking simultaneous-use. Is
there a way to use DB::radacct table instead to check for simultaneous-use?
thanks,
det
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
, Fajar A. Nugraha l...@fajar.net wrote:
On Thu, Sep 8, 2011 at 12:29 PM, Det Det det.explo...@yahoo.com wrote:
Hi,
Any idea where I can see list of new names for those RADIUS
attributes/values that's been obsoleted.
Should be share/dictionary.compat
Just want to confirm, for example,
Framed
Hi,
I have Activation attribute in radcheck table (which has a date VALUE) in old
RADIUS server. I don't find this attribute in FreeRADIUS. I get this error. any
idea?
Failed to create the pair: Invalid octet string Mar 09 2010 for attribute
name Activation
thanks
det
-
List
Hi,
For the sqlippool, http://wiki.freeradius.org/Rlm_sqlippool, which table should
the below control attribute be placed on? It says, it is not a reply attribute,
does it then go to radcheck/radgroupcheck table?
DEFAULT Pool-Name := main_pool
Fall-Through = Yes
thanks,
det
-
List
Hi,
I want to connect to RADIUS server using RADIUS client software, not through
NAS. Using RADIUS client software such as radperf will generate different port
numbers when connecting to the RADIUS server. How do I place client information
in NAS table such that I am able to specify IP and any
please disregard this email. I thought that the 'ports' field in 'nas' table
means the 'source' port the client will use to connect to the RADIUS server
when it actually means the port on the RADIUS server that the client will
connect to.
From: Det Det
list freeradius-users@lists.freeradius.org
Sent: Thursday, September 8, 2011 11:40 AM
Subject: Re: Specifying Any Port for RADIUS Client
On Thu, Sep 8, 2011 at 10:15 AM, Det Det det.explo...@yahoo.com wrote:
please disregard this email. I thought that the 'ports' field in 'nas' table
means
Hi,
Any idea where I can see list of new names for those RADIUS attributes/values
that's been obsoleted. Just want to confirm, for example, Framed-Filter-Id is
obsolete, is Filter-Id a replacement to that?
thanks!
det
-
List info/subscribe/unsubscribe? See
@lists.freeradius.org
Sent: Tuesday, September 6, 2011 1:28 PM
Subject: Re: Expiration Module Not Returning the Error Message
On Tue, Sep 6, 2011 at 11:41 AM, Det Det det.explo...@yahoo.com wrote:
Hi,
The expiration module works but it is not returning the error message.
Everytime I include the Expiration attribute
Hi,
This question maybe a bit off from RADIUS, but is there a way to limit NAS or
RADIUS to send only one access-request/access-accept in a single dial attempt?
i am connecting via PPPoE. I can see from RADIUS logs receiving multiple
access-request thus it is also giving multiple
Reply
On Tue, Sep 6, 2011 at 3:26 PM, Det Det det.explo...@yahoo.com wrote:
Hi,
This question maybe a bit off from RADIUS, but is there a way to limit NAS
or RADIUS to send only one access-request/access-accept in a single dial
attempt?
You're looking at things the wrong way.
It's like you're
Hi,
Just want to get inputs on how simultaneous-use can be checked per domain not
per user. That is limit mydomain.com to have simultaneous-use=x. radgroupcheck
will have something like
mydomain.com -- simultaneous-use -- x
thanks!
det
-
List info/subscribe/unsubscribe? See
Hi,
The expiration module works but it is not returning the error message.
Everytime I include the Expiration attribute and set date accordingly. The user
is denied login. The reason is because the account expired and NOT because
there is no known good password found as shown below. How to
Hey thanks! :)
From: Phil Mayers p.may...@imperial.ac.uk
To: freeradius-users@lists.freeradius.org
Sent: Thursday, September 1, 2011 10:04 PM
Subject: Re: Proxying Based on Criteria Other Than REALM
On 01/09/11 14:53, det.explo...@yahoo.com wrote:
Hi,
Is
Hi there,
I can't get FreeRADIUS to ignore error and continue processing when 1 DB is
down even when it can connect to the other DB. Below is my config.
# radiusd.conf
instantiate {
...
redundant redundant_sql {
sql1
sql2
handled
/freeradius/radiusd.conf[75]: Failed to parse sql2 entry.
/etc/freeradius/sites-enabled/default[1]: Errors parsing authorize section.
From: Det Det det.explo...@yahoo.com
To: FreeRadius mailing list freeradius-users@lists.freeradius.org
Sent: Monday, August 29, 2011 2:05
...@deployingradius.com
To: Det Det det.explo...@yahoo.com; FreeRadius users mailing list
freeradius-users@lists.freeradius.org
Sent: Monday, August 29, 2011 6:21 PM
Subject: Re: MySQL Fail Over Error When 1 DB is Down
Det Det wrote:
When I shutdown one of the DB, it generates an error. How do I tell
freeradius
: Re: RADIUS does not send reply for all groups the user is a member of
On Tue, Aug 23, 2011 at 12:23 PM, Det Det det.explo...@yahoo.com wrote:
Hi,
user1 is a member of group1 and group2. both group1 and group2 has replies
in radgroupreply table.
when freeradius query for radusergroup
- Forwarded Message -
From: Det Det det.explo...@yahoo.com
To: Fajar A. Nugraha l...@fajar.net
Sent: Tuesday, August 23, 2011 3:37 PM
Subject: Re: RADIUS does not send reply for all groups the user is a member of
Thanks Fajar! I just added the fall-through. I leave the priority
Hi,
I set PAP module as below. In my DB, user attribute is User-Password. Value of
User-Password is an MD5 or CRYPT password. Shouldn't auto-header=yes able to
detect the encryption scheme used in the password? What will the auto-header
setting for if I still have to specifically set
: Instantiating pap
pap {
encryption_scheme = auto
auto_header = yes
}
From: Arran Cudbard-Bell a.cudba...@freeradius.org
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Cc: Det Det det.explo...@yahoo.com
Sent: Monday, August 22, 2011
Hi,
user1 is a member of group1 and group2. both group1 and group2 has replies in
radgroupreply table.
when freeradius query for radusergroup, it will only get the first group the
user is a member of and will proceed to get the reply attributes for that group
as below.
query1: SELECT
hi,
i'm testing radius migration. i plan to do it by phase so it will be safer and
would have less impact in case something won't turn out right. users will be
grouped and thus will be migrated by group. i'm thinking what are available
methods/options to do this? i want to have the new radius
Thanks fajar! It worked with MD5-Password.
Is there a way to use User-Password attribute in MySQL and tell freeradius
somewhere what encryption algo it is using? coz dialup admin by default will
use User-Password when inserting this attribute in DB.
Thanks!
35 matches
Mail list logo