You need to rephrase your question. Do you want to:
a.) authenticate and authorize users accessing the console of your switch?
b.) authenticate a machine/user connected to a port of a switch (MAC
auth or 801.x)
c.) Linux boxes are machines... see "B"
d.) authenticate users accessing the boxes..
Just change the SQL schema of your table and adapt the SQL query in
sql.conf!
Best regards,
E:S
> -Original Message-
> From: freeradius-users-
> bounces+edvin.seferovic=kolp...@lists.freeradius.org
> [mailto:freeradius-users-
> bounces+edvin.seferovic=kolp...@lists.freeradius.org] On Beha
access_attr = "dialupAccess"
access_attr_used_for_allow = yes
or you can use the ldap attribute in the filter
&(something)(nsAccountLock=true)
Kind regards,
E:S
From: freeradius-users-bounces+edvin.seferovic=kolp...@lists.freeradius.org
[mailto:freeradius-users-bounces+edvin.seferovic
Might this be a PopTop issue? What platform are you using?
>Please note those two highlighted lines, the User-Name is "\000ila" while what
>I have used as the username is "ali". Also, NAS-IP-Address is somehow
>>encrypted.
>I searched a lot, but I could not find any similar problem. Any ideas?
>1. Using NTRadPING, should I get entries in my radacct table?
Are you sending accounting packets? If not - why should freeradius pass any
request to accounting parts.
>2. I have uncommented the sql_log, and all the detail log sections,
>and in the accounting section, and uncommented the sql in
Open files 2048 ??
Man LSOF ??
Regards,
E:S
From: freeradius-users-bounces+edvin.seferovic=kolp...@lists.freeradius.org
[mailto:freeradius-users-bounces+edvin.seferovic=kolp...@lists.freeradius.or
g] On Behalf Of Angel Rivera
Sent: Dienstag, 28. April 2009 00:51
To: freeradius-users@li
>Where can i set it up? I use rp-pppoe-server and ppp 2.4.4 on debian
That attribute should be replied by the server in access-accept RADIUS
packet. You can define it for each user in your user DB ( SQL, LDAP ) and
freeradius should be able to add it to the above mentioned packet.
Regards,
E:S
-
>how do i use the Acct-Input-Gigawords and Acct-Output-Gigawords Attributes
>with "FreeRADIUS Version 1.1.3" and "FreeRADIUS Version 1.0.2" and PPP
>2.4.4? I set up the fields in the mysql-table but they do not get filled
with data.
Those will be filled when the connection goes over the limit of t
can easilly scale upwards without having
to "teach" each new application how to use a DB. Freeradious also can
authenicate my wireless users when would also be great as for all I know,
half my bandwidth is being used by my neighbors.
-Jesse
On Fri, Sep 5, 2008 at 4:34 PM, Edvin Sefer
rlm_sqlcounter: Sent Reply-Item for user scott, Type=Session-Traffic-Limit,
value=12792
Which part dont you understand? Sqlcounter returned it. How does the log
part of the RADIUS Packet looks like? It should contain the
Session-Traffic-Limit if it can be found in the dictionary, right?
E
Hi,
excuse me for asking, but why dont you set up the AppServer in your DMZ ?
you could have ( what I call ) the T - structure
>< --- INTERNET --> GATEWAY ( server1 ) <---> LOCAL LAN
I
Nice one ! Should be really usefull !
Regards,
E:S
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Thibault Le Meur
Sent: Mittwoch, 19. März 2008 09:57
To: FreeRadius users mailing list
Subject: Re: freeradius+pptpd+mysq -> rc_avpair_new: unknown attri
Constructive answer like always is to analyze what you want to achieve with
freeradius. Rethink the configuration, read the documentation for you setup
needs and ask straight-forward question. You cannot just post the debug output
and hope that someone can understand what you actually need.
Try
Hello,
I am also curious about the answer on this question ! Are there any plans to
implement AgentX protocol into freeradius project?
Alan?
Kind regards,
E:S
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Amr el-Saeed
Sent: Dienstag, 05. Februar 2
It is probably turkish and since the guy had week knowledge of english
language, maybe this guy can help him !
Regards,
E:S
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Mike Puchol
Sent: Montag, 04. Februar 2008 10:49
To: FreeRadius users mailing li
What do you want to do? What do you want to achieve? What authentication are
you planning to use ?
Regards,
E:S
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of aziz yucelen
Sent: Montag, 04. Februar 2008 07:35
To: freeradius-users@lists.freeradius.org
Subject: Help me ple
Those are access-request and access-accept packets. No accounting request is
being received ! Your NAS isn't sending any accounting messages ?
Maybe you should disable all those modules that you don't need !
Regards,
E:S
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTE
>Is it possible to have a counter setup to achieve this?
Yes. It is.
>I'd like to know if someone has implemented realtime upload/download
limitations and what methods were used.
Realtime traffic accounting would have to be supported by your NAS. Any
kind of traffic/bandwidth limitati
What are you using as NAS ??
Regards,
E:S
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Keith Dovale
Sent: Dienstag, 15. Jänner 2008 17:41
To: 'FreeRadius users mailing list'
Subject: FW: Help Needed Please freeradius traffic limiting
Regards
Keith Dovale
There is pre2 too ;)
Regards,
E:S
> -Original Message-
> From: freeradius-users-
> [EMAIL PROTECTED]
> [mailto:freeradius-users-
> [EMAIL PROTECTED] On Behalf Of
> Norbert Wegener
> Sent: Samstag, 15. Dezember 2007 14:14
> To: FreeRadius users mailing list
> Subject: release date 2.0.0?
>
>Authorization via MAC Address (with no username required)
This is being done by your NAS ! Username is usually the MAC address.
> if the machine is using a valid IP Address, it is automatically allowed to
surf.
> (I know there is a Calling-Station-id attribute in radcheck)
IP address has to be
>I love GPL, but unfortunatelly there is too few software being developed
>for Radius...
That was my problem too !
>All I need is actually:
>- bandwith, time, volume limitation
>- username/password authentication
>- MAC authentication (but here is a trick - few MAC's for a one "billing"
>user)
>-
Let me develop one for you :) Features :)
Joke = OFF :) I would still like to hear the features for a billing manager
since I am developing one as a project at TU Vienna. I am willing to publish
some of the work under GPL.. just make it open source ( I hate law stuff !!
).
Regards,
E:S
-Orig
>> Well I do. Just got the CVS version. Tried hostname_lookups = off / no !
No
>> help. Only when the client is being entered in the clients.conf it is
>> recognised. In the other hand I get
>
> Ok... the issue isn't related to hostname lookups. The server keeps
> "known" clients internally, wh
> Likely just an issue in -pre2. I don't see it in CVS head.
Well I do. Just got the CVS version. Tried hostname_lookups = off / no ! No
help. Only when the client is being entered in the clients.conf it is
recognised. In the other hand I get
Mon Dec 10 08:58:52 2007 : Error: Trying to look up
Hi,
my freeradius does always a hostname lookup although hostname_lookup = no
AND if the client is not found in the clients.conf...
Mon Dec 10 05:29:43 2007 : Error: Trying to look up name of unknown client
172.19.10.160.
Mon Dec 10 05:29:43 2007 : Auth: Login OK: [00:09:34:14:ad:57] (from clien
> http://deployingradius.com/documents/protocols/compatibility.html
Read it !
> If you're doing "bind as user" in LDAP, read this:
Nope - just using LDAP as storage and accessing it with a privileged user
that has R/O access to the user profiles
> You don't do attribute mappings. See the "ldap
Hello list members,
before somebody yells "not again" - I just wish to ask if it is possible to
use MS-CHAP and CHAP authentication with a LDAP backend which contains
clear-text passwords as well as NT-Password ( used for MS-CHAP ) ??? Alan -
yes/no answer please :)
If positive - can somebody giv
ailto:[EMAIL PROTECTED]
Sent: Sonntag, 02. Dezember 2007 17:44
To: Edvin Seferovic
Subject: 64-bit issues
I don't know if the net-snmp libraries are 64-bit clean, either.
In any case, I've cleaned up src/main/smux.c. Please try downloading
&& building CVS head. Maybe that
>Edvin Seferovic wrote:
>> Hello,
>>
>> I have set up FreeRADIUS ( pre2 ) and activated SNMP ( rebuilt it with
>> --with-snmp ... ). The snmpd is also configured with the smuxpeer and the
>> correct password, but password seems to be rejected. I am using
snmp
Hello,
I have set up FreeRADIUS ( pre2 ) and activated SNMP ( rebuilt it with
--with-snmp ... ). The snmpd is also configured with the smuxpeer and the
correct password, but password seems to be rejected. I am using snmpd-5.3.1
on Debian Etch ( AMD64 ). Both passwords are the same. Does anyone hav
Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Alan DeKok
Sent: Samstag, 01. Dezember 2007 16:14
To: [EMAIL PROTECTED]; FreeRadius users mailing list
Subject: Re: Packets in Accounting ?
Edvin Seferovic wrote:
> what happened to the Acct-Input/Output-Packets i
Hello,
what happened to the Acct-Input/Output-Packets in Accounting. MySQL schema
doesn't have those fields anymore. Any special reason ?
Regards,
E:S
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Ive just installed freeradius-pre2 and configured it for MAC auth... when I
define my clients in the virtual host file like
server mac-auth {
client IP {
name...
}
...
}
I get following in the log Login OK: [00:e0:7d:75:ca:31] (from client
UNKNOWN-CLIENT port 14 cli 00-e0-7d-75-ca-3
Does this have anything to do with the authentication method and AD ? I
don't think so.
Ken are you using 64bit OS maybe? I had the same problem ( shared secret was
"incorrect" ) due a broken library on 64bit version of SuSE 9.1.
Regards,
E:S
-Original Message-
From: [EMAIL PROTECTED]
[m
How about DHCP with LDAP ?
>Kostas Kalevras wrote:
>> Slightly off-topic. Is anyone aware of a DHCP server with radius
>> support. Or even just with exec support? I 'd like to setup a DHPC that
>> will ask a radius server for IP instead of assigning it itself
>
> Nope. I spent a while looking
Use the latest stable version of freeradius. I am using MySQL5 for accouting
of 200 users and LDAP for 200 users and ca. 400 machines. No performance
issues although my machine is slower.
Be nice to your DB and add another 512MB of RAM to the machine ;)
Regards,
E:S
From: [EMAIL PROTECTE
Change it in the sqlcounter code !
First functionality shouldnt be a problem if you know your NAS !
Regards,
E:S
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Mathieu Lemaitre
Sent: Donnerstag, 22. März 2007 12:31
To: freeradius-users@lists.freerad
er-Name = "CSB\\test"
2007/3/9, Bruno Mardirossian <[EMAIL PROTECTED]>:
Thanks i will try this on Monday
The rest of my configuration for the user "test" in the users file seem to
be correct ?
2007/3/9, Edvin Seferovic < [EMAIL PROTECTED]>:
http:
http://wiki.freeradius.org/Operators
Hint += for Tunnel-Type !
Regards,
E:S
_
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Bruno Mardirossian
Sent: Freitag, 09. März 2007 03:49
To: freeradius-users@lists.freeradius.org
Subject: Freeradius and vlan
Attribute Mapping ( attr.map file ) - AFAIK !
Regards,
E:S
_
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of Ryan Kramer
Sent: Donnerstag, 08. März 2007 23:07
To: freeradius-users@lists.freeradius.org
Subject: 802.1x->radius VLAN assignment
Hello!
I am wo
Hi,
do you need rlm_perl to be build? If not - just remove the rlm_perl
directory from the modules directory and it should be fine. In other case -
I have no solution :-(
Regards,
E:S
_
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
g] On Behalf Of zhangxianshi
Sent: Die
rlm_sql_mysql: Mysql error 'Can't connect to local MySQL server through
socket '/var/lib/mysql/mysql.sock' (2)'
rlm_sql (sql): Failed to connect DB handle #0
rlm_sql (sql): Failed to connect to any SQL server.
your socket file is not in the place.. maybe you should use an IP in your
sql.conf inst
43 matches
Mail list logo