be the best scheme to use for setting this up? Is a
freeradius login/pass scheme with WEP key encryption the best that I can
manage, or are there other options?
Thanks.
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Tue, 2007-05-01 at 21:56 +0100, [EMAIL PROTECTED] wrote:
Check that it's not picking up the Auth-Type System from the users file.
Comment it out there and it should work.
That was the problem. Thanks.
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM: ihtruelsen
MSN: [EMAIL PROTECTED
by id;
++--+---+++
| id | UserName | Attribute | Value | op |
++--+---+++
| 1 | ian | password | tester | == |
++--+---+++
1 row in set (0.00 sec)
Any thoughts on what I missed here?
Ian Truelsen
s
that can be used with this type of adaptor?
most secure would be to use VPN for data transit. ie the best
layer 2 you'd get is WEP - which isnt worth anything. so make
sure that the only way to pass the subnet gateway is via
VPN
Any decent howto on setting this up?
--
Ian Truelsen
s/v Sting
I have a client whose wifi adaptor (Linksys WUSB11) can only do wep key
encryption and I was wondering whether it would be possible to use
eap-tls or something similar given the restrictions. What is the most
secure system that can be used with this type of adaptor?
--
Ian Truelsen
s/v Sting
is supposed to be stored in radacct?
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM: ihtruelsen
MSN: [EMAIL PROTECTED]
Google Talk: [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Authentication is 1.3.6.1.5.5.7.3.1.
But I have no idea how to add it to the certificate, if you find out
please let me know :)
Check out this article:
http://www.linuxjournal.com/article/8095
It explains how to get the MS attributes into the certificates.
Hope this helps.
--
Ian Truelsen
s
Authentication method EAP-MSCHAP v2
Checking the Root CA the certificate was signed with .
In Configure
Automatically use my windows logo name and password unchecked.
I am using both client and server certificates, so the logon and
password is not currently needed -- for me.
--
Ian Truelsen
s/v
if you
need any more information.
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM: ihtruelsen
MSN: [EMAIL PROTECTED]
Google Talk: [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-wrt forums have been pretty silent on the issue.
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM: ihtruelsen
MSN: [EMAIL PROTECTED]
Google Talk: [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Sun, 2007-04-01 at 07:19 +0200, Alan DeKok wrote:
Ian Truelsen wrote:
I am trying to set up dd-wrt to use freeradius for authentication with
EAP-TLS, however, I have run into a problem: there doesn't seem to be an
option under the WPA encryption system for entering the freeradius
broad.
Thanks in advance.
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM: ihtruelsen
MSN: [EMAIL PROTECTED]
Google Talk: [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On Thu, 2007-01-04 at 05:14 -0800, Alan DeKok wrote:
Ian Truelsen wrote:
Thanks for the clarification. Now, I still have the problem that, if I
populate the users file with the same information that I have in my
radcheck table, I get a positive authentication on the user. Without
On 1/4/07, Alan DeKok [EMAIL PROTECTED] wrote:
Ian Truelsen wrote:
All I did with the users file was to duplicate the entry in the radcheck
table. So I have:
ian Auth-Type := Local, User-Password == test
1) Don't set Auth-Type by hand. It's not necessary.
2) Use := for User-Password
. Would the sql database not make the users file unnecessary?
The first entry in the radcheck table is me forgetting to add the null
as the first collumn.
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM: ihtruelsen
MSN: [EMAIL PROTECTED]
Google Talk: [EMAIL PROTECTED]
-
List info/subscribe
On Wed, 2007-01-03 at 17:01 -0800, Alan DeKok wrote:
Ian Truelsen wrote:
Okay, here is where I am unclear on the concept: If I need an entry in
the users file, as well as radcheck database,
You don't. The server is modular, which means any (or almost all)
modules are optional
| == | test |
++--+---++---+
2 rows in set (0.01 sec)
Sorry if I am being obtuse, but there is something that I am not quite
getting here.
Thanks for the help.
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM: ihtruelsen
MSN: [EMAIL PROTECTED]
Google Talk: [EMAIL
returns notfound for request 0
just leave sql in your auth section if you plan to do it tha way
Hernan Antolini
BTW, I just noticed that while there is a section in authorize for sql,
there is not one in authenticate. Is that correct?
--
Ian Truelsen
s/v Sting
Email: [EMAIL PROTECTED]
AIM
|
++--+---++---+
| 1 | Password | ==| te | |
| 2 | ian | Password | == | test |
++--+---++---+
2 rows in set (0.01 sec)
Any thoughts on why this is not working would be greatly appreciated.
--
Ian Truelsen
s/v Sting
Email: [EMAIL
19 matches
Mail list logo