Hi,
I working on dynamic VLan assignement using FreeRadius, and I'm trying to
authenticate machines before the users.
When the machine starts, it uses its own credentials to access the network,
then the user logs on using the Windows XP GINA.
My problem is that the user, after that, is still ac
Phil Mayers wrote :
> There's no need to CC me. I read the list.
Sorry about that ^^*.
> There's a better way; use the mschap module expansion function, which
> will both strip and suffix for you:
>
> filter = "(uid=%{mschap:User-Name})"
Thank you very much, everything works fine works fine now.
T
> Phil Mayers wrote:
>>> Is the windows machine a domain member?
>> No it's not. Only the users are.
> ?
> When you sit at the login screen, and press ctrl+alt+del, are you
> logging in with a username and password which is checked against the
> domain controllers?
> If so, then the machine *is* j
Phil Mayers wrote:
> Is the windows machine a domain member?
No it's not. Only the users are.
> I think you are asking "is it possible for the client to do 802.1x with
> the username/password typed into the login box" and the answer is "yes".
That's exactly my question, thanks ;).
> 1. Using th
Hello,
I'm working on VLAN assignement with FreeRadius, with windows XP users.
The FreeRadius server is using openLdap, and works overs EAP-TTLS.
The goal of my work is for the users to be on different Vlans depending on
their status.
The radius part is working fine, since the switch sets the
Hi Ivan
Thanks for your response, my question why would it not work then just
work, no changes other than a restart between the two.
Its running freeradius 1.1.7
Mike
Mike
Ivan Kalik wrote:
rlm_realm: Looking up realm "xxx.com" for User-Name =
"[EMAIL PROTECTED]"
Hi Guys
I have an account which I want to auth locally on our 2 proxy radius
machine.
The problem is that sometimes the connection authenticates and other
times it does not, there are warning in the log's below so I'm sure I
have something wrong. But I can not work out what I should be doing
Has anyone tried to use free radius to authenticate users via
username/password to a Nortel wireless security switch 2300. I can get
802.1x working with a self-signed cert but want to be able to plain
username/password authentication.
Mike Wing
IT Manager
Anaheim Ducks
Honda Center
(714) 704
n the
radiusd.conf - is it deprecated or just not documented?
Seems that eDirectory needs an encrypted session before it'll present the
password in clear text. Makes sense.
I've also tried it with 'start_tls=yes' and port as 389, this also seems to
work. Which is the prefered me
On Tue, Mar 04, 2008 at 01:13:49PM +0100, Alan DeKok wrote:
> Mike Richardson wrote:
> > Any idea what it means? I get the same message when using openldap:
>
> Ask Novell. Unfortunately, no one else knows...
>
> > rlm_ldap: performing search in ou=users,ou=radius,
On Tue, Mar 04, 2008 at 11:48:41AM +0100, Alan DeKok wrote:
> Mike Richardson wrote:
> ...
> > rlm_ldap: performing search in c=uk, with filter (uid=raduser1)
> > rlm_ldap: No default NMAS login sequence
> > rlm_ldap: looking for check items in directory...
>
>
attempt to do the authentication? Does it do an
authenticated bind as the user or does it get the password variable and
compare it to something stored?
I've tried it against openldap with the same result but I've not spent much
time on the openldap config. I have to get this working wit
..
rlm_ldap: looking for reply items in directory...
rlm_ldap: user raduser1 authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
modcall[authorize]: module "ldap" returns ok for request 0
rlm_pap: WARNING! No "known good" password found for
n c=uk, with filter (uid=raduser1)
rlm_ldap: No default NMAS login sequence
rlm_ldap: looking for check items in directory...
rlm_ldap: looking for reply items in directory...
rlm_ldap: user raduser1 authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
modcall[authorize]: mod
On Tue, Mar 04, 2008 at 07:33:09AM +0100, Alan DeKok wrote:
> Mike Richardson wrote:
> > I've been making changes for 8 hours a day for over a week so it might
> > differ from the original.
>
> Which is a bit of a problem in and of itself.
I posted the configs in the
On Mon, Mar 03, 2008 at 05:23:44PM +0100, Alan DeKok wrote:
> Mike Richardson wrote:
> > I'd read that radtest didn't do EAP so I installed Xsupplicant and was using
> > that for tests. That seems to be a more realisic approach. If you think that
> > I can fix the pr
On Mon, Mar 03, 2008 at 04:46:36PM +0100, Alan DeKok wrote:
> Mike Richardson wrote:
> >> 2) Configure an test LDAP with "radtest" (clear-text password)
> >> for a *different* user
> >
> > Doesn't work. Similar sort of error though.
On Mon, Mar 03, 2008 at 03:44:29PM +0100, Alan DeKok wrote:
> Mike Richardson wrote:
> > My first post: I'm trying to do 802.1x between Xsupplicant (through a Cisco
> > switch) to Freeradius 1.1.7 using Novell eDirectory LDAP.
>
> 1) Configure and test TTLS with
n directory...
rlm_ldap: looking for reply items in directory...
rlm_ldap: user raduser1 authorized to use remote access
rlm_ldap: ldap_release_conn: Release Id: 0
modcall[authorize]: module "uni_ldap" returns ok for request 4
rlm_eap: No EAP-Message, not doing EAP
modcall[authorize]: mo
quot;
input_pairs = request
output_pairs = reply
}
ippool main_pool {
range-start = 192.168.1.1
range-stop = 192.168.3.254
netmask = 255.255.255.0
cache-size = 800
session-db = ${raddbdir}/db.ippool
ip-
setting I have incorrectly set ?
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
/freeradius-python/
[EMAIL PROTECTED] site-packages]#
Cheers
Mike
Alexander Demidoff wrote:
Hello all!
I want to use python possibilities to authorize users with
freeradius.
So, I compiled freeradius with options:
--with-experimental-modules \
--with-rlm_python
eyler yazarsan sana "dokumanlari oku"
demekle yetinicekler.
Hadi kolay gelsin.
I tried Rot13, but got nowhere. Any suggestions anyone?
Cheers,
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
)
Cheers
Thanks Peter, it's nice to see the contribution was meaningful :)
Cheers,
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
24435e386c6a8b6a1ad5735
Finished request 7
Going to the next request
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 4 ID 0 with timestamp 479f9369
Cleaning up request 5 ID 1 with timestamp 479f9369
Cleaning up request 6 ID 2 with timestamp 479f9369
Cleaning up request 7 ID 3 with timestamp 479f936
thanks a lot in advance for any help.
reg. Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
not written much C code in 15 years, its going to take me
awhile to work that one out.
Cheers
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
og
}
}
One issue I could not seem to find a way of removing an attribute unless
both the attribute and value match, this means that I have to list each
of the pool individually.
Cheers
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok wrote:
Mike O'Connor wrote:
It would seem as if the rlm_python does not provide the returned
attributes from the proxy, this happens in both a patched version of
1.1.7 and 2.0.0.
Yes. It appears to convert only the request attributes to a python tuple.
Fixi
Hi Guys
It would seem as if the rlm_python does not provide the returned
attributes from the proxy, this happens in both a patched version of
1.1.7 and 2.0.0.
Code:
def postproxy(params):
log.log('RLM_PYTHON: handling Post Proxy request...', log.VERBOSE)
pprint.pprint(params)
returnv
Hi Alan
I think I have worked it out, some how I got my self confused during my
testing.
The model was there but I think each time I did not have everything
configured.
Thanks as always for your time
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok wrote:
> Mike O'Connor wrote:
>
>> I wrote the attached patch for Freeradius 1.1.7 to enabled calling
>> python in the post-proxy, it compiles but will not run when the hook is
>> listed in post-proxy because Freeradius complains that there is no
list of allowed call per module ?
Once I know this I can fix this attached and supply as a tested patch.
Thanks
Mike
--- src/modules/rlm_python/rlm_python.c.orig2007-03-06 00:45:28.0
+1030
+++ src/modules/rlm_python/rlm_python.c 2007-10-10 15:36:51.0 +0930
@@ -54,6 +54,7
t, or I want
to add the cisco-avp pair when there is no static ip address.
>> Could Freeradius 2 do this ?
>>
>
> It would likely be a lot easier. Download 2.0, and read "man unlang".
>
I suspected that V2 would handle this better. I had read the unlang man
on a rule ?
Could Freeradius 2 do this ?
Thanks
Mike
--- Current Attrs File
.com
Service-Type == Framed-User,
Framed-IP-Address =* 255.255.255.254,
Framed-IP-Netmask == 255.255.255.255,
Framed-Route =* ANY,
Cisco-AVPair := "ip:addr-pool=ip_
for accounting.
>
>
Ok so when version 2 is release this issue will go away.
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
my radclient tests show it in
the return. Thats the reason why I first when looking for a fix.
By the way it freeradius 1.1.7
Thanks
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi Guys
How do I only add a radius attribute via attr_filter on Accept-Accept
Packets ?
My current config is adding the attribute on accounting reply packets also.
Thanks
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
.1 2006/02/10 19:47:17 nbk Exp $
#
TARGET = @targetname@
SRCS = rlm_python.c
HEADERS= /usr/include/python2.4/pyerrors.h <-
RLM_LIBS = @python_ldflags@
RLM_CFLAGS = @python_cflags@
include ../rules.mak
$(LT_OBJS): $(HEADERS)
Mike
Mike O'Connor wrote:
> Hi All
&g
Hi Alan
You are correct about it being an issue with time.so, because I just
removed this module from my test code and added the module random
instead and the freeradius loaded.
Mike
Alan DeKok wrote:
> Mike O'Connor wrote:
>
>> I decided to try freeradius-2.0.0-pre2 an
sent back to the project.
I'll like the patch for both 1.1.x and for current head.
If someone is interested please contact me privately.
Thanks
Mike
Alan DeKok wrote:
> Mike O'Connor wrote:
>
>> I decided to try freeradius-2.0.0-pre2 and its give a much clear idea of
&
Hi Guys
I decided to try freeradius-2.0.0-pre2 and its give a much clear idea of
the problem.
The issue seems to be that the rlm_python module is having trouble
loading dynamic code.
Mike
write(1, "exceptions.ImportError: /usr/lib"...,
97exceptions.ImportError: /usr/lib/python2.4/l
Hi Alan
>
> Is radiusd.py in the path?
>
Yep in the same place as my own code
/usr/lib/python2.4/site-packages/
Strace never shows that file being requested for loading.
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
not found
rlm_python:EXCEPT:exceptions.ImportError:
/usr/lib/python2.4/lib-dynload/time.so: undefined symbol: PyExc_IOError
rlm_python:python_load_function: failed to import python function
'radiusd_test.instantiate'
radiusd.conf[1]: python: Module instantiation failed.
Anyidea would
e.g. one way to strip the prefix/ and drop it would be:
>
> DEFAULT User-Name =~ ".*/([EMAIL PROTECTED])"
> User-Name := "%{1}"
Thanks Phil, I'll give that a try and see if it does the trick.
Cheers,
>>>>> Mike <<<<<
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
nal POPs and
although the suffix is the same, we are proxied these with a prefix as
well... so what we get is in the form prefix/[EMAIL PROTECTED] I'm
having trouble wrapping my head around how to configure our server to deal
with these.
Any thoughts or pointers are appreciated.
Cheers,
&
lm_ldap: performing search in dc=domain,dc=com, with filter (&(uid=
rlm_ldap: ldap_search() failed: Bad search filter: (&(uid=
rlm_ldap: Search returned error
rlm_ldap: ldap_release_conn: Release Id: 0
radius_xlat:
'(&(objectClass=posixGroup)(|(gidNumber=mike)(objectClass=dialdomain)))(
Hello Peter,
On Wednesday 11 April 2007 19:12, Peter Nixon wrote:
> On Tue 10 Apr 2007, Mike McCauley wrote:
> > Hi all,
> >
> > Open System Consultants (OSC) has established a free resource for the
> > RADIUS user community to collect and share information about confi
RADIUS community. The wiki is vendor-neutral and covers all
free and commercial RADIUS servers and compatible devices.
This message was posted with the assent of Alan DeKok
Cheers.
--
Mike McCauley [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl
Hi All
I wish to add some extra valid pairs to accounting packets which are
being proxied to other radius servers.
If in the 'preacct' or the 'accounting' stage I was to add using
rlm_python or rlm_perl value pairs would they be sent thought to the
other radius servers ?
On Mon, January 22, 2007 11:28 pm, David Wood wrote:
> This is an rcorder thing - you may find man 8 rcorder and the output of:
> rcorder /etc/rc.d/* /usr/local/etc/rc.d/*
> interesting.
>
> I probably need to add extra entries to the REQUIRE line of
> /usr/local/etc/rc.d/radiusd when some of the
On Sun, January 21, 2007 7:55 pm, David Wood wrote:
> I'm not saying that I've got everything yet, but I think the port is now
> in good shape. If anyone wants to suggest further changes, or audits the
> port and finds any problems, I'm listening. Patches are particularly
> welcome, of course.
Th
Mike wrote:
> All,
> When trying to use the "radauth" tool from nagios to monitor
> freeradius, I get the following in the freeradius log:
>
> Error: WARNING: Malformed RADIUS packet from host ... too long (length
> 18432 > maximum 4096)
>
> radtest seems t
All,
When trying to use the "radauth" tool from nagios to monitor
freeradius, I get the following in the freeradius log:
Error: WARNING: Malformed RADIUS packet from host ... too long (length
18432 > maximum 4096)
radtest seems to be ok. has anyone else experienced this or knows
what is wrong?
user belongs to a certain group. I'm only able to demonstrate that
group processing works, but := acts exactly like = for the purposes of
this test.
Mike-
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Kevin Bonner wrote:
| 5 | suspended | Framed-IP-Address | = | 10.10.0.2+ |
mysql> select * from radgroupreply ;
The = operator here is incorrect, as you want to always override the
Framed-IP-Address. Using := will replace any/all Framed-IP-Address
attributes in the reply with t
al non-suspended
configuration. I realise I could be approaching this all wrong but
right now I simply set those items (framed-ip-address, framed-route, and
etc) in the radreply table and I don't want to remove those items from
the database, just override them.
Any pointers would b
than their normal non-suspended
configuration. I realise I could be approaching this all wrong but
right now I simply set those items (framed-ip-address, framed-route, and
etc) in the radreply table and I don't want to remove those items from
the database, just override them.
Alan DeKok wrote:
Also, sometimes i have users who are getting disconnected and can not
reconnect because they are still shown to be online, and i am limiting
the sessions to 1. Again, would this be a problem with the NAS/network
because freeradius is not receiving the stop packet?
Yes
Alan DeKok wrote:
Also, sometimes i have users who are getting disconnected and can not
reconnect because they are still shown to be online, and i am limiting
the sessions to 1. Again, would this be a problem with the NAS/network
because freeradius is not receiving the stop packet?
Yes
Hello,
I am having some problems lately with freeradius 1.1.2 + mysql, and
users staying online past their session timeout value (4 hours). Can
anyone shed some light on the matter? I can not find any problems with
the server itself, the loads are low and everything seems to be
functioning OK
"Mike May"
<[EMAIL PROTECTED]> wrote:
> Hello everyone, is it
possible to have NAS entries for a subnet, if so
> could someone give me
an example
raddb/clients.conf
Alan DeKok.
--
http://deployingradius.com
- The web site
Hello everyone, is it possible to have NAS entries for a
subnet, if so could someone give me an example
Thank you
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 10/27/06, Garber, Neal <[EMAIL PROTECTED]> wrote:
> Is there a way to execute a script with the original request
> attributes at the time of successul receipt of authentication reply
> from a home server when FreeRADIUS is used as a proxy? We require to
> execute an auxilary action on success
Dear list,
Is there a way to execute a script with the original request
attributes at the time of successul receipt of authentication reply
from a home server when FreeRADIUS is used as a proxy? We require to
execute an auxilary action on successful authentication, but currently
have only found
How can I determine that version of freeRadius that is
currently running?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hen I turned it loose for
our customers nobody could connect. Do I need to add something to the
select statement in the sql.conf file?
Thanks again
Mike
The error from radiusd -X is:
radius_xlat: 'jwardlaw'
rlm_sql (sql): sql_set_user escaped user --> 'jwardlaw'
radiu
There is an entry for mpearson in my database but not that select
statement. What should be in the radgroupreply and the radreply
tables? I don't have any data in either of those tables.
Thank
Mike
Alan DeKok wrote:
Mike Pearson <[EMAIL PROTECTED]> wrote:
My pr
pearson' AND
usergroup.GroupName = radgroupcheck.GroupName ORDER BY radgroupcheck.id
and
SELECT id,UserName,Attribute,Value,op FROM radreply WHERE Username =
'mpearson' ORDER BY id
Thanks
Mike
Stefan Winter wrote:
Hi,
nicely done problem report!
My guess is that your tables contain a ch
e that the database user for freeradius had the same permissions as
gnu-radius. My problems is I can't get the users to authenticate, I
pasted the output from radtest and radiusd -X. I can provide any more
information that my be needed.
Thanks
Mike
Sending Access-Request of id 16 to
On 10/23/06, Joe Maimon <[EMAIL PROTECTED]> wrote:
> On 10/22/06, Joe Maimon <[EMAIL PROTECTED]> wrote:
>
>> > I have the following keys in a radius request:
>> >
>> >Cisco-AVPair = "src-codec=g729 g711A64k g711U64k g7231 gsmFR
>> > NS:iLBC-15k2 "
>> >Cisco-AVPair = "dst-codec=g72
On 10/22/06, Joe Maimon <[EMAIL PROTECTED]> wrote:
> I have the following keys in a radius request:
>
>Cisco-AVPair = "src-codec=g729 g711A64k g711U64k g7231 gsmFR
> NS:iLBC-15k2 "
>Cisco-AVPair = "dst-codec=g729 "
>
> When using the != == =~ and !~ conditionals with Cisco-AVPair
I have the following keys in a radius request:
Cisco-AVPair = "src-codec=g729 g711A64k g711U64k g7231 gsmFR
NS:iLBC-15k2 "
Cisco-AVPair = "dst-codec=g729 "
When using the != == =~ and !~ conditionals with Cisco-AVPair key,
which one(s) are checked?
-
List info/subscribe/unsubscrib
I would like to always send an Accept unconditionally if the User-Name
is test[0-9], but proxy request to default or null realm for all other
user names.
I tried a configuration with
authorize {
files
suffix
}
the "suffix" will match on default and null realms. I currently have
a line in users
Hello everyone, I need some help on logging, I want to grab
some more info out of the radius logs, I currently use the log options in
radiusd.conf file, but wanted to get some time stamps. I am using radius and
LDAP, and would like to be able to see when the radius server perfomed the
searc
possible, does freeRadius come with
it’s own set of testing tools that can be run from the command line.
Thanks in advaced
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I have noticed in my log's this error and do not know what it means, or
where to look to start fixing it..
thanks in advance
Mike
rlm_eap_tls: Length Included
Mon Sep 25 08:58:16 2006 : Error: TLS_accept:error in SSLv3 read
client cert ificate A
Mon Sep 25 08:58:16 2006 :
of my newbie
phase soon.
Mike
tls {
#private_key_password =
#private_key_password =
#private_key_file = ${raddbdir}/certs/newreq.pem
private_key_file =
${raddbdir}/certs
Shankar Ganesh wrote:
>
> How can i make freeradius listen to different UDP ports?
Hi Shankar,
This is very clearly explained in the radiusd.conf configuration file.
Search for "listen"
regards,
Mike
-
List info/subscribe/unsubscribe? See http://ww
From: Guilherme FrancoSent:
Wednesday, 30 August 2006 10:05 AMTo:
freeradius-users@lists.freeradius.orgSubject: 4 servers
implementation
Please, anybody can help me?
Help you
with what? You'll need to be a bit more
specific.
-
List info/subscribe/unsubscribe? See h
PPP dial-up/DSL
Stefan Winter wrote:
>> I have a class C subnet set of IP addresses. How do I give people IP
>> addresses when they authenticate against radius?
>>
>
> Are we talking about wireless LAN auth here (answer: use a DHCP server after
> authenticaiton) or about PPP auth (answer: us
Ok those files do not exist. My guess is because this is a brand new
installation and those files will not be created until I start actually
taking in dial-up connections?
Rheindorf Jan wrote:
> This means that you have to delete the db.ippool and db.ipindex files,
> because they think you are usi
Ok I've found that entry and changed it to reflect my IP pool. I've also
made an entry in the users file like this.
DEFAULT Group == "dynamic", Auth-Type = System, Pool-Name := main_pool
I'd like to know how to make a new pool. I am going to use this one for
dynamic IP addresses, and I will need
Hey guys,
I have a class C subnet set of IP addresses. How do I give people IP
addresses when they authenticate against radius?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok wrote:
> Mike <[EMAIL PROTECTED]> wrote:
>
>> I am setting up FreeRadius to be used to authenticate dial-up and DSL
>> users (@place.com). I would like to use the unix passwd file because we
>> already have a radius server in place that is using the unix
group names to a plain file that radius can use?
Thank you for you time,
Mike
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Aleksandar Stojilkovic wrote:
Hello,
My log is full of this kind of errors:
Owww, my eyes! Please don't post to mailing lists using HTML, and do
everyone a favor, get rid off that yellow dot background from your email
template.
-
List info/subscribe/unsubscribe? See http://www.fre
Alan DeKok wrote:
Mike Jakubik <[EMAIL PROTECTED]> wrote:
It seems that the Called-Station-Id is not logged to SQL when the login
fails the Called-Station-Id check using the rlm_checkval module. Any
ideas why that is? It makes troubleshooting impossible.
Do the SQL queries i
Hello,
It seems that the Called-Station-Id is not logged to SQL when the login
fails the Called-Station-Id check using the rlm_checkval module. Any
ideas why that is? It makes troubleshooting impossible.
Thanks.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok wrote:
Mike Jakubik <[EMAIL PROTECTED]> wrote:
If there is a way to accomplish this outside of SQL, im quite open to
suggestions. As long as i can refer to the groups which are in SQL.
Basically, i need to be able to restrict certain user groups from
dialing certain n
Alan DeKok wrote:
Mike Jakubik <[EMAIL PROTECTED]> wrote:
First of all, the above can be accomplished in SQL using the checkval
module and the += OP. Thats great and dandy until you need to specify
numbers that users can NOT dial to. In any case that will not work for
me, as i need
Alan DeKok wrote:
Mike Jakubik <[EMAIL PROTECTED]> wrote:
Great, now, how the heck do you specify NOT items? I want to specify the
numbers that users can NOT dial to. This seems impossible.
And what do you want to do after that? Reject the request? Then
configure that.
Ok, so after much frustration someone finally pointed out that using
multiple values with checkval and sql is possible wen using the += OP.
Great, now, how the heck do you specify NOT items? I want to specify the
numbers that users can NOT dial to. This seems impossible. I have tried
regexp, an
Kostas Kalevras wrote:
Well, it does not in my case. Here is the table:
+++---+++
| id | GroupName | Attribute | op | Value |
+++---+++
| 11 | restricted | Called-Station-Id | := | 41662
Alan DeKok wrote:
Mike Jakubik <[EMAIL PROTECTED]> wrote:
Well, it does not in my case. Here is the table:
+++---+++
| id | GroupName | Attribute | op | Value |
+++---++
Kostas Kalevras wrote:
As i said before you should just add more attribute/value pairs. It
works.
What does your radgroupcheck table look like when you add more than
one number?
Could someone please help me with this? I am stumped, is there a bug in
the rlm_checkval module?
---
Well, it do
Kostas Kalevras wrote:
As i said before you should just add more attribute/value pairs. It
works.
What does your radgroupcheck table look like when you add more than
one number?
Well, it does not in my case. Here is the table:
+++---+++
| id |
Kostas Kalevras wrote:
On Wed, 24 May 2006, Mike Jakubik wrote:
Hello,
I am trying to setup group checks for Called-Station-Id in freeradius
1.1.1 and mysql. I have enabled the checkval module in radiusd.conf
and set notfound-reject = yes. In my radgroupcheck table when i
specify
Hello,
I am trying to setup group checks for Called-Station-Id in freeradius
1.1.1 and mysql. I have enabled the checkval module in radiusd.conf and
set notfound-reject = yes. In my radgroupcheck table when i specify
"restricted Called-Station-Id := number", it works fine. However i need
to s
Chris Knipe wrote:
Hi Mark,
sql: postauth_table = "radpostauth"
sql: postauth_query = ""
sql: safe-characters =
"@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
Bus error
I went through the same thing not to long ago.
Compile FreeRadius without thread support (--withou
Kostas Kalevras wrote:
On Thu, 18 May 2006, Mike Jakubik wrote:
Hello,
I need help restricting users based on the number they called. I am
using Freeradius 1.1.1 and a MySQL backend. I tried adding
Called-Station-Id == "number,number,..." in to radgroupcheck, but it
does not
201 - 300 of 474 matches
Mail list logo
