> I am facing some issues with 802.1x EAP-TLS Authentication.
> Please suggest any document which can help in better understanding on TLS
> Authentication.
> Thanks.
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Best Reg
; *From:* freeradius-users-bounces+tiffany.pasisir=
> countrytell.com...@lists.freeradius.org [mailto:
> freeradius-users-bounces+tiffany.pasisir=
> countrytell.com...@lists.freeradius.org] *On Behalf Of *Muhammad Nadeem
> *Sent:* Tuesday, 23 July 2013 2:50 PM
> *To:* FreeRadius users mailing list
dclient -x 2.2.2.2:3799 disconnect 'huaweiaaa'
but it give the error of "missing attribute".
Can anybody tell me what is the issue. Thanks
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
to see what the values are - server
> cert,
> CA certor client cert. whatever you're using eg
>
> openssl x509 -in server.pem -noout -text
>
> alan
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
thnaks ,, it is fixed
On Thu, Jul 11, 2013 at 11:59 AM, Alan DeKok wrote:
> Muhammad Nadeem wrote:
> > it clearly indicates that it doesnot support hexadecimal type. Could
> > anyone please tell me , whts the alternative of this.
>
> Maybe you can try reading the documen
"hexdecimal"
it clearly indicates that it doesnot support hexadecimal type. Could anyone
please tell me , whts the alternative of this.
Thanks in advance
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rs
> which are doing proxying ( and some other non-EAP SIM/EAP AKA work ).
>
> Will it work ?
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
c21423da6e34055a25bd522be5f4
> Message-Authenticator = 0x
> State = 0x79e3295879302d94ae994e3671a52576
> Finished request 0.
> Going to the next request
> Waking up in 4.9 seconds.
> rad_recv: Access-Request packet from host 192.168.0.92 port 40535, id=125,
> length=57
> Sending duplicate reply to client server12 port 40535 - ID: 125
> Sending Access-Challenge of id 125 to 192.168.0.92 port 40535
> Waking up in 4.9 seconds.
> rad_recv: Access-Request packet from host 192.168.0.92 port 40535, id=126,
> length=87
> User-Name = "user1"
> Message-Authenticator = 0xe3405f0eb17fbb3e31b973ea45563b7b
> State = 0x79e3295879302d94ae994e3671a52576
> EAP-Message = 0x02d300160410a6ecf77fb2601ce855274efb4523b6d7
> # Executing section authorize from file
> /etc/freeradius/sites-enabled/default
> +- entering group authorize {...}
> ++[preprocess] returns ok
> ++[chap] returns noop
> ++[mschap] returns noop
> ++[digest] returns noop
> [suffix] No '@' in User-Name = "user1", looking up realm NULL
> [suffix] No such realm "NULL"
> ++[suffix] returns noop
> [eap] EAP packet type response id 211 length 22
> [eap] No EAP Start, assuming it's an on-going EAP conversation
> ++[eap] returns updated
> [files] users: Matched entry user1 at line 173
> ++[files] returns ok
> ++[expiration] returns noop
> ++[logintime] returns noop
> [pap] WARNING: Auth-Type already set. Not setting to PAP
> ++[pap] returns noop
> Found Auth-Type = EAP
> # Executing group from file /etc/freeradius/sites-enabled/default
> +- entering group authenticate {...}
> [eap] Request found, released from the list
> [eap] EAP/md5
> [eap] processing type md5
> [eap] Freeing handler
> ++[eap] returns ok
> # Executing section post-auth from file
> /etc/freeradius/sites-enabled/default
> +- entering group post-auth {...}
> ++[exec] returns noop
> Sending Access-Accept of id 126 to 192.168.0.92 port 40535
> EAP-Message = 0x03d30004
> Message-Authenticator = 0x
> User-Name = "user1"
> Finished request 1.
> Going to the next request
> Waking up in 4.9 seconds.
> rad_recv: Access-Request packet from host 192.168.0.92 port 40535, id=126,
> length=87
> Sending duplicate reply to client server12 port 40535 - ID: 126
> Sending Access-Accept of id 126 to 192.168.0.92 port 40535
> Waking up in 4.9 seconds.
> Cleaning up request 0 ID 125 with timestamp +16
> Cleaning up request 1 ID 126 with timestamp +16
> Ready to process requests.
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>> Please contribute documentation:
>> http://wiki.freeradius.org
>>
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/**list/users.html<http://www.freeradius.org/list/users.html>
>>
>
> -
> List info/subscribe/un
hine ?
>
> Thanks
>
> --
> *M.Iftakhul Anwar*
> Meruvian Integrator
> High Performance Computing / Cloud Computing (HPC/CC)
>
>
> Office Phone : 021-93586577
> Mobile Phone : 085215331477
> Blog : http://blog.mervpolis.com/roller/anwar
> FB
My Pleasure Bro:)
On Sat, Mar 9, 2013 at 4:04 PM, Iftakhul Anwar wrote:
> Hi Muhammad,
>
> Thanks for your reply,it's solve my problem :)
>
> Thanks very much
>
> On Sat, Mar 9, 2013 at 5:43 PM, Muhammad Nadeem wrote:
>
>> For this you have to define the
t; Mobile Phone : 085215331477
> Blog : http://blog.mervpolis.com/roller/anwar
> FB : http://www.facebook.com/troya.adromeda
> Website : www.meruvian.org
>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
her tips to solve this ?
>
>
> On Fri, Mar 8, 2013 at 2:59 PM, Muhammad Nadeem wrote:
>
>> Fri Mar 8 13:44:46 2013 : Error: Could not link driver rlm_sql_mysql:
>> rlm_sql_mysql.so: cannot open shared object file: No such file or directory
>> >>It seems that yo
ue ?
>
> Thanks
>
> --
> *M.Iftakhul Anwar*
> Meruvian Integrator
> High Performance Computing / Cloud Computing (HPC/CC)
>
>
> Office Phone : 021-93586577
> Mobile Phone : 085215331477
> Blog : http://blog.mervpolis.com/roller/anwar
> FB
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi everybody,,
I have configured a proxy server with 'type=client-port-balance'. I
have configure two backed FR servers(192.168.0.109 and 192.168.0.112).
I am sending requests from a PC to 192.168.0.102 ( acting as proxy
server). But requests are forwarded to only one FR server (i-e
192.168.0.112)
hreaded table
> locking
dont worry about this ,, I have a clustered, high speed and indexed
database as backend database.
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
her research cleared me that a NAS
have some backup server IP's (may have multiple backup IP's that can
be used if a proxy server become down). So i can configure multiple
Proxy servers, which are load balancing among same Freeradius servers.
hopefully u understand the scenario. Thanks
dius.org/list/users.html
>
Thanx alan
> why? do you need to load-balance in this manner?
Is there any other way to do this??? suppose i have hundreds of NAS,
how their requests can be sent in parallel, to different FR??? Is FR
support such a mechanism without using REALM and PROXY???
If yes
oad-balancing' on a cluster of Freeradius servers.
I am donot using any 3rd party Load balancing Tool (like Virtual Linux
server etc etc).
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
unsubscribe? See
> http://www.freeradius.org/list/users.html
>
And A.L.M, i have used type=client-port-balance,,,, But it didnot make
any difference from previous (type=client-balance). What could be the
issue.\???/
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
elp me in this situation. Could please suggest
>> me a tool or a guideline to achieve my goal.
>
> up until now, we are not sure what your goal really is - you seem to be
> doing
> a lot of testing but with no real requirements or case.
>
> alan
> -
> List info/subscribe
Hi every body,,
I have fallen into a serious trouble :(
I have configured a proxy server, that is proxying all incoming
requests to two backend servers. in 'proxy.conf' i have configured
'type=client-balance' so that it can work with EAP.
Now i wanna do load testing of this configuration with EAP-T
On 2/19/13, Phil Mayers wrote:
> On 19/02/13 09:11, Muhammad Nadeem wrote:
>> Hi, everybody
>> I have used pre-shipped certificates of Freeradius for testing
>> purpose. This testing was succeed with a test user 'bob', with files
>> authentication.
>>
On 2/18/13, a.l.m.bu...@lboro.ac.uk wrote:
> Hi,
>
>> Thankfully, this isn't correct. You can use "eapol_test" which comes
>> with the "wpa_supplicant" source to test pretty much every EAP type
>> there is, including EAP-TLS.
>>
>> To the OP - download wpa_supplicant sources and build eapol_test.
On 2/18/13, Phil Mayers wrote:
> On 02/18/2013 06:31 AM, Tobias Hachmer wrote:
>> Hello Muhammad,
>>
>> On 18.02.2013 07:17, Muhammad Nadeem wrote:
>>> Now I want to practically test EAP-TLS with freeradius on REDHAT 5. I
>>> have configured eap.confg to
Fax: +352 422473
>
>
Thanks Stefan, for your answer.
I preferred command line tool"eapol_test". I also wpasupplicant from
official website.
But i have a problem, when I want to "make eapol_test" it give the
follwoing error.
/usr/bin/ld: cannot find -lnl
collect2: ld retu
s and configure it so that it can
> handle
> many more when proxying. you have a delay/block somewhere. find it. fix it.
>
> this list is for advice/help...not for consultancy which you can pay for
> and get elsewhere
>
> alan
> -
> List info/subscribe/unsubscribe? See
>
thanks a lot olivier... This stuff really worked for me.. cheers
On Wed, Feb 13, 2013 at 4:05 PM, Olivier Beytrison wrote:
> On 13.02.2013 11:45, Muhammad Nadeem wrote:
> > ok, I followed your process. i make a file with User-Name and
> > NAS-IP-Address attribute. and issu
ssues 1000 requests 10 times, so their should be 1
"access-accept" packets?? So please tell me where things are going worse :(
On Wed, Feb 13, 2013 at 2:37 PM, Olivier Beytrison wrote:
> On 13.02.2013 09:38, Muhammad Nadeem wrote:
> > I used -c 1, and omit -p,, result wa
Athanx Fajar
Actually Rad perf is not available on website. And i also used -p with
radclient. But it didnot sent requests in parallel.
On Wed, Feb 13, 2013 at 1:30 PM, Fajar A. Nugraha wrote:
> On Wed, Feb 13, 2013 at 1:42 AM, Muhammad Nadeem
> wrote:
> > Could you
> > ple
will it send 1 parallel requests to free radius server
why not simply use -c 1, instead of -p 100 -c 1. What will be the
difference???
Thanks
On Wed, Feb 13, 2013 at 1:16 PM, Olivier Beytrison wrote:
> On 13.02.2013 09:03, Muhammad Nadeem wrote:
> > thanx john:
> >
I used -c 1, and omit -p,, result was the same . 1 users were
authenticated in 23 seconds :) . So i think no difference of using -p and
-c together ?? M I right??
On Wed, Feb 13, 2013 at 1:32 PM, Muhammad Nadeem wrote:
> will it send 1 parallel requests to free radius ser
t;
> http://www.pcservices.co.za/**disclaimer.html<http://www.pcservices.co.za/disclaimer.html>
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/**
> list/users.html <http://www.freeradius.org/list/users.html>
>
--
Best Regards
Muhammad Nadeem
Muhammad Ali Jinnah University
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ect"
why dont -p sends requests in parallel ?
On Tue, Feb 12, 2013 at 7:45 PM, Alan DeKok wrote:
> Muhammad Nadeem wrote:
> > thanx alan,,
> > I have configured a proxy server using documentation of 'proxy.conf'.
> > which is proxying requests to 2 home_s
t i wasn't succeed. Could
you please help me out to send parallel requests to proxy server???
Bundle of thanks in advance :)
On Tue, Feb 12, 2013 at 7:19 PM, Alan DeKok wrote:
> Muhammad Nadeem wrote:
> > Hi,
> > I am new to freeradius. I wantto implement load balancing on
Hi,
I am new to freeradius. I wantto implement load balancing on freeradius
servers (not on backend database).
I want that if a bulk of requests are received, these requests should be
distributed evenly among multiple freeradius servers.
Can any one please tell me, how could i achieve this goal.
Th
transit requests (whereas the authentication servers can
> handle multiple
> requests per thread) - so, some basic tweaking will probably do
> something
>
> ..though I think you've already found that you dont need to load-balance
> ;-)
>
> alan
> -
> List in
38 matches
Mail list logo