Hello Alan.
Dne petek 27 maj 2005 18:43 je Alan DeKok napisal(a):
Rok Papez [EMAIL PROTECTED] wrote:
I beg to differ... the users file is one of the things in freeradius that
are not confusing :).
It appears to be simple, but your question about User-Password shows
the limitations
have to send me the following information
(to my private address, please):
1. You name and surname.
2. What organisation are you working for ?
3. Which project do you require this information for ?
4. What is your role in this project ?
--
Best regards,
Rok Papez [EMAIL PROTECTED]
ARNES
Hello Alan.
Dne etrtek 26 maj 2005 18:25 je Alan DeKok napisal(a):
Anthony Hinsinger [EMAIL PROTECTED] wrote:
Can you explain me what is the problem if you use := operator and for
example a CHAP authentication ? because i imagine the CHAP module use
the password found in the config items
Hello Jabriel.
Dne sreda 09 marec 2005 11:36 je Jabriel Tezser napisal(a):
Hi,
I've a problem to getting byte-in and byte-out when processing accounting to
database on freeradius.
Anybody have experience on this?
I use this to log bytes-in/out and packets-in/out + other data to the
MySQL
Hello!
Dne sreda 09 marec 2005 12:22 je Jabriel Tezser napisal(a):
Hello Papez,
Woooww... thank you very much for your reply.. it's was work now.. :)
One question please, what is attribute to getting bytes-out?
Acct-Output-Octets? or Acct-Output-Packets?
Acct-Output-Octets
In
Hell Justin.
Dne etrtek 24 februar 2005 15:36 je Justin Guidroz napisal(a):
TTLS + PAP has worked for me out of the box with FreeRADIUS. The only
changes I have made to the EAP settings is to point FreeRADIUS to my
server certificates. The server does the rest.
There is more to seting up
you the username and password in a private e-mail (the site
unfortunately isn't public yet) + some more documentation in English.
Anyone else interested can contact me directy/privately.
--
Best regards,
Rok Papez [EMAIL PROTECTED]
ARNES - Academic and Research NEtwork of Slovenia
http
Dne sreda 16 februar 2005 18:48 je Drew Weaver napisal(a):
Thanks Alan, I'll give it a shot, the real trick I had
originally was getting the source to compile on FC 3 so I ended up using
RPM. So I guess im not that good with compilers and linkers and such. Do
I need to do anything to the
Dne sreda 16 februar 2005 18:48 je Drew Weaver napisal(a):
Thanks Alan, I'll give it a shot, the real trick I had
originally was getting the source to compile on FC 3 so I ended up using
RPM. So I guess im not that good with compilers and linkers and such. Do
I need to do anything to the
to the public :-( and I'll provide you with a username/password
via a private e-mail.
If anyone else is interested in access please contact me privately.
--
Best regards,
Rok Papez [EMAIL PROTECTED]
ARNES - Academic and Research NEtwork of Slovenia
http://www.arnes.si
Jamova 39 p.p. 7, SI-1001
This debate is off-topic and I've moved it off-list.
Dne torek 08 februar 2005 14:08 je ystein Gsdal napisal(a):
Anyway, have you been able to authenticate at a very early
stage, so
logon scripts can be used with SecureW2?
If not, are there other supplicants that support that?
Hello ystein.
Dne ponedeljek 07 februar 2005 12:54 je ystein Gsdal napisal(a):
I see that the example in the link uses PAP instead of EAP?
That is correct. We use EAP-TTLS+PAP.
When I try to use that, the supplicant does not try to authenticate at all,
exept when I go to User account, and
Hello ystein.
Dne petek 04 februar 2005 08:37 je ystein Gsdal napisal(a):
I think Alan wrote that the job with getting ttls to work was to set up tls
properly... Freeradius works with the built-in 802.1x supplicant, so I guess
that tls is in fact set up properly?
In eap.conf i have
Hello Bilal.
Dne petek 19 november 2004 09:02 je Bilal Shahid napisal(a):
I am using FreeRADIUS to authenticate the XSupplicant using EAP-TLS. The
certificates are being generated using the script CA.all. For the Server
certificate, the TLS Web Server OID used is 1.3.6.1.5.5.7.3.1.
Now
Hello!
==
Regular expression matching in proxy.conf
enables very flexible and intiutive realm
proxying. It can reduce number of
realm entries:
realm company2.com {
regexp = ^.*\.company2\.com$
type= radius
authhost
Hello Mario.
Dne sobota 07 avgust 2004 11:09 je Mario Duve napisal(a):
I have here a Wireless Cisco Aironet 1200 Access Point.
You _really_ should also append output of these commands to you message:
sh ver
sh run | inc aaa
The Problem is, the AP send only the AcctSessionTime in
Accounting
Hello Sergei.
Dne torek 27 julij 2004 10:25 je Sergei Koveshnikov napisal(a):
Can I modify User-Name in users file?
Some thing like this:
DEFAULT User-Name =~ (testlogin)#(12345)
User-Name = `%{1}`
Have alook at rlm_attr_rewrite:
./man/man5/rlm_attr_rewrite.5
--
lep pozdrav,
Rok
(if this makes sense at all (if
not, why doesn't it?))?
You have to set the User aptest with a User-Password entry in you users file.
DEFAULT User-Password == test123
Wrong.
DEFAULT User-Password == System
No :).
What you need is:
aptest User-Password == test123
--
Lep pozdrav,
Rok Papez
attention...
:)
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
://www.securew2.com/uk/resources/securew2/v2/SecureW2%20Client%202.1%20for%20Windows.pdf
--
Best regards,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
usernames is not an option ;) since case does matter, just not in this
case ;))).
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
feel like you are asking
stupid questions.
--
Best regards,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
think md5 is the closest thing
to what you want) and know some basic concepts.
AFAIK Freeradius is very easy to code for. Code is well structured and
clear. You'll have more fun ;-] with an EAP client. Your best (fastest)
bet is to get it working with Xsupplicant.
--
Good luck,
Rok Papez.
-
List
}`,
Fall-Through = yes
DEFAULT Realm == org.tld, Auth-Type := LDAP, Ldap-UserDN :=
`PrincipalName=%{User-Name},ou=employees,dc=org,dc=tld`, Freeradius-Proxied-To ==
127.0.0.1
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list
) directy into
these fields authentication works (naturaly).
How is it done correctly or doesn't rlm_ldap support this kind of LDAP authentication ?
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
: FR works so that after the EAP-TTLS tunnel is established it
proxies all inner RADIUS requests to 127.0.0.1 where they reenter
processing.
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello Chris.
Chris Parker wrote:
Rok Papez wrote:
What is the best way to block the NULL realm ?
Blocking of any realm would also be very usefull if users from
some other realm wouldn't be allowed to log into this network.
I've added a realm option that blocks a certain realm. This way I can
normal CHAP within TTLS ?
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Rok Papez wrote:
What is the best way to block the NULL realm ?
Blocking of any realm would also be very usefull if users from
some other realm wouldn't be allowed to log into this network.
I've added a realm option that blocks a certain realm. This way I can
deny access for users from certain
usefull if users from
some other realm wouldn't be allowed to log into this network.
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
as above. They are not checked!
--
Lep pozdrav,
Rok Papez.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
31 matches
Mail list logo
