Hi.Some weeks ago I was asking for this, but didn't receive an answer. Subject is MySQL Authentication based on a Calling-Station-ID. The problem is, that the cisco Switch doesn't send a user-nameuser-password in his access-request, and mysql doesn't like!
-- Error: rlm_sql (sql): zero length
Hi.Some weeks ago I was asking for this, but didn't receive an answer. Subject
is MySQL Authentication based on a Calling-Station-ID. The problem is,
that the cisco Switch doesn't send a user-nameuser-password in his
access-request, and mysql doesn't like!
-- Error: rlm_sql (sql): zero length
Hi. WHY was it done like that, i.e. that you HAVE to use a username in sql?
I am no developer but my guess would be because you have just allowedeveryone in the world in as long as they know you have a password
correct.That was just an example by me, you can tell the sql module (sql.conf) to look
Hi.
I'm still having a hard time of implementing the Calling-Station-Id
Authentication. Basis is a Cisco Catalyst with
Mac-Authentication-Bypass turned on.
Alan DeKok told me, that I can use sql.conf:
#Use Stripped-User-Name, if it's there.
#Else use User-Name, if it's
Hi,On 12/5/05, Lewis Bergman [EMAIL PROTECTED] wrote:
sql_user_name = %{Stripped-User-Name:-%{User-Name:-DEFAULT}}Did you really mean to put in a :- instead of a := ?Yes. It's part of the standard sql.conf. Not edited by me!
I thought of commenting that part out, and recompiling it. But I think,
Morning.
No one got an idea for me?
Is my question just stupid, or doesn't really nobody know what to do in this case?
Maybe someone of the developers can tell me, what to do with the following:
# Uncomment the next line, if you want the sql_user_name to mean:
#
# Use Stripped-User-Name, if
Hi.
For better understanding. Here are the packets, the Catalyst sends to
the radius (Cisco ACS). Captured with Ethereal. The feature
(Mac-Authentication-bypass) was tested by myself, with ACS 4.0
beta and worked.
The switch sends three packets like that:
Radius Protocol
Code: Access-Request
Hi.
Thanks for your thoughts.On 11/23/05, Alan DeKok [EMAIL PROTECTED] wrote:
florian broder [EMAIL PROTECTED] wrote: The only thing I'm currently unaware of is, where I can tell freeradius to use Call-Check together with mysql, I think it's somewhere in
sql.conf?No, it's also in the radcheck
Hello.
I'm currently working on my diploma thesis, and I'm sorting some things out at the moment.
The task is, to authenticate mac-adresses through a cisco catalyst
6500. A pretty new feature called mac-authentication-bypass is
available in CatOS and works well with Cisco ACS 4.0 beta. Due
9 matches
Mail list logo