hi,
I would like to use two sources of useres for EAP-PEAP authentication,
DOAMIN\user and user should be authenticated ny ntlm_auth,
u...@ldapserver shopuld use LDAP attribute ntPassword from my ldap
server.
Is someone running such a configuration and could provide me with a hint or
a sample
Is there a way with Perl to make the calling-station-id query to the
database not have any symbles in it and force it to be lower case . where
the mac will look at 001e0b25ecbd
t...@kalik.net wrote:
You can use perl lc function to make sure attribute is always lower
case.
List perl before
Is there any way to make the rlm-checkval check not case sensitive
rlm_checkval: Item Name: Calling-Station-Id, Value: 00-21-5C-7B-FF-2D
rlm_checkval: Value Name: Calling-Station-Id, Value: 00-21-5c-7b-ff-2d
I have two different types of access points that i have to use right now
and the cisco
Is there any way that you can point me in the right direction with what i
need to do. I am not able to find any documentation on what you are saying
do.
Thanks
You can use perl lc function to make sure attribute is always lower case.
List perl before checkval.
Ivan Kalik
Kalik Informatika
I am not really up with perl... Is there any way that perl can rewrite
the request and take out either the . or : or - between characters as
well as make everything lower case?
so that the calling-station-id request would be 00197da6ad06
not 00:19:7d:a6:ad:06 or 00-19-7d-a6-ad-06 or
Hi,
I've got a working (my)sql freeradius2.1 configuration where users are put in
groups (usergroup). I added an 'IP' column to radgroupcheck table so that I can
force radius clients into some groups (via %{Client-IP-Address} ) .
This allows me to say who can connect from where (WiFi, Dialup,
Hi seems to me you are missing rlm_sql, when I start radiusd -X I get the
following lines:
rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
..
rlm_sql_mysql: query: SELECT id, nasname, shortname, type, secret FROM nas
this last line is then followed by
rlm_sql
I am using the following command to my authorize function (rlm_perl) :
$RAD_REPLY{'Cisco-Command-Code'} = [EMAIL PROTECTED];
because I want to add more than one pair in the reply packet.
(final_routing is a perl array containing the desired values)
These pairs are successfully added to the
mention it in case someone tries something like that.
Kinetix Tele.com Mailing Lists wrote:
I am using the following command to my authorize function (rlm_perl) :
$RAD_REPLY{'Cisco-Command-Code'} = [EMAIL PROTECTED];
because I want to add more than one pair in the reply packet.
(final_routing
Hi all,
Has anyone experienced this? I have a Cisco router
which is being used to terminate pppovpdn sessions over l2tp tunnels. It
crashed and rebooted the other day, and took my radius servers down too! I
have identified the problem with the router and will be upgrading it first
I, for one, have used the services of Cladju Consulting, as listed in the
freeradius business directory.
Well worth the few dollars we spent.
Rob
-Original Message-
If you want a perfect answer, see:
http://www.freeradius.org/business/
I'm sure if you pay someone they'll tell
Hi,
From a suggestion on the mailing list I plan on using EAP-TTLS and PAP inner
tunnel authentication.
The reason I'm going this route is because I want to authenticate against linux
user accounts and the password is encrypted in /etc/shadow so the ms-chap route
is no good since it can't work
Hi,
I've looked at the 802.1X Port-Based Authentication HOWTO guide, I have a few
questions.
The guide authenticates using a users file which is a formatted text file.
I wish to use the users unix (linux) user name and passwords which I are in
/etc/password and the /etc/shadow which
has the
Quoting Vladimir Vuksan [EMAIL PROTECTED]:
To make life easy...
I want WPA-EAP authentication working, but I want the authentication
be against
the Linux username and its password.
Is this possible? Guides and tips welcome
It is possible however only with EAP-TTLS and PAP inner tunnel
Hi,
Im
testing my freeradius server.
The
Accounting-Start and Stop requests are writed on radacct
table, but the time of the sessions isnt summed and the account is all
time available for authorization.
Any
idea whats wrong ?
Thank
you
Luca
Hi,
I have two questions about the clients.conf file:
_ when I define a client on this file, I need to
write the ip or the hostname or a network... it's possible to enable all client
to execute an AAA request (it's for testing) ?
_ it's possible to move the clients.conf
informations
Assuming I add some extra fields to a database or have a separate database
to store the hours owing to a user or the total megs a user has used for the
month is the following possible and am I along the right trail.
Block hour users
Script to run as logon to make session time = hours left
17 matches
Mail list logo