Re: dialup_admin php notice errors

2011-01-14 Thread mikal
Todd, I did a setup with FR 2.1.9, Apache 2.2.15, MySQL 5.1 on OpenSUSE (11.2 or 11.3) recently. Can't recall the specific PHP 5 version offhand. It did take a bit of tweaking, but in the end it all worked (or at least the parts that I was interested in which had more to do with administering u

Re: Attribute not passing to NAS?

2010-12-07 Thread mikal
Yep, that's the file I meant. You're welcome. -- View this message in context: http://freeradius.1045715.n5.nabble.com/Attribute-not-passing-to-NAS-tp3289418p3296126.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freera

Re: Attribute not passing to NAS?

2010-12-07 Thread mikal
Rob, I'm doing PEAP here, and I'm assuming that your clients are also? Maybe post the output from a client connection attempt from radiusd -X. -- View this message in context: http://freeradius.1045715.n5.nabble.com/Attribute-not-passing-to-NAS-tp3289418p3296090.html Sent from the FreeRadius -

Re: Attribute not passing to NAS?

2010-12-07 Thread mikal
Rob, In your eap.conf set "use_tunneled_reply = yes". Assuming that it's currently set to "no". Working here now after that change. -- View this message in context: http://freeradius.1045715.n5.nabble.com/Attribute-not-passing-to-NAS-tp3289418p3295956.html Sent from the FreeRadius - User mail

Re: Attribute not passing to NAS?

2010-12-06 Thread mikal
Hi Rob, Nope, no EAP with a Captive Portal. But I just configured a VNS with EAP, so I see what you're talking about. But I think that the problem is that the Filter-ID isn't being sent in the Access-Accept, and I'm pretty sure that that's where it should be. I didn't play with my radius confi

Re: Attribute not passing to NAS?

2010-12-02 Thread mikal
Also, check your radius server configuration on the controller. Check the timeout and retry settings (might even try changing the retry value to 1). I'm set to retries = 3, timeout = 5 for this server. -- View this message in context: http://freeradius.1045715.n5.nabble.com/Attribute-not-passi

Re: Attribute not passing to NAS?

2010-12-02 Thread mikal
"Yes, I have done a packet trace. The Filter-Id attribute is sent on the 2nd packet of the authentication attempt, during the first access-challenge. After that, Filter-Id isnt mentioned again until after the Access-Accept packet on the Accounting-Request. However, on the Accounting-Request pac

Re: Attribute not passing to NAS?

2010-12-02 Thread mikal
Rob, You shouldn't need to check the "restrict policy" option. My setup is actually using a Captive Portal for the users to enter credentials. So I start them off with a non-auth policy that uses a "Routed" topology and then once authenticated uses a "Bridge at AP" topology. So the controller

Re: Attribute not passing to NAS?

2010-12-02 Thread mikal
Rob, You need to ensure that the value of Filter-Id maps exactly to the value of the policy that you're trying to apply. So you need to have a policy defined on the controller named "Faculty", not "faculty" or "facultY", but "Faculty". For instance, if I have a policy named "NewmanN" and I pass

Re: Dialup Admin and HTTP Authentication

2010-11-30 Thread mikal
OK, so to get this working I modified the Dialup Admin functions.php3 file to use $_SERVER instead of $HTTP_SERVER_VARS and to use "REMOTE_USER" instead of "PHP_AUTH_USER". PHP_AUTH_USER wasn't being populated, but REMOTE_USER was so I just used that. Not sure if that's good, bad or indifferent,

Dialup Admin and HTTP Authentication

2010-11-29 Thread mikal
Hi, I'm trying to setup Dialup Admin to use HTTP authentication credentials to connect to a mysql database. The HTTP authentication works, but the PHP_AUTH_USER and PHP_AUTH_PW don't seem to be getting set, when trying to connect to the DB I get "DEBUG(SQL,MYSQL DRIVER): Connect: User=,Password=

Automatically Generating "Expiration" - Freeradius 2.1.9 / mysql 5.1 / dialup admin

2010-11-23 Thread mikal
What I'm trying to do is enable a non-technical person to create temporary, "guest like" accounts using the dialup admin interface. The accounts will be created as needed, they need to expire within a predetermined time frame(s) and I'm trying to avoid asking the person creating the accounts to b

Re: Does Dlink DWL-900+ work directly with FreeRadius?

2003-12-23 Thread mikal
Quoting Guy Fraser <[EMAIL PROTECTED]>: > Go look a the specs at : > > http://www.dlink.com/products/?model=DWL-900AP%2b > > There is no indication that that AP supports authentication. > Since Late 2002, the firmware for the DWL-900AP+ does support 802.1x auth, good luck getting it to work corre