Re: PEAP MSCHAPv2 error..

2011-02-09 Thread Mark Holmes
Thanks, Alan - got it fixed now. On 8 Feb 2011, at 21:15, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote: Hi, Entered bob as username, testing123 as password I get No such realm 'NULL' So added - realm test { authhost = LOCAL accthost = LOCAL } realm LOCAL { }

PEAP MSCHAPv2 error..

2011-02-08 Thread Mark Holmes
reply code 3 MS-CHAP-Error = \010E=691 R=1 EAP-Message = 0x04080004 Message-Authenticator = 0x [peap] Got tunneled reply RADIUS code 3 MS-CHAP-Error = \010E=691 R=1 EAP-Message = 0x04080004 Message

FW: PEAP MSCHAPv2 error..

2011-02-08 Thread Mark Holmes
=nuffield.ox.ac...@lists.freeradius.org [mailto:freeradius-users-bounces+mark.holmes=nuffield.ox.ac...@lists.freeradius.org] On Behalf Of Mark Holmes Sent: 08 February 2011 12:45 To: FreeRadius users mailing list Subject: PEAP MSCHAPv2 error.. Tested with PAP and radtest, as per http://deployingradius.com

Re: FW: PEAP MSCHAPv2 error..

2011-02-08 Thread Alan DeKok
Mark Holmes wrote: Ah - do I need to be authenticating against something like AD that does MS-CHAP? No. FreeRADIUS does MS-CHAP/ I have AD here and that is the eventual goal, but trying to change as little as possible and keep it simple to begin with... Yup. Does radtest work

rlm_ldap error All ldap connections are in use

2011-02-08 Thread Maresca, Steven
I'm experiencing rlm_ldap errors All ldap connections are in use fairly regularly, even after adjusting 'ldap_connections_number' in radiusd.conf to a fairly high value. Aside from failed authentications corresponding with these errors, everything is behaving properly. The LDAP server itself

Re: rlm_ldap error All ldap connections are in use

2011-02-08 Thread Alexander Clouter
Maresca, Steven steven.mare...@uconn.edu wrote: I'm experiencing rlm_ldap errors All ldap connections are in use fairly regularly, even after adjusting 'ldap_connections_number' in radiusd.conf to a fairly high value. Aside from failed authentications corresponding with these errors,

RE: rlm_ldap error All ldap connections are in use

2011-02-08 Thread Maresca, Steven
] Sent: Tuesday, February 08, 2011 2:05 PM To: freeradius-users@lists.freeradius.org Subject: Re: rlm_ldap error All ldap connections are in use Maresca, Steven steven.mare...@uconn.edu wrote: I'm experiencing rlm_ldap errors All ldap connections are in use fairly regularly, even after adjusting

RE: rlm_ldap error All ldap connections are in use

2011-02-08 Thread Gary Gatten
@lists.freeradius.org [mailto:freeradius-users-bounces+ggatten=waddell@lists.freeradius.org] On Behalf Of Maresca, Steven Sent: Tuesday, February 08, 2011 1:15 PM To: FreeRadius users mailing list Subject: RE: rlm_ldap error All ldap connections are in use I am the LDAP admin :). The lookup being performed

Re: rlm_ldap error All ldap connections are in use

2011-02-08 Thread Alexander Clouter
Maresca, Steven steven.mare...@uconn.edu wrote: I am the LDAP admin :). ...a top poster too. :-/ The lookup being performed is simply existence of the uid, and no more. Queries to the LDAP server are essentially instantaneous and indexing is on uid. Maybe true, but are the queries you

Re: PEAP MSCHAPv2 error..

2011-02-08 Thread Alan Buxey
Hi, Entered bob as username, testing123 as password I get No such realm 'NULL' So added - realm test { authhost = LOCAL accthost = LOCAL } realm LOCAL { } realm NULL { } Now I get rejected - the following from the debug output looks relevant what is your

RE: rlm_ldap error All ldap connections are in use

2011-02-08 Thread Maresca, Steven
Maresca, Steven steven.mare...@uconn.edu wrote: I am the LDAP admin :). ...a top poster too. :-/ The lookup being performed is simply existence of the uid, and no more. Queries to the LDAP server are essentially instantaneous and indexing is on uid. Maybe true, but are the queries you are

Re: rlm_ldap error All ldap connections are in use

2011-02-08 Thread Alexander Clouter
Maresca, Steven steven.mare...@uconn.edu wrote: Yes, queries passed via ldapsearch are the exact same that FreeRADIUS is making; I have confirmed. Have to say I'm stumped. Can you fire up freeradius with: radiusd -X | tee /tmp/freeradius.log Then Ctrl-C when it starts choking? Include

Re: Error connecting Radius server

2011-02-01 Thread Alan Buxey
Don't care what the client end says . Follow the docs and post the radiusd -X output Alan - Reply message - From: vijay s sheelavantar s_vija...@rediffmail.com Date: Tue, Feb 1, 2011 06:27 Subject: Error connecting Radius server To: freeradius-users freeradius-users

Re: Error connecting Radius server

2011-02-01 Thread Fajar A. Nugraha
On Tue, Feb 1, 2011 at 12:24 PM, vijay s sheelavantar s_vija...@rediffmail.com wrote: Hello Friends, I am getting following error while authenticating users. The request from pam_radius is reaching radius server and server is sending Access-Accept. but client is not able to receive

Different Installation paths between source and yum giving error of missing directory

2011-02-01 Thread Samuel
but i get an error that /usr/local/etc/raddb cannot be found when I run radiusd -X. Where is radiusd picking that path from ? Thanks for your help Samuel - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Different Installation paths between source and yum giving error of missing directory

2011-02-01 Thread John Dennis
/local/etc/ and used yum to install but i get an error that /usr/local/etc/raddb cannot be found when I run radiusd -X. Where is radiusd picking that path from ? How are you running radiusd? If you installed the freeradius rpms then radiusd will be in /usr/sbin/radiusd Most questions concerning

Re: Different Installation paths between source and yum giving error of missing directory

2011-02-01 Thread Fajar A. Nugraha
On Wed, Feb 2, 2011 at 4:15 AM, Samuel ab...@greatiam.com wrote: I deleted the files in /usr/local/etc/  and used yum to install but i get an error that /usr/local/etc/raddb cannot be found when I run radiusd -X. Where is radiusd picking that path from ? When you compile from source binaries

Re: Different Installation paths between source and yum giving error of missing directory

2011-02-01 Thread Brian Candler
deleted the files in /usr/local/etc/ and used yum to install but i get an error that /usr/local/etc/raddb cannot be found when I run radiusd -X. Where is radiusd picking that path from ? You are still running the radiusd you installed from source (which has that part hard-coded into it) rm /usr

Re: Different Installation paths between source and yum giving error of missing directory

2011-02-01 Thread Fajar A. Nugraha
On Wed, Feb 2, 2011 at 5:09 AM, Brian Candler b.cand...@pobox.com wrote: You may need to logout/login again for your shell to realise that it should look for a radiusd in another directory. ... or run hash -r -- Fajar - List info/subscribe/unsubscribe? See

Error connecting Radius server

2011-01-31 Thread vijay s sheelavantar
Hello Friends, I am getting following error while authenticating users. nbsp;The request from pam_radius is reaching radius server and server is sending Access-Accept. but client is not able to receive this message. Feb 1 14:25:40 (none) sshd[27321]: pam_radius_auth: Got user name userFeb 1 14

Error in Freeradius Log

2011-01-30 Thread Moayad Mohammad
Dear, I found this error in radius log file: rlm_sql (sql_wimax): There are no DB handles to use! skipped 0, tried to connect 0 Then too many CPE's disconnected then reauthenticated again after 1 minute. Kindly note that we are in testing phase and the maximum

Re: Error in Freeradius Log

2011-01-30 Thread Fajar A. Nugraha
On Sun, Jan 30, 2011 at 6:43 PM, Moayad Mohammad mmoham...@thebluezone.com wrote: Dear,     I found this error in radius log file: “rlm_sql (sql_wimax): There are no DB handles to use! skipped 0, tried to connect 0” Then too many CPE’s disconnected then reauthenticated again

Parse error after Freeradius Migration (Ascend binary attribute)

2011-01-25 Thread tobias.gruenewald
Hello, I am working on migrating from freeradius 1.1.0 (manually compiled) to 2.1.8 (from Ubuntu repository). Right now I am stuck with the parsing of the configuration files. The files are working flawless on the old server but lead to a parsing error on startup on the new. I tried delving

Re: Parse error after Freeradius Migration (Ascend binary attribute)

2011-01-25 Thread Alan Buxey
Hi, # cat /var/log/freeradius/radius.log Error: users.smart[11]: Parse error (reply) for entry user: failed to parse Ascend binary attribute: failed to parse Ascend binary attribute: # cat users.smart user User-Password := password I probably wont be the first person to tell you

Re: Parse error after Freeradius Migration (Ascend binary attribute)

2011-01-25 Thread tobias.gruenewald
Alan Buxey wrote: Hi, # cat /var/log/freeradius/radius.log Error: users.smart[11]: Parse error (reply) for entry user: failed to parse Ascend binary attribute: failed to parse Ascend binary attribute: # cat users.smart user User-Password := password I probably wont be the first

Re: Parse error after Freeradius Migration (Ascend binary attribute)

2011-01-25 Thread Alan DeKok
tobias.gruenewald wrote: ... Ascend-Data-Filter = generic in forward 0 0 0 The mask and value are hexadecimal numbers. Try using 00 rather than 0. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: Parse error after Freeradius Migration (Ascend binary attribute)

2011-01-25 Thread Alan Buxey
hi, radiusd -X output is always very nice...as per the docs, so we dont have to take wild guesses. how about just Ascend-Data-Filter = generic in forward alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Unknown CA error in FR Debug

2011-01-24 Thread Sallee, Stephen (Jake)
private cert using the bootstrap script (I did, of course, change the parameters to suit my needs) and I now have my shiny new private cert...however, after I import the new cert into my clients I am still getting the unknown CA error in my FR debug. The client is obstinently silent, which makes me

Re: Unknown CA error in FR Debug

2011-01-24 Thread Alan DeKok
. That being said, I have generated the new private cert using the bootstrap script (I did, of course, change the parameters to suit my needs) and I now have my shiny new private cert…however, after I import the new cert into my clients I am still getting the unknown CA error in my FR debug

Re: Unknown CA error in FR Debug

2011-01-24 Thread Alan Buxey
Hi, What cert should I import into the client and in what cert store location should I put in?  The clients are windows based BTW (usually Win 7)  THANKS for all your help. you should take the nice windows friendly server.der one win vista and 7 both handle these fine - for

Re: Unknown CA error in FR Debug

2011-01-24 Thread David Mitton
The typical way to look at certs on a Windows system is to open IE, pull down the Tools menu, select Internet Options On Vista, and Win7 there is a Control Panel selection Internet Options that gets you to the same place. Select the Content tab, Certificate is a button half-way down.

RE: Unknown CA error in FR Debug

2011-01-24 Thread Sallee, Stephen (Jake)
I have imported the ca.der into BOTH the trusted root CA store and the Third-Party Root CA store, still I get the unknown CA error. I must be doing something wrong, as per Alan's advice I did visit deployingradius.com, I there it mentions that the validate server cert check box must

Re: Unknown CA error in FR Debug

2011-01-24 Thread Alan Buxey
Hi, I must be doing something wrong, as per Alan's advice I did visit deployingradius.com, I there it mentions that the validate server cert check box must be selected in the 802.1x supplicant config, however I cannot seem to find where to configure that option BEFORE the first successful

accounting with opensip and radius;error-cause=invite

2011-01-17 Thread happyeveryday1025
-Request packet from host 192.168.118.39 port 50962, id=179, length=288 Acct-Status-Type = Start Service-Type = IAPP-Register EAP-Key-Name = \000\000\000\310 Error-Cause = Invite Attr-55 = 0x4d343460 Sip-From-Tag = 1e356213 Sip-To-Tag

rlm_radutmp Error

2010-12-22 Thread Moayad Mohammad
Dears, I am using freeradius2-2.1.7-7.el5, I got the following error in radius.log file Error: rlm_radutmp: Logout entry for NAS ASN port 5 has wrong ID As I noticed, this error appears only when NAS send stop record to radius server

Error: TLS Alert

2010-12-22 Thread Moayad Mohammad
Dears, I am using freeradius2-2.1.7-7.el5 with mysql backend and openssl-0.9.8e-12.el5_5.7. And using EAP-TTLS, default_eap_type = mschapv2 I got the below error: Error: TLS Alert write:fatal:protocol

Re: Error: TLS Alert

2010-12-22 Thread Alan DeKok
Moayad Mohammad wrote: I got the below error: Error: TLS Alert write:fatal:protocol version Error: rlm_eap: SSL error error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number Error: SSL: SSL_read failed in a system call (-1), TLS session fails

Re: rlm_radutmp Error

2010-12-22 Thread Alan DeKok
Moayad Mohammad wrote: Dears, I am using freeradius2-2.1.7-7.el5, I got the following error in radius.log file “Error: rlm_radutmp: Logout entry for NAS ASN port 5 has wrong ID” Your NAS is broken. What’s the problem? And how can I

Re: Freeradius + mysql Auth-Type error...

2010-12-18 Thread Todd Bateman
Well I been working on this system in some form or another for about a month, which when done is going to be able (so I am told) to limit the bandwidth that the connected users (be it wired or wireless clients) can use using squid/squish/hostapd/freeradius/daloradius (so when I leave someone

Re: Freeradius + mysql Auth-Type error...

2010-12-18 Thread Todd Bateman
Surprising, put it back to the condition it is in when you first install it and started with the Basic configuration HOWTO and then moved on to the SQL HOWTO and it worked for the test with the username and password in the users file and then again with a different user in the database. The

Re: Freeradius + mysql Auth-Type error...

2010-12-17 Thread Todd Bateman
notfound ERROR: No authenticate method (Auth-Type) found for the request: Rejecting the user Failed to authenticate the user. Using Post-Auth-Type Reject # Executing group from file /etc/raddb/sites-enabled/default +- entering group REJECT {...} [sql] expand: %{Stripped-User-Name} - [sql

Re: Freeradius + mysql Auth-Type error...

2010-12-17 Thread Alan DeKok
Todd Bateman wrote: I have been trying to get freeradius + mysql to play nice together for the past few days and no mater what HOW TO or Tutorial I follow the end result is the same when I run radtest from the command line I get Access-Reject. In the HOW TO/Tutorials I have followed I was

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-10 Thread Alan DeKok
802.1X. The protocols I have the option for on the printer are leap, peap and eap-tls. peap and eap-tls give me the above error. leap just kinda stops (i should probably disable leap anyways). Is there any workaround/update/enhancement to get this working (peap, that is...)? Let me repeat

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-10 Thread Rob Yamry
New firmware should have been out by now, try updating to latest version. Last I heard back in June was that it was being actively worked on and that a fix had been created. Im already running the latest firmware - v41.05. I guess Ill have to take a different approach to this to get it

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-10 Thread Arran Cudbard-Bell
On Dec 10, 2010, at 12:56 AM, Alan DeKok wrote: Rob Yamry wrote: It pretends to implement EAP, but it does not. Disable EAP for the printer. There isnt an option to disable eap on the printer. That's a little hard to believe. Most printers *don't* do EAP (i.e.

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-10 Thread Rob Yamry
That's a little hard to believe. Most printers *don't* do EAP (i.e. 802.1X). Just use it like a printer, without doing 802.1X. Problem is, if the user can't figure how to turn off the 802.1X supplicant, it acts like an 802.1X-2004 supplicant and blocks inbound/outbound traffic if the

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-10 Thread Arran Cudbard-Bell
On Dec 10, 2010, at 10:45 AM, Rob Yamry wrote: That's a little hard to believe. Most printers *don't* do EAP (i.e. 802.1X). Just use it like a printer, without doing 802.1X. Problem is, if the user can't figure how to turn off the 802.1X supplicant, it acts like an 802.1X-2004

ERROR! Our request for peap was NAK'd with a request for peap

2010-12-09 Thread Rob Yamry
I have a HP JetDirect 690n print server that Im trying to authenticate via FreeRadius 2.1.8 for wireless clients to use. If I tell the 690 to use peap then I get the error ERROR! Our request for peap was NAK'd with a request for peap. If I tell it to use eap-tls I get the error ERROR! Our

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-09 Thread Alan Buxey
hi, there are numerous issues with 802.1X and HP printers.they dont seem to follow the RFC properly - for example, inner bits of tunnel put into outer part. if Aaran Cubard-Bell is still on this list he might give a little more information and perhaps an update???# alan - List

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-09 Thread Phil Mayers
On 12/09/2010 06:25 PM, Rob Yamry wrote: I have a HP JetDirect 690n print server that Im trying to authenticate via FreeRadius 2.1.8 for wireless clients to use. If I tell the 690 to use peap then I get the error ERROR! Our request for peap was NAK'd with a request for peap. If I tell

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-09 Thread Alan DeKok
Rob Yamry wrote: I have a HP JetDirect 690n print server that Im trying to authenticate via FreeRadius 2.1.8 for wireless clients to use. If I tell the 690 to use peap then I get the error ERROR! Our request for peap was NAK'd with a request for peap. If I tell it to use eap-tls I get

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-09 Thread Rob Yamry
It pretends to implement EAP, but it does not. Disable EAP for the printer. There isnt an option to disable eap on the printer. The protocols I have the option for on the printer are leap, peap and eap-tls. peap and eap-tls give me the above error. leap just kinda stops (i should

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-09 Thread Alan Buxey
Hi, There isnt an option to disable eap on the printer.� The protocols I have the option for on the printer are leap, peap and eap-tls.� peap and eap-tls give me the above error.� leap just kinda stops (i should probably disable leap anyways).� Is there any workaround/update

Re: ERROR! Our request for peap was NAK'd with a request for peap

2010-12-09 Thread Arran Cudbard-Bell
On Dec 9, 2010, at 3:21 PM, Alan Buxey wrote: Hi, There isnt an option to disable eap on the printer.� The protocols I have the option for on the printer are leap, peap and eap-tls.� peap and eap-tls give me the above error.� leap just kinda stops (i should probably disable leap

LDAP_OPT_X_TLS_REQUIRE_CERT error on 1.1.7-3.1

2010-12-03 Thread Joe Friedeggs
I am seeing the following error messages in the radius.log: Fri Dec 3 19:29:48 2010 : Error: rlm_ldap: could not set LDAP_OPT_X_TLS_REQUIRE_CERT option to demand Everything seems to be working. I am running freeradius.i386 1.1.7-3.1.fc6 that I downloading from rpm.pbone.net. I find some

Re: LDAP_OPT_X_TLS_REQUIRE_CERT error on 1.1.7-3.1

2010-12-03 Thread John Dennis
On 12/03/2010 06:06 PM, Joe Friedeggs wrote: I am seeing the following error messages in the radius.log: Fri Dec 3 19:29:48 2010 : Error: rlm_ldap: could not set LDAP_OPT_X_TLS_REQUIRE_CERT option to demand Everything seems to be working. I am running freeradius.i386 1.1.7-3.1.fc6 that I

Re: eap-gtc error in authentication

2010-11-24 Thread Alexander Clouter
the following error: rlm_eap_gtc: ERROR: Clear-test User-Password is required for authentication. Bad UNIX sysadmin *BAD* My git log tells me you are running a version of FreeRADIUS from *before* Aug 15 2006. Maybe I am the first to tell you, but it is 2010, and nearly 2011 :) That error message

Re: eap-gtc error in authentication

2010-11-24 Thread John Dennis
to the archives of this list. We are now getting the following error: rlm_eap_gtc: ERROR: Clear-test User-Password is required for authentication. Bad UNIX sysadmin *BAD* My git log tells me you are running a version of FreeRADIUS from *before* Aug 15 2006. Maybe I am the first to tell you, but it is 2010

Re: eap-gtc error in authentication

2010-11-24 Thread Fajar A. Nugraha
On Wed, Nov 24, 2010 at 3:51 PM, Alexander Clouter a...@digriz.org.uk wrote: Robert Masters rmast...@bunnings.com.au wrote: We've been working on using Freeradius on RHEL5.4 to link a Motorola RFS6000 with Oracle OID. What I use, other than just a version of FreeRADIUS from this decade, is

RE: eap-gtc error in authentication

2010-11-24 Thread Robert Masters
To: FreeRadius users mailing list Cc: Alexander Clouter Subject: Re: eap-gtc error in authentication On 11/24/2010 03:51 AM, Alexander Clouter wrote: Hi, Robert Mastersrmast...@bunnings.com.au wrote: We've been working on using Freeradius on RHEL5.4 to link a Motorola RFS6000 with Oracle OID

eap-gtc error in authentication

2010-11-23 Thread Robert Masters
We've been working on using Freeradius on RHEL5.4 to link a Motorola RFS6000 with Oracle OID. We've had a number of hiccoughs along the way, and solved most of them - mainly thanks to the archives of this list. We are now getting the following error: rlm_eap_gtc: ERROR: Clear-test User-Password

rlm_exec and 'No such file or directory' error

2010-11-17 Thread mark.leese
:49:21 2010 : Info: result 0 Wed Nov 17 17:49:21 2010 : Info:expand: %{exec:/etc/raddb/facilityUsers.pl %{control:Ldap-UserDn} %{control:Auth-Type}} - LDAP Wed Nov 17 17:49:21 2010 : Debug: Exec-Program output: Wed Nov 17 17:49:21 2010 : Error: Exec-Program: FAILED to execute LDAP

Re: rlm_exec and 'No such file or directory' error

2010-11-17 Thread Alan DeKok
mark.le...@stfc.ac.uk wrote: I have the exec module enabled in the instantiate section of radiusd.conf and I have the following at the end of the authorize section in the sites-enabled/default file: if (control:Auth-Type == LDAP) { update control { Auth-Type =

rlm_sqlippool Oracle sql error : ORA-00907: missing right parenthesis

2010-10-26 Thread westwood
: query failed in sql_select_query: ORA-00907: missing right parenthesis rlm_sql_oracle: OCI_SERVER_NORMAL sqlippool_query1: database query error i find the error occured when allocate-find executed in the file sql/oracle/ippool.conf , but this statement can work well in mysql. How can i make

Re: rlm_sqlippool Oracle sql error : ORA-00907: missing right parenthesis

2010-10-26 Thread Alan DeKok
westwood wrote: freeradius versions 2.1.8/9/10 + oracle 10.2.0 ... rlm_sql_oracle: query failed in sql_select_query: ORA-00907: missing right parenthesis That's an Oracle error. The query is malformed. i find the error occured when allocate-find executed in the file sql/oracle

www.freeradius.org url link error

2010-10-25 Thread Omer Faruk SEN
Hi, At http://freeradius.org/ for release 2.1.10 there is a clause Added RFCs 5607, 5904, and 5997. For 5607 http://ietf.org/rfc/rfc5607.txt But for others: http://ietf.org/rfc/rfc5904 and http://ietf.org/rfc/rfc5997 was used.They should be: http://ietf.org/rfc/rfc5904.txt

Re: www.freeradius.org url link error

2010-10-25 Thread Alan DeKok
Omer Faruk SEN wrote: No big deal. Just wanted to inform. Fixed, thanks. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Radiusd error + libfreeradius-radius-2.1.10.so

2010-10-18 Thread Octavio Ramirez
Hi all, I try to install freeradius server 2.1.10. After the commands #./configure #make #make install everything is ok. Then, when I try to execute radiusd -X, I have this error: radiusd: error while loading shared libraries: libfreeradius-radius-2.1.10.so: cannot open shared object file

Re: Radiusd error + libfreeradius-radius-2.1.10.so

2010-10-18 Thread Alan DeKok
Octavio Ramirez wrote: Then, when I try to execute radiusd -X, I have this error: radiusd: error while loading shared libraries: libfreeradius-radius-2.1.10.so: cannot open shared object file: No such file or directory Where can I find these shared libraries?? I have to modify the PATH

Re: Autz-Type examples and parse error

2010-10-13 Thread Harry Hoffman
Hi Alan, Thanks for the help! This works well and lessens the confusion on my part. I do have one question. When using ldap as the authorization module the Auth-Type gets set properly to siteone_ldap. But if I try using ntlm_auth then the Auth-Type is not set even though ntlm_auth returns OK.

Re: Autz-Type examples and parse error

2010-10-13 Thread Phil Mayers
On 13/10/10 14:40, Harry Hoffman wrote: Hi Alan, Thanks for the help! This works well and lessens the confusion on my part. I do have one question. When using ldap as the authorization module the Auth-Type gets set properly to siteone_ldap. But if I try using That's a feature of the ldap

Re: Autz-Type examples and parse error

2010-10-13 Thread Harry Hoffman
Hi Phil, Thanks for the pointers. I was attempting to use ntlm_auth to ensure the account actually existed for the authorization section. And then again in the authentication section to ensure the user name and password match. Is there a better way to check for authorization against AD? Cheers,

Re: Autz-Type examples and parse error

2010-10-13 Thread Phil Mayers
On 13/10/10 15:17, Harry Hoffman wrote: Hi Phil, Thanks for the pointers. I was attempting to use ntlm_auth to ensure the account actually existed for the authorization section. And then again in the authentication section to ensure the user name and password match. But that's not what you're

Re: SQL query error; rejecting user

2010-10-12 Thread Alan Buxey
- it certainly doesnt have the blank query error that you posted. alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: SQL query error; rejecting user

2010-10-12 Thread Daniel Sandulescu
Here it is installed : radiusd: Loading Virtual Servers server { # from file /usr/local/etc/raddb/radiusd.conf And this is the error : rad_recv: Access-Request packet from host 127.0.0.1 port 57115, id=255, length=115 Service-Type = Framed-User Framed-Protocol = PPP

Re: SQL query error; rejecting user

2010-10-12 Thread Daniel Sandulescu
, October 12, 2010 11:20 AM Subject: Re: SQL query error; rejecting user Hi, So I did, I deleted everything in / etc / raddb and I configuration, again depending on the requirements there. check that the raddb directory is the right onw - I seem to recall that one of your logs showed it was /usr

RE: SQL query error; rejecting user

2010-10-12 Thread Marius Pesé
-users-bounces+marius=mindspring.co...@lists.freeradius.org] On Behalf Of Daniel Sandulescu Sent: Tuesday, October 12, 2010 10:46 AM To: FreeRadius users mailing list Subject: Re: SQL query error; rejecting user If I want to upload schema.sql same bug as here: http://www.mail-archive.com/freeradius

Re: SQL query error; rejecting user

2010-10-12 Thread Daniel Sandulescu
error; rejecting user That's not a bug, that is someone trying to use the MS SQL schema on a MySQL server. Obviously those files will only work for the database server they were written for. -Original Message- From: freeradius-users-bounces+marius=mindspring.co...@lists.freeradius.org

Re: SQL query error; rejecting user

2010-10-12 Thread Alan Buxey
Hi, If I want to upload schema.sql same bug as here: http://www.mail-archive.com/freeradius-users@ lists.freeradius.org/msg61853.html which DB system are you using? please note my answer in the thread that you've highlighted - that user was trying to throw the MSSQL schema over their MySQL

Re: SQL query error; rejecting user

2010-10-12 Thread Alan DeKok
Daniel Sandulescu wrote: Here it is installed : radiusd: Loading Virtual Servers server { # from file /usr/local/etc/raddb/radiusd.conf And this is the error : Which is the same as before. The solution is the same as before: ensure you have the default configuration files

Re: SQL query error; rejecting user

2010-10-12 Thread Alan Buxey
Hi, radiusd: Loading Virtual Servers server { # from file /usr/local/etc/raddb/radiusd.conf ^ look. thats where your config is living. delete it all and reinstall WARNING: Empty authorize section. Using default return

Autz-Type examples and parse error

2010-10-12 Thread Harry Hoffman
I run radiusd -XC I get the following parse error: /etc/raddb/users[205]: Parse error (check) for entry DEFAULT: Unknown value siteone_ldap for attribute Autz-Type Errors reading /etc/raddb/users As far as I can tell I'm following the example verbatim. Can someone shed some light on why I'm

Re: Autz-Type examples and parse error

2010-10-12 Thread Alan DeKok
Harry Hoffman wrote: I'm following along with the docs for Autz-Type in freeradius-2.1.8, specifically the section about selecting between multiple instances of a module. In 2.x, there are better ways to do this. See man unlang for conditionally calling a module. In users.conf I have:

SQL query error; rejecting user

2010-10-11 Thread Daniel Sandulescu
socket id: 3 rlm_sql (sql): SQL query error; rejecting user rlm_sql (sql): Released sql socket id: 3 modcall[authorize]: module sql returns fail for request 0 modcall: group authorize returns fail for request 0 There was no response configured: rejecting request 0 Server rejecting request 0

Re: SQL query error; rejecting user

2010-10-11 Thread Alan DeKok
Daniel Sandulescu wrote: Hello! I got a erroarea following logging and do not know where to look. Can someone ajunte me? It means you've edited the default configuration, and broken it. modcall[authorize]: module mschap returns noop for request 0 radius_xlat: '' i.e. the SQL

Re: SQL query error; rejecting user

2010-10-11 Thread Daniel Sandulescu
-Type := CHAP' ++[chap] returns ok ++[mschap] returns noop rlm_sql (sql): Reserving sql socket id: 1 [sql] expand: - [sql] Error generating query; rejecting user rlm_sql (sql): Released sql socket id: 1 ++[sql] returns fail Delaying reject of request 3 for 1 seconds Going to the next request Waking

Re: SQL query error; rejecting user

2010-10-11 Thread Alan DeKok
Daniel Sandulescu wrote: I upgraded to version 2.1.10 and now I have this erroare: The entire point of the debug output is to *read* it. You have the same problem as last time. And even worse, you upgraded to 2.1.10, and left all of the problematic configuration files in place.

Re: SQL query error; rejecting user

2010-10-11 Thread Daniel Sandulescu
= 0x4ff1c005798fc649dd7acb1270f8d142d169b3e1f4 CHAP-Password = 0x14362cd1151241b3faf7b4826269ee9771 Calling-Station-Id = 00:42:15:11:24:57 NAS-IP-Address = 10.0.0.1 NAS-Port = 0 WARNING: Empty authorize section. Using default return values. ERROR: No authenticate method (Auth-Type) found for the request

Re: SQL query error; rejecting user

2010-10-11 Thread Alan DeKok
Daniel Sandulescu wrote: Returning, we came up here and do not know where erroarea .. If you're not going to read the messages on this list, then I don't see why you are posting questions. You have DELETED the entire configuration. Why? Use the configuration from 2.1.10. It's not hard.

Re: SQL query error; rejecting user

2010-10-11 Thread Daniel Sandulescu
-users@lists.freeradius.org Sent: Monday, October 11, 2010 6:23 PM Subject: Re: SQL query error; rejecting user Daniel Sandulescu wrote: Returning, we came up here and do not know where erroarea .. If you're not going to read the messages on this list, then I don't see why you are posting

Error

2010-09-28 Thread Samuel Isaias Barriga Perez
Hi: I have installed Freeradius on my Debian server, after I debug, I got this error, can you hep me with this problem. Thank you Samuel Tue Sep 28 13:41:15 2010 : Error: Failed binding to authentication address * port 1812: Address already in use Tue Sep 28 13:41:15 2010 : Error: /usr/local

radsniff build error (Re: Version 2.1.10 has been released)

2010-09-28 Thread James J J Hooper
Hi Alan, I'm getting a make error. I tried ./configure --without-radsniff but still the same... Is there a switch to disable building radsniff or do I have to get the PCAP libraries :( ./configure make ... .libs/radsniff.o(.text+0xd76): In function `main': /usr/local/dnsnode/src/radiusd

Re: radsniff build error (Re: Version 2.1.10 has been released)

2010-09-28 Thread James J J Hooper
--On Tuesday, September 28, 2010 16:19:46 +0100 James J J Hooper jjj.hoo...@bristol.ac.uk wrote: Hi Alan, I'm getting a make error. I tried ./configure --without-radsniff but still the same... Is there a switch to disable building radsniff or do I have to get the PCAP libraries

Re: radsniff build error (Re: Version 2.1.10 has been released)

2010-09-28 Thread Alan DeKok
James J J Hooper wrote: Hi Alan, I'm getting a make error. I tried ./configure --without-radsniff but still the same... Is there a switch to disable building radsniff or do I have to get the PCAP libraries :( There's no switch to disable radsniff. My guess is that you have an old version

Re: radsniff build error (Re: Version 2.1.10 has been released)

2010-09-28 Thread James J J Hooper
--On Tuesday, September 28, 2010 17:48:39 +0200 Alan DeKok al...@deployingradius.com wrote: James J J Hooper wrote: Hi Alan, I'm getting a make error. I tried ./configure --without-radsniff but still the same... Is there a switch to disable building radsniff or do I have to get the PCAP

Re: Error

2010-09-28 Thread EasyHorpak.com
On 28/09/2553 21:02, Samuel Isaias Barriga Perez wrote: Hi: I have installed Freeradius on my Debian server, after I debug, I got this error, can you hep me with this problem. Thank you Samuel Tue Sep 28 13:41:15 2010 : Error: Failed binding to authentication address * port 1812

Re: Error: Discarding duplicate request...

2010-09-16 Thread Mike Diggins
? -Mike On Wed, 15 Sep 2010, Alan Buxey wrote: 2.1.3 is very old now , 2.1.9 is current and has many fixes over that - check its changelog .. this error message suggests that you've got a slow backend somewhere - be that ldap, sql or even a bit of perl - Reply message - From: Mike

Re: Error: Discarding duplicate request...

2010-09-16 Thread Phil Mayers
On 16/09/10 15:27, Mike Diggins wrote: I am running NTLM_AUTH for mschap authentication with an MS AD at the back end. I suppose that could be the culprit. If so, is upgrading FreeRadius likely to resolve that (not knowing exactly what the problem is). Anything I could configure at the

Error: Discarding duplicate request...

2010-09-15 Thread Mike Diggins
Our students have returned this week, and I've noticed a couple new messages logged to my FreeRadius 2.1.3 server. When it happens, my controllers fail over to the secondary Radius server. This has happened a few times. My Radius servers are only lightly loaded, and only configured to do

Re: Error: Discarding duplicate request...

2010-09-15 Thread Phil Mayers
On 15/09/10 16:20, Mike Diggins wrote: Our students have returned this week, and I've noticed a couple new messages logged to my FreeRadius 2.1.3 server. When it happens, my controllers fail over to the secondary Radius server. This has happened a few times. My Radius servers are only lightly

<    2   3   4   5   6   7   8   9   10   11   >