://freeradius.1045715.n5.nabble.com/Configuring-freeradius-for-MACsec-tp5508545p5682672.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Actually what was helpful is reading the comments in radiusd.conf .
Location of ldap config changed starting 2.0.0 .
I successfully configured it
Thanks.
Wassim C. Zaarour
Systems & Network Engineer
On 4/18/12 11:12 PM, "Mark Holmes" wrote:
>I think
>
>http://wiki.freeradius
I think
http://wiki.freeradius.org/Rlm_ldap
Has what you are after.
Mark
On 18 Apr 2012, at 18:53, "Wassim Zaarour"
mailto:wassim.zaar...@navlink.com>> wrote:
Hi List,
I have installed freeradius 2.1.12, and it's working well.
Now I need to configure it to authenticate with LDAP (Sun Dire
Am 18.04.2012 19:47, schrieb Wassim Zaarour:
Now I need to configure it to authenticate with LDAP (Sun Directory
Server) but I can't seem to find which file to configure in raddb, I
can't find it in radiusd.conf
Did you tried google or just the searchbox on wiki.freeradius.org?
http://wiki.fre
Hi List,
I have installed freeradius 2.1.12, and it's working well.
Now I need to configure it to authenticate with LDAP (Sun Directory Server)
but I can't seem to find which file to configure in raddb, I can't find it
in radiusd.conf
I appreciated any help on this.
Was
On 02/24/2012 07:38 AM, Alan DeKok wrote:
TTLS doesn't generate it. My guess is that Cisco has invented
something themselves which defines EAP-Key-Name. Find out what that is,
and we can implement it in FreeRADIUS.
FWIW, a bit more digging shows section 1.4.1 of RFC 5247 is relevant,
say
Alan Buxey wrote:
> Iirc, Cisco macsec/trustsec is implemented with EAP-FASTv2 . Their cute
> way of tying you into Cisco ACS 5 or ISE
Ah. I have some code for EAP-FAST. I might take a look at it. The
reason it hasn't been integrated is that the vendor who wrote it did it
as pretty much a hac
On 2012/02/24 09:38 AM, Alan DeKok wrote:
TTLS doesn't generate it. My guess is that Cisco has invented
something themselves which defines EAP-Key-Name. Find out what that is,
and we can implement it in FreeRADIUS.
This?
http://tools.ietf.org/html/draft-aboba-radext-wlan-15
--
Joha
>>> On 24.2.2012 at 8:38, in message <4f473e78.2070...@deployingradius.com>,
>>> Alan
DeKok wrote:
> Matija Levec wrote:
>> What should be configured for radius to also send EAP-Key-Name AVP?
>
> Nothing.
>
> RFC 4072 says:
>
>The EAP-Key-Name AVP (Radius Attribute Type 102) is of type
Iirc, Cisco macsec/trustsec is implemented with EAP-FASTv2 . Their cute way of
tying you into Cisco ACS 5 or ISE
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Matija Levec wrote:
> What should be configured for radius to also send EAP-Key-Name AVP?
Nothing.
RFC 4072 says:
The EAP-Key-Name AVP (Radius Attribute Type 102) is of type
OctetString. It contains an opaque key identifier (name) generated
by the EAP method. Exactly how this name
Frankly I have no idea. If I understand correctly EAP-Key-Name / MSK value
should be generated somewhere along EAP process when using EAP-TLS or PEAP...
I'm also aware that there are very few radius servers that already support
that. I was only hoping that FR is one of them. ;)
Kind regards,
M
On 23/02/12 16:26, Matija Levec wrote:
What should be configured for radius to also send EAP-Key-Name AVP?
AFAIK that is not implemented yet.
I've only skimmed them, but AFAIK most AAA servers and EAP methods don't
generate EAP-Key-Name yet. I'm not sure what the correct value for this
att
Hello everyone,
I'm trying to configure MACsec (per
http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6638/deploy_guide_c17-663760.pdf
) in a test lab using cisco supplicant & switch and freeradius 2.1.12.
Cisco docs say: "The CAK is delivered in the RADIUS vendor-specific att
On 21/10/11 10:27, Martin Ubank wrote:
Thanks Fajar.
'campus.ads.uwe.ac.uk' is a DNS alias to 6 AD servers and had been working
previously.
I'm amazed. It shouldn't.
If you have a properly setup AD environment, just let the DNS-based
autodiscovery work.
-
List info/subscribe/unsubscribe? S
.org
[mailto:freeradius-users-bounces+martin.ubank=uwe.ac...@lists.freeradius.org]
On Behalf Of Fajar A. Nugraha
Sent: 21 October 2011 09:25
To: FreeRadius users mailing list
Subject: Re: Configuring FreeRADIUS to authenticate against AD
On Fri, Oct 21, 2011 at 3:10 PM, Martin Ubank wrote
On Fri, Oct 21, 2011 at 3:10 PM, Martin Ubank wrote:
> I've been following the FreeRadius Deployment guide
> http://deployingradius.com/documents/configuration/active_directory.html
> I've edited /etc/krb5.conf, as follows:
> kdc = campus.ads.uwe.ac.uk
does this server exists and reachable?
>
I've been following the FreeRadius Deployment guide
http://deployingradius.com/documents/configuration/active_directory.html
The following software is installed on a Centos 6 VM:
- Samba 3.5.6, Freeradius 2.1.10, wpa_supplicant-0.7.3, gcc v4.4.4-13,
openssl, winbind.
I successfully per
ists.freeradius.org
[mailto:freeradius-users-bounces+martin.ubank=uwe.ac...@lists.freeradius.org]
On Behalf Of Alan Buxey
Sent: 17 October 2011 09:21
To: FreeRadius users mailing list
Subject: Re: Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
Hi,
> Thanks for that.
> I had left some pre
Hi,
> Thanks for that.
> I had left some previous versions of files in the modules directory not
> knowing that they are still active.
> Moving them to another location progressed me to the following error:
yes, FreeRADIUS will read ALL files in sites-enabled/ and ALL files in modules/
directory
us.org
[mailto:freeradius-users-bounces+martin.ubank=uwe.ac...@lists.freeradius.org]
On Behalf Of James J J Hooper
Sent: 14 October 2011 18:29
To: freeradius-users@lists.freeradius.org
Subject: Re: Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
On 14/10/2011 16:13, Martin Ubank wrote:
> Here’s the
On 14/10/2011 16:13, Martin Ubank wrote:
Here’s the full output from ‘radiusd –X’:
The bit at the top that tells us what radiusd has read from the config
files is missing.
It's not executing ntlm_auth by the looks of what you posted, so you need
to look at why. The first bit of radiusd -X w
>
> I can see from the 'radiusd -X' output that FreeRadius is not using MS-CHAP
> correctly:
>
>
> [eap] processing type mschapv2
> [mschapv2] +- entering group MS-CHAP {...}
> [mschap] No Cleartext-Password configured. Cannot create LM-Password.
> [mschap] No Cleartext-Password configured.
started to configure FreeRadius with AD and successfully tested it to use
ntlm_auth.
I've got to the final stage "Configuring FreeRADIUS to use ntlm_auth for
MS-CHAP" in the deployment process.
This stage says:
1) "... delete the testing entry used above from the users f
On Mon, Mar 28, 2011 at 1:01 PM, Raheel Itrat wrote:
>
> Well, even if I follow that guide it says to do a lot of things like as
> follows:
>
>
> "Create a file raddb/modules/ntlm_auth, and put the following text in it:
>
> exec ntlm_auth {
> wait = yes
> p
1 13:51:51 +
> From: a.l.m.bu...@lboro.ac.uk
> To: freeradius-users@lists.freeradius.org
> Subject: Re: configuring freeradius to use Ntlm_auth
>
> hi,
>
>
> if you take the default FreeRADIUS 2.x config and just follow that active
> directory
> guide, then it
hi,
if you take the default FreeRADIUS 2.x config and just follow that active
directory
guide, then it just works - you dont need to use exec ntlm_auth or
anything...just configure the mschap module (which has an ntlm_auth line to be
configured)
alan
-
List info/subscribe/unsubscribe? See http
Hi ,
I am following the link
http://deployingradius.com/documents/configuration/active_directory.html to
integrate AD with freeradius
I have done configuration changes as per the attached files
Now when i run the radtest
radtest user password localhost 0 testing123
I get Accept rejec
Pedro Alves wrote:
> Already search in here but the two info pages I find are broken:
> http://www.impossiblereflex.com/8021x/eap-tls-HOWTO.htm
> http://www.hep.phys.soton.ac.uk/~jhe/documents/WPA-Authentication+RADIUS-HOW
> TO.html
>
> How can I do this ?
Read http://freeradius.org/doc/
Thi
Pedro Alves wrote:
> But Windows XP and Vista Supplicant can't authenticate, always have "Sending
> Access-Challenge"
>
> What is the best Samba version to communicate with Win2008 server Standard
> R2 (Active Directory) ?
http://deployingradius.com
Follow the HOWTOs on the main page for get
es
-Original Message-
From: freeradius-users-bounces+pedrojmalves=gmail@lists.freeradius.org
[mailto:freeradius-users-bounces+pedrojmalves=gmail@lists.freeradius.org
] On Behalf Of Alan DeKok
Sent: sexta-feira, 30 de Abril de 2010 8:58
To: FreeRadius users mailing list
Subject
s-users-bounces+pedrojmalves=gmail@lists.freeradius.org
[mailto:freeradius-users-bounces+pedrojmalves=gmail@lists.freeradius.org
] On Behalf Of Alan DeKok
Sent: sexta-feira, 30 de Abril de 2010 8:58
To: FreeRadius users mailing list
Subject: Re: Configuring FreeRADIUS to use ntlm_auth for MS-CH
unces+pedrojmalves=gmail@lists.freeradius.org
] On Behalf Of Alan DeKok
Sent: sexta-feira, 30 de Abril de 2010 8:58
To: FreeRadius users mailing list
Subject: Re: Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
Pedro Alves wrote:
> Using JRadiusSimulator to test and receive "Sending
Pedro Alves wrote:
> Using JRadiusSimulator to test and receive "Sending Access-Accept" :)
>
> But when i use a client AP Cisco Aironet 1121, only users from "files" can
> connect, users on AD dont.
...
> Sending Access-Challenge of id 110 to 10.1.3.17 port 1645
> EAP-Message =
> 0x01
4a11970822f6475488c4
[peap] Got tunneled Access-Challenge
++[eap] returns handled
Sending Access-Challenge of id 110 to 10.1.3.17 port 1645
EAP-Message =
0x011c004a1900170301003faca645f76e5aff8c761515bd9d8c3213f7e06d164a58508ec372
6451efcaa894181735f73811912c526d93579a32e2887690f78fb267de6af4
-feira, 28 de Abril de 2010 20:59
To: FreeRadius users mailing list
Subject: Re: Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
Pedro Alves wrote:
> This is the test with AD user:
>
> AP#test aaa group radius userad userpass new-code
> Trying to authenticate with Servergroup r
Pedro Alves wrote:
> This is the test with AD user:
>
> AP#test aaa group radius userad userpass new-code
> Trying to authenticate with Servergroup radius
> User rejected
>
> rad_recv: Access-Request packet from host xx.xx.xx.xx port 1645, id=175,
> length=52
> User-Password = "userpas
[mailto:freeradius-users-bounces+pedrojmalves=gmail@lists.freeradius.org]
On Behalf Of Alan DeKok
Sent: quarta-feira, 28 de Abril de 2010 16:40
To: FreeRadius users mailing list
Subject: Re: Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
Pedro Alves wrote:
> User define in user “fil
Pedro Alves wrote:
> User define in user “files” work fine, but user on AD don’t.
>
> In freeradius using the test bellow, I can access users on AD.
Have you followed the "Active Directory" howto on
http://deployingradius.com?
> r...@mhvrad01:/usr/local/etc/raddb# radiusd -X
...
> Ready to pro
> Why is not working ntlm_auth for ms-chap ?
It would be easier to answer your question if you included the debug output for
a rejected request as opposed to just the startup messages..
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
After edit mschap file module by uncommented line containing ntlm_auth =, i
used a AP Cisco client from freeradius to test with "test aaa group radius
user userpass new-code"
User define in user "files" work fine, but user on AD don't.
In freeradius using the test bellow, I can access users
Abu Marcose wrote:
> OK.. took the configuration file default as is.. and simply added a new
> entry to the authentication section at the beginning of the section
> I am still getting the 'No authenticate method (Auth-Type) configuration
> found for the request: Rejecting the user' error.
If you
OK.. took the configuration file default as is.. and simply added a new
entry to the authentication section at the beginning of the section
I am still getting the 'No authenticate method (Auth-Type) configuration
found for the request: Rejecting the user' error.
Attached find the output .. please
Abu Marcose wrote:
> In fact since all i am interested in is
> authentication, i have removed entries from all the other sections.
This is the problem. See "man radiusd".
If you remove 99% of the configuration file content from a program,
then it WILL NOT WORK. Don't do that.
Alan DeKok
OK.. so first time I am working with free radius (or any kind of
radius server) .. so please bear with me.
I have a ubuntu based system on which I have installed freeradius
2.1.8
I have created my own new module called grid which is intended to only
provide an authentication function
I have the co
Hari Novferdianto wrote:
> Hi,
> How configuring freeradius with ldap windows server 2003 ?
> I do in my freeradius, when I installed it is
> ./configure --prefix=/usr/local/freeradius --with-modules="rlm-ldap"
That isn't enough. You need to have the local LDAP l
Hi,
How configuring freeradius with ldap windows server 2003 ?
I do in my freeradius, when I installed it is
./configure --prefix=/usr/local/freeradius --with-modules="rlm-ldap"
Until I'm configured in radiusd.conf
It's Still
radiusd.conf[744] Failed to link to module &#x
> Hi,
> I am new to freeradius. I am trying to get my freeradius server setup but
> I
> find I am having trouble. I am running slackware 12.1 as my OS and running
> freeradius version 2.1.5. All I want to do is get started on the right
> track. My question is the three main config files I need to e
Hello all,
I am doing L2TPNS+FreeRADIUS load test with a third party device. We have
one server running L2TPNS server and FreeRADIUS (v2.1.4) server.
FreeRADIUS authenticates users from users file and assigns them IPs from IP
pool configured in /module/ippool.
Test is running pretty good with
jon jon wrote:
> Hi,
> I am new to freeradius. I am trying to get my freeradius server setup
> but I find I am having trouble. I am running slackware 12.1 as my OS and
> running freeradius version 2.1.5. All I want to do is get started on the
> right track. My question is the three main config file
Hi,
I am new to freeradius. I am trying to get my freeradius server setup but I
find I am having trouble. I am running slackware 12.1 as my OS and running
freeradius version 2.1.5. All I want to do is get started on the right
track. My question is the three main config files I need to edit are
clie
>I went through a document in the Internet that says EAP does not support
>MD5 hashes, only EAP-GTC and PAP does.
>Can someone suggest a solution for getting users authenticated through
>AP whith their passwords stored in MD5??
>
You can't use PEAP. Install SecureW2 on all the clients and use EAP
Hi Ivan,
Thanks a lot for the guidance. I rectified the problem. The debug mode
shows that it is receiving the request from the WAN IP of the IP
(192.168.104.xxx) , while the NAS-IP appeared to be the its LAN IP
(192.168.1.xxx). As a result, Radius Server was trying to send the
Access-Challen
>I've been trying to autheticate a Wireless Acess Point through a Radius
>Server for last 1 month, but things doesn't seem to be working for me.
>The Radius Server is authenticating when I test it with the radtest
>command. It also worked for a Cisco 2950 switch. But no luck when I use
>the Access
Dear All,
I've been trying to autheticate a Wireless Acess Point through a Radius
Server for last 1 month, but things doesn't seem to be working for me.
The Radius Server is authenticating when I test it with the radtest
command. It also worked for a Cisco 2950 switch. But no luck when I use
Hello Ivan
The solution previously suggested by Alan worked.
Thanks
Sambuddho
On Sat, 2008-06-14 at 18:15 +0100, Ivan Kalik wrote:
> >rlm_ldap: Added password {crypt}$1$2Pl0Lm5O$ot8mrXYBaAg12RoBogNDK. in
> >check items
>
> Are you sure that's crypt? It looks like MD5 to me.
>
> Ivan Kalik
> Kali
>rlm_ldap: Added password {crypt}$1$2Pl0Lm5O$ot8mrXYBaAg12RoBogNDK. in
>check items
Are you sure that's crypt? It looks like MD5 to me.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello Alan
Thanks a lot! Ill check this out.
Sambuddho
On Sat, 2008-06-14 at 09:22 +0200, Alan DeKok wrote:
> Sambuddho Chakravarty wrote:
> > I am experiencing a problem while trying to authenticate the
> > username/password in LDAP through a freeradius server. While a regular
> > telnet/ssh to
Sambuddho Chakravarty wrote:
> I am experiencing a problem while trying to authenticate the
> username/password in LDAP through a freeradius server. While a regular
> telnet/ssh to the edge running a openLdap client / PAM module works fine
> (It is able to authenticate) but the problem arises when
Hello All
I am experiencing a problem while trying to authenticate the
username/password in LDAP through a freeradius server. While a regular
telnet/ssh to the edge running a openLdap client / PAM module works fine
(It is able to authenticate) but the problem arises when trying to
authenticate us
smita P wrote:
> I want to configure Freeradius for authenticating eap-tls clients.
Install 2.0.4.
$ cd raddb/certs
$ make client.crt
It will generate the CA, server cert, and client cert. These are good
for testing.
> I installed openssl(openssl-SNAP-2008051 ) for certificate serve
hi,
you are using Windows version of FreeRADIUS? The certs will need
to go into a directory readable by the server - as in eap.conf
config file - ie wherever YOU want, that the server can read.
normally, and for sake of debugging sanity by anyone who helps
on this list, you'd use $RADDB/certs/ a
Hi,
I want to configure Freeradius for authenticating eap-tls clients.
Freeradius on Windows.:
I managed to get a windows XP version of freeradius, I have placed the certificate file in client and server. Authenticator and server share the same key. but they are not authenticating.
users mailing list
Para: FreeRadius users mailing list
cc:
cco:Charles Alcantara Borba/COPEL
Assunto: Re: Configuring FreeRADIUS to use ntlm_auth
[EMAIL PROTECTED] wrote:
> 3) Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
> -> It di
Hi,
> NULL
> rlm_realm: No such realm "NULL"
> modcall[authorize]: module "suffix" returns noop for request 0
> rlm_eap: No EAP-Message, not doing EAP
> modcall[authorize]: module "eap" returns noop for request 0
> users: Matched entry DEFAULT at line 154
> modcall[authorize]: modu
[EMAIL PROTECTED] wrote:
> 3) Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
> -> It didn´t work ... I don´t know what is wrong ... My output
> FreeRadius presents the same messages that previously:
You're not sending it an MS-CHAP request. Perhaps that's part o
; It´s OK ... My Samba is working correctly. I tested it with "wbinfo"
and "ntlm_auth" commands.
2) Configuring FreeRADIUS to use ntlm_auth
-> It´s OK ... The radtest worked well without problems.
3) Configuring FreeRADIUS to use ntlm_auth for MS-CHAP
-> It didn´t w
Hi,
> I think that I did just some changes describes in the document with the
> files:
> the users file: it is original (I delete the testing entry used "user
> Auth-Type := ntlm_auth");
> the radisud.conf file: it is original with following changes:
> 1) the command "ntlm_auth" in the "aut
[EMAIL PROTECTED] wrote:
> I think that I did just some changes describes in the document with the
> files:
> the users file: it is original (I delete the testing entry used "user
> Auth-Type := ntlm_auth");
Which is why it's not using ntlm_auth for authentication.
> the radisud.conf file:
[EMAIL PROTECTED] wrote:
> The output of my FreeRadius (radiusd -X) was :
...
> auth: No authenticate method (Auth-Type) configuration found for the
You are not following the directions in the web page you claim to be
reading.
You DID have it working at one point. The debug log you posted sh
=%{mschap:NT-Response:-00}"
Any idea ?
Thanks.
Charles.
Alan DeKok <[EMAIL PROTECTED]>
Enviado Por: [EMAIL PROTECTED]
16/09/2007 10:17
Favor responder a FreeRadius users mailing list
Para: FreeRadius users mailing list
cc:
cco:Charles Alcantara Bor
nder a FreeRadius users mailing list
Para: "FreeRadius users mailing list"
cc:
cco:Charles Alcantara Borba/COPEL
Assunto:Re: Configuring FreeRADIUS to use ntlm_auth
Auth-Type System is coming from the DEFAULT entry towards the end of
u
the previous test this configuration was already there. And
> the previous test works (Configuring FreeRADIUS to use ntlm_auth)!
It's either the original FreeRADIUS config, or the one you modified to
get the previous test to work. Which one is it?
> ==> I tried to use the working
rked... now doesn't work.
>==> I think this configuration is original (FreeRadius instalation´s).
>Because, in the previous test this configuration was already there. And
>the previous test works (Configuring FreeRADIUS to use ntlm_auth)!
>
> Go back to using th
ked... now doesn't work.
==> I think this configuration is original (FreeRadius instalation´s).
Because, in the previous test this configuration was already there. And
the previous test works (Configuring FreeRADIUS to use ntlm_auth)!
Go back to using the working configuration, and use a
..
>--- Walking the entire request list ---
>Sending Access-Reject of id 123 to 127.0.0.1 port 50643
>Waking up in 4 seconds...
>--- Walking the entire request list ---
>Cleaning up request 1 ID 123 with timestamp 46ea9dec
>Nothing to do. Sleeping until we see a request.
>
>
[EMAIL PROTECTED] wrote:
> Now I am trying to "Configuring my FreeRadius to use ntlm_auth for
> MS-CHAP" to authenticate my NT users, ok ?
The page does document that.
> After that I configure the radiusd.conf file with the necessary changes
> (about ntlm_auth), I am trying to test the authenti
ist ---
Sending Access-Reject of id 123 to 127.0.0.1 port 50643
Waking up in 4 seconds...
--- Walking the entire request list ---
Cleaning up request 1 ID 123 with timestamp 46ea9dec
Nothing to do. Sleeping until we see a request.
My samba is ok , I get to authenticate this user by "ntlm_auth"
[EMAIL PROTECTED] wrote:
> After I configure the users file with "user Auth-Type :=
> ntlm_auth" (for testing purposes only), my FreeRadius don´t start and
> show the followings errors:
>
> /usr/local/etc/raddb/users[1]: Parse error (check) for entry user:
> Unknown value ntlm_auth for a
Hi All:
My name is Charles and I am starting to use FreeRadius. I need to
"Configure my FreeRadius to use ntlm_auth for MS-CHAP" to authenticate NT
users.
I am following the procedures about "Deploying Radius" and I am with
problem in following the procedure about "
Hi,
> Well thanks everyone -snort- for all the help. I've figured it all
> out.
no-one else runs thsi particular type of setup? ? possibly you are
the first, unique and pioneer path treader - you should be proud that its
all working - i've just had a quick glance at your sqls.net howto and
it
Help configuring FreeRadius with PPPD and ntlm_auth
I wish I could be very specific here. But I fixed it.
I reinstalled PPP and I looked very close at all its options and the
config for XL2TP and removed every option that wasn't required (didn't
break my non-radius connection). I tried
?s=article&id=6
(just in case someone ends up finding this while searching for how to do this)
-Original Message-
From: Bruce Marriner
Sent: Monday, August 20, 2007 9:30 AM
To: 'freeradius-users@lists.freeradius.org'
Subject: Help configuring FreeRadius
Bruce Marriner wrote:
> On all examples of setting up FreeRadius with VPN configurations against AD
> they all just say to basicly.. change the radiusd.conf file to turn on mppe
> in the mschap section and setup winbindd so it works. But I read some place
> that I also need EAP or.. PEAP to get
I am setting up a Linux VPN for Windows clients via L2TP/IPSEC. I had
everything working using basic PPPD chap-secrets authentication via MSCHAPv2
and am trying to add on the Radius part. I’ve read a bunch of how-to’s but
they all seem to be wrote for a different setup or different versions an
,
Bernard
- Original Message -
From: "Alan DeKok" <[EMAIL PROTECTED]>
To: "Bernard Ochieng" <[EMAIL PROTECTED]>; "FreeRadius users mailing list"
Sent: Thursday, February 08, 2007 11:41 AM
Subject: Re: Configuring FreeRADIUS and BAM for Motorola Canopy S
Bernard Ochieng wrote:
>> What do you mean by "fails on BAM"?
>
> BAM does not accept the the authenticated elements from the FreeRADIUS hence
> CPEs are not registered to the respective APs.
Perhaps you could try explaining in more detail, and using fewer acronyms.
i.e. BAM? What's that?
et/
PGP Key: http://www.peternixon.net/public.asc
- Original Message -
From: "Peter Nixon" <[EMAIL PROTECTED]>
To: "Bernard Ochieng" <[EMAIL PROTECTED]>; "FreeRadius users mailing list"
Sent: Wednesday, February 07, 2007 3:13 PM
Subject: Re: Configuring Fr
On Wed 07 Feb 2007 07:30, Bernard Ochieng wrote:
> Hello All,
>
> I have configured FreeRADIUS to do bandwidth and authentication together
> with the BAM server, however the RADIUS does authenticate but it fails on
> BAM hence the CPEs are not authenticated and registered by the Access
> Points. An
Hello All,
I have configured FreeRADIUS to do bandwidth and authentication together with
the BAM server, however the RADIUS does authenticate but it fails on BAM hence
the CPEs are not authenticated and registered by the Access Points. Anyone who
can help on this?
Bernard-
List info/subscrib
On Fri 21 Jul 2006 14:27, Elie Hani wrote:
> Well I'm trying to configure 2 pools of IPs, where these pools should be
> created? can it be done on the radius and this radius will take care of
> giving the IPs to the users? or should I configure a dhcp and relay it to
> the radius?
>
> I tried to co
"Elie Hani" <[EMAIL PROTECTED]> wrote:
> Well I'm trying to configure 2 pools of IPs, where these pools should be
> created?
In the server configuration? Using the ippool module?
> can it be done on the radius and this radius will take care of
> giving the IPs to the users? or should I config
e, in the ippools
section, 2 pools of IPs, but it didn't work.
Thanks
Elie
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Peter Nixon
Sent: Friday, July 21, 2006 10:44 AM
To: FreeRadius users mailing list
Subject: Re: configuring FreeRadius pools
t have a problem in redirection, it's in how to
> configure the 2 pools of IPs.
>
> Thanks
> Elie
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On
> Behalf Of Alan DeKok
> Sent: Thursday, July 20, 2006 5:16 PM
> To: FreeRadius
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Alan DeKok
Sent: Thursday, July 20, 2006 5:16 PM
To: FreeRadius users mailing list
Subject: Re: configuring FreeRadius pools
"Elie Hani" <[EMAIL PROTECTED]> wrote:
> I want to configure 2 pools, the first on
"Elie Hani" <[EMAIL PROTECTED]> wrote:
> I want to configure 2 pools, the first one is a fake IP pool,where the dial
> up user on the patton gets an IP from this pool, and then he will enter the
> necessary information, once all the informations entered are true, he will
> reconnect with his new us
mailing list
Subject: Re: configuring FreeRadius pools
On Tue 18 Jul 2006 10:24, Elie Hani wrote:
> Hi
> I a using FreeRadius with Postgre, I need to know the way to configure a
> double pool of addresses so the dial up user, while connecting, gets a
fake
> IP Address, then when authentica
On Tue 18 Jul 2006 10:24, Elie Hani wrote:
> Hi
> I a using FreeRadius with Postgre, I need to know the way to configure a
> double pool of addresses so the dial up user, while connecting, gets a fake
> IP Address, then when authenticated, he will redial and gets the real ip
> address.
>
> My probl
Hi
I a using FreeRadius with Postgre, I need to know the way to configure a
double pool of addresses so the dial up user, while connecting, gets a fake
IP Address, then when authenticated, he will redial and gets the real ip
address.
My problem consists in configuring the pools only, where ae the
Hello !
>Hi All,
>
>I am newly joined to this group. I have started working on radius.
>
>I am facing some problems in configuring the free radius for accounting
>purpose and to get the IP address of MS.
What do you mean by "IP address of MS" ? accounting setup is pretty well
described in freeRad
1 - 100 of 140 matches
Mail list logo
