Thank you,
it works with simple modification (not too effective):
ldap1
if (ok) {
update reply {
Tunnel-Type = VLAN
Tunnel-Medium-Type = IEEE-802
Tunnel-Private-Group-Id = 1
Hello,
I have Freeradius 2.1.10 with 2 LDAP servers (ldap1 + ldap2) and Ubuntu
12.04
I using it for 802.1x users.
I need switch users from ldap1 to VLAN 1 and users from ldap2 to VLAN 2.
I don't know how can i do it.
My configuration:
/etc/freeradius/modules/ldap:
ldap ldap1 {
...
On 12 Sep 2013, at 18:18, Miroslav Lednicky miroslav.ledni...@fnusa.cz wrote:
Hello,
I have Freeradius 2.1.10 with 2 LDAP servers (ldap1 + ldap2) and Ubuntu 12.04
authorize {
ldap1
if (ok) {
update reply {
Tunnel-Type = VLAN,
Tunnel-Medium-Type = IEEE-802
Hello,
I recently upgraded my freeradius from 1.1.7 to 2-2.1.7 but i can't load
my brocade dictionnary.
I tried a new version of this file , like this :
http://www.brocade.com/downloads/documents/html_product_manuals/NOS_AG_301/wwhelp/wwhimpl/js/html/wwhelp.htm#href=CH_AAAServerAuth.20.4.html
On 28 Aug 2013, at 07:41, Stephane Branchoux stephane.branch...@univ-perp.fr
wrote:
Hello,
I recently upgraded my freeradius from 1.1.7 to 2-2.1.7 but i can't load
my brocade dictionnary.
I tried a new version of this file , like this :
On 02/26/2013 06:23 AM, John wrote:
Hi,
I found freeRADIUS support eap-fast. Can I use eap-fast in eap2,
Not easily, AIUI.
Bear in mind that eap2 is experimental and unmaintained.
meanwhile use other eap types in eap? Does EAP fragmentation issue
fixed in eap2?
What issue is that?
-
Hi,
I found freeRADIUS support eap-fast. Can I use eap-fast in eap2, meanwhile use
other eap types in eap? Does EAP fragmentation issue fixed in eap2?
Best,
-John
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
It is noticed that some VSAs are sent with Access-Challenge but not with
Access-Accept when PEAP is used.
Is there a way to configure the server such that those attributes are sent with
Access-Accept?
Thank you.-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rosect...@yahoo.com wrote:
It is noticed that some VSAs are sent with Access-Challenge but not with
Access-Accept when PEAP is used.
Is there a way to configure the server such that those attributes are
sent with Access-Accept?
Configure the server to send them in the Access-Accept.
If
On 12/20/2012 05:14 PM, rosect...@yahoo.com wrote:
It is noticed that some VSAs are sent with Access-Challenge but not with
Access-Accept when PEAP is used.
Is there a way to configure the server such that those attributes are
sent with Access-Accept?
use_tunneled_reply = yes under the peap
Hi,
In addition, if you're seeing the VSAs in Access-Challenge, it's
most likely because you're returning them in the authorize second.
Instead, consider returning them in the post-auth section of the
inner-tunnel server, combined with the config above.
dont forget RFC 2865
hello,
I try to configure TLS with RAP BUT it does not work?
how to do this
-
kahina akkouche
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Freeradius-2-TTLS-PAP-multiples-questions-tp2782263p5713840.html
Sent from the FreeRadius - User mailing list archive
I try to configure TLS withPAP it does not work?
-
kahina akkouche
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Freeradius-2-TTLS-PAP-multiples-questions-tp2782263p5713841.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info
On Tue, Jun 19, 2012 at 03:02:09AM -0700, akkouche wrote:
I try to configure TLS withPAP it does not work?
http://wiki.freeradius.org/FAQ#It-still-doesn%27t-work%21
--
Matthew Newton, Ph.D. m...@le.ac.uk
Systems Architect (UNIX and Networks), Network Services,
I.T. Services, University of
Good morning, you can authenticatetheUserand passwordsamba infreeradius?
Marlos
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan
thanks, I'lltry to seewith mysql.
Marlos
Em 22/03/2012 12:09, Alan Buxey escreveu:
Hi,
Really? Does freebsd store passwords as cleartext or nt-hash?
Otherwise I can't imagine how mschapv2 will
Hello everyone
I amnew to the listand neverworked withfreeradius, I need
implementin mywireless networkauthenticationusingMSCHAPv2
system users, has anyonedone this?
using:
-Freebsd8
-Freeradius2
Marlos
Hi,
I am new to the list and never worked with freeradius, I need
implement in my wireless network authentication using MSCHAPv2
system users, has anyone done this?
yes, this is a fairly standard deployment - I'm assuming your wireles
will be using 802.1X (PEAP) for that MSCHAPv2
On Thu, Mar 22, 2012 at 9:54 PM, Alan Buxey a.l.m.bu...@lboro.ac.uk wrote:
Hi,
I am new to the list and never worked with freeradius, I need
implement in my wireless network authentication using MSCHAPv2
system users, has anyone done this?
yes, this is a fairly standard deployment
Hi,
Really? Does freebsd store passwords as cleartext or nt-hash?
Otherwise I can't imagine how mschapv2 will work with system users.
ah yes - sorry , didnt see that small phrase - system users would be a pain
WHATEVER os you use as they'll be crypted in some way. the basic stuff will all
be
Hi,
I've set up freeradius 2, and want to get it working with sqlippools.
Everything works fine, but i cannot get the sql ippool to overwrite a
Framed-IP-Address (if a Framed-IP-Address attribute exists for a username).
Previously i used freeradius 1.1.3 and i had my ippools in the radiusd.conf
baddah wrote:
I've set up freeradius 2, and want to get it working with sqlippools.
Everything works fine, but i cannot get the sql ippool to overwrite a
Framed-IP-Address (if a Framed-IP-Address attribute exists for a username).
It doesn't over-write addresses.
Previously i used
Or maybe, exist the form to only auth via MySQL and do the Pool via files?
Alan DeKok al...@deployingradius.com escribió:
Rogelio Sevilla Fernandez wrote:
So, If the clients auths from AP1, i need freeradius send DHCP data to
my client using one dinamic IP Pool like 192.168.1.0/24 with
Rogelio Sevilla Fernandez wrote:
So, If the clients auths from AP1, i need freeradius send DHCP data to
my client using one dinamic IP Pool like 192.168.1.0/24 with
DefaultGateway, NetworkMask and DNS server.
It's possible... but not really easy to do right now. Peter Nixon
apparently has
Okay folks, I appreciate the help. Already managed to solve.
Basically there were two details, the first was as the supplicant was trying
to authenticate, it was either use MSCHAPv2, but the passwords were
encrypted at the base with MD5, just like CHAP authentication would not work
. By forcing
Hello,
Someone already has implemented two freeradius with mysql
I'm using version 2.1.10 of freeradius on a debian 6
If I try a plaintext based authentication, everything works.
But if I try to do an authentication with an MD5 password, I get the message
seguite:
*[pap] ERROR: You set
On 03/17/2011 08:01 PM, joao...@gmail.com wrote:
*[pap] ERROR: You set 'Auth-Type = PAP' for a request that does not
contain a User-Password attribute!*
This is very clear:
mysql select * from radgroupcheck;
+++---++---+
| id | groupname | attribute | op
Hi.. Im working with Freeradius 2.1.8 + Mysql Support.
The Auth system works well. The only thing to do its add DHCP support.
This is the Scenario:
Client Connects to AP1.
AP1 do the request/replies from/to FreeRadius Server..
Client get Authenticated and asking IP from DHCP..
I dont want use
Dear Phil,
By removing this option, it tries to authenticate with EAP/MSCHAPv2, and also
fails.
Authentication is what I'm doing wireless network.
Below is the result of debugging when I removed the Auth-Type PAP table
radgroupcheck:
[sql_visitantes] expand: %{Stripped-User-Name} - usql2
Hi,
[pap] ERROR: You set 'Auth-Type = PAP' for a request that does not contain
a User-Password attribute!
its fair enough. you've set Auth-Type = PAP
why?
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Dear Phil,
By removing this option, it tries to authenticate with EAP/MSCHAPv2, and
also fails.
no...it works - but you havent got the 'sql' module enabled in the inner-tunnel
(which is where the server goes to when its doing EAP)
put sql into the inner-tunnel virtual-server
Hello everyone, I've Installed by yum freeradius2-2.1.7-7.el5 but I'm can't
found the ldap dirctory under /etc/raddb/..
I have creta it or install more any package ??
thank!
2011/3/5 freeradius-users-requ...@lists.freeradius.org
Send Freeradius-Users mailing list submissions to
-users@lists.freeradius.org
Cc: freeradius-users-requ...@lists.freeradius.org
Subject: Re: Freeradius 2
Hello everyone, I've Installed by yum freeradius2-2.1.7-7.el5 but I'm can't
found the ldap dirctory under /etc/raddb/..
I have creta it or install more any package ??
thank
: Freeradius 2
Hello everyone, I've Installed by yum freeradius2-2.1.7-7.el5 but I'm can't
found the ldap dirctory under /etc/raddb/..
I have creta it or install more any package ??
thank!
2011/3/5 freeradius-users-requ...@lists.freeradius.org
Send Freeradius-Users mailing list
=screwloose.com...@lists.freeradius.org]
On Behalf Of Matthew Moore
Sent: Wednesday, 23 February 2011 6:43 PM
To: 'freeradius-users@lists.freeradius.org'
Subject: RE: Freeradius 2 and periodic accounting updates
Hi,
Yes they have been rebooted. I am also using Daloradius as the front end. This
setup has been
Hi,
I am running freeradius 2 which is answering radius queries from a Cisco LNS
terminating L2TP connections to serve DSL. It doesn't update the accounting
info being received from the NAS until the connection either terminates or
begins. From what I can see some disconnect all their users
=screwloose.com...@lists.freeradius.org]
On Behalf Of Matthew Moore
Sent: Wednesday, 23 February 2011 8:32 AM
To: 'freeradius-users@lists.freeradius.org'
Subject: Freeradius 2 and periodic accounting updates
Hi,
I am running freeradius 2 which is answering radius queries from a Cisco LNS
terminating L2TP
=screwloose.com...@lists.freeradius.org]
On Behalf Of Matthew Moore
Sent: Wednesday, 23 February 2011 8:32 AM
To: 'freeradius-users@lists.freeradius.org'
Subject: Freeradius 2 and periodic accounting updates
Hi,
I am running freeradius 2 which is answering radius queries from a Cisco LNS
terminating
Hi ALL!!
I'm trying to get authenticated with mikrotik wireless AP. All works
but only when I add the user into the users file.
The thing is that i want to get the users from mysql.
In this moment the authentication requests are coming from PPPoE
concentrator, and the users are in MySQL database -
hi,in sql.conf did you modify that line :readclients = no to readclients =
yes ?
Date: Wed, 19 May 2010 13:52:59 +0200
Subject: freeradius 2.x EAP-MSCHAPv2 + MySQL
From: mac...@drobniuch.pl
To: freeradius-users@lists.freeradius.org
Hi ALL!!
I'm trying to get authenticated
My NAS-es are located in the clients file and they are working fine
with pppoe auth.
2010/5/19 dorra aa dj_dido2...@hotmail.com:
hi,
in sql.conf did you modify that line :readclients = no to
readclients = yes ?
Date: Wed, 19 ! May 2010 13:52:59 +0200
Subject: freeradius 2.x EAP-MSCHAPv2
and they are working fine
with pppoe auth.
2010/5/19 dorra aa dj_dido2...@hotmail.com:
hi,
in sql.conf did you modify that line :readclients = no to
readclients = yes ?
Date: Wed, 19 ! May 2010 13:52:59 +0200
Subject: freeradius 2.x EAP-MSCHAPv2 + MySQL
From: mac...@drobniuch.pl
Hi,
so, its an EAP request and therefore gets proxied into inner-tunnel...
} # server inner-tunnel
[peap] Got tunneled reply code 3
MS-CHAP-Error = \010E=691 R=1
^
nice.
EAP-Message = 0x04080004
Message-Authenticator =
Maciej Drobniuch wrote:
The freeradius server while authenticating is not searching in the sql
database. Why that?
You didn't configure it.
What does the debug log say?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Maybe you did not understand me, but when the mario user is in files
all works fine but when not the freeradius isn't asking the sql.
I'm using EAP PEAP MSCHAPv2
The sql is enabled and it works fine with pap,chap,mschap, mschapv2 on
pppoe concentrators, but while using EAP it isn't working.
Here
Maciej Drobniuch wrote:
Maybe you did not understand me, but when the mario user is in files
all works fine but when not the freeradius isn't asking the sql.
Because you didn't configure it to ask SQL.
I'm using EAP PEAP MSCHAPv2
Did you edit raddb/sites-available/inner-tunnel?
The sql
Hi,
Maybe you did not understand me, but when the mario user is in files
all works fine but when not the freeradius isn't asking the sql.
I'm using EAP PEAP MSCHAPv2
The sql is enabled and it works fine with pap,chap,mschap, mschapv2 on
pppoe concentrators, but while using EAP it isn't
Thanks Alan, I did not knew about the inner-tunnel.
Now everything works fine.
BIG THANKS TO ALL!!
2010/5/19 Alan DeKok al...@deployingradius.com:
Maciej Drobniuch wrote:
Maybe you did not understand me, but when the mario user is in files
all works fine but when not the freeradius isn't
Craig Schurr wrote:
If I understand correctly the following request should be denied because
the NAS-Identifier in the request doesn't match the one specified in the
groupcheck table.
No. Read doc/rlm_sql. The Wiki also has a copy of that page.
Alan DeKok.
-
List
Alan,
Apparently I am misunderstood the rlm_sql docs. I see that it is running
the mysql group check and reply queries.
/doc/rlm_sql reads:
5. For each group this user is a member of, the corresponding check items
are pulled from radgroupcheck table and compared with the request. If
there is a
Craig Schurr wrote:
If no attributes in the radgroupcheck table are matched I have a group
with a higher priority number to act as an implicit deny.
There is no implicit deny. The documentations aays if there is a
match, the reply items are applied.
It does NOT say if there is no match,
Alan,
Initially, I made the assumption that there was an implicit deny.
After re-reading the docs, I have created an implicitdeny group that I
assign to all new users with a priority of 1000. The only attribute set in
this group is Auth-Type = Reject. So, if there is a match for any other
Craig Schurr wrote:
I was just wondering if there was a maximum priority number, other than
the character limit in my mysql field.
FreeRADIUS doesn't use the id field for anything. So any limit is
due to MySQL.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
I recently setup a freeradius 2 server with MySQL and I am having an issue
where it doesn't appear to be doing group checks.
If I have a user set to a group it doesn't appear to check the attributes
set in that group
Alexander wrote:
Hello all,
I have a new setup with Freeradius 2.1.7, Dialup Admin 1.80 and MySQL 5.0.77
running under Red Hat ES 5.4. Access from Freeradius to MySQL is working fine
but user 'dummy' does not get authenticated. After hours of searching through
my setup it seems to me
--- On Thu, 1/14/10, Alan DeKok al...@deployingradius.com wrote:
See your users file:
++[unix] returns notfound
[files] users: Matched entry DEFAULT at line 70
That entry is forcing Auth-Type := System.
Don't do that.
Alan DeKok.
Hello Alan,
thanks for your hint which
Hello everyone,
I am new to VoIP, its my first time installing FR on my server. I
followed the instructions and first installed dependencies and then
FR.
My installation process and other steps i took can be found on this
link: http://voiprookie.blogspot.com/
I tried to install it several time
Hi,
My installation process and other steps i took can be found on this
link: http://voiprookie.blogspot.com/
I tried to install it several time but no luck, first I used aptitude
which installed the 1.x version so i removed it and then I used
synaptic to install that didn't work, finally
Ubuntu 8.04 hardy is freeradius 1.7
if Ubuntu 8.10 is freeradius 2.1
- Original Message -
From: a.l.m.bu...@lboro.ac.uk
To: FreeRadius users mailing list freeradius-users@lists.freeradius.org
Sent: Friday, April 17, 2009 2:46 PM
Subject: Re: FreeRADIUS 2 Installation failed
Hi,
I'm trying to configure Freeradius 2 to implement EAP/TTLS-PAP
authentication method on my Cisco AP1242. It works but I'd like some
precisions to get configuration files as small as possible.
What is the shortest way to configure it ?
authorize {
preprocess
auth_log
suffix
eap
Khan wrote:
My installation process and other steps i took can be found on this
link: http://voiprookie.blogspot.com/
The discussion on editing the configure arguments is unnecessary.
If you had read the rest of the debian/control file, you would see how
OpenSSL *should* be enabled.
I tried
Jérôme BERTHIER wrote:
I'm trying to configure Freeradius 2 to implement EAP/TTLS-PAP
authentication method on my Cisco AP1242. It works but I'd like some
precisions to get configuration files as small as possible.
Why? It's not like there are any CPU / memory / disk issues with
having
Alan DeKok a écrit :
Jérôme BERTHIER wrote:
I'm trying to configure Freeradius 2 to implement EAP/TTLS-PAP
authentication method on my Cisco AP1242. It works but I'd like some
precisions to get configuration files as small as possible.
Why? It's not like there are any CPU / memory
Jérôme BERTHIER wrote:
Sorry. It means that when the NAS asks for reauthentification (after
reauth-period timeout has expired), clients won't stop trying to
re-connect using session resumption option again and again
Here, an extract from freeradius debug :
[ttls] eaptls_process returned 3
Alan DeKok a écrit :
Jérôme BERTHIER wrote:
Sorry. It means that when the NAS asks for reauthentification (after
reauth-period timeout has expired), clients won't stop trying to
re-connect using session resumption option again and again
Here, an extract from freeradius debug :
[ttls]
Jérôme BERTHIER wrote:
When no cache is enabled on radius (eap.conf / cache / enable=no),
clients using NetworkManager are not able to re-negociate
authentification because they are always trying to resume their session.
Maybe I'm missing something... those clients worked with 2.0.5, didn't
hi,
sorry for my late answer: in short:
Am Donnerstag, den 05.03.2009, 10:05 +0100 schrieb t...@kalik.net:
Queries are in raddb/sql/mysql/dialup.conf. Have you made changes to that
file?
no, it was commented out from myself ..., bad idea. Undo it, was the
trick. :-)
My long answer follows
hi,
i tried to get coopa chilli running, but i have problems with radius and
mysql. Radius works with users from files, but not with mysql. I can
only see on startup some mysql messages (connect) but no queries at all.
The system Debian Lenny.
sql.conf
sql {
database = mysql
=networkradius@lists.freer
adius.org] On Behalf Of Denny Schierz
Sent: Thursday, March 05, 2009 12:40 AM
To: freeradius-users@lists.freeradius.org
Subject: No MySQL queries with freeradius 2.x from Lenny
hi,
i tried to get coopa chilli running, but i have problems with radius and
mysql. Radius
i tried to get coopa chilli running, but i have problems with radius and
mysql. Radius works with users from files, but not with mysql. I can
only see on startup some mysql messages (connect) but no queries at all.
..
Wed Mar 4 20:00:03 2009 : Debug: modsingle[authorize]: calling sql
(rlm_sql)
3. Send all of the debug output from the radius server. The useful
information is missing from this section of the debug output:
Wed Mar 4 20:00:03 2009 : Debug: ++[unix] returns notfound
Wed Mar 4 20:00:03 2009 : Debug: modsingle[authorize]: calling sql
(rlm_sql) for request 1
Wed Mar 4
Andrew Rikhlivsky wrote:
Where I can read information about using DHCP opt. 82 in FreeRADIUS 2 ?
Can you describe what you want to do with it?
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi all.
Where I can read information about using DHCP opt. 82 in FreeRADIUS 2 ?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Am Dienstag, 10. Februar 2009 08:25:36 schrieb Andrew Rikhlivsky:
Hi all.
Where I can read information about using DHCP opt. 82 in FreeRADIUS 2 ?
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
raddb/sites-available/dhcp
--
Dr. Michael Schwartzkopff
Dana 17/11/2008, NiTr0 [EMAIL PROTECTED] piše:
I use FreeRADIUS v2.0.1 on server side and FreeRADIUS client library
v1.1.6 with pptpd/pppd on client side. Is there something like
Mpd-drop-user attribute for MPD5? Or I must hangup sessions only by
unusual way with 3rd-party
On Mon, Nov 17, 2008 at 02:28:20AM +0200, NiTr0 wrote:
I use FreeRADIUS v2.0.1 on server side and FreeRADIUS client library
v1.1.6 with pptpd/pppd on client side. Is there something like
Mpd-drop-user attribute for MPD5? Or I must hangup sessions only by
unusual way with 3rd-party
I use FreeRADIUS v2.0.1 on server side and FreeRADIUS client library
v1.1.6 with pptpd/pppd on client side. Is there something like
Mpd-drop-user attribute for MPD5? Or I must hangup sessions only by
unusual way with 3rd-party client-server apps (for ex., telnet, snmp,
etc)?
-
List
[EMAIL PROTECTED] schrieb:
Hi,
I have build the rpm's without errors. Before I had to edit the
freeradius.spec file and comment out autoreconf.
After radiusd -X I get the following errors:
yep - you build it without openssl-devel package installed -
it clearly says in the log
I used i386 version of SLES10SP1. Are you using that one or x86_64
version? If using the latter, try the former.
On Wed, Oct 29, 2008 at 3:01 PM, Hubert Kupper [EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] schrieb:
Hi,
I have build the rpm's without errors. Before I had to edit the
Did you rebuild from source obtained from freeradius.org or a src.rpm?
The RPMs are maintained by Suse.
Sent from my iPhone
On 29 Oct 2008, at 07:01, Hubert Kupper [EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] schrieb:
Hi,
I have build the rpm's without errors. Before I had to edit the
Anders Holm schrieb:
Did you rebuild from source obtained from freeradius.org or a src.rpm?
The RPMs are maintained by Suse.
Sent from my iPhone
On 29 Oct 2008, at 07:01, Hubert Kupper [EMAIL PROTECTED] wrote:
I tried both. The source from freeradius.org and a FR2.0.5 rpm from suse.
Boert
This a 64 bit system that also has 32 bit libs?
Sent from my iPhone
On 29 Oct 2008, at 08:09, Hubert Kupper [EMAIL PROTECTED] wrote:
Anders Holm schrieb:
Did you rebuild from source obtained from freeradius.org or a
src.rpm? The RPMs are maintained by Suse.
Sent from my iPhone
On 29 Oct
Anders Holm schrieb:
This a 64 bit system that also has 32 bit libs?
Sent from my iPhone
On 29 Oct 2008, at 08:09, Hubert Kupper [EMAIL PROTECTED] wrote:
No, it's a 32 bit system.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Graham Marsh wrote:
Interesting the getting page only links to the old 1.x versions - an
omission?
Nothing should point to the getting page any more. The download
link points to the download page, which links to 2.x.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
Hi,
found a 1.1.6-2.1 rpm and installed it. Now I will update to a newer
version but there is no rpm for SLES 10 available. When I try to compile
freeradius v. 2.x then there are problems with shared libraries they are
not available in SLES. On a Opensuse 11.0 machine the 2.0.5 version
Graham Marsh schrieb:
I am running FR 2.1.0 OK on SLES10SP1 against edir LDAP backend.
The way I did it, I installed the C/C++ Compiler and Tools in the Yast
patterned setup. This takes care of a number of dependencies. If you
don't want to do this, simply install the required deps later but
No idea, sorry. You say this is SLES10SP2 which I haven't used, have you
tried
- FR2.1.0?
- clean slate install perhaps in a VM?
- fall back to SLES10SP1?
Other than that I have nothing to suggest
- Original Message - rlm_eap: Ignoring EAP-Type/tls because we do
not have OpenSSL
You probably need to link to openssl in configure. Something like:
http://www.mail-archive.com/[EMAIL PROTECTED]/msg19160.html
Ivan Kalik
Kalik Informatika ISP
Dana 28/10/2008, Graham Marsh [EMAIL PROTECTED] piše:
No idea, sorry. You say this is SLES10SP2 which I haven't used, have you
tried
Graham Marsh schrieb:
No idea, sorry. You say this is SLES10SP2 which I haven't used, have
you tried
- FR2.1.0?
- clean slate install perhaps in a VM?
- fall back to SLES10SP1?
Other than that I have nothing to suggest
where can I get FR2.1.0 source?
Boert
-
List info/subscribe/unsubscribe?
Hi,
I have build the rpm's without errors. Before I had to edit the
freeradius.spec file and comment out autoreconf.
After radiusd -X I get the following errors:
yep - you build it without openssl-devel package installed -
it clearly says in the log
rlm_eap: Ignoring EAP-Type/tls because
@lists.freeradius.org
Sent: Tuesday, October 28, 2008 9:08 PM
Subject: Re: Suse SLES 10SP2 with freeradius 2.x
Graham Marsh schrieb:
No idea, sorry. You say this is SLES10SP2 which I haven't used, have you
tried
- FR2.1.0?
- clean slate install perhaps in a VM?
- fall back to SLES10SP1?
Other
Hi,
Interesting the getting page only links to the old 1.x versions - an
omission? In any case you can just get the old 2.x from here
ftp://ftp.freeradius.org/pub/freeradius/old/
getting an older version wont help - it'll also fail the OpenSSL stuff
simply because its a compilation problem.
Hello,
has anyone running freeradius v. 2x running on SLES 10 against edirectory?
Best regards
Boert
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I am running FR 2.1.0 OK on SLES10SP1 against edir LDAP backend.
The way I did it, I installed the C/C++ Compiler and Tools in the Yast
patterned setup. This takes care of a number of dependencies. If you
don't want to do this, simply install the required deps later but
there will be quite a few
* Vegard Svanberg [EMAIL PROTECTED] [2008-10-07 12:16]:
Perhaps you should bother reading the mysteriously named file README in
/certs directory before asking questions.
Seems the file got lost during the transition from 1.x. Thanks!
Hm, something is not working right, but I'm not sure
Try with ca-server bundle:
cat ca.pem server.pem cabundle.pem
Use that as CAfile and export (appropriate version) to the clients.
Ivan Kalik
Kalik Informatika ISP
Dana 8/10/2008, Vegard Svanberg [EMAIL PROTECTED] piše:
* Vegard Svanberg [EMAIL PROTECTED] [2008-10-07 12:16]:
Perhaps you
* [EMAIL PROTECTED] [EMAIL PROTECTED] [2008-10-08 15:03]:
Try with ca-server bundle:
cat ca.pem server.pem cabundle.pem
Use that as CAfile and export (appropriate version) to the clients.
Worked great, thanks!
Perhaps the Makefile should be updated?
--
Vegard Svanberg [EMAIL
That's just the ad-hoc solution for the error you reported (error 20 -
incomplete chain). It might not be the best way of doing things. I
don't use certificates that much. Others might know a better way of
sorting this out.
Ivan Kalik
Kalik Informatika ISP
Dana 8/10/2008, Vegard Svanberg [EMAIL
The CA.all and CA.certs scripts seem to not be included in the
Freeradius 2.x tarball anymore. Have they just been forgotten, or have
they been replaced by other scripts, or are there other recommended ways
of handling/generating certs in 2.x?
--
Vegard Svanberg [EMAIL PROTECTED] [EMAIL
* [EMAIL PROTECTED] [EMAIL PROTECTED] [2008-10-07 12:13]:
Perhaps you should bother reading the mysteriously named file README in
/certs directory before asking questions.
Seems the file got lost during the transition from 1.x. Thanks!
--
Vegard Svanberg [EMAIL PROTECTED] [EMAIL PROTECTED]
1 - 100 of 170 matches
Mail list logo