Hi,
> and this is the output from radius (ran as radiusd -X)
> http://pastebin.com/MT0txW2c
please post to the list - avoids more work at this end.
the output shows this:
Found Auth-Type = LDAP
# Executing group from file /etc/raddb/sites-enabled/default
+- entering group LDAP {...}
[ldap] logi
On 1 Jul 2013, at 12:27, Horatiu Nimigean wrote:
> Greetings.
> I have a problem with freeradius using ldap to auth, here are my system specs:
>
> Centos 6 64bit
> freeradius installed from repo
>> rpm -qa | grep -i freeradius
>> freeradius-ldap-2.1.12-4.el6_3.x8
Greetings.
I have a problem with freeradius using ldap to auth, here are my system
specs:
Centos 6 64bit
freeradius installed from repo
rpm -qa | grep -i freeradius
freeradius-ldap-2.1.12-4.el6_3.x86_64
freeradius-2.1.12-4.el6_3.x86_64
freeradius-utils-2.1.12-4.el6_3.x86_64
ldap already up
On 04/30/2013 06:11 AM, Alberto Aldrigo wrote:
Hi Everybody,
I'm trying to setup a PPTPD server which would authenticate users using
my openLDAP user database, in doing so I need freeradius.
By now the only setup that actually works is: users in LDAP with clear
text password.
Obviously I want to
Alberto Aldrigo wrote:
> I'm trying to setup a PPTPD server which would authenticate users using
> my openLDAP user database, in doing so I need freeradius.
> By now the only setup that actually works is: users in LDAP with clear
> text password.
What kind of authentication method is PPTPD using
Hi Everybody,
I'm trying to setup a PPTPD server which would authenticate users using
my openLDAP user database, in doing so I need freeradius.
By now the only setup that actually works is: users in LDAP with clear
text password.
Obviously I want to use some kind of encryption for passwords and
On 18 Apr 2013, at 11:43, Alberto Aldrigo wrote:
> rad_recv: Access-Request packet from host 10.1.98.52 port 45105, id=139,
> length=77
> Service-Type = Framed-User
> Framed-Protocol = PPP
> User-Name = "user"
> Calling-Station-Id = "10.1.0.136"
> NAS-IP-Address = 127.0.1.1
>
Hi everybody,
I'm having some problems with freeradius and ldap authentication.
I need to authenticate an user connecting in vpn to my pptpd daemon,
which will ask permission to freeradius.
I installed freeradius and configured it to use ldap in this way (i
stripped comments to shorten the conf
Thanks. Alan
--- 13年4月12日,周五, Alan DeKok 写道:
发件人: Alan DeKok
主题: Re: Freeradius +LDAP + Samba integrates to Active Derectory
收件人: "FreeRadius users mailing list"
日期: 2013年4月12日,周五,下午9:48
John wrote:
> We deploy freeradius integrated to Active Directory, but the AD enabl
John wrote:
> We deploy freeradius integrated to Active Directory, but the AD enabled
> "Require signing" option (see the attachement).
That's really an AD question.
> net join is OK after we set "LDAP SASL wrapping" to 'sign'. But LDAP
> search failed. Is there a way to let LDAP search work?
Hi all,
We deploy freeradius integrated to Active Directory, but the AD enabled
"Require signing" option (see the attachement).
net join is OK after we set "LDAP SASL wrapping" to 'sign'. But LDAP search
failed. Is there a way to let LDAP search work? Can someone show me some
reference or g
Hello guys, i was wondering, anyone knows how to configure an LDAP
(phpldapadmin) to work with freeradius ?I search all over the web and couldnt
find a tutorial that teachs how to configure a simple DB to work with FR.The FR
is configured already, its very simple, but the LDAP i cant handle.
Hello,
what exactly ist your problem?
a) Do you want to know how to configure a web administration GUI (phpldapadmin)
for your LDAP server? Then your problem is purly related to LDAP server, PHP
and a web server. Hence, this is Thermometer wrong mailing list to ask for
advice.
b) Or do you want
Peter Lambrechtsen wrote:
> There is the FR LDAP Schema LDIF file to import FreeRadius related
> schema into your LDAP directory.
>
> Searching around it seems that OID 1.3.6.1.4.1.3317.4.3.1 up to 68 is
> allocated.
>
> http://permalink.gmane.org/gmane.comp.freeradius.devel/6134
Why search th
A question for Alan, or others on the list.
There is the FR LDAP Schema LDIF file to import FreeRadius related schema
into your LDAP directory.
Searching around it seems that OID 1.3.6.1.4.1.3317.4.3.1 up to 68 is
allocated.
http://permalink.gmane.org/gmane.comp.freeradius.devel/6134
Who "owns"
On Tue, Dec 13, 2011 at 11:34 AM, Ryan Garland wrote:
> However, my original problem persists. My supplicant continues not to
> respond to the FreeRADIUS Access-Challenge.
>
> Keep in mind I am using the same .mobileconfig on my OS X Lion machine
> and my iPhone 4S (IOS 5) and TTLS+PAP works fine
On Mon, Dec 12, 2011 at 7:12 PM, Fajar A. Nugraha wrote:
> On Tue, Dec 13, 2011 at 9:37 AM, Ryan Garland wrote:
>
>> Sorry, I should have been more clear.
>>
>> I'm not sure what my options are with regards to Cleartext-Password
>> and using EAP-MD5, if that is indeed what is causing the failure.
On Tue, Dec 13, 2011 at 9:37 AM, Ryan Garland wrote:
>> [eap] EAP/md5
>> [eap] processing type md5
>> rlm_eap_md5: Cleartext-Password is required for EAP-MD5 authentication
>> [eap] Handler failed in EAP/md5
>> [eap] Failed in EAP select
>> ++[eap] returns invalid
>> Failed to authenticate the use
On Mon, Dec 12, 2011 at 6:30 PM, Ryan Garland wrote:
>
> Thanks for the response, Alan.
>
> It turns out part of my issue was certificate related. This has been
> resolved, but eapol_test continues to fail for a different reason.
> However, I am having trouble determining a fix.
>
> Attached is t
Ryan Garland wrote:
> I get a Warning message from FreeRADIUS indicating that EAP did not
> complete. The message directs me to a Certificate Compatibility page on
> the FR wiki, but unfortunately that points a lot of fingers at Windows,
> which my laptop is not running.
Whether it's windows or
Greetings list users,
I'm trying setup FreeRadius to work with LDAP in a deployment of ClearOS and
have followed this How-To
http://www.clearfoundation.com/docs/howtos/setting_up_freeradius2_to_use_ldap
and this How-To http://deployingradius.com/documents/configuration/pap.html
with success, u
Thanks, Issue has been resolved.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Freeradius-Ldap-mosule-is-authenticating-with-wrong-password-also-tp4623550p4634084.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe
Thanks, Issue has been resolved.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Freeradius-Ldap-mosule-is-authenticating-with-wrong-password-also-tp4623550p4634082.html
Sent from the FreeRadius - User mailing list archive at Nabble.com.
-
List info/subscribe/unsubscribe
Hi,
> DEFAULT LDAP-Group == "CiscoRWL2Lr", Auth-Type := Accept
> Reply-Message = "Welcome! You have administrative access.",
> Service-Type = NAS-Prompt-User,
> cisco-avpair = "shell:priv-lvl=15"
as already said, you've configured your RADIUS server to accept
ANYONE who is
On Sat, Jul 23, 2011 at 1:25 PM, vijaysingh wrote:
> Please find below the configuration and logs :-
>
> ##
> /etc/raddb/users
> ##
> DEFAULT LDAP-Group == "CiscoRWL2Lr", Auth-Type := Accept
There you
conditional
[ldap] expand: %{User-Name} -> vijay.singh
[ldap] expand: (&(sAMAccountName=%{Stripped-User-Name:-%{User-Name}})) ->
(&(sAMAccountName=vijay.singh))
[ldap] expand: OU=Networking,DC=kochar,DC=com ->
OU=Networking,DC=kochar,DC=com
[ldap] ldap_get_conn: Checking Id: 0
[l
Hi,
> If required I can post full logs and configuration file here.
err, yes.
alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
directory...
WARNING: No "known good" password was found in LDAP. Are you sure that the
user is configured correctly?
If required I can post full logs and configuration file here.
Vijay.
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/Freeradius-Ldap-mosul
ket = "/var/run/radiusd/radiusd.sock"
>> }
>> }
>> Listening on authentication address * port 1812
>> Listening on accounting address * port 1813
>> Listening on command file /var/run/radiusd/radiusd.sock
>> Listening on proxy address * port 1814
>&
t;> }
>> listen {
>> type = "control"
>> listen {
>> socket = "/var/run/radiusd/radiusd.sock"
>> }
>> }
>> Listening on authentication address * port 1812
>> Listening on accounting a
eturns noop
> [suffix] No '@' in User-Name = "ldapuser", looking up realm NULL
> [suffix] No such realm "NULL"
> ++[suffix] returns noop
> [eap] No EAP-Message, not doing EAP
> ++[eap] returns noop
> ++[unix] returns notfound
> ++[files] returns no
ting for bind result ...
rlm_ldap: Bind failed with invalid credentials
++[ldap] returns reject
Failed to authenticate the user.
Using Post-Auth-Type Reject
+- entering group REJECT {...}
[attr_filter.access_reject] expand: %{User-Name} -> ldapuser
attr_filter: Matched entry DEFAULT at line 11
On Wed, Jul 20, 2011 at 3:07 PM, m4xmr wrote:
> Hello,
> I'm trying to make working LDAP as authentication backend for RADIUS.
> I verified that the data are right and the query to LDAP is properly working
> if I use ldapsearch.
does LDAP BIND work correctly using ldapsearch (i.e. ldapsearch -D)
t 2 for 1 seconds
Finished request 2
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
I hope, someone could help me... I'm totally in stuck.
Regards,
Max
--
View this message in context:
http://freeradius.1045715.n5.nabble.com/FreeRadius-LDAP-tp46
Hi,
I install freeradius on Debian machine. I have my user in ldap
and I use that directory to authentication.But when I want
to use SSL or TLS in connections between radius and ldap, I have that error
in radius log. (Freeradius -X)
-
[ldap] ldap_get_conn: Checki
Thank you very much!
I am new to ldap :(
thank you it works now!
From: James J J Hooper
To: freeradius-users@lists.freeradius.org
Sent: Sat, April 2, 2011 9:54:26 PM
Subject: Re: freeradius+ldap: Invalid DN syntax
On 02/04/2011 18:29, ziko wrote:
> He
On 02/04/2011 18:29, ziko wrote:
Hello.
I am using Freeradius 2 with openldap 2.3.43 on my CentOS 5.
My OPenldap works grate without freeradius, and freeradius works without ldap.
But i cant connect ldap and freeradius.
my ldapsearch output:
ldapsearch -x
# extended LDIF
#
# LDAPv3
# base (d
Hello.
I am using Freeradius 2 with openldap 2.3.43 on my CentOS 5.
My OPenldap works grate without freeradius, and freeradius works without ldap.
But i cant connect ldap and freeradius.
my ldapsearch output:
ldapsearch -x
# extended LDIF
#
# LDAPv3
# base (default) with scope subtree
# filte
Hello everyone,
after a long time my freeradius it's working with Ldap.
The problem it was because I hasn't Installed the Samba.
my aim is to use the freeradius to authencticate my wireless users with
EAP-TLS. As I'm using the MSCHAP it's necessary the attributes
SambaNTPassword and SambaLMPass
Usuário do Sistema wrote:
> Hello everyone, I'm dificult with freeradius and LDAP.
> the user autheticate only it's work when I put in the user file
> User-Password clear text as follow.
> "maicon.pereira"Cleartext-Password := "meleca"
>Reply-Message = "Hello, %{
Maicon,
como vi o Pereira no seu nome, deduzo que você seja do Brasil, portanto irei
responder sua pergunta em português.
1º Sim o freeradius se integra perfeitamente com o LDAP>
2º Que base LDAP vc esta utilizando? OpenLDAP, Active Directory???
3° Como esta a configuração de seu arquivo ldap?
Hello everyone, I'm dificult with freeradius and LDAP.
the user autheticate only it's work when I put in the user file
User-Password clear text as follow.
"maicon.pereira"Cleartext-Password := "meleca"
Reply-Message = "Hello, %{User-Name}"
however, my integration b
On 7 Mar 2011, at 22:14, Alexander Clouter wrote:
> Guy wrote:
>>
>> I now have FreeRadius granting access and using LDAP for username and
>> password information.
>>
>> My next challenge, using the same Radius and LDAP server I would like
>> to grant different users access via different NAS
Guy wrote:
>
> I now have FreeRadius granting access and using LDAP for username and
> password information.
>
> My next challenge, using the same Radius and LDAP server I would like
> to grant different users access via different NAS clients.
>
> eg in LDAP I would have:
>
> uid=guy
> servi
Hi all,
I now have FreeRadius granting access and using LDAP for username and password
information.
My next challenge, using the same Radius and LDAP server I would like to grant
different users access via different NAS clients.
eg in LDAP I would have:
uid=guy
services: VPN
services: WiFi
I
nal Message-
>> From: freeradius-users-bounces+ggatten=waddell@lists.freeradius.org
>> [mailto:freeradius-users-bounces+ggatten=waddell@lists.freeradius.org]
>> On Behalf Of Max Schröder
>> Sent: Friday, February 11, 2011 2:31 PM
>> To: FreeRadius users mail
Of Max Schröder
> Sent: Friday, February 11, 2011 2:31 PM
> To: FreeRadius users mailing list
> Subject: Re: Freeradius + LDAP for WPA-Enterprise
>
> Gary Gatten wrote:
>> You forced ALL Authentication requests to use LDAP. EAP / LDAP don't play
>> well together. Remo
s.org
[mailto:freeradius-users-bounces+ggatten=waddell@lists.freeradius.org] On
Behalf Of Max Schröder
Sent: Friday, February 11, 2011 2:31 PM
To: FreeRadius users mailing list
Subject: Re: Freeradius + LDAP for WPA-Enterprise
Gary Gatten wrote:
> You forced ALL Authentication requests to use LD
2011 2:31 PM
To: FreeRadius users mailing list
Subject: Re: Freeradius + LDAP for WPA-Enterprise
Gary Gatten wrote:
> You forced ALL Authentication requests to use LDAP. EAP / LDAP don't play
> well together. Remove the "Auth Type LDAP" - for now.
>
If I remove that
Gary Gatten wrote:
You forced ALL Authentication requests to use LDAP. EAP / LDAP don't play well together.
Remove the "Auth Type LDAP" - for now.
If I remove that the radtest failed for a LDAP-User. It returns a
rejected Message.
As for accomplishing your goal, unfortunately others will
I don't think ntlm_auth makes any ldap calls.
From: Vinicius Teixeira Coelho [mailto:vinicius...@gmail.com]
Sent: Friday, February 11, 2011 12:41 PM
To: FreeRadius users mailing list
Subject: Re: Freeradius + LDAP for WPA-Enterprise
Yes, but your samba is using the ldap
[]'s
-
Of *Vinicius Teixeira Coelho
> *Sent:* Friday, February 11, 2011 12:09 PM
>
> *To:* FreeRadius users mailing list
> *Subject:* Re: Freeradius + LDAP for WPA-Enterprise
>
>
>
> Hello, I'm trying to do the same thing, I know I have to use winbind and
> samba to get it
ggatten=waddell@lists.freeradius.org] On
Behalf Of Vinicius Teixeira Coelho
Sent: Friday, February 11, 2011 12:09 PM
To: FreeRadius users mailing list
Subject: Re: Freeradius + LDAP for WPA-Enterprise
Hello, I'm trying to do the same thing, I know I have to use winbind and samba
to get it, but in read
e=umhb@lists.freeradius.org] On
Behalf Of Gary Gatten
Sent: Friday, February 11, 2011 11:37 AM
To: 'FreeRadius users mailing list'
Subject: RE: Freeradius + LDAP for WPA-Enterprise
I'm barely a novice with FR, so take this with a grain of salt:
You forced ALL Authentication requests
AP directly because of the "no clear
> text password" issue.
>
> Gary
>
>
> -Original Message-
> From:
> freeradius-users-bounces+ggatten=waddell@lists.freeradius.org[mailto:
> freeradius-users-bounces+ggatten=waddell@lists.freeradius.org] On
> Behalf O
+ggatten=waddell@lists.freeradius.org] On
Behalf Of Max Schröder
Sent: Friday, February 11, 2011 11:06 AM
To: freeradius-users@lists.freeradius.org
Subject: Freeradius + LDAP for WPA-Enterprise
Hello to all,
I would like to use Freeradius to authenticate my wireless network using
OpenWRT and Free
Hello to all,
I would like to use Freeradius to authenticate my wireless network using
OpenWRT and Freeradius + LDAP. What I've done:
First Authenticated Users in WLan using EAP-TTLS and files in
Freeradius. WORKED! Then I've configured ldap-Modul + added "ldap" in
the
On Thu, Dec 02, 2010 at 03:48:34PM +0100, Josip Rodin wrote:
> > The configuration that work:
> >
> > ldap ldapPerson{
> >set_auth_type = yes
> > }
>
> I think this is the catch. I don't have this particular option in my config,
> but I see now that it looks like they're all 2.1.8.
I re-chec
On Thu, Dec 02, 2010 at 02:37:43PM +0100, Ana Gallardo wrote:
> I have read that this is not ok
>
> http://www.mail-archive.com/freeradius-users@lists.freeradius.org/msg49993.html
OK, and you're not doing that which is described above, so you're fine.
> The configuration that work:
>
> ldap lda
Hello Josip and thank you again for your response.
This is an orthogonal issue; you don't have to allow anyone to read the
> value of the userPassword attribute, you just have to get the FR ldap
> module to *bind* to the LDAP server with the username and password from
> the request.
Ok, now I kn
Hello again. Ok, now I can authenticate an user using LDAP.
I'm using freeradius 2.1.10 and I want to use ldap like a backend in
> authorize section to take userPassword attribute (unix crypt) to
> authenticate the user.
>
My problem is: the ldap server don't have public key that an admin user (wh
On Thu, Dec 02, 2010 at 09:09:51AM +0100, Ana Gallardo wrote:
> > Add LDAP into the authenticate section, so that it simply tries to re-bind
> > with the provided credentials? Like this:
> >
> >Auth-Type LDAP {
> >ldapPerson
> >}
> >
>
> I try this configuration too
Josip, thanks for your response.
Add LDAP into the authenticate section, so that it simply tries to re-bind
> with the provided credentials? Like this:
>
>Auth-Type LDAP {
>ldapPerson
>}
>
I try this configuration too, but it doesn't work for me. Freeradius doesn'
On Wed, Dec 01, 2010 at 12:48:14PM +0100, Ana Gallardo wrote:
> My problem is: the ldap server don't have public key that an admin user
> (who bind) can take. So I have to bind in the authorize section with the
> user and password (clear text) in the request.
> authenticate {
> Auth-Type PAP {
>
Hello,
I'm using freeradius 2.1.10 and I want to use ldap like a backend in
authorize section to take userPassword attribute (unix crypt) to
authenticate the user.
My problem is: the ldap server don't have public key that an admin user (who
bind) can take. So I have to bind in the authorize secti
Opa e ae blz?
Vou fazer isso amanha, te mandei para teu email todo o diretorio do
freeradius para voce dar uma olhada nos confs, estou ha 3 semanas tentando
fazer essa implementacao e nao consigo cara.
amanha de manha vou la tentar denovo.
obrigado pela forca.
2010/11/24 Paulo Maia
> comment
Paulo Maia wrote:
> comment everything the users file .
Wrong answers make life difficult for everyone.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
yes i have.
2010/11/24 Paulo Maia
> Do u have NT e LM passowrd attributes in ur LDAP database ? coz if u do u
> could try to use EAP/PEAP .
> Its easier for windows clients .
> Regards ,
>
>
>
> On Wed, Nov 24, 2010 at 9:26 AM, Old Eduardo wrote:
>
>> I read in many sites, for get ldap auth ne
Old Eduardo wrote:
> no :(
> in debug only appears auth type Local
Stop wasting your time.
You have NOT configured the server correctly, and you have NOT
followed instructions on this list.
> see:
> Wed Nov 24 08:30:54 2010 : Debug: +- entering group authorize
You've used "radiusd -Xx".
comment everything the users file .
Brasileiro mano ?
On Wed, Nov 24, 2010 at 9:31 AM, Old Eduardo wrote:
> no :(
> in debug only appears auth type Local
> see:
> Wed Nov 24 08:30:54 2010 : Debug: +- entering group authorize
> Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: calling
> p
Do u have NT e LM passowrd attributes in ur LDAP database ? coz if u do u
could try to use EAP/PEAP .
Its easier for windows clients .
Regards ,
On Wed, Nov 24, 2010 at 9:26 AM, Old Eduardo wrote:
> I read in many sites, for get ldap auth need mschap, its true?
>
> i try mschap.
>
> 2010/11/24
no :(
in debug only appears auth type Local
see:
Wed Nov 24 08:30:54 2010 : Debug: +- entering group authorize
Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: calling preprocess
(rlm_preprocess) for request 0
Wed Nov 24 08:30:54 2010 : Debug: modsingle[authorize]: returned from
preproce
I read in many sites, for get ldap auth need mschap, its true?
i try mschap.
2010/11/24 Paulo Maia
> yes . but i have to include in your authorize and authenticate sessions .
> What kind of auth ure trying to get ?
> Regards ,
>
>
>
> On Wed, Nov 24, 2010 at 8:43 AM, Old Eduardo wrote:
>
>> wh
It works ?
On Wed, Nov 24, 2010 at 8:47 AM, Old Eduardo wrote:
> ok i found this.
>
> sites-enabled/default
>
> eap auth mode.
>
> 2010/11/24 Paulo Maia
>
> What auth method u're trying to use ?
>> EAP/PEAP ?
>>
>> Regards ,
>>
>>
>>
>> On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo wrote:
>>
>>
yes . but i have to include in your authorize and authenticate sessions .
What kind of auth ure trying to get ?
Regards ,
On Wed, Nov 24, 2010 at 8:43 AM, Old Eduardo wrote:
> where i define this? eap.conf?
>
> sorry, newbie with freeradius.
>
> 2010/11/24 Paulo Maia
>
> What auth method u're
ok i found this.
sites-enabled/default
eap auth mode.
2010/11/24 Paulo Maia
> What auth method u're trying to use ?
> EAP/PEAP ?
>
> Regards ,
>
>
>
> On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo wrote:
>
>> HI Paulo,
>>
>> Thanks for u reply, see below my authenticate and authorize session.
where i define this? eap.conf?
sorry, newbie with freeradius.
2010/11/24 Paulo Maia
> What auth method u're trying to use ?
> EAP/PEAP ?
>
> Regards ,
>
>
>
> On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo wrote:
>
>> HI Paulo,
>>
>> Thanks for u reply, see below my authenticate and authorize se
What auth method u're trying to use ?
EAP/PEAP ?
Regards ,
On Wed, Nov 24, 2010 at 7:52 AM, Old Eduardo wrote:
> HI Paulo,
>
> Thanks for u reply, see below my authenticate and authorize session.
>
> authorize {
> preprocess
> mschap
> ldap
> }
>
> authenticate {
>
HI Paulo,
Thanks for u reply, see below my authenticate and authorize session.
authorize {
preprocess
mschap
ldap
}
authenticate {
Auth-Type LDAP {
ldap
}
Auth-Type MS-CHAP {
mschap
}
}
2010/11/23 Paulo Maia
Old Eduardo wrote:
> sorry alan, i understand need to read debug.
>
> But, i see secret in clients and my test radtest user pass ip 0 secret
> is corretly.
That uses a *different* secret, as the packet is coming from a
different IP address.
i.e. you can either fix the secret as suggested by
Show us your authorize and authenticate session . I had a problem like that
once
Regards ,
On Tue, Nov 23, 2010 at 9:49 AM, Old Eduardo wrote:
> sorry alan, i understand need to read debug.
>
> But, i see secret in clients and my test radtest user pass ip 0 secret is
> corretly.
>
> And my othe
sorry alan, i understand need to read debug.
But, i see secret in clients and my test radtest user pass ip 0 secret is
corretly.
And my other doubt is in auth type = Local, why local if i put auth type
LDAP in configuration? Only get local ...
Realy sorry for this, but need u help.
Regards,
2
Old Eduardo wrote:
> but i try to configure this in few weeks and no get sucess.
Ask questions earlier.
Or, read the debug output.
> Tue Nov 23 07:37:24 2010 : Debug: WARNING: Unprintable characters in
> the password.Double-check the shared secret on the server and the NAS!
That mes
Sorry list,
but i try to configure this in few weeks and no get sucess.
Realy need help for list.
im try to all sites in google, but no get sucess.
i try this:
http://blog.yufeng.net/index.php/2010/07/debian-poptop-freeradius-openldap/
http://wiki.freeradius.org/Rlm_ldap
http://mhoran.wordpress.
Thanks john , i install in debian server, default config, apt-get
install
Directory is: /etc/freeradius ;
Sorry, im newbie, but before i configure ldap module freeradius work,
after configure ldap module, no way to connect, certain my problem stays
with module ldap, authentication ...
On 11/05/2010 03:06 PM, Phil Mayers wrote:
On 11/05/2010 06:47 PM, Eduardo Moreira wrote:
sorry, but where i checked the shared secret? in clients.conf?
Yes
if yes, secret is ok!
No it isn't; look at the packet:
Mon Nov 1 15:06:16 2010 : Debug: Ready to process requests.
rad_recv: Ac
"There's many a slip 'twixt the cup and the lip"
I promise you'll want to kick yourself when you find the simple
difference after so many messages. Many of us have the grace to go
through this necessarily humbling exercise in private.
On 2010-11-05 2:47 PM, Eduardo Moreira wrote:
sorry, but
On 11/05/2010 06:47 PM, Eduardo Moreira wrote:
sorry, but where i checked the shared secret? in clients.conf?
Yes
if yes, secret is ok!
No it isn't; look at the packet:
Mon Nov 1 15:06:16 2010 : Debug: Ready to process requests.
rad_recv: Access-Request packet from host 10.12.60.19 por
sorry, but where i checked the shared secret? in clients.conf?
if yes, secret is ok!
thanks for any help.
On 11/04/2010 09:51 AM, eduardo moreira wrote:
SOrry about this mail Josip, but i checked again my clients.conf, and
i put conf here for u see.
clients.conf
client 127.0.0.1 {
same message, but one message desappears:
Thu Nov 4 09:30:02 2010 : Debug: WARNING: Unprintable characters in the
password. Double-check the shared secret on the server and the NAS!
before this message appears this:
Thu Nov 4 10:58:52 2010 : Debug:
!!
On 2010/11/04 02:37 PM, eduardo moreira wrote:
sorry
radtest -d /etc/freeradius username 123456 10.12.60.19 1812 password any
That should work.
The "any" is probably unnecesary.
What does freeradius -X now say?
--
Johan Meiring
Cape PC Services CC
Tel: (021) 883-8271
Fax: (021) 886-7782
eduardo moreira wrote:
> SOrry about this mail Josip, but i checked again my clients.conf, and i
> put conf here for u see.
The debug log you posted contains the solution to the problem.
Read it.
If it's too hard to understand, paste the debug output into this form:
http://networkradius.c
sorry
radtest -d /etc/freeradius username 123456 10.12.60.19 1812 password any
2010/11/4 Johan Meiring
> On 2010/11/04 02:16 PM, eduardo moreira wrote:
>
>>
>> raddtest -d /etc/freeradius username password ip-server port-server
>> secret but no works.
>>
>>
> Copy and paste your command.
> Do n
On 2010/11/04 02:16 PM, eduardo moreira wrote:
raddtest -d /etc/freeradius username password ip-server port-server
secret but no works.
Copy and paste your command.
Do not retype it.
--
Johan Meiring
Cape PC Services CC
Tel: (021) 883-8271
Fax: (021) 886-7782
-
List info/subscribe/unsubsc
hi johan,
thanks for u reply.
i try with your command,
raddtest -d /etc/freeradius username password ip-server port-server secret
but no works.
but thanks.
2010/11/4 Johan Meiring
> On 2010/11/04 01:51 PM, eduardo moreira wrote:
>
>>
>> and i use this command to test connection:
>> radtest u
On 2010/11/04 01:51 PM, eduardo moreira wrote:
and i use this command to test connection:
radtest username 123456 10.12.60.19 1812 0 password
man radtest gives me this:
radtest [-d raddb_directory] user password radius-server nas-port-number
secret [ppphint] [nasname]
Looking at your comm
SOrry about this mail Josip, but i checked again my clients.conf, and i put
conf here for u see.
clients.conf
client 127.0.0.1 {
secret = password
shortname = localhost
nastype = other # localhost isn't usually a NAS...
}
client 10.12.60.19 {
Yes, i checke shared secred in clients.
And i try to reinstall with apt-get but dont works.
ty for help.
2010/11/1 Josip Rodin
> On Tue, Nov 02, 2010 at 07:30:23AM +1300, Peter Lambrechtsen wrote:
> > It's probably since you didn't compile OpenLDAP and FreeRadius with
> OpenSSL
> > support.
>
On Tue, Nov 02, 2010 at 07:30:23AM +1300, Peter Lambrechtsen wrote:
> It's probably since you didn't compile OpenLDAP and FreeRadius with OpenSSL
> support.
>
> So you will need to recompile OpenLDAP, Cyrus SASL, OpenLDAP and FreeRadius.
No, no, no, and no.
If you want to read random debug mess
It's probably since you didn't compile OpenLDAP and FreeRadius with OpenSSL
support.
So you will need to recompile OpenLDAP, Cyrus SASL, OpenLDAP and FreeRadius.
On Tue, Nov 2, 2010 at 6:14 AM, eduardo moreira
wrote:
> Hello list,
>
> Im new with freeradius, but read many about this and dont sol
1 - 100 of 436 matches
Mail list logo