And why the process is stopped automaticaly? any reasons.
On Mon, Apr 27, 2009 at 2:05 PM, ramesh p wrote:
> Thanks. How to configure it?
>
>
> On Mon, Apr 27, 2009 at 1:29 PM, Borislav Dimitrov <
> b.dimit...@ngsystems.net> wrote:
>
>> Hi there,
>> I may be mistaken but... these are log message
Thanks. How to configure it?
On Mon, Apr 27, 2009 at 1:29 PM, Borislav Dimitrov wrote:
> Hi there,
> I may be mistaken but... these are log message on the NAS aren't they?
> If this is the case, I've experienced similar behavior with Cisco VoIP
> routers (RADIUS Server DEAD and then... ALIVE). T
Hi there,
I may be mistaken but... these are log message on the NAS aren't they?
If this is the case, I've experienced similar behavior with Cisco VoIP
routers (RADIUS Server DEAD and then... ALIVE). This happens if you
haven't properly enabled concurrency in FreeRADIUS - the CPU usage
stay
Am 27.04.2009 um 09:08 schrieb ramesh p:
I'm seeing the following weirdness from my freeradiusserver and
when i see the radiusd process its stopped status. why this
happens. any valid reasons for this?
Apr 26 00:18:44.498: %RADIUS-4-RADIUS_ALIVE: RADIUS server
X.X.X.X:0,1813 is being marke
I'm seeing the following weirdness from my freeradiusserver and when i see
the radiusd process its stopped status. why this happens. any valid reasons
for this?
Apr 26 00:18:44.498: %RADIUS-4-RADIUS_ALIVE: RADIUS server
X.X.X.X:0,1813 is being marked alive.
Apr 26 00:18:50.777: %RADIUS-4-RADIUS_D
I'm getting the following messges/alarms from freereadius server version
1.1.6. and when i oberserved the radiusd process it's stopped. Why this
happens?
Apr 26 00:18:44.498: %RADIUS-4-RADIUS_ALIVE: RADIUS server
10.199.32.34:0,1813 is being marked alive.
Apr 26 00:18:50.777: %RADIUS-4-RADIUS_DEA
> rlm_eap: Identity does not match User-Name, setting from EAP Identity.
Username was altered.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
sorry if my question is really dumb; I'm new to the list...
I run Freeradius 1.1.7 on a Ubuntu 8.04 LTS/x86_64 box, and want to
have the following:
- Win XP WLan clients authenticate at an WLan access point with 802.1x;
- the access points talks to the Freeradius server;
- the user databa
Ivan,
Thank you so much! Perhaps you misunderstood my intention of saying
"relevant portions" of the configs - this isn't *everything* in the
config, just everything related to LDAP.
Regardless, I just removed all of what I'd added to users and added that
construct to authorize{} in my default si
>I can't seem to find anything concrete online for freeradius1 relating to
groupOfNames, so I've just been trying random things that I found online
(for raddb/users) hoping one would work.
>
>RELEVANT CONFIGS (only relevant portions, comments removed)
>raddb/sites-enabled/default:
>authorize {
>
Podlazov, Lev wrote:
This is the only one officially offered by Redhat for Redhat 5 i386 we
are using .
I've installed freeradius-1.1.3 from RedHat .
Wow, I would really recommend using the latest 2.x release or if you
absolutely have to use 1.x use version 1.1.7. The 2.x is much easier to
: Thursday, April 16, 2009 10:04 AM
To: FreeRadius users mailing list
Cc: TGSI, Unix Administrator - Shared Mailbox
Subject: Re: Help with initial setup Sita<-->Ext.
Radius<-->Int.Radius<-->AD
On Thu, Apr 16, 2009 at 09:41:21AM -0400, Podlazov, Lev wrote:
> Good morning ,
>
> Ou
;ve set access for all users in /etc/raddb/users and defined clients in
> /etc/raddb/clients.conf according to documentation.
> I am totally new to Radius and this point I am lost what to try next.
> Any help greatly appreciated
>
> Thanks
>
> Lev Podlazov
> IMF
>
entation.
I am totally new to Radius and this point I am lost what to try next.
Any help greatly appreciated
Thanks
Lev Podlazov
IMF
202-623-4054
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ot;, Auth-Type
:= Reject
#
#DEFAULT Auth-Type := LDAP
#
#
#
DEFAULT Ldap-Group == WirelessUsers
DEFAULT Auth-Type := Reject
(For users, I've tried each of the pairs of commented-out lines, as per
different things I found online.)
I'm sure this is horribly simple, but I just can&#x
> Please let me know .. Is it compulsory to configure EAP/PEAP .
No. But it is enabled in freeradius by default - ie. it "just works".
> Or it will work with EAP -md5 (that is default configuration , without any
change after installation ...!!) also ..??
That is enabled by default as wel
Hello ,
Please let me know .. Is it compulsory to configure EAP/PEAP . Since our
end user have windows xp /vista .. Or it will work with
EAP -md5 (that is default configuration , without any change after
installation ...!!) also ..??
thanks.
-
List info/subscribe/unsubscribe? See http://www.free
> I want to ask you that how radius server with get authentic the user
since it is not getting user password or hashed password ..??
I t is. It's in EAP-Message. So, stop forcing Auth-Type Ldap. Don't do that.
Just don't. Delete that line and EAP will work.
Ivan Kalik
Kalik Informatika ISP
Hello , I want to install freeradius server for the authentic wifi users ,
whose database is stored in ldap server ..Users who will use the wifi are
mostly windows xp /vista users.
what i have tried:
(1) Install openssl by apt-get install command ... (Also By the source code
by the commands ./con
> I am using freeradius-1.1.7 . i am using the default configuration with
a local user whose entry is in users file .
> now when i try from localhost it works..
> But when i try from laptop it shows error that user password attribute
requird ..!!!
> what should i do...?
Don't break EAP!
Hello,
I am using freeradius-1.1.7 . i am using the default configuration with a
local user whose entry is in users file .
now when i try from localhost it works..
But when i try from laptop it shows error that user password attribute
requird ..!!!
what should i do...?
rad_recv: Access-Request
>I've googled this to no avail (have been working on it for about 4 hours
>now). I'm running FreeRADIUS 1.1.0 (SuSE package) and OpenLDAP 2.3.19. I
Upgrade. This is much easier with unlang.
>have an access point that will do captive portal, but only via RADIUS,
>not via LDAP natively. I already h
Sorry to re-post, but I'm still banging my head against the wall with
this... If anyone could help, or provide a pointer to something that
(obviously) I'm missing, it would be greatly appreciated.
Hi,
I've googled this to no avail (have been working on it for about 4 hours
no
I think I agree with you and will compile 1.7 from source. Would likely make
this whole thing much easier as it seems like your suggesting. I will try
make an rpm and send it to the PclinuxOS repositories as well if possible.
That way other users will be able to get the up to date binary. :)
On Mo
daniel knox wrote:
> Basically I had to use radius 1.7 something as it was in the repos.
Source code *does* exist for newer versions.
> I have NTPassword in my ldap directory so i could use PEAP, however
> maybe through miss-configuration by me or the fact that my entry does
> not have a prece
Okies long day trying to deploy radius, i think it might be in a working
state though.
Basically I had to use radius 1.7 something as it was in the repos. If
problems persist Ill try and compile a binary up for the distro they are
using (pclinuxOS). Off topic I agree with people that a server orie
daniel knox wrote:
>
> Lol just actually read some stuff on WPA and learnt abit more about EAP. I
> realise now that TTLS does not require client certificates like I previously
> thought only the server. Apologies for this miss understanding. Although I
> do realise now that SecureW2 would be req
Hi,
> Lol just actually read some stuff on WPA and learnt abit more about EAP. I
> realise now that TTLS does not require client certificates like I previously
> thought only the server. Apologies for this miss understanding. Although I
> do realise now that SecureW2 would be required to give my W
mentioned previously I would like to keep admin
> work down as much as possible in terms of certificates due to currently many
> of our users have to constantly come to ICT for help configuring their
> wireless. Hence the ideal of them just needing to use their username and
> passwor
ll be most
suitable in this case. As i mentioned previously I would like to keep admin
work down as much as possible in terms of certificates due to currently many
of our users have to constantly come to ICT for help configuring their
wireless. Hence the ideal of them just needing to use their us
t...@kalik.net wrote:
>
>>In my scenario I would like to use PEAP if possible but not require the user
>>client to have a certificate, just the radius-server (which is why i believe
>>the TTLS solution will be in-efficient here as i would have to deal with
>>handy out client certificates to hundre
daniel knox wrote:
>
> Hello everyone, this is my first time getting started with freeradius.
>
> I implement ICT at a local school and I would like to improve our wireless
> from a WPA pre-share key to a radius based system. We have an openldap
> server already with all our users and groups and
>In my scenario I would like to use PEAP if possible but not require the user
>client to have a certificate, just the radius-server (which is why i believe
>the TTLS solution will be in-efficient here as i would have to deal with
>handy out client certificates to hundreds of users). And to be aske
add the user specifically before it goes onto the ldap auth. However
how can i get it to deny access to ldap groups from this?
Any help / guides online which you think will help me get pointed in the
right direction would be super.
Many Thanks.
-
List info/subscribe/unsubscribe? See http
e := Reject
I've tried all of the commented out stuff also, and none of it worked.
All I want is (assuming username & password are correct) allow anyone
who is in "WirelessUsers" group, deny everyone else.
I'm sure this is horribly simple, but I just can't seem to figure it out
from the docs or from extensive googling.
Thanks for any help,
Jason Antman
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Chris Li, thanks a ton for your help. I can get this working for eap TLS
but with eap-PEAPv0 I get this error:
[peap] Got tunneled request
EAP-Message = 0x020a00061a03
server {
PEAP: Setting User-Name to ISD\josh
Sending tunneled request
EAP-Message = 0x020a00061a03
FreeRADIUS
> rlm_eap: Request found, released from the list
> rlm_eap: EAP NAK
> rlm_eap: EAP-NAK asked for EAP-Type/peap
> rlm_eap: No such EAP type peap
> rlm_eap: Failed in EAP select
You have done something to eap.conf and disabled peap.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubsc
Hello ,
I am using Freeradius-1.1.7 with ldap , i am being able to authenticate
users when i run radtest , those who are in my ldap directory, but i am
unable to authenticate the same authenticate users when i try from the
laptop(wifi ) .
What should i do ..
here the debug mode when i try from
r pass) then he gets an
>access-reject as expected.
>However, any subsequent login requests from the same client machine
>(even with correct credentials) seem to be ignored completely. Other
>client machines CAN login however.
> Restarting FreeRADIUS or the wi-fi network interface card of
ccess-reject as expected.
However, any subsequent login requests from the same client machine
(even with correct credentials) seem to be ignored completely. Other
client machines CAN login however.
Restarting FreeRADIUS or the wi-fi network interface card of the
client does not help at all. The onl
roaring penguin never reply , im stuck with this issue!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>Ivan thanks for your help but can you tell me how to add them? i tried to
>include the dictionary.roaring,,, but it didnt work.
Feel free to ask roaring penguin lot about it.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ivan thanks for your help but can you tell me how to add them? i tried to
include the dictionary.roaring,,, but it didnt work.
thanks again
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>Hi , i added RP-upsteam-speed-limit and RP-down-speed-limit attributes to my
>freeradius and i can see the outout with radiusd -X
>Sending Access-Accept of id 250 to 127.0.0.1 port 37116
>Framed-Protocol = PPP
>Framed-IP-Address = 255.255.255.254
>Framed-IP-Netmask = 255.25
/run/radattr.pppX
for example
cat /var/run/radattr.ppp13
Framed-Protocol PPP
Framed-IP-Address 255.255.255.254
Framed-IP-Netmask 255.255.255.255
Framed-MTU 1492
Session-Timeout 43200
Idle-Timeout 1200
Port-Limit 1
anyone can help me with this issue please
regards
-
List info/subscribe/unsubscribe
>the situation is, sometimes my bd in mysql (that run on another computer)
>crash or have problems,
>
>how can i autenticate all users with any password or any usernames? Then i let
>my clients coneccted and can fix my db server
>
>how can i do this?
>
DEFAULT Auth-Type := Accept
Ivan Kali
I have one answer, maybe its cause im newba in freeradius =]
the situation is, sometimes my bd in mysql (that run on another computer) crash
or have problems,
how can i autenticate all users with any password or any usernames? Then i let
my clients coneccted and can fix my db server
ho
> Date: Mon, 23 Mar 2009 11:22:22 -0400
> From: Josh Hiner
> Subject: Help checking group membership with FreeRadius
> To: freeradius-users@lists.freeradius.org
> Message-ID: <200903231522.n2nfmnxv077...@mxdrop218.xs4all.nl>
> Content-Type: text/plain; charset=UTF-8
>
>Thanks for all the info and missed reading the comments at the end of the
>radiusd.conf. I uncommented out the ldap portions of
>/usr/local/etc/raddb/sites-enabled. My config in modules section is
>
>ldap {
>server = "ciq-dc1.ciq.com"
>port = 636
Am Dienstag, 24. März 2009 17:29:26 schrieb Edwin Isada:
> Thanks for all the info and missed reading the comments at the end of the
> radiusd.conf. I uncommented out the ldap portions of
> /usr/local/etc/raddb/sites-enabled. My config in modules section is
>
> ldap {
> s
Thanks for all the info and missed reading the comments at the end of the
radiusd.conf. I uncommented out the ldap portions of
/usr/local/etc/raddb/sites-enabled. My config in modules section is
ldap {
server = "ciq-dc1.ciq.com"
port = 636
Edwin Isada wrote:
> Hello All,
>
> Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly
> have any experience and I've been using version 1.1.3 for the past few
> weeks and had authentication working properly for Cisco devices. I
> decided to install the latest version 2.1.4 a
>Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly have
>any experience and I've been using version 1.1.3 for the past few weeks and
>had authentication working properly for Cisco devices. I decided to install
>the latest version 2.1.4 and forgot to save all my configuration
Am Dienstag, 24. März 2009 15:58:09 schrieb Edwin Isada:
> Hello All,
>
> Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly
> have any experience and I've been using version 1.1.3 for the past few
> weeks and had authentication working properly for Cisco devices. I decided
>
Hello All,
Excuse me for my lack of knowledge with Linux and FreeRadius. I hardly have
any experience and I've been using version 1.1.3 for the past few weeks and
had authentication working properly for Cisco devices. I decided to install
the latest version 2.1.4 and forgot to save all my config
-Name:-None} --domain=ISD
--challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00}"
thanks for any help =D
*** This Email was sent by a system administrator in REMC #1.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>Verified the shared secret and it is given correctly in the request.Is there
>any configuration need to be done?Appreciate your help.Thanks,Sri
>
Shared secret *is* wrong - probability 99.99%
Crypto libraries are corrupted - probability 0.01%
Retype the shared secret on the remote test client.
Hi,I configured my FR server with PAM.When tried with radclient from localhost
(where is FR is installed), user password is displaying in clear text; but when
trying to authenticate the same user over network (using ntradping), user
password is showing in "unprintable chars". Following are my
Padam J Singh wrote:
> I have a LDAP server which contains ntPassword and lmPassword attributes
> like following:
...
> lmPassword: {ENC}9846B736BDDA9E7CAAD3B435B51404EE
> ntPassword: {ENC}22D6ADD4E9AD37B87B8EDB2C91E1EE67
Ugh.
> FR 2.1.1 is configured for doing 802.1x authentication. While doin
>I have a LDAP server which contains ntPassword and lmPassword attributes
>like following:
>
>
>dn: uid=subs, ou=accounts, dc=test, dc=com
>uid: subs
>userPassword:: e01ENX03MmIwMTViNDhlOTU5ZTlkYWQ3MTAxNjNiYjJhZDkyMQ==
>mac: ""
>lmPassword: {ENC}9846B736BDDA9E7CAAD3B435B51404EE
>ntPassword: {ENC}22
Hello,
I have a LDAP server which contains ntPassword and lmPassword attributes
like following:
dn: uid=subs, ou=accounts, dc=test, dc=com
uid: subs
userPassword:: e01ENX03MmIwMTViNDhlOTU5ZTlkYWQ3MTAxNjNiYjJhZDkyMQ==
mac: ""
lmPassword: {ENC}9846B736BDDA9E7CAAD3B435B51404EE
ntPassword: {ENC}22D6
>I am running freeradius 1.0 . My server has been running for several years
>and has worked great authenticating users with a PIX and dialup servers. We
>are adding a watchguard firewall. Freeradius needs to send the watchguard
>the following filter-id on successful authentication: IPSEC_RADIUS.
. It
appears to just send RADIUS and causes the authentication to fail. I know
this is simple but I am having trouble getting this to work.
Please help
Dan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
they
sign up into our billing system and once thats done then they have
internet access.
I'm willing to pay reasonable $$ for somone that knows how to do this
using open source tools and our cisco routers.
Mucho thanks for the help.
-
List info/subscribe/unsubscribe? See http://www.free
Josh Hiner wrote:
> I want to make it so that users who use eap-peapv0 have to be in the
> wireless group to logon. I have this set in the users file:
> DEFAULTCalled-Station-Id =~ "CCISD-REMC1", Group != "wireless",
> Auth-Type := Reject
>
> This works great buuut I have successfully setu
I want to make it so that users who use eap-peapv0 have to be in the
wireless group to logon. I have this set in the users file:
DEFAULTCalled-Station-Id =~ "CCISD-REMC1", Group != "wireless",
Auth-Type := Reject
This works great buuut I have successfully setup eap-tls. What is the
app
a.l.m.bu...@lboro.ac.uk wrote:
Hi,
I do see the "Exec-Program output: Must change password (0xc224)"
which to me means the computer account password has expired? I tried
removing and re-adding the computer to the domain but get the same error.
you are right - the password needs
Hi,
Could someone suggest some AP models to buy? I want to do account properly with
freeradius.
Thanks
_
Invite your mail contacts to join your friends list with Windows Live Spaces.
It's easy!
http://spaces.live.com/spaces
Hi,
> I do see the "Exec-Program output: Must change password (0xc224)"
> which to me means the computer account password has expired? I tried
> removing and re-adding the computer to the domain but get the same error.
you are right - the password needs changing - this is MS proprietary c
t the same error.
Any ideas? Anyone else successfully doing peapv0 auth with machine
accounts and ntlm_auth?
Thanks for any help.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi,
Could someone suggest some NAS models to buy? I want to do account properly.
Thanks
_
Show them the way! Add maps and directions to your party invites.
http://www.microsoft.com/windows/windowslive/products/events.aspx-
L
> And many requests later you ask about it:
>
> >++? if (control:Tmp-String-0 == "ldap-student")
> >(Attribute control:Tmp-String-0 was not found)
>
> .. and it's not there. Of course it's not, since it wasn't
> set during processing of that Access-Request but much earlier
> in the exchange
>Here's the complete debug (excluding the server start-up messages). There's
>rather a lot of it which is why I tried to post the bits relevant to what I'm
>trying (rather unsuccessfully :-) ) to understand.
>
>rad_recv: Access-Request packet from host 10.127.240.217 port 1645, id=36,
>length=14
> Can you post the whole debug, not just snipetts. Are these
> from the same or from different requests in the exchange?
> Perhaps you need use_tunneled_reply rather than this.
>
Here's the complete debug (excluding the server start-up messages). There's
rather a lot of it which is why I tried to
>And I get:
>
> ++[eap] returns ok
>+- entering group post-auth {...}
>++[exec] returns noop
>++? if (control:Tmp-String-0 == "ldap-student")
>(Attribute control:Tmp-String-0 was not found)
>Sending Access-Accept of id 129 to 10.127.240.217 port 1645
>
>Towards the beginning of the debug output
>
> Update a server-side attribute when you use the module:
>
> update control {
> Tmp-String-0 = "ldap-student"
> }
>
> then in post-auth:
>
> if (control:Tm-String-0 == "ldap-student") {
> ...
>
> }
&
Leighton Man wrote:
> Logic now working correctly - Many thanks
> Final problem is to return reply attributes in the access accept message. As
> a test I added Reply-Message := "User is staff" in the update reply section
> and the server duly added it to the next access challenge message. I assum
>
> see "man unlang". The syntax and examples are documented.
>
Read it many times. The problem is not the documentation, which is great, but
my understanding which isn't!
I'm working on it but finding it heavy going.
>
>...
>ldap_staff
>if (ok) {
> update reply {
>.
Leighton Man wrote:
> I've upgraded to 2.1.3 but, sorry, I'm really struggling with the concepts.
> I can't do "if Ldap-Group" because there is no container in Active Directory
> above staff and student to query.
>
> What I think I need is:
>
> if ladp_staff returns "ok" {
> update reply{
adp_staff returns "ok" {
update reply{
..
}
elsif ladp_student returns "ok" {
update reply{
..
}
else {
Auth-Type := Reject
}
,where ldap_staff and ldap_student are instances of the ldap module
I
ot sure what I did wrong the first time but many thanks for your help.
Leighton
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>Is there any way to do what I want without upgrading?
>
You can try users file:
DEFAULT Ldap-Group == staff
some reply
DEFAULT Ldap-Group == student
some other reply
DEFAULT Auth-Type := Reject
That should be at the end of the users file (ie. anything
Leighton Man wrote:
> Tried "gmake" from the top directory and "gcc -g -O2 -D_REENTRANT
> -D_POSIX_PTHREAD_SEMANTICS -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS
> -I/export/home/cmsxljm/freeradius-server-2.1.3/src -c dict.c -fPIC -DPIC -o
> .libs/dict.o" (copy and paste from the gmake output) fro
Huh? It compiles on 3-4 different Solaris boxes that I have access to.
Did you run "make" from the TOP directory, or by cd'ing to src/lib?
Alan DeKok.
Tried "gmake" from the top directory and "gcc -g -O2 -D_REENTRANT
-D_POSIX_PTHREAD_SEMANTICS -Wall -D_GNU_SOURCE -DNDEBUG -D_LIBRADIUS
Leighton Man wrote:
> Many thanks for this. I'm using 1.1.7 because it's available as a pre-built
> package on solaris for both sparc and x86 architectures. The idea is to get
> freeradius configured and working as fast as possible so it can be demo'd to
> management (I'm trying to retire Cisco
>I'm new to freeradius (3 weeks experience) and mailing lists (second attempt)
>so please have patience.
>I have freeradius 1.1.7 (prebuilt package) on Solaris 10 configured to
>authenticate against Active Directory using ntlm-auth.
>All working OK.
>Now I'm trying to return different reply att
>I'm new to freeradius (3 weeks experience) and mailing lists (second attempt)
>so please have patience.
>I have freeradius 1.1.7 (prebuilt package) on Solaris 10 configured to
>authenticate against Active Directory using ntlm-auth.
>All working OK.
>Now I'm trying to return different reply attri
p
suffix
eap
Autz-Type staff{
ldap_staff
}
Autz-Type student{
ldap_student
}
files
}
authenticate {
Auth-Type MS-CHAP {
mschap
}
eap
}
I want to reject the user if they ar
p
}
I want to reject the user if they are not in the relevant ou. I must be missing
something obvious. Can anyone help please?
Thanks in advance,
Leighton
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
le instantiation failed.
> radiusd.conf[1960] Unknown module "eap".
> radiusd.conf[1907] Failed to parse authenticate section.
>
> Can someone help me.
You are running an old version of the server, and you haven't built
the EAP-TLS module. You likely need the OpenS
odule "eap".
radiusd.conf[1907] Failed to parse authenticate section.
Can someone help me.
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>We got 2 problems when setting up a virtual server (testing.mydomain) to
>handle requests for realm @testing.mydomain:
>
>1. we defined a new ldap server in modules/ldap and want to use it for
>authorization/authentication of realm @testing.mydomain, but have no
>idea how to use it since the ldap
radiusd to go through
authorize section other than the default one?
Would anyone pls help? Thanks a lot.
Best Regards,
/ST Wong
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>rad_recv: Access-Request packet from host 127.0.0.1:54057, id=172, length=59
>
>User-Name = "monitor"
>
>User-Password = ""
>
>NAS-IP-Address = 255.255.255.255
>
>NAS-Port = 1812
>
> Processing the authorize section of radiusd.conf
>
>modcall: entering grou
tim.sylvester=networkradius@lists.freer
adius.org] On Behalf Of Shimon Weinreich
Sent: Tuesday, February 24, 2009 10:36 PM
To: freeradius-users@lists.freeradius.org
Subject: auth: Failed to validate the user - NEED SOME HELP !
Hello,
My name is Shimon from the Open Univ. of Israel. I installed fre
g the entire request list ---
Cleaning up request 0 ID 172 with timestamp 49a4e630
Nothing to do. Sleeping until we see a request.
-
Can someone help me with defining radius NOT to authenticate with /etc/passwd
But with /etc/raddb/users file.
Tnx,
---
בברכה,
שמעון ויינרייך
האוניברסיטה הפתוחה
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Alan DeKok,
>> Unfortunately, I'm getting the same negative results when running the
>> recommended initial radtest test "radtest test test localhost 0
>> testing123". The following is the output I get.
>>
>> radclient: socket: cannot initialize udpfromto: Function not implemented
>>
>> I'm
Will D. Spann wrote:
> I see; thanks for the clarification. This is a departure from how
> FreeRADIUS 1.0 was configured, where the authenticate and authorize
> sections resided in the radiusd.conf file.
Yes... and the comments in the file you edited document this.
> However, I noticed a new "
The following is the output I get.
radclient: socket: cannot initialize udpfromto: Function not implemented
I'm not sure where to go from here. I'm still running with the default
configuration.
Thanks for any additional help.
Will Spann
The abbreviated radiusd -X output I recei
Will D. Spann wrote:
> Thanks for the reply. I didn't realize disabling sites-enabled would
> disable all AAA services.
The comments in radiusd.conf just before that say that the "authorize"
etc. sections are in virtual hosts, and that the "include" line includes
those virtual hosts.
> Running
901 - 1000 of 2651 matches
Mail list logo
