king as it should. Thanks.
>
>Tamas
>
>Feladó: [EMAIL PROTECTED] [EMAIL PROTECTED], meghatalmazó: [EMAIL PROTECTED]
>[EMAIL PROTECTED]
>Küldve: 2008. október 28. 13:48
>Címzett: FreeRadius users mailing list
>Tárgy: RE: Need help for configuration - LDAP with custom files Fai
rs mailing list
Tárgy: RE: Need help for configuration - LDAP with custom files Failover
>DEFAULT
>Ldap-Group != "cn=routing_admins,ou=groups,dc=mydomain,dc=hu",
>Auth-Type := Reject
>
Sorry, this looked like a single line in my webmail. It should be:
DEFAULT Lda
>DEFAULT
>Ldap-Group != "cn=routing_admins,ou=groups,dc=mydomain,dc=hu",
>Auth-Type := Reject
>
Sorry, this looked like a single line in my webmail. It should be:
DEFAULT Ldap-Group !=
"cn=routing_admins,ou=groups,dc=mydomain,dc=hu", Auth-Type := Reject
(all on the same line).
Ivan Ka
TECTED], meghatalmazó: [EMAIL PROTECTED]
>[EMAIL PROTECTED]
>Küldve: 2008. október 28. 12:18
>Címzett: FreeRadius users mailing list
>Tárgy: RE: Need help for configuration - LDAP with custom files Failover
>
>>As I see, that I should provide "Service-Type = Login-User"
üldve: 2008. október 28. 12:18
>Címzett: FreeRadius users mailing list
>Tárgy: RE: Need help for configuration - LDAP with custom files Failover
>
>>As I see, that I should provide "Service-Type = Login-User" in the reply. Is
>>it possible somehow?
>
>DEFAULT
&g
dó: [EMAIL PROTECTED] [EMAIL PROTECTED], meghatalmazó: [EMAIL
PROTECTED] [EMAIL PROTECTED]
Küldve: 2008. október 28. 12:18
Címzett: FreeRadius users mailing list
Tárgy: RE: Need help for configuration - LDAP with custom files Failover
>As I see, that I should provide "Service-Type = Login-User
>As I see, that I should provide "Service-Type = Login-User" in the reply. Is
>it possible somehow?
DEFAULT
Service-Type = Login-User
In users file. Or put it in ciscoextra where avpair is.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/l
rs mailing list
Tárgy: RE: Need help for configuration - LDAP with custom files Failover
Now, the users file is empty, and still the same (%Authorization failed on the
switch). The log:
++[auth_log] returns ok
++[chap] returns noop
++[mschap] returns noop
rlm_eap: No EAP-Message, not doing
[EMAIL PROTECTED]
Küldve: 2008. október 28. 11:25
Címzett: FreeRadius users mailing list
Tárgy: RE: Need help for configuration - LDAP with custom files Failover
>rad_recv: Access-Request packet from host myswitchip port 1645, id=139,
>length=80
>NAS-IP-Address = myswitchip
>
>rad_recv: Access-Request packet from host myswitchip port 1645, id=139,
>length=80
>NAS-IP-Address = myswitchip
>NAS-Port = 1
>NAS-Port-Type = Virtual
>User-Name = "myusernamer"
>Calling-Station-Id = "myclientip"
>User-Password = "myvalid_ldap_passw
Bind was successful
rlm_ldap: user myusername authenticated succesfully
++[ldap] returns ok
Login OK: [myusername/myvalid_ldap_password] (from client myshortname port 1
cli myclientip)
Sending Access-Accept of id 139 to myswitchip port 1645
Cisco-AVPair = "shell:priv-lvl=1"
>redundant {
> # if I comment the folloing line out, the password is accepted, but I
> get "% Authorization failed." from the switch (this is coused by the
> incorrect "users" file maybe).
So, post the debug (radiusd -X).
>files
>ldap
>ciscopwd
>
h the
modules section groupdn?
Thanks,
Tamas
Feladó: [EMAIL PROTECTED] [EMAIL PROTECTED], meghatalmazó: [EMAIL
PROTECTED] [EMAIL PROTECTED]
Küldve: 2008. október 27. 18:45
Címzett: FreeRadius users mailing list
Tárgy: Re: Need help for configuration - LDAP
>I'm facing a problem with Freeradius 2.0.4. I want to make a configuration to
>allow our Cisco routers to auth via RADIUS. For this, we're using a password
>file now (let's call it ciscopwd) and another file for granting rights.
>
>I want to change the config file, so that the auth is done by LD
Dear All,
I'm facing a problem with Freeradius 2.0.4. I want to make a configuration to
allow our Cisco routers to auth via RADIUS. For this, we're using a password
file now (let's call it ciscopwd) and another file for granting rights.
I want to change the config file, so that the auth is done
15 matches
Mail list logo
