ldconfig -v ??
alan
--
Message may be brief as it has been sent from my mobile
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
9:58 AM
To: freeradius-users@lists.freeradius.org
Subject: RE: WildCard/Subject Alternative Names Cert Question
Ok thank you.
Thomas E. Casartello, Jr.
Staff Assistant - Wireless/Linux Administrator
Information Technology
Wilson 105A
Westfield State University
-Original Message-
From
On 04/16/2011 02:42 AM, Casartello, Thomas wrote:
When you say client EAP tracing do you mean on the Microsoft side, or
Yes
is there something you can do on the freeradius side? When I lookup
No
eap tracing I get information about generating Microsoft EAP host
tracing files, but it's an
=wsc.ma@lists.freeradius.org]
On Behalf Of Phil Mayers
Sent: Saturday, April 16, 2011 5:36 AM
To: freeradius-users@lists.freeradius.org
Subject: Re: WildCard/Subject Alternative Names Cert Question
On 04/16/2011 02:42 AM, Casartello, Thomas wrote:
When you say client EAP tracing do you mean
On 04/15/2011 08:42 PM, Casartello, Thomas wrote:
whatnot.) Should this kind of a cert work, or does 802.1x/PEAP/mschapv2
not support validating by subject alternative names.
This isn't really a FreeRADIUS question; it's down to the supplicant to
permit or deny the cert.
Anyway... Section
=wsc.ma@lists.freeradius.org
[mailto:freeradius-users-bounces+tcasartello=wsc.ma@lists.freeradius.org]
On Behalf Of Phil Mayers
Sent: Friday, April 15, 2011 4:14 PM
To: freeradius-users@lists.freeradius.org
Subject: Re: WildCard/Subject Alternative Names Cert Question
On 04/15/2011 08:42 PM
]
Sent: Friday, December 01, 2006 9:54 AM
To: [EMAIL PROTECTED]; FreeRadius users mailing list
Subject: Re: (no subject)
Hi,
Are there any open source wireless clients for Windows based (2000 XP)
machines, rather than using what comes with the wireless hardware?
Several. My favourite
Also, I am under the understanding that EAP-TLS does NOT
require a client side cert, and EAP-TTLS DOES require a
EAP-TLS requires both server-side and client-side certs.
EAP-TTLS requires only a server-side cert. The client-side authentication is
performed through an inner TLS tunnel and is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Thibault Le Meur wrote:
EAP-TTLS requires only a server-side cert. The client-side authentication is
performed through an inner TLS tunnel and is usually PAP (but can be any EAP
method).
Several 801.1x/WPA clients can elect _not_ to verify the
From:
c k
To: freeradius-users@lists.freeradius.org
Sent: Tuesday, August 08, 2006 6:33
AM
Subject: (no subject)
I m using EAP-TLS as an authentication protocol.I want to authorize the
clients in my network to access only certain protocol traffics.For some users
i
Alan,Thanks for the info,but can you giude me more on this this patch. i am very newbie in the linux and freebsd world. I am more of a window person. On 7/14/06,
Alan DeKok [EMAIL PROTECTED] wrote:
Robert Dukes [EMAIL PROTECTED] wrote: This really sucks :) We invested so much into the gear here
Robert Dukes [EMAIL PROTECTED] wrote:
Has anyone used Freeradius with Alvarion Breezeaccess to do accounting ?
I am having a big issue get the
the radius to understand the rodios Attribs.
Could you be more specific? I have a problem, how do I fix it?
doesn't let anyone help you.
Alan
Sorry, Ok I use Alvarion Su radios that has radius accountingoption.buttheradiossendsomeVSAthatisnotreconizableintheradius. Breezenet/Breezecom/Alvarion VSA's. These NASs sendEthernet port data in VSAs (up to 11 per accounting request) but
unfortunately dont use the same attribute numbers each
How about adding a dictionary will all 256 numbers?
- Original Message -
From: Robert Dukes
To: FreeRadius users mailing list
Sent: Thursday, July 13, 2006 9:26 PM
Subject: Re: (no subject)
Sorry, Ok I use Alvarion Su radios that has radius accounting option. but
the radios send some
This really sucks :) We invested so much into the gear here as our project is funding by caring people. So there is no way to get this done ah On 7/14/06,
Alan DeKok [EMAIL PROTECTED] wrote:
Robert Dukes [EMAIL PROTECTED] wrote: Breezenet/Breezecom/Alvarion VSA's. These NASs send Ethernet
Robert Dukes [EMAIL PROTECTED] wrote:
This really sucks :) We invested so much into the gear here as our project
is funding by caring people. So there is no way to get this done ah
Try the patch below, which should work in 1.1.x.
No guarantees... it just compiles, and I haven't
Yasir Elhaggaz wrote:
Hello all,
i have allready freeradius installed and working well, but i can see
resentlly its became very slow to replay the DataBase wich is MySQL,
could any one send me the formal configuration file for one freeradius
witch is allreay running well and acting
Hi,
1. modify your pppoe-server to send accouting updates every hour or less
2. modify sql.conf to write an entry to sql for each accouting-update packet
3. based on session start time and update time you can calculate and see the
hourly transfer.
Regards,
Edvin
PS: I am planing to use such
Walter Reynolds [EMAIL PROTECTED] wrote:
Currently we have two files that appear to be accounting data to me.
Following are what we get (I have removed IP info for safty sake)
These two lines are from logfile.20060220
Mon Feb 20 13:07:12 2006: Received-Authentication: 63/62890 'waltr'
PROTECTED]
Namens Phil Mayers
Verzonden: dinsdag 14 februari 2006 20:51
Aan: FreeRadius users mailing list
Onderwerp: Re: (no subject)
Herman Swensson wrote:
tls: private_key_file = /usr/local/etc/raddb/certs/cert-srv.pem
tls: certificate_file = (null)
Note this, then:
rlm_eap_tls: Loading
Herman Swensson wrote:
tls: private_key_file = /usr/local/etc/raddb/certs/cert-srv.pem
tls: certificate_file = (null)
Note this, then:
rlm_eap_tls: Loading the certificate file as a chain
20360:error:0200100E:system library:fopen:Bad
address:bss_file.c:259:fopen('','r')
Set
yes
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of debik
Sent: Wednesday, December 14, 2005 1:15 AM
To: FreeRadius users mailing list
Subject: (no subject)
Isit posible to authenicate users on LAN with freeradius, without any Access
Point ?
-
List
Yes (using 802.1x or some other protocol)
Chad
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
debik
Sent: Tuesday, December 13, 2005 6:15 PM
To: FreeRadius users mailing list
Subject: (no subject)
Isit posible to authenicate users on LAN with
Hi, Josh.
the following describes the 'group lock' feature, considering a Cisco
VPN 3000 concentrator and a RADIUS server (check the RADIUS Class
attribute) :
http://www.cisco.com/en/US/customer/tech/tk59/technologies_configuration_example09186a00800946a2.shtml
It is mentioned hereafter that
Nope.
josh.
nagaraj wrote:
Hi, Has any body had any experience implementing CHAP-PASSWORD to
authenticate http clients against a radius server ? I read a document
that says The CHAP-Challenge and CHAP-PASSWORD attributes are not
suitable since the CHAP algorithm is not compatible with HTTP
Matt morris wrote:
So how do I setup freeradius to use rlm_perl then? Some pointers will
be greatly appreciated. Thank you.
rlm_perl is still experimental
That means that you'll need to compile freeradius with
the --with-experimental-modules option.
The configuration is in
On Fri, 17 Jun 2005, Graham, Robert wrote:
Dustin,
Thanks for the response. I was kind of wondering if the location of the
group in Active Directory was an issue. But that brings up another
question. Doesn't a ldapsearch use the basedn as a starting point? If
instance, I have the basedn
PROTECTED] Behalf Of Alan DeKok
Sent: Friday, May 20, 2005 1:55 PM
To: freeradius-users@lists.freeradius.org
Subject: Re: (no subject)
John Riggs [EMAIL PROTECTED] wrote:
A local user can log on but a user using the default system password file
can not log on. I've look at the debug but I'm not sure I
John Riggs [EMAIL PROTECTED] wrote:
The user is in the /etc/passwd file.
shrug The error message is definitive.
I uncommented out the passwd, shadow and group files in
radiusd.conf. Is there away to check to see if the program is
reading the passwd file.
Don't uncomment those lines.
notfound, modcall: group authenticate returns notfound.
John Riggs
619-313-2213
[EMAIL PROTECTED]
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Alan DeKok
Sent: Thursday, May 19, 2005 3:05 PM
To: freeradius-users@lists.freeradius.org
Subject: Re: (no subject
John Riggs [EMAIL PROTECTED] wrote:
A local user can log on but a user using the default system password file
can not log on. I've look at the debug but I'm not sure I understand the
problem and how to correct it. I believe this is the problem; modcall:
entering group authenticate,
John Riggs [EMAIL PROTECTED] wrote:
The connect type is a PPP connection. I hope this is enough info
this is my first time configuring a radius server. Thanks
Run the server in debugging mode, as suggested in the README,
INSTALL, and FAQ.
Alan DeKok.
-
List info/subscribe/unsubscribe?
On 5/8/05, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
Hello, I have a problem and I hope that You can help me, please!?
version: 1.0.0
I want use (Free)RADIUS for AAA on IPv6.
Only one router, one RADIUS server and one user. User(IPv6 address) connect
with Telnet to
Router(IPv6 address)
On Fri, 6 May 2005, Alan DeKok wrote:
Babar Shafiq [EMAIL PROTECTED] wrote:
I know i can see the reject cause while running in debug mode but I
want to store the reject causes in database or logs it. so it will
be helpful in future for support people,customer support etc, so
they can inform users
Babar Shafiq [EMAIL PROTECTED] wrote:
I know i can see the reject cause while running in debug mode but I
want to store the reject causes in database or logs it. so it will
be helpful in future for support people,customer support etc, so
they can inform users what is the exact cause of the
HI
Can you run the server in debug mode and post the messages
that you get.
-Sayantan.[EMAIL PROTECTED] 04/19/05 5:52 pm HiI have a very strange problem.I authenticate a user agains a Novell 6 Server which is not theproblem.But I need some
It's really obvious...
- Info: rlm_sql (sql): There are no DB handles to use! skipped 0, tried
to connect 0.
^^ Increase your DB Handles to a higher value.
- Info: Using deprecated naslist file. Support for this will go away
soon.
^^ I'd suggest fixing and using
Anderson Alves de Albuquerque schrieb:
After I need that RADIUS use crypt or DES to have
password in clean txt.
It's impossible. Once you have the password
crypted, you cannot get the clear text from
it anymore. It's like making an omelette. You
can make one from eggs, but you can't get the
What platform are you running it on? Easiest way is to use rpm or
yum/apt etc to install (on Linux).
Have a look at http://www.frontios.com/freeradius.html and also search
the list archives - the notes are also included in all the conf files
which are pretty handy
[EMAIL PROTECTED] 21/01/2005
Tnx for your reply!
My kernel is 2.6.8-1-686. OS is Debian testing.
I install: apt-get install freeradius and apt-get install
freeradius-dialupadmin. Installation is successfully finished. So i cannot
config freeradius and cannot use dialup-admin. My installed dialupadmin
hasn't sql, and
Use apt to install freeradius-sql..
[EMAIL PROTECTED] 21/01/2005 11:27:06
Tnx for your reply!
My kernel is 2.6.8-1-686. OS is Debian testing.
I install: apt-get install freeradius and apt-get install
freeradius-dialupadmin. Installation is successfully finished. So i
cannot
config
@lists.freeradius.org
Subject: Re: (no subject)
I checked their website and there was nothing about that server.
Do you happen to know where to download it?
On Tue, 11 Jan 2005 22:04:43 -0500
Janakan Rajendran [EMAIL PROTECTED] wrote:
Try Multi-tech Radius server
_
From: [EMAIL PROTECTED
I checked their website and there was nothing about that server.
Do you happen to know where to download it?
On Tue, 11 Jan 2005 22:04:43 -0500
Janakan Rajendran [EMAIL PROTECTED] wrote:
Try Multi-tech Radius server
_
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Try Google search for radius200.exe
Cheers Mike
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Martin
Jessa
Sent: 13 January 2005 18:02
To: freeradius-users@lists.freeradius.org
Subject: Re: (no subject)
I checked their website and there was nothing
Try Multi-tech Radius server
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Zhao Yu,SCNB RD NNA(BJ)
Sent: Tuesday, January 11, 2005
5:27 AM
To: freeradius-users@lists.freeradius.org
Subject: (no subject)
Is
there any opensource radius server than runs well
[EMAIL PROTECTED] 03/12/2004 17:37:45
I am testing my freeradius using NTRadPing Utility. I am running
radius
in debugger mode and I get this:
rad_recv: Access-Request packet from host 10.192.1.11:3628, id=1,
length=44
Ignoring request from unknown client 10.192.1.11:3628
In clients.conf I
radtest and radclient come
together with the freeradius Server
enter man radtest or man
radclient for more information
depending on your configuration
radclient ist installed in /opt/gnu/bin/radclient
-Original Message-From: rajesh
[mailto:[EMAIL PROTECTED]Sent: Mittwoch,
kill -HUP `cat /var/run/radius/radius.pid`
- Original Message -
From: jh vg [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, July 28, 2004 11:46 AM
Subject: (no subject)
Hi
I want to develop a project that supports WLAN roaming. I need the realms
to
be configured dynamic
On Thu, 2004-06-17 at 16:33, Maqbool Hashim wrote:
Is it possible to get a Windows Domain Controller to authenticate via
radius? Has anyone got this working?
Could you please expand on what you requirements are.
I have users authenticating against a Windows BDC via radius if that is
what you
Steve OBrien [EMAIL PROTECTED] wrote:
So they're different. If you want to know exactly what they are,
add debug statements to print them out.
would that be debug_eap = 0x in eap.conf?
Huh? There's no such configuration line in eap.conf.
I was suggesting to edit the source code.
Dont hit me, i forgot the Subject :/
Sorry!
--
+++ NEU bei GMX und erstmalig in Deutschland: TÜV-geprüfter Virenschutz +++
100% Virenerkennung nach Wildlist. Infos: http://www.gmx.net/virenschutz
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[EMAIL PROTECTED] wrote:
But there isnt Acct-Termination-Cause attribute - why ?
See the FAQ.
The server can't log what it doesn't get.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hiya
I want to log all Level 15 commands on the switches or
routers back to the freeradius box via accounting. On
the Cisco router i have:
I was under the impression that this functionality was only availible if using TACAS+
?
If it is possible with RADIUS I would be interested
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wednesday 25 February 2004 18:05, Clinton J Wooton wrote:
I believe that the [1636] refers to the actual line in the file. I looked
at this exact spot using gedit and found that it is the last line of the
file and it has nothing in it.
I would
I thought this list was going to be subscriber post only.
:-)
Any progress toward that?
- Brian J.
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tarun
SinghalSent: Wednesday, January 14, 2004 11:26 PMTo:
[EMAIL PROTECTED]Subject: (no
subject)
55 matches
Mail list logo
