> From: freeradius-users-requ...@lists.freeradius.org > Subject: Freeradius-Users Digest, Vol 87, Issue 46 > To: freeradius-users@lists.freeradius.org > Date: Tue, 17 Jul 2012 10:54:59 +0200 > > Send Freeradius-Users mailing list submissions to > freeradius-users@lists.freeradius.org > > To subscribe or unsubscribe via the World Wide Web, visit > http://lists.freeradius.org/mailman/listinfo/freeradius-users > or, via email, send a message with subject or body 'help' to > freeradius-users-requ...@lists.freeradius.org > > You can reach the person managing the list at > freeradius-users-ow...@lists.freeradius.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Freeradius-Users digest..." > > > Today's Topics: > > 1. Re: Help needed configuring MAB on FreeRADIUS and Cisco > switch (Alan DeKok) > 2. Re: v2.1.x/src/modules/rlm_mschap/rlm_mschap.c (Alan DeKok) > 3. radacct is not filled up (Andreas Meyer) > 4. Re: radacct is not filled up (Fajar A. Nugraha) > 5. Re: radacct is not filled up (Andreas Meyer) > 6. Re: radacct is not filled up (Fajar A. Nugraha) > 7. Re: Help needed configuring MAB on FreeRADIUS and Cisco > switch (Kaya Saman) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Mon, 16 Jul 2012 18:24:42 -0400 > From: Alan DeKok <al...@deployingradius.com> > To: FreeRadius users mailing list > <freeradius-users@lists.freeradius.org> > Subject: Re: Help needed configuring MAB on FreeRADIUS and Cisco > switch > Message-ID: <500494aa.1040...@deployingradius.com> > Content-Type: text/plain; charset=ISO-8859-1 > > Kaya Saman wrote: > >> There is a file in the "raddb" directory named "users". > > > > I **DID** do this....... !! > > You didn't SAY that. You were told to edit the "users" file. > Instead, you went on a long round-about adventure, looking at other files. > > > There's no need to be so severe as the ban me! > > After 13 years of running this list, I've discovered it's the ONLY way > to make some people follow instructions. I can be nice, and explain the > same thing until I get frustrated. Or, I can threaten to ban people, > and have them *immediately* start following instructions. > > Alan DeKok. > > > ------------------------------ > > Message: 2 > Date: Mon, 16 Jul 2012 18:35:13 -0400 > From: Alan DeKok <al...@deployingradius.com> > To: jjj.hoo...@bristol.ac.uk, FreeRadius users mailing list > <freeradius-users@lists.freeradius.org> > Subject: Re: v2.1.x/src/modules/rlm_mschap/rlm_mschap.c > Message-ID: <50049721.6040...@deployingradius.com> > Content-Type: text/plain; charset=ISO-8859-1 > > James JJ Hooper wrote: > > I may have miscounted, but shouldn't that be: > > snprintf(buffer + 44, sizeof(buffer) - 44, > > Yup. I'll fix it. > > > ------------------------------ > > Message: 3 > Date: Tue, 17 Jul 2012 00:59:25 +0200 > From: Andreas Meyer <anme...@anup.de> > To: freeradius-users@lists.freeradius.org > Subject: radacct is not filled up > Message-ID: <20120717005925.4388efb0@itx.bitcorner.intern> > Content-Type: text/plain; charset=US-ASCII > > Hello! > > I authenticate a users against a mysql-db and everything is fine. Get entries > in the radpostauth table but the radacct table stays emtpy, instead the > logging is done in /usr/var/log/radius/radacct/192.168.1.254 > > # itx:/usr/var/log/radius/radacct/192.168.1.254 # ll > insgesamt 284 > -rw------- 1 root root 12420 12. Jul 16:38 auth-detail-20120712 > -rw------- 1 root root 12420 13. Jul 19:35 auth-detail-20120713 > -rw------- 1 root root 6210 14. Jul 23:21 auth-detail-20120714 > -rw------- 1 root root 9078 15. Jul 17:06 auth-detail-20120715 > -rw------- 1 root root 180883 16. Jul 17:26 auth-detail-20120716 > -rw------- 1 root root 12640 17. Jul 00:43 auth-detail-20120717 > -rw------- 1 root root 1242 3. Jul 22:35 reply-detail-20120703 > -rw------- 1 root root 2008 12. Jul 16:38 reply-detail-20120712 > -rw------- 1 root root 2008 13. Jul 19:35 reply-detail-20120713 > -rw------- 1 root root 1004 14. Jul 23:21 reply-detail-20120714 > -rw------- 1 root root 1004 15. Jul 13:39 reply-detail-20120715 > -rw------- 1 root root 5041 16. Jul 17:26 reply-detail-20120716 > -rw------- 1 root root 2016 17. Jul 00:43 reply-detail-20120717 > > I cannot find the place where in a configurationfile I can change > the value to log into the radacct table. > > This is what I have in sql.conf: > > acct_table1 = "radacct" > acct_table2 = "radacct" > postauth_table = "radpostauth" > authcheck_table = "radcheck" > authreply_table = "radreply" > groupcheck_table = "radgroupcheck" > groupreply_table = "radgroupreply" > usergroup_table = "radusergroup" > > Andreas > > > ------------------------------ > > Message: 4 > Date: Tue, 17 Jul 2012 10:38:02 +0700 > From: "Fajar A. Nugraha" <l...@fajar.net> > To: FreeRadius users mailing list > <freeradius-users@lists.freeradius.org> > Subject: Re: radacct is not filled up > Message-ID: > <CAG1y0sdFr3w=fh+qc1-i5gm52c8m-51bj7mif8dffrv6dx4...@mail.gmail.com> > Content-Type: text/plain; charset=ISO-8859-1 > > On Tue, Jul 17, 2012 at 5:59 AM, Andreas Meyer <anme...@anup.de> wrote: > > Hello! > > > > I authenticate a users against a mysql-db and everything is fine. Get > > entries > > in the radpostauth table but the radacct table stays emtpy, instead the > > logging is done in /usr/var/log/radius/radacct/192.168.1.254 > > > > # itx:/usr/var/log/radius/radacct/192.168.1.254 # ll > > insgesamt 284 > > -rw------- 1 root root 12420 12. Jul 16:38 auth-detail-20120712 > > -rw------- 1 root root 12420 13. Jul 19:35 auth-detail-20120713 > > -rw------- 1 root root 6210 14. Jul 23:21 auth-detail-20120714 > > -rw------- 1 root root 9078 15. Jul 17:06 auth-detail-20120715 > > -rw------- 1 root root 180883 16. Jul 17:26 auth-detail-20120716 > > -rw------- 1 root root 12640 17. Jul 00:43 auth-detail-20120717 > > -rw------- 1 root root 1242 3. Jul 22:35 reply-detail-20120703 > > -rw------- 1 root root 2008 12. Jul 16:38 reply-detail-20120712 > > -rw------- 1 root root 2008 13. Jul 19:35 reply-detail-20120713 > > -rw------- 1 root root 1004 14. Jul 23:21 reply-detail-20120714 > > -rw------- 1 root root 1004 15. Jul 13:39 reply-detail-20120715 > > -rw------- 1 root root 5041 16. Jul 17:26 reply-detail-20120716 > > -rw------- 1 root root 2016 17. Jul 00:43 reply-detail-20120717 > > > > I cannot find the place where in a configurationfile I can change > > the value to log into the radacct table. > > Did you read http://wiki.freeradius.org/SQL-HOWTO ? > > Search for "accounting" > > -- > Fajar > > > ------------------------------ > > Message: 5 > Date: Tue, 17 Jul 2012 09:44:22 +0200 > From: Andreas Meyer <anme...@anup.de> > To: freeradius-users@lists.freeradius.org > Subject: Re: radacct is not filled up > Message-ID: <20120717094422.64e6b1cf@itx.bitcorner.intern> > Content-Type: text/plain; charset=US-ASCII > > Hello! > > "Fajar A. Nugraha" <l...@fajar.net> wrote: > > > On Tue, Jul 17, 2012 at 5:59 AM, Andreas Meyer <anme...@anup.de> wrote: > > > Hello! > > > > > > I authenticate a users against a mysql-db and everything is fine. Get > > > entries > > > in the radpostauth table but the radacct table stays emtpy, instead the > > > logging is done in /usr/var/log/radius/radacct/192.168.1.254 > > > > > I cannot find the place where in a configurationfile I can change > > > the value to log into the radacct table. > > > > Did you read http://wiki.freeradius.org/SQL-HOWTO ? > > > > Search for "accounting" > > Yes, I read the SQL-Howto. Made a change in the dialup.conf from > sql_user_name = "%{User-Name}" to > sql_user_name = "%{%{Stripped-User-Name}:-%{%{User-Name}:-DEFAULT}}" > > and the debug output shows that the radiusd is using stripped user-name. > But the radacct is not filled up. All is written to the logfile in > /usr/var/log/radius/radacct/192.168.1.254 > > I wonder if it might have something to do with the buffered-sql in > /usr/etc/raddb/sites-available. I made no changes to that file. > > mysql> use radius; > Database changed > mysql> show tables; > +------------------+ > | Tables_in_radius | > +------------------+ > | badusers | > | mtotacct | > | nas | > | radacct | > | radcheck | > | radgroupcheck | > | radgroupreply | > | radpostauth | > | radreply | > | radusergroup | > | totacct | > | userinfo | > +------------------+ > 12 rows in set (0.01 sec) > > Everything is fine and radcheck and radpostauth and userinfo and so on is > written to the database exept for the radacct information. > > Andreas > > > ------------------------------ > > Message: 6 > Date: Tue, 17 Jul 2012 14:49:37 +0700 > From: "Fajar A. Nugraha" <l...@fajar.net> > To: FreeRadius users mailing list > <freeradius-users@lists.freeradius.org> > Subject: Re: radacct is not filled up > Message-ID: > <cag1y0sfhzifxxopea1cfshgjh0-zbyr8ncvsnocqk7cvzcm...@mail.gmail.com> > Content-Type: text/plain; charset=ISO-8859-1 > > On Tue, Jul 17, 2012 at 2:44 PM, Andreas Meyer <anme...@anup.de> wrote: > >> > I cannot find the place where in a configurationfile I can change > >> > the value to log into the radacct table. > >> > >> Did you read http://wiki.freeradius.org/SQL-HOWTO ? > >> > >> Search for "accounting" > > > > Yes, I read the SQL-Howto. Made a change in the dialup.conf from > > sql_user_name = "%{User-Name}" to > > sql_user_name = "%{%{Stripped-User-Name}:-%{%{User-Name}:-DEFAULT}}" > > > > and the debug output shows that the radiusd is using stripped user-name. > > But the radacct is not filled up. All is written to the logfile in > > /usr/var/log/radius/radacct/192.168.1.254 > > > > I wonder if it might have something to do with the buffered-sql in > > /usr/etc/raddb/sites-available. I made no changes to that file. > > Re-read the wiki page. If you HAVE read it correctly, you would've > seen that you need to change something in that file. > > -- > Fajar > > > ------------------------------ > > Message: 7 > Date: Tue, 17 Jul 2012 09:54:57 +0100 > From: Kaya Saman <kayasa...@gmail.com> > To: FreeRadius users mailing list > <freeradius-users@lists.freeradius.org> > Subject: Re: Help needed configuring MAB on FreeRADIUS and Cisco > switch > Message-ID: > <capj0r5+jpyxntzwuavkktaoeh9arj8pfofkuo5w5rj09msy...@mail.gmail.com> > Content-Type: text/plain; charset="iso-8859-1" > > Hi Alan, > > sorry for the mishaps yesterday...... > > On Mon, Jul 16, 2012 at 4:20 PM, alan buxey <a.l.m.bu...@lboro.ac.uk> wrote: > [...] > > > >> By placing the entry you suggested at the top of the /etc/raddb/users > >> file and restarting the server I got this: > > > > well, no you didnt...or rather, if you did stick that in the users file > > then its certainly not the users file that the server is reading. you are > > editing > > the live server config and not some extracted archive file? > > > > > Let's just try to focus on this issue and get a basic system up and > running before continuing on - as that is inevitably what you were > trying to do :-) > > > Ok so first let's get back to real basics and check where we are in > the file system: > > > # cd /etc/raddb > > # ls > acct_users clients.conf policy.conf sql > attrs dictionary policy.txt sql.conf > attrs.access_challenge eap.conf preproxy_users sqlippool.conf > attrs.access_reject example.pl proxy.conf templates.conf > attrs.accounting_response hints radiusd.conf users > attrs.pre-proxy huntgroups sites-available > certs modules sites-enabled > > # cat users | more > 0015c5537baa Cleartext-Password := "0015c5537baa" > Tunnel-Type:0 = VLAN, > Tunnel-Medium-Type:0 = IEEE-802, > Tunnel-Private-Group-Id:0 = "3", > Tunnel-Preference = 0x000000 > > # > # Please read the documentation file ../doc/processing_users_file, > # or 'man 5 users' (after installing the server) for more information. > # > # This file contains authentication security and configuration > # information for each user. Accounting requests are NOT processed > # through this file. Instead, see 'acct_users', in this directory. > # > # The first field is the user's name and can be up to > # 253 characters in length. This is followed (on the same line) with > # the list of authentication requirements for that user. This can > # include password, comm server name, comm server port number, protocol > # type (perhaps set by the "hints" file), and huntgroup name (set by > > > I have additionally attached the full file just incase! > > > Let's see in the file system if there are any other files called users > which maybe the 'source' of the Radius service: > > > # find / -name users > /usr/bin/users > /etc/selinux/targeted/contexts/users > /etc/raddb/users > /var/www/daloradius/contrib/configs/freeradius-1.1.7/cfg1/freeradius/users > > > Will disabling SElinux help, could that be blocking things as it > usually does with TFTP??? > > > Regards, > > > Kaya > -------------- next part -------------- > A non-text attachment was scrubbed... > Name: users > Type: application/octet-stream > Size: 6732 bytes > Desc: not available > URL: > <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120717/e9511277/attachment.obj> > > ------------------------------ > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > > End of Freeradius-Users Digest, Vol 87, Issue 46 > ************************************************
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html