, the response Radiator calculates is incorrect.
If you switch to EAP-TTLS/PAP for testing, it should work similarly with
one request and immediate accept/reject from Radiator.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS
requests even if it has not received requests for the user
yet.
The option defaults to disable and it's intended for FarmSize or
configurations where, for example, authentication is not done with TACACS+
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible
not get it to break when I tried with eapol_test running full
speed at the same time.
You may also want to check the Monitor.pm file in the message is the
current one that comes with Radiator. See the $Id: ...$ line at the top
of the file for version information.
Thanks,
Heikki
--
Heikki Vatiainen h
:
- server's own certificate - the first certificate in the file
- CA certificates - the order did not matter.
I'd guess it would be the same for RadSec TLS_CertificateChainFile too.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS
+ mschapv2, authdbfile.
Am I doing something wrong or trace_username is not supported for peap?
It is supported for PEAP. Maybe you can reply with the commands you used
if the above example from what I did does not work.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
similar hooks in the goodies yet. The microsecond part can go
there as a part of the example and the reference manual can have a
pointer to the example file.
Thanks for the suggestion,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS
On 03/19/2015 02:49 PM, Heikki Vatiainen wrote:
On 03/19/2015 12:18 PM, Laurent Duru wrote:
Thu Mar 19 11:11:11 2015: ERR: Execute failed for 'select PASS_WORD,
STATICADDRESS, TIMELEFT, MAXLOGINS, SERVICENAME, BADLOGINS, VALIDFROM,
VALIDTO from RADUSERS where USERNAME=‘X'': Can't call
to Util::format_special(), you should get back the
microsecond part.
Is this what you were looking for?
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP
,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey
-Name in the request object generated for the tunnelled
PEAP message.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM
-Authorize-Group2 etc.?
You need to reuse the attribute. They are processed in the order they
appear in the Access-Accept. In other words, the attribute can be
present multiple times in the Access-Accept.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable
group1 deny .*
In other words, the OSC-Authorize-Group attributes, there can be more
than one, returned during the authentication are evaluated before the
static configuration.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS
, but at the moment it does not.
There are a couple of alternatives that are available now: You can get
the parameter setting from a file or SQL. See section 5.1 in the
reference manual for details. In short:
RefreshPeriod file:refresh.inc
RefreshPeriod sql:identifier:query
Thanks,
Heikki
--
Heikki
about a java version. I guess it's time to dive :)
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory
with some.
About the second issue, we'll take a look at this too. Decimal 32 is
SPACE in ascii, so that's where the leading space comes from, but lets
see what can be done to values 32 and greater.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible
a check in dictionary loading
that logs a warning if the VENDOR line is not a present but there are
vendor specific attributes for the vendor.
Cheers,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM
.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco
On 02/16/2015 04:55 PM, Heikki Vatiainen wrote:
I tried replicating the problem but could not get it to fail. Can you
make sure you are using a radpwtst from Radiator 4.14?
Also, check that you are using dictionary that includes this line:
VENDORStarent8164format=2,2
If the line
authenticator. The client may log
about this but I do not know if pam radius does.
If the secret is incorrect, the server most likely logs about bad
passwords too, because it does not have the correct secret to decrypt
the User-Password attribute.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
if your Sys::Syslog is
recent enough.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS
FailureQueryParam %n
FailureQueryParam %1
In addition to this, you can also define UsernameCharset if you'd like
to make sure any special characters in User-Name do not reach your SIP2
server. See the reference manual for more.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
to make sure the log messages get to their destination.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active
in such a way
that the server that starts EAP message authentication does not get all
the messages that are part of the whole authentication exchange. Some
messages are sent to the other server which then logs the message in the
subject.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator
certificate selection,
affect the certificate selection.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active
Secret somesecret
/Host
/AuthBy
/Handler
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external
and the default values on different systems:
http://open.com.au/radiator/ref.pdf
If the problem persists, please reply with your configuration file.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM
A and G). There should especially be no d.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory
and other details. I think
the problem gets fixed when you change get_attr() to get_attrs(). Now
it's fetching only the first instance of Media-Flow-Statistics (1086)
instead of all (both) of them.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible
to
understand the message structure from a capture than XML.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external
-Id}'.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA
noticed I did not acknowledge this at the time, so I thought I confirm
that the fix you suggested is in the current Radiator version 4.14.
Thanks for your report and suggestion!
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere
notes and backports for older Radiator versions to
address the EAP bug in OSC security advisory OSC-SEC-2014-01.
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus
with the test EAP method introduced in Radiator
4.9 + patches create the vulnerability which could be used to gain
unauthorised access. OSC considers this as a vulnerability which
requires urgent attention.
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable
configured your Clients with MAC:... it means Radiator will
check Called-Station-Id for match, not NAS-Identifier.
In other words, I do not think this has anything to do with the
dictionary but getting the correct value in Called-Station-Id.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
starts with MAC: and it is followed by a MAC address,
then Called-Station-Id can be used for matching if the IP address does
not match first.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files
an AuthLog and/or AcctLogFileName
in the default Handler when all requests should be handled by the other
Handlers. This helps to see if there are any configuration mistakes that
cause requests to miss the other Handlers.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
will decode IPv6
addresses correctly.
Note: with 4.9 the textual address will get 'ipv6:' prefix. This will
not happen with the patched version.
Thanks for reporting this.
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere
queue are processed too slow
which might be your case. If the queue is not emptied quickly enough,
the external may think think the request it sent (or the corresponding
reply) may have been lost.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible
the accounting server subtree. This is the information
that is available if you query Radiator directly (the port is now 1161):
% snmpwalk -m+ALL -v2c -c public 127.0.0.1:1161 .1.3.6.1.2.1.67
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable
.
In addition to controlling TLS and SSL versions, more specific options,
such as allowing RC4 when required, are useful to have.
Thanks for your input!
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM
.
The evaluation version has everything the fully licensed version does.
For a preconfigured version, see the .ova format virtual machine image
in Radiator evaluation downloads. It has the web server and a number of
authentication methods already enabled.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
from the CachePasswords rutine..
Yes. Is it otherwise working as expected?
Thanks for reporting this,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus
to
the this AuthBy RADIUS and call handle_request() to send the CoA message.
AuthBy RADIUS would then take care of retransmissions and could possibly
call ReplyHook and NoReplyHook which could do any clean up that may be
needed.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator
scripts that use radpwtst and any existing Radiator
modules or hooks that do not come with Radiator (own custom code).
The change could be applied to just radpwtst, but likely it would be
less confusing to change them both.
I'll see when to get this in the patches.
Thanks,
Heikki
--
Heikki
what the state of play is.
I hope I was able to help. Thanks for letting us know about this.
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside
and Microsoft SQL databases have been prepared. A
simple download from the respective vendors is required to complete the
set up.
As always, any comments and suggestions are welcome.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
-Station-Id'); \
${$_[0]}-add_attr('Called-Station-Id',$nasId) unless($stationId); \
}
Best regards,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus
to be the MAC address.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC
, for example, log the Identifier of
the last AuthBy as shown above.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM
as the
Client name.
Something like this should work. The prefix tells that the name is not a
host name or IP address.
name | secret
---+--
MAC:00-0C-42-FA-53-30 |
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator
be fine.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA
that was evaluated.
Is this what you are thinking of?
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active
Discovery - Deployment plan -' which has
more information about radsec, DNS dynamic discover and eduroam.
However, I'm not exactly sure what the status with DNS dynamic discovery
with eduroam is, so I can not say how eduroam organisations currently
use it.
Thanks,
Heikki
--
Heikki Vatiainen h
depends on the
specific log level.
If I remember correctly, the password log currently does not log, for
example, passwords in proxied messages, but if there are cases that it
does not cover, we'd like to hear about them.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
with accounting enabled, I would
check what the WiMAX ASN-GW, or the device that is sending the RADIUS
requests, is logging.
Anything else I can try?
I'd say the next step is to check the WiMAX devices logs to see if
there's anything else that it is expecting or does not like.
Thanks,
Heikki
--
Heikki
as root.
One might have tried to use sudo for something similar already, but now
the Group option can also be used to specify the groups. If there are
group names that can not be resolved, then radiusd will not try to
switch groups
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator
the file that Radiator uses in case you have
multiple copies on the disk. Is the WiMAX RADIUS client logging anything?
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password
to see if there are hints about which directories
are used.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external
.
Also note that Radiator access-accept is showing no accounting and we suspect
this is the root cause.
Thanks for your help,
James Austin
Manager Technology Projects
Crystal Communications Ltd.
281-300-8294 Mobile
281-361-5199 Office
--
Heikki Vatiainen h...@open.com.au
Radiator
.
Don't know how to adjust it?
James Austin
Manager Technology Projects
Crystal Communications Ltd.
281-300-8294 Mobile
281-361-5199 Office
From: Heikki Vatiainen [h...@open.com.au]
Sent: Tuesday, September 23, 2014 8:17 AM
To: James Austin
Handler Service-Type=Authorize-only with an AuthBy
that has NoCheckPassword? Add this Handler before your current Handler
to process TACACS+ based authorisation requests differently from RADIUS
originated access requests.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco
--password=fred wimax
...
mysql alter table device_session modify capabilities varchar(500);
Query OK, 0 rows affected (0.00 sec)
Records: 0 Duplicates: 0 Warnings: 0
This should make the capabilities column long enough to store the long data.
--
Heikki Vatiainen h...@open.com.au
Radiator
,
but if there are problems with other platforms, we would be interested
to hear more.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS
it log to a local file, that might help. Or
then you could use Log SYSLOG and let it log it to local syslogd, that
is not to a LogHost.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files
this helps to keep the
configuration files more simple since you do not need to handle both
accounting and authentication with the same configuration.
However, it might be worth taking a look at the next hop performance first.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
. The big question is how do I determine that
SQL is the bottleneck from the radius logs?
---
Roberto Ullfig - rull...@uic.edu
ACCC Research Programmer
-Original Message-
From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On
Behalf Of Heikki Vatiainen
Sent
happening.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX
than creating
Handlers dynamically.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS
,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco
have been the only way to make
sure the client and server secrets match.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM
On 08/20/2014 11:30 PM, Heikki Vatiainen wrote:
On 08/20/2014 03:03 AM, David Zych wrote:
That's exactly right, and setting MaxTargetHosts 2 would be perfect in
this case.
I'll get back to you once there's something to test.
MaxTargetHosts is now applicable for AuthBy RADIUS and its sub
accounting data. You can also store it
in SQL and text files if both are needed.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM
On 08/20/2014 03:03 AM, David Zych wrote:
On 08/19/2014 04:07 PM, Heikki Vatiainen wrote:
On 08/19/2014 01:00 AM, David Zych wrote:
How can I set a new attribute value on a request _each_ time I
attempt to proxy it using AuthRADIUS and friends? I'm thinking a
PreForwardHook would be ideal
it?
It's fine. What I was thinking was that if someone wants to try passing
a rewritten username to AuthBy NTLM, they would need to be careful about
what they rewrite and at which point.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable
input has been most useful. It's good to hear about the different
requirements there are.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP
, but it is normally the same as User-Name unless User-Name
attribute has been rewritten).
The purpose of anonymous identity is only to get the request to the
correct authentication server within the campus or across eduroam, etc.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
would be there for AuthBy FILE, SQL, etc. too, not just
AuthBy NTLM. Please let us know why this is needed.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald
, thanks for confirming this too.
I'll get back to you once there's something to test.
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS
it for round robin? And maybe the hook too?
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP
the correct Handler for the inner
request. The inner identity is used to for the authentication.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus
10830
VENDORATTR 10830 Apcon-User-Level 1 integer
VALUE Apcon-User-Level Default 0
VALUE Apcon-User-Level Guest 1
VALUE Apcon-User-Level Operator 2
VALUE Apcon-User-Level Advanced 3
VALUE Apcon-User-Level Admin 4
--
Heikki Vatiainen h...@open.com.au
Radiator
as NPS, when conversion is needed.
We would be interested to hear comments from Windows users, especially
those who run RadSec.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS
of
the authentication.
You would still require cleanup for users that are no longer present,
but the SQL table would not need to contain the users that are not
active TOTP users.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS
} as the only formatter
for these, and possibly some other, values.
P.S. FWIW, I like this idea. :)
I'll see if a patch can be made for this and let the list know when this
is available. Thanks to Johannes too for his comments.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most
How can I get rid of all passwords from the configuration file (without a
preprocessor
of the configuration file).
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald
directory.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA
and/or server 2012 should be doable too, then.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS
want to print This is my User
prompt: in order to have:
This is my User prompt: username (Space between : and username)
Try this:
UsernamePrompt This is my User prompt:\040
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible
with Radiator? See
the certificates/ directory in the distribution. Those certificates have
been used with EAP-TLS, so they could help building an initial working
configuration before switching to different certificates.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable
connectivity.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA
and appears
as bad TLS record to the server.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS
PostAuthHook to examine the current reply
and switch it to a reject.
PS: Please note your message did not get to the list since you seem to
be using a different address than previously.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS
, and
then finally the CA certificate.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS
with
DiameterDictionaryFile.
Please let us know if the above gets it going.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM
sort of disconnect in
getting the attributes from the SQL statement return values to the reply.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus
in your previous messages.
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC
modules to check.
Thanks,
Heikki
--
Heikki Vatiainen h...@open.com.au
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC
101 - 200 of 996 matches
Mail list logo