Re: [RADIATOR] Radmin and Database

Heikki Vatiainen h...@open.com.au wrote: On 05/21/2013 11:02 PM, rohan.he...@cwjamaica.com wrote: Can Radmin work in an environment where Radiator writes a single record (containing both Start and Stop fields) to MySQL for each session as oppose to two records per session? Hello Rohan

Re: [RADIATOR] Custom AuthBy Identifier not being picked up

___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS

Re: [RADIATOR] Radmin and Database

be possible by defining suitable SQL queries, but it's hard to say more. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM

Re: [RADIATOR] Additonal Aruba (14823) dictionary attributes

/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco

Re: [RADIATOR] EAPBALANCE and multiple RADIATOR proxies.

multiple State attributes. Maybe they get reordered or just one gets forwarded by intermediate proxies or the remote site client (wlan controller etc.) just returns one State. Hmm, I wonder if using HASHBALANCE with State as HashAttributes value would work here. Heikki -- Heikki Vatiainen h

Re: [RADIATOR] Issue with TTLS-EAP-MSCHAPv2 and EAPAnonymous

On 05/03/2013 10:05 PM, Johnson, Neil M wrote: Certainly, I'd be glad to test. And the patch is now in 4.11 patches. Thanks for testing, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP

Re: [RADIATOR] Unexpected behavior with UseStatusServerForFailureDetect in AuthBy LOADBALANCE

a working host to forward a (4) after 4 seconds. Ignoring Fri May 10 16:52:12 2013: INFO: AuthRADIUS : No reply after 4 seconds and 3 retransmissions to 127.0.0.1:1824 for a (129). Now have 1 consecutive failures over 0 seconds. Backing off for 300 seconds -- todor -- Heikki

Re: [RADIATOR] Loadbalancing requests from Proxy

first check how it works with EAPBALANCE. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP

Re: [RADIATOR] Unexpected behavior with UseStatusServerForFailureDetect in AuthBy LOADBALANCE

) Thanks. -- todor ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy

Re: [RADIATOR] fticks anonymization in Radiator

that is the hashed CSI and then log this attribute. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory

Re: [RADIATOR] Issue with TTLS-EAP-MSCHAPv2 and EAPAnonymous

. Is this expected behavior, or a bug ? I think this is a bug. If can send you a fixed EAP_21.pm if you could test it before it gets applied to the patches. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL

Re: [RADIATOR] Unknown reply received in AuthRADIUS

with Fork and SQL accounting. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS

Re: [RADIATOR] Radiator and NavisRadius USS

is needed. The both cases above assume that Radiator and NavisRadius communicate with each other with normal RADIUS proxying. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS

Re: [RADIATOR] IPv6 Warning Message

installation. I think you only need Socket6 and this is not a configuration problem nor a problem with the Perl installation. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password

Re: [RADIATOR] ERR: Attribute number 146 (vendor 3076) is not defined in your dictionary aka Cisco bought Altiga in 2000

for a more current set of Cisco/Altiga attributes. Are the names I've used ok for you? We did not touch the names. I think they are fine. Thanks for your help, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM

Re: [RADIATOR] restartWrapper prevents bootup

? Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA

Re: [RADIATOR] radcommandaudit

then configure the AuthBy in the Handler not to write anything in RADCOMMANDAUDIT. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM

Re: [RADIATOR] Re-2: Re-2: Adding a user through radmin gives a CGI Error

through radmin gives a CGI Error (16-apr-2013 7:12) From:Heikki Vatiainen h...@open.com.au To: akalfster...@aksi.nl On 04/15/2013 07:09 PM, Adwim Kalfsterman - AKSI Automatis wrote: The only thing IIS logs is a HTTP error 502: Hello Adwim, HTTP error 502 is 'Bad gateway'. Do

Re: [RADIATOR] Re-2: Re-2: Adding a user through radmin gives a CGI Error

and DB had no problems with it. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS

Re: [RADIATOR] Adding a user through radmin gives a CGI Error

://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP

Re: [RADIATOR] Listing authentication modules

? Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA

Re: [RADIATOR] AddToReply with condition

-mail pense bem se tem mesmo que o fazer. As árvores são um bem imprescindível. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable

Re: [RADIATOR] Support for PCRF Diameter messages

dictionary if Radiator log shows some are missing. You could then utilise Diameter to Radius and Radius to Diameter conversion hooks to process the PCRF requests and replies as required. See goodies/diameter-server.cfg for more information about the hooks. Thanks, Heikki -- Heikki Vatiainen h

Re: [RADIATOR] Ideas on group and reply attribs parsing

-- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP

Re: [RADIATOR] Ideas on group and reply attribs parsing

hour) SQLite DB. Works very well. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS

Re: [RADIATOR] Net::LDAPapi error

is the preferred LDAP module to use. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP

Re: [RADIATOR] Handler type Stop/Alive distinguished processing

followed by /Handler. Add /AuthBy before the /Handler. Handler Acct-Status-Type = Stop AuthBy SQL ... AcctColumnDef NASPORT,NAS-Port,integer /Handler -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere

Re: [RADIATOR] Using SQL statements inside a PostAuthHook for COA

and/or experiment e.g., with radpwtst. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS

Re: [RADIATOR] Ideas on group and reply attribs parsing

getting a bit late here, so I'll now just ask if you have noticed goodies/lookupauthgroup.pl? It uses SQL, but could still be useful as another pointer. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy

Re: [RADIATOR] Change-Filter-Request after an Access-Accept

before the ReplyHook is called if there is no reply (rp) to be returned. For details, please see AuthRADIUS.pm and the lines just before ReplyHook is called. Please let us know how it works. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible

Re: [RADIATOR] 802.1x , EAP error

Realm realm.org http://realm.org wrapper read proxy.cfg and proxyalgorithm.cfg in goodies alan -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald

Re: [RADIATOR] Using SQL statements inside a PostAuthHook

IT Security Engineer (B.Tech. – Electrical) Kuwaiti Canadian Consulting Group (www.kccg.com) T: +965 22435566 F: +965 22415149 E: tho...@kccg.com -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files

Re: [RADIATOR] 802.1x , EAP error

. Arranging the Handlers should do the trick. # Proxy all EAP Handler EAP-Message=/.+/ ... /Handler # Process the rest of the messages here Handler ... Thanks, Heikki On Wed, Mar 27, 2013 at 12:32 AM, Heikki Vatiainen h...@open.com.au mailto:h...@open.com.au wrote: On 03/26/2013 10:11 AM

Re: [RADIATOR] 802.1x , EAP error

you need to install perl-Net-SSLeay. As you can see the actual distribution package names varies from system to system. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password

Re: [RADIATOR] ERR: Unknown keyword 'AcctFailedLogFileName'

, it should work. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX

Re: [RADIATOR] ERR: Attribute number 146 (vendor 3076) is not defined in your dictionary aka Cisco bought Altiga in 2000

ask this to be included. That was my idea anyway, but I had not done it yet. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS

Re: [RADIATOR] Using SQL statements inside a PostAuthHook

server work correctly when passed random or malicious data if User-Name is not sanitized beforehand. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald

Re: [RADIATOR] TACACS: context Calling-Station-Id

. This would help to better understand the implications of this patch. If needed in attach you can find my horrible patch I've added a Parameter (flag) RemoteInContext to enable/disable the option Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible

Re: [RADIATOR] Slow response from Radiator

mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM

Re: [RADIATOR] run perl hook after accounting start

-Request AuthBy RADIUS Host 10.50.1.4 Secret /Host /AuthBy /Handler -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM

Re: [RADIATOR] EAPBALANCE and FarmSize

? ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password

Re: [RADIATOR] UpdateQuery details

. If you define UpdateQuery, it will not do the default action, run DeleteQuery followed by AddQuery, but will only run the UpdateQuery you have defined. You should then see something like '... Updating session for ...' instead of what is otherwise logged. Thanks, Heikki -- Heikki Vatiainen h

Re: [RADIATOR] laptop sending out wrong attribute

. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco

Re: [RADIATOR] ERR: Attribute number 146 (vendor 3076) is not defined in your dictionary aka Cisco bought Altiga in 2000

immediately. *** ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS

Re: [RADIATOR] EAP iKev2 support in radiator 3.13

be interesting to hear which client you have or how do you plan to use this EAP method. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS

Re: [RADIATOR] how to terminate user session

%{Acct-Output-Octets}, timestamp = %{Event-Timestamp} \ where username='%n' \ And Type = 'Q' /AuthBy #Log accounting to a detail file AcctLogFileName %L/detail /Realm -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server

Re: [RADIATOR] Disconnect users

to send disconnects to all users that have been idle for too long or have exceeded time or traffic limits. The command would look something similar you cited in your previous message. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable

Re: [RADIATOR] quota counter updates on quotacounter mysql table

the acocunting table and allows the second handler to do the extra work with Stops. Remmeber: the first Handler that matches is the one that processes the request. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL

Re: [RADIATOR] [RFC] configurable hooks

then solved. Is everything working for you now? Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory

Re: [RADIATOR] quota counter updates on quotacounter mysql table

22435566 F: +965 22415149 E: tho...@kccg.com ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS

Re: [RADIATOR] Proxy'ing Client-Identifier to slave RADIUS processes

-V2 Challenge Thu Feb 7 15:28:32 2013 345188: DEBUG: AuthBy LSA result: CHALLENGE, EAP MSCHAP-V2 Challenge Thu Feb 7 15:28:32 2013 346450: DEBUG: Access challenged for : EAP MSCHAP-V2 Challenge -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable

Re: [RADIATOR] FW: userid:ntu.ac.uk - Question on dropping part of the username

of username. The domain is passed as a separate argument with its value depending on what the username originally had and how Domain and DefaultDomain were set. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL

Re: [RADIATOR] AuthBy EAPBALANCE with Microsoft IAS BackEnd

/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey

Re: [RADIATOR] AddressAllocator DHCP question

with DHCP, so please consider this as an experimental idea. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external

Re: [RADIATOR] AddressAllocator DHCP question

to be the case with ISC DHCPd 3.1.1 with Radiator configured with 'ServerPort 2067 ClientPort 2068'. Are you seeing the same? Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS

Re: [RADIATOR] [RFC] configurable hooks

in the config would make the config much clearer. The above keeps the the existing PostAuthHook arguments as they are and adds the possibility for static arguments as additional options to existing PostAuthHook options. Would this work for you? Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator

Re: [RADIATOR] Ideas on Radiator setup with OpenLDAP and Kerberos serving Windows and Ubuntu Clients

checks for certificate validity. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS

Re: [RADIATOR] Kill/terminate live PPoE user sessions

be appreciable. A hook, or an external process could be used. It depends on e.g., when (which event triggers) the request needs to be sent. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP

Re: [RADIATOR] format_special for GENERIC attributes.

list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM

Re: [RADIATOR] Proxy'ing Client-Identifier to slave RADIUS processes

in the dictionary for years, so that might be the easiest to use. No dictionary modifications needed provided you use version 4.0 or later. Something like this should do it: AddToRequest OSC-Client-Identifier=%{Client:Identifier} Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most

Re: [RADIATOR] ContinueWhileAccept proxy

€ i.v. Socio unico EGHL (UK) Limited ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere

Re: [RADIATOR] Proxy'ing Client-Identifier to slave RADIUS processes

should also see it in Trace 4 output which does not show it now, as you had noticed. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside

Re: [RADIATOR] Quota Deduction using Authby SQL realm

. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco

Re: [RADIATOR] New Error messages

. I would not worry about these if there are not too many of them. If it looks like this warrants debugging, I would try to get full request dumps and see e.g., if it's the certain NAS that is the source of the broken messages. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator

Re: [RADIATOR] AuthRADIUS reject reason

. Please let us know if this does what you were expecting. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active

Re: [RADIATOR] Logfile group

for LogFile option. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX

Re: [RADIATOR] Query LDAP during the authentication process

will only proxy if LDAP authentication returns ACCEPT. The thing to remember here is AuthBy RADIUS will not wait for the reply by default but returns IGNORE immediately. Once the next hop proxy returns the reply, this reply is returned back to the calling client. Thanks, Heikki -- Heikki

Re: [RADIATOR] Radiator monitor port

___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password

Re: [RADIATOR] Radiator Crash. SQL Timeout.

.- -Mensaje original- De: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] En nombre de Heikki Vatiainen Enviado el: lunes, 17 de diciembre de 2012 19:11 Para: radiator@open.com.au Asunto: Re: [RADIATOR] Radiator Crash. SQL Timeout. On 12/17/2012 04:34 PM

Re: [RADIATOR] Radiator doesn't switch Domain Controllers when using LSA.

logging would show if you are failing the group check or if the problem comes from something else. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald

Re: [RADIATOR] Radiator Version 4.11 released

reconnect may not be useful. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP

Re: [RADIATOR] Radiator Crash. SQL Timeout.

, Ricardo Martinez.- ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL

Re: [RADIATOR] Radiator Version 4.11 released

to allow fast reconnect. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP

Re: [RADIATOR] OCSP support

, and there are two main issues: first, Net-SSLeay does not have OCSP support. The second issue is the negative effect the latency and performance are likely to cause. This of course is site specific, but there's still the issue of missing support in the underlying modules. Thanks, Heikki -- Heikki Vatiainen h

Re: [RADIATOR] Everything profile on radmin

RADPROFILEPERMISSIONS. Also see the Radmin FAQ for other related information: http://www.open.com.au/radmin/faq.html What comes to your other message about customising Radmin, you may want to consider our consulting services. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most

Re: [RADIATOR] new perl script for radmin

consider our consulting services. This is likely to be the fastest way to implement the functionality you need. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT

Re: [RADIATOR] Radmin listGroupAuth.pl

Group Auth table entries' option enabled. You can change this by listing the permission profiles and then editing the profile you are using. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files

Re: [RADIATOR] Monitor commands

the StatsLog's LogFile to a named pipe? You would not need to prune any files and could have a program processing the results immediately when they are logged. http://en.wikipedia.org/wiki/Named_pipe Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible

Re: [RADIATOR] setup md5 password in radmin

to tell Radiator how the password has been hashed or encrypted. You may need to prefix the hashes with e.g. {md5} and make sure the rest is lowercase. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM

Re: [RADIATOR] Radmin Web interface

: 03 Aralık 2012 Pazartesi 22:52 To: 'Heikki Vatiainen'; radiator@open.com.au Subject: RE: [RADIATOR] Radmin Web interface Hi Thıs ıs my Acess*Accept reply as you said: Code: Access-Accept Identifier: UNDEF Authentic: 191732352341682282381821730i164Q130219221 Attributes

Re: [RADIATOR] li-admin li-user

to talk to. You would need to use that information to configure e.g., Radmin to return the desired attributes during the authentication. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files

Re: [RADIATOR] Monitor commands

On 12/04/2012 09:43 PM, Michael Hulko wrote: Just wondering if there is a way to execute the Monitor command language local to the Radiator server? Does section 25 Monitor command language in doc/ref.pdf describe what you are looking for? -- Heikki Vatiainen h...@open.com.au Radiator

Re: [RADIATOR] branching in AuthBy GROUP

and thoughts. /Søren -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC

Re: [RADIATOR] hotspot login portal

/configuration/guide/cg_user_accts.html#wp1120909 http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008076f974.shtml Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM

Re: [RADIATOR] Radmin Web interface

AuthColumnDef 0, OSC-Group-Identifier, reply AuthColumnDef 2,OSC-Authorize-Group,reply I also try GENERIC but no luck Thanks -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: 30 Kasım 2012 Cuma 12

Re: [RADIATOR] Radmin Web interface

. The attribute name (such as OSC-Authorize-Group) is then configured as AuthorizeGroupAttr in ServerTACACSPLUS. Thanks, Heikki -Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: 29 Kasım 2012 Perşembe 14:58

Re: [RADIATOR] user and group attributes

-- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP

Re: [RADIATOR] Radmin Web interface

' as the authorization group for the user. During the authorization the OSC-Authorize-Group attribute values are processed first followed by group1 values as defined by AuthorizeGroup configuration options. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible

Re: [RADIATOR] li-admin

On 11/29/2012 01:44 PM, Murat Bilal wrote: How can I add li-admin and li-user command-access to my ServerTacacsPlus.What is the correct syntax Hmm, do you have documentation for these? I am not familiar with li-admin or li-user or their usage with TACACS+ Thanks, Heikki -- Heikki Vatiainen

Re: [RADIATOR] Authorization delay problem SQL

?. The queue is specific for socket. So the only packets in this particular queue are the ones destined to Radiator. If it can not drain the queue fast enough, then you could consider load balancing, FarmSize setting (see ref.pdf) or other means to handle the load. Thanks, Heikki -- Heikki Vatiainen

Re: [RADIATOR] Authorization groups according to NAS

and groups are defined. Here is one method: Assumption: User can belong only to one group. Solution: Set NAS-IP-Address as user check item. If there are multiple possible NASes, defined them as: 1.2.3.4|2.3.4.5|3.4.5.6 This restricts the user to said NASes. Thanks, Heikki -- Heikki Vatiainen h

Re: [RADIATOR] group DEFAULT. No matching AuthorizeGroup rule

::AuthSQL REJECT: Bad Password: DEFAULT4308 [murat]^C -Original Message- From: Heikki Vatiainen [mailto:h...@open.com.au] Sent: 20 Kasım 2012 Salı 09:21 To: Murat Bilal Cc: radiator@open.com.au Subject: Re: [RADIATOR] group DEFAULT. No matching AuthorizeGroup rule On 11/20/2012 09

Re: [RADIATOR] Authorization delay problem SQL

on 'LogMicroseconds' global option and then test with radpwtst and other clients. With Trace 4 you will see exactly how long DB query takes when you compare the debug log microsecond timestamps. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable

Re: [RADIATOR] SQL Timeout

allowing connections? I'd like to know how common this problem is. Thanks, Heikki Regards, Ricardo.- -Mensaje original- De: Ricardo Martinez [mailto:rmarti...@redvoiss.net] Enviado el: lunes, 19 de noviembre de 2012 18:50 Para: 'Heikki Vatiainen'; 'radiator@open.com.au' Asunto: RE

Re: [RADIATOR] SQL Timeout

, it will then time out the connection attempt. When this happens you will see it start the backoff timer. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald

Re: [RADIATOR] group DEFAULT. No matching AuthorizeGroup rule

SUBSCRIBERS and define AuthColumnDef 0, User-Password, check AuthColumnDef 1, OSC-Group-Identifier, reply This will check the request password and and the desired group name to reply if password check succeeds. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable

Re: [RADIATOR] group DEFAULT. No matching AuthorizeGroup rule

-Original Message- From: radiator-boun...@open.com.au [mailto:radiator-boun...@open.com.au] On Behalf Of Heikki Vatiainen Sent: 19 Kasım 2012 Pazartesi 23:33 To: radiator@open.com.au Subject: Re: [RADIATOR] group DEFAULT. No matching AuthorizeGroup rule On 11/19/2012 10:13 AM

Re: [RADIATOR] Perl module for MikroTik NAS

describe any vendor specific attributes (VSAs) it sends during authentication and accounting and what VSAs it can be sent with Access-Accepts. Thanks, Heikki -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files

Re: [RADIATOR] AddToReply tacacsgroup

/email_disclaimer http://www.ericsson.com/email_disclaimer ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator -- Heikki Vatiainen h...@open.com.au Radiator: the most portable, flexible

Re: [RADIATOR] AddToReply tacacsgroup

...@open.com.au] On Behalf Of Heikki Vatiainen Sent: 16 Kasım 2012 Cuma 13:31 To: radiator@open.com.au Subject: Re: [RADIATOR] AddToReply tacacsgroup On 11/15/2012 10:34 PM, Murat Bilal wrote: I have three dıfferent groups and for TACACS authorization.My radius .cfg is like that Hello Murat

<    1   2   3   4   5   6   7   8   9   10   >