Hello Andrew -
Your analysis is correct - so is your workaround.
I have copied this mail to Mike who may have additional comments.
regards
Hugh
On Wednesday, Aug 13, 2003, at 19:04 Australia/Melbourne, Andrew
Stevenson wrote:
Hi,
I am having a problem with the ownership of radiator log file
Hello Daniel -
My personal point of view is that this is unacceptable perfromance on
the part of vendor A. Dropping radius accounting requests is bad
enough, but the question to ask yourself is "what else are they
dropping, and what sort of perfromance are your customers seeing?". I
would be a
Hello Alan -
Thanks for sending the information.
It is difficult to see what is wrong as everything appears normal and I
can't see any error messages either from Radiator or Perl. As you can
see from the trace, you are receiving the initial access request which
is decoded, but there are no fur
Hello John -
No - EAPAnonymous can be used to change "anonymous" for the inner
authentication.
Have a look at the code in "Radius/EAP_21.pm" and "Radius/EAP_25.pm" if
you are interested.
regards
Hugh
On Saturday, Aug 9, 2003, at 01:05 Australia/Melbourne, John McFadden
wrote:
I've been usi
44:04 2003: DEBUG: Handling request with Handler
'Realm=dsl.mydomain.com'
Mon Aug 4 14:44:04 2003: DEBUG: Deleting session for
[EMAIL PROTECTED], 200.200.143.2, 2
8
Mon Aug 4 14:44:04 2003: DEBUG: do query is: 'delete from RADONLINE
where NASIDENTIFIER='200.200.143
.
Hello Loai -
Thanks for sending the configuration and debug.
On Sunday, Aug 17, 2003, at 23:07 Australia/Melbourne, Loai Marashdeh wrote:
Hi everybody, can anyone help with these issues?
1.How can I get the plain text password. Whenever I request the password it gives me the encrypted passwor
Hello Igor -
There are two scenarios to look at here - the first is inbound
authentication requests from your users who are travelling and using
GRIC and IPASS services. This is simply a matter of configuring the
appropriate Client clauses in your Radiator configuration file to deal
with the i
Hello Mushtaque -
This appears to be an ODBC problem. Have you checked that you are
running the latest versions of the relevant Perl modules? If you are
still having problems could you please tell us what versions of Perl,
DBI, DBD-ODBC, etc. you are running?
regards
Hugh
On Monday, Aug 18,
Hello Cary -
Thanks for your mail.
The AuthDN and the AuthPassword are the administrative username and password to get access to the LDAP database. This must be an LDAP user who has permission to access and query the LDAP database.
regards
Hugh
On Saturday, Aug 16, 2003, at 01:40 Australia/M
n Monday, Aug 18, 2003, at 17:49 Australia/Melbourne, Wesley Hof wrote:
Hi,
Is there some stresstest available to check performance on radiator ?
To
check how many auths/sec it can take?
Thanks!
W.
--
(o_ Wesley Hof
//\ UNIX System Engineer
V_/_ UNInet ))) A Scarlet Company
On Mon, 18 Aug 200
Hello Geoffrey -
You shouldn't have any problems with the numbers you indicate below.
In answer to your questions:
1. I would say that most of our customers use MySQL, with both Oracle
and MSSQL used less often.
2. At startup the Radiator configuration file is parsed and a variety
of memory s
Hello Ganbold -
You can always use the AuthBy EXTERNAL clause to call an external
program in whatever language you prefer.
What do you mean by "compile or decrypt the hook codes"?
Note that the hooks in Radiator *are* compiled at run time, as is the
rest of Radiator.
regards
Hugh
On Tuesday
Hello Ganbold -
Yes you can do as you show below, but you will probably need to use an
AuthByPolicy to control the execution of the AuthBy clauses. See
section 6.23.1 in the Radiator 3.6 reference manual.
regards
Hugh
On Wednesday, Aug 20, 2003, at 13:22 Australia/Melbourne, Ganbold wrote:
Hello Rosario -
Yes Radiator can be used in a prepaid environment.
This topic has been discussed many times on the Radiator mailing list:
www.open.com.au/archives/radiator
And you will find an example configuration file in "goodies/prepaid.cfg".
Basically you will need to keep your user recor
Hello John -
You will find everything you need in the source code.
Here are the return values that are defined in "Radius/AuthGeneric.pm":
# Return codes for handle_request
$main::ACCEPT = 0; # Issue an accept for us
$main::REJECT = 1; # Issue a reject for us
$main::IGNORE = 2; #
Hello Jeremy -
I am pretty sure I have seen references to this on the list.
As long as the device uses radius, it will work with Radiator.
regards
Hugh
On Thursday, Aug 21, 2003, at 06:19 Australia/Melbourne, Jeremy L. Mordkoff wrote:
Has anyone tried to use Radiator tosupporta Cisco SSG an
Hello Mahesh -
You can use an Identifier in your AuthLog clause, then refer to it as follows:
Identifier SQLAuthLog
.
.
AuthLog SQLAuthLog
.
See section 6.49 in the Radiator 3.6 reference manual ("doc/ref.html").
NB - this same technique can also be used with AuthBy clauses, S
Hello John -
I would like to see a copy of the configuration file (no secrets)
together with a more complete trace 4 debug showing more of what is
going on. And perhaps you could give me a bit more detail on what
exactly you want to do.
regards
Hugh
On Thursday, Aug 21, 2003, at 03:08 Aus
Hello Nick -
The only thing I can think of is to write your own custom versions of
those modules so they do what you require.
The source modules are in the "Radius" directory of the Radiator
distribution.
regards
Hugh
On Friday, Aug 22, 2003, at 09:37 Australia/Melbourne, Nick Rogness
wrote
Hello Troy -
I suggest you write a PreClientHook that will add the pseudo-attributes
shown below to the incoming request packet.
There is an example that does something quite similar for Cisco
pseudo-attributes in the file "goodies/hooks.txt".
regards
Hugh
On Friday, Aug 22, 2003, at 06:49 A
Hello John -
Thanks for the update.
BTW - you can also use the incoming request packet as a temporary
scratch-pad area, which avoids you having to worry about undefined
attributes in the reply packet (as the packet is just deleted after
processing).
regards
Hugh
On Friday, Aug 22, 2003, at
Hello Richard -
The first thing to do is make sure that you are editing the correct
copy of the file.
If you have done a "make install" then the copy of "Radius/AuthSQL.pm"
that is being executed is in the Perl file hierarchy.
It is generally *much* easier to edit the file in "Radius/AuthSQL.p
Hello Richard -
BTW - we have had reports of problems with Perl 5.8, so you might want
to consider Perl 5.6.1.
regards
Hugh
On Friday, Aug 22, 2003, at 17:55 Australia/Melbourne, Richard Grantham
wrote:
I did wonder if I was editing the correct file, I think I was. I
installed Radiator with
Hello Wesley -
The only way we can help you is by looking at a copy of your
configuration file (no secrets) together with a trace 4 debug from
Radiator showing what is happening.
regards
Hugh
On Friday, Aug 22, 2003, at 19:33 Australia/Melbourne, Wesley Hof wrote:
Hi,
First of all my apolog
Hello German -
We have had some reports of problems with Perl 5.8 so I suggest you go
back to Perl 5.6.1 and let us know what you discover. I have copied
this mail to Mike as he may have other comments.
regards
Hugh
On Saturday, Aug 23, 2003, at 00:48 Australia/Melbourne, GermanG wrote:
Hell
.21) in your to add an attribute
to the request as well. I use this in my current configuration,
however I also added the attribute to the dictionary as well. I am not
sure if this is required or not in this instance.
regards,
Miko
--- Original Message ---
From: "Hugh Irvine"
Hello Mushtaque -
This would appear to be a problem with DBD-ODBC - have you tried a
different version?
And what ODBC driver are you using?
What hardware/software platform are you running on and what version of
Perl?
regards
Hugh
On Sunday, Aug 24, 2003, at 00:35 Australia/Melbourne, Muhamm
Hello Christian -
It is very helpful to include a copy of your configuration file (no
secrets) together with a trace 4 debug from Radiator showing what is
happening.
In your case I am guessing that the shared secret is incorrect between
the client and the server. Again I am guessing that you a
Hello Kevin -
You can log authentication failures directly from Radiator. See the
AuthLog clauses in section 6.49 of the Radiator 3.6 reference manual
("doc/ref.html").
I suspect the stop packets you are seeing relate to sessions that
failed before they got as far as the radius authentication
Hello Karen -
As long as you have a reasonable version of Perl available Radiator
should run fine.
At this time we recommend Perl 5.6.1 as there have been reports of
problems with Perl 5.8 on some platforms.
regards
Hugh
On Tuesday, Aug 26, 2003, at 04:03 Australia/Melbourne,
[EMAIL PROTECT
Hello Jim -
Yes you can add a Filter-Id reply attribute for a particular user by
adding it to the list of reply items for that user.
You can also load per-user ACL's for Cisco's as described here:
http://www.open.com.au/radiator/faq.html#67
The FAQ item shows how to do it for all users, but y
Hello Andrew -
You should set up a shell script that does what you require and refer
to it with the SnmpgetProg.
Otherwise check the Net-SNMP documentation.
I have just downloaded the latest source tarball and built it and you
can specify the default SNMP version to use when you build the
Hello Angus -
How do you want to store the accounting information?
You should use the AcctLogFileName parameter in the Realm or Handler if
you want to use a file, or you should use an additional AuthBy SQL
clause if you want to store the accounting to an SQL database.
See sections 6.16.4 and 6
Hello Paul -
This seems very strange.
Can you please send me a copy of the configuration file and a trace 4
debug showing what is happening?
I would also like to know what hardware/software platform you are
running on and what version of Radiator, Perl, DBI, DBD, etc.
regards
Hugh
On Wednes
From: Hugh Irvine <[EMAIL PROTECTED]>
Date: Monday, August 25, 2003 6:44 am
Subject: Re: (RADIATOR) error in installing DBD-ODBC
Hello Mushtaque -
This would appear to be a problem with DBD-ODBC - have you tried a
different version?
And what ODBC driver are you using?
What hardware/softwa
Hello Lin -
See section 6.32 in the Radiator 3.6 reference manual ("doc/ref.html"),
and the code in "Radius/AuthEMERALD.pm" if you are interested in the
nitty-gritty details.
regards
Hugh
On Thursday, Aug 28, 2003, at 11:40 Australia/Melbourne, Huaikun Lin
wrote:
Hi
I am using radiator 3.6
Hello Chris -
I will need to see a copy of your configuration file (no secrets)
together with a trace 4 debug from Radiator showing what is happening.
Also note that you should be running Radiator 3.6 plus all the latest
patches.
Could you also provide more details on what you mean by "The Rad
Hello Geoffrey -
To do what you describe you should change "CN=%0" to
"samaccountname=%0".
I am not quite sure what your requirements are for VPDN users - can you
clarify?
For a detailed description of the AuthBy ADSI clause please see section
6.40 in the Radiator 3.6 reference manual ("do
/Melbourne, Huaikun Lin
wrote:
Hi
At 12:59 PM 8/28/2003 +1000, Hugh Irvine wrote:
Hello Lin -
See section 6.32 in the Radiator 3.6 reference manual
("doc/ref.html"), and the code in "Radius/AuthEMERALD.pm" if you are
interested in the nitty-gritty details.
We are using pla
DSL. Is there any way can solve the problem?
Lin
At 01:36 PM 8/28/2003 +1000, Hugh Irvine wrote:
Hello Lin -
This is usually done by setting up Handlers for the different types
of access, possibly with seperate session databases if required.
# define Client clauses with Identifiers
Hello Brian -
You could probably implement this with a PreClientHook to do what you
describe.
There are some example hooks in the file "goodies/hooks.txt".
regards
Hugh
On Thursday, Aug 28, 2003, at 13:06 Australia/Melbourne, Brian Morris
wrote:
Hi folks,
I would like to propose a 'feature
Hello Paul -
Further to this I note that there is a patch for Radiator 3.6 that
addresses something like this:
AuthBy RADIUS could crash if BindAddress was set to multiple
comma-separated addresses.
Reported by Anthony Stanton.
regards
Hugh
On Wednesday, Aug 27, 2003, at 15:51 Australia/Melb
Hello Andrew -
The code in "Radius/Nas/Cisco.pm" will try to use "finger" if the
NAS-Port is ISDN (>2).
This was a contribution that was added in Radiator 3.4.
I have copied Mike on this mail for his comments (I am not sure what to
suggest).
regards
Hugh
On Thursday, Aug 28, 2003, at 17
Hello Craig -
I have just now checked my mail and seen your requests (it is Saturday
morning here in Oz).
Can you please send me a copy of your configuration file (no secrets)
together with a trace 4 debug showing what is happening. And can you
also please tell me exactly what the problem is?
Hello AL -
This is what your configuration file is set up to return to the NAS:
*** Sending to 64.91.105.5 port 1812
Code: Access-Accept
Identifier: 107
Authentic: mp}<198><236><229><167>/<153><179>m<189><149>z<31>d
Attributes:
Service-Type = Framed-User
Framed-Protoc
al Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Behalf Of Mike McCauley
Sent: Friday, August 29, 2003 8:34 PM
To: Craig Gittens; Matthew Trout; Radiator
Cc: Hugh Irvine
Subject: Re: (RADIATOR) Emergency - Please help
Hello Craig,
On Fri, 29 Aug 2003 11:54 pm, Craig Git
Hello Jeremy -
I would be very interested in any answers to this too.
regards
Hugh
On Saturday, Aug 30, 2003, at 01:40 Australia/Melbourne, Jeremy L.
Mordkoff wrote:
A little off topic, but I will strive to make it appropriateJ
?
Is there an ldap server that’s as easy to use and reliable as
Hello Oscar -
You should use "changeUserName()".
${$_[0]}->changeUserName("new-test-value");
See the code in Radius/Radius.pm->changeUserName().
This is because Radiator does some caching of the username internally.
regards
Hugh
On Monday, Sep 1, 2003, at 04:45 Australia/Melbourne, Oscar Ga
Hello Mukesh -
I will need to see a copy of your configuration file (no secrets)
together with a trace 4 debug from Radiator showing what is happening.
Can you also tell me what the old IP address was and what the new IP
address is.
regards
Hugh
On Monday, Sep 1, 2003, at 14:46 Australia/Mel
Hello Bret -
For the Radiator side of things you will find an example configuration
file in "goodies/pam.cfg".
There is also section 6.39 in the Radiator reference manual
("doc/ref.html"), and there is a FAQ item here:
http://www.linuxsecurity.com/tips/tip-13.html
regards
Hugh
On Monday, S
Hello Ingvar -
What exactly do you mean by "multiple Radiator threads"?
I have also copied this mail to Mike for additional comments.
regards
Hugh
On Monday, Sep 1, 2003, at 22:24 Australia/Melbourne, Ingvar Bjarnason
wrote:
Hi all,
I´m currently running into problems with .
When
ru
Hello Cory -
Radiator simply transcribes what is reported in the radius accounting
request by the NAS (check a trace 4 debug to verify)
It may simply be that the Cisco is counting *all* of the octets
traversing the interface including TCP headers, IP headers and PPP
headers, etc., etc. In othe
Ciao Denis -
There is a FAQ item for Cisco here:
http://www.open.com.au/radiator/faq.html#67
I don't know whether it works on a PIX, but you should check the Cisco
web site and do some experiments.
regards
Hugh
On Tuesday, Sep 2, 2003, at 20:07 Australia/Melbourne, Denis Pavani
wrote:
t = 0,
Session-Timeout = 0
And, I was wondering why i'm only seeing service type, and framed
protocol
?
Thanks,
AL
On Sat, 30 Aug 2003, Hugh Irvine wrote:
Hello AL -
This is what your configuration file is set up to return to the NAS:
*** Sending to 64.91.105.5 port 1812
Hello Chris -
I am not quite sure I understand your configuration file.
You say below that you are using EAPTTLS, however your configuration
file shows this:
.
You also still have the clause in your default Handler,
which is what is giving the error messages.
Your configurati
Hello Ganbold -
It is possible that you may need to use "ResultInOutput" in this
environment.
Have a look at the code in "Radius/AuthEXTERNAL.pm" and maybe add some
print statements so you can see what is happening. And please let us
know what you find.
regards
Hugh
On Wednesday, Sep 3,
Hello -
You will need to install the Oracle client libraries before you can
build DBD-Oracle.
Also note that we have had many reports of problems with Perl 5.8 and
we recommend Perl 5.6.1 for now.
regards
Hugh
On Wednesday, Sep 3, 2003, at 20:07 Australia/Melbourne, Datareactor
wrote:
Dear
Hello Craig -
I seem to remember there are some "aaa ..." commands to send extended
NAS-Port information (there may be others).
I also noticed on the latest 12.2 IOS release some new commands - so
you might want to check what version you are running.
You should ask your Cisco engineer or check
the crack,
or
there are other reason we should talk off list.
Bon
On Wed, 3 Sep 2003, Hugh Irvine wrote:
Hello -
You will need to install the Oracle client libraries before you can
build DBD-Oracle.
Also note that we have had many reports of problems with Perl 5.8 and
we recommend Perl 5.6.1 f
3 Sep 2003, Hugh Irvine wrote:
Hello AL -
Thanks for the information.
I must confess I am a bit confused about exactly how you want your
setup to operate. I can see the Auth-Type = LDAP below, and I can see
multiple AuthBy clauses in your Realm clause. Can you explain to me in
detail your re
Hello Julio -
We have had *many* reports of problems with Perl 5.8.
We recommend that you use Perl 5.6.1.
regards
Hugh
On Thursday, Sep 4, 2003, at 11:04 Australia/Melbourne, Julio Cesar
Pinto wrote:
Hi for all.
We're working with the following:
Linux RedHat Version 9.
Perl Version 5.8.0
Ra
Hello Marcel -
Thanks for your mail.
This will be in the Radiator reference manual for the next release.
regards
Hugh
On Thursday, Sep 4, 2003, at 13:07 Australia/Melbourne, Marcel Brown
wrote:
It took me awhile to track this down, so I figure I'd post a message
to bring it to the attenti
Hello Ganbold -
Please let me know how you go with ResultInOutput.
regards
Hugh
On Thursday, Sep 4, 2003, at 12:10 Australia/Melbourne, Ganbold wrote:
Hi Hugh,
I added following lines in AuthEXTERNAL.pm and tested radiator.
-
4 Sep 2003, Charles Alexander McCain wrote:
Hugh,
What about my dynamic users ? Dialup and ADSL share the same realm.
If i
have a realm with only AuthBY SQL in it, how exactly will they
interact
with ldap ? I'm sure you're right, i am just curious as to how that
works.
Thanks,
Al
On Th
Hello Dordaneh -
I don't think Digest-MD4 is installed correctly (I think what you show
below is incorrect).
You must install Digest-MD4 before you can use MS-CHAP.
BTW - we have had numerous reports of problems with Perl 5.8 so you
might consider Perl 5.6.1 instead.
regards
Hugh
On Friday,
Hello Kurt -
Thanks for your mail.
Radiator already supports regexps on any attributes in the incoming
request.
Ie:
.
You can also use multiple items:
.
regards
Hugh
On Friday, Sep 5, 2003, at 21:19 Australia/Melbourne, Kurt Jaeger wrote:
Hi!
Here's a small sni
Hello Kevin -
I will need to see a copy of your configuration files (no secrets)
together with the corresponding trace 5 debugs showing what is
happening. From what you describe below it sounds like there may be
filters getting in the way somewhere.
regards
Hugh
On Saturday, Sep 6, 2003, at
Hello Barry -
Yes you can use an AddToReplyIfNotExist, although it is more usually
put in the AuthBy clause:
.
.
AddToReplyIfNotExist Framed-Filter = "filter-id"
..
regards
Hugh
On Saturday, Sep 6, 2003, at 06:19 A
Hello Marcel -
Easy:
bytes == octets
Its the same thing - just different names.
regards
Hugh
On Saturday, Sep 6, 2003, at 15:34 Australia/Melbourne, Marcel Brown
wrote:
Before I spend a lot of time tracking this down, if someone has a
quick answer, I'd appreciate it.
Is there a simple c
Hello Marcel -
OK
BYTES == OCTETS
:-)
Hugh
On Sunday, Sep 7, 2003, at 00:45 Australia/Melbourne, Marcel Brown
wrote:
Hello Marcel -
Easy:
bytes == octets
Its the same thing - just different names.
No, that's too simple, I want a harder answer :)
Thanks!
Marcel
===
Archive at http://ww
Hello Nick -
You could also write a PreClientHook to reduce the length of the
attribute.
There are some example hooks in the file "goodies/hooks.txt".
regards
Hugh
On Sunday, Sep 7, 2003, at 09:46 Australia/Melbourne, Nick M. Black
wrote:
Hi,
Configuration is Radiator 2.19 (old I know!) ru
Hello Gabor -
This is the default behaviour - you should add NoDefault to your AuthBy
clause to change it.
.
NoDefault
.
regards
Hugh
On Monday, Sep 8, 2003, at 21:35 Australia/Melbourne, Gabor
Debreczeni-Kis wrote:
He
Hello -
You are correct - you are combining 32 bit and 64 bit object modules.
All of the object modules must be one format or the other. You must
make sure that Perl, the C compiler and the Oracle libraries are all
the same format (32 bit probably).
regards
Hugh
On Tuesday, Sep 9, 2003, at 0
Salut Jerome -
Radiator already has this support in the form of the PacketTrace
parameter and the clause.
Our companion product Radar uses both features to allow to connect to a
running Radiator instance and do lots of interesting things.
www.open.com.au/radar
See the relevant sections of t
Hello Craig -
Framed-IP-Address and Framed-Address are the same thing - both get
encoded as the same attribute on the wire (see the Radiator
dictionary). You will need to check with Nortel to find our what is
acceptable in a radius reply packet. Note that different vendors tend
to accept diffe
Hello Wesley -
It would be useful to see a trace 4 debug from Radiator as well as the
qpopper and PAM logs.
regards
Hugh
On Wednesday, Sep 10, 2003, at 17:57 Australia/Melbourne, Wesley Hof
wrote:
Hi,
I'm using qpopper -> PAM -> Radiator.
When a customer pops mail, and the authenticati
Hello Morton -
Thanks for your mail - you raise some interesting points.
Mike and I will be discussing your questions over the next day or so
and we will try to get back to you by the end of the week.
regards
Hugh
On Wednesday, Sep 10, 2003, at 17:23 Australia/Melbourne, Morton
Jonuschat wro
Hello Jaws -
You can only use "formatted-date" or "integer-date" (preferably) in an
AcctColumnDef.
See section 6.28.14 in the Radiator 3.6 reference manual
("doc/ref.html").
regards
Hugh
On Friday, Sep 12, 2003, at 09:23 Australia/Melbourne, tracker wrote:
Is it possible to use a formatted
Hello William -
Database failure means no response to an SQL query (for whatever
reason).
regards
Hugh
On Friday, Sep 12, 2003, at 01:52 Australia/Melbourne, William
Hernandez wrote:
Hello everyone,
The Radiator 3.3.1 manual states in Section 6.28
"AuthBy SQL is tolerant of database failu
Hello Karl -
You should use an external cron job or whatever to archive or delete
your log files.
regards
Hugh
On Friday, Sep 12, 2003, at 00:50 Australia/Melbourne, [EMAIL PROTECTED]
wrote:
Hi.
Is it possible to limit the sizes of the logfiles, or can I handle
this problem only with exter
Hello Stefan -
The port numbers and secret are only evaluated at run time as you have
discovered.
A better method for dealing with multiple, changing radius proxies is
to use the AuthBy SQLRADIUS clause which stores the target details in
an SQL database. See section 6.45 in the Radiator 3.6 re
Hello Robert -
The simplest thing is to write a little hook that will add a
pseudo-attribute to the incoming request packet formatted however you
need it to be. Then you can simply use the pseudo-attribute directly in
the AcctSQLStatement.
You will find some example hooks in the file "goodies/
Hello Payam -
I will need to see a copy of your configuration file (no secrets)
together with a trace 4 debug from Radiator showing the problem and
what is happening.
regards
Hugh
On Friday, Sep 12, 2003, at 17:22 Australia/Melbourne, Payam Shabanian
wrote:
I have problem in establishing pp
Hello Mike -
Yes this is quite simple to acheive.
RewriteUsername s/^([EMAIL PROTECTED]).*/$1/
AuthByPolicy ContinueUntilReject
Filename %D/reject.users
AcceptIfMissing
Hello Mai -
There are some known problems with Redhat 8 and 9.
See this FAQ item:
http://www.open.com.au/radiator/faq.html#127
regards
Hugh
On Saturday, Sep 13, 2003, at 02:33 Australia/Melbourne, Mai Bui wrote:
Support,
I'm having problem with Radiator binding to LDAP when running radpwts
Hello -
You should check your Radiator dictionary to make sure the attributes
you are using are defined (they are in the standard Radiator 3.6
dictionary).
The trace debug doesn't show the reply attributes at all, so I suspect
there is a problem with the database response.
regards
Hugh
On F
Hello Payam -
You can either use the AuthBy EXTERNAL clause or you can write a hook.
See section 6.26 in the Radiator 3.6 reference manual (there are also
some example hooks in the file "goodies/hooks.txt").
regards
Hugh
On Saturday, Sep 13, 2003, at 23:53 Australia/Melbourne, Payam
Shabania
Hello Deen -
We will need to see a trace 4 debug from Radiator showing what is
happening.
regards
Hugh
On Sunday, Sep 14, 2003, at 11:04 Australia/Melbourne, deen wrote:
Hi List,
What I am trying to do is, authenticate a user CLI appearing in the
RADIUS Auth records, against his teleph
Hello Mahesh -
You can use the "RejectHasReason" in your Realm or Handler clause.
See section 6.16.23 in the Radiator 3.6 reference manual
("doc/ref.html").
regards
Hugh
On Sunday, Sep 14, 2003, at 00:27 Australia/Melbourne, Mahesh
Neelakanta wrote:
Hello from Sunny South Florida, USA,
I
Hello Mukesh -
We will need to see a copy of your configuration file together with a
trace 4 debug from Radiator showing what is happening.
The most common problem with Cisco equipment is they need at least the
following reply attributes:
AddToReply Service-Type = Framed-User, \
the AuthLOG? The reason is that in our Radiator
(2.19),
%1 should print "Request Denied" but does not.
mahesh
-Original Message-----
From: Hugh Irvine [mailto:[EMAIL PROTECTED]
Sent: Saturday, September 13, 2003 6:43 PM
To: Mahesh Neelakanta
Cc: [EMAIL PROTECTED]
Subject: Re:
, what the 802.1x authentication problem could be?
Thanking you in advance
-Original Message-
From: Hugh Irvine [mailto:[EMAIL PROTECTED]
Sent: Samstag, 13. September 2003 09:26
To: Arangeh, Dordaneh
Cc: [EMAIL PROTECTED]
Subject: Re: (RADIATOR) 802.1x and vlan assignment
Hello -
You should
Hello -
Thanks for your mail.
As far as I can see there is nothing wrong with your configuration and
the debug trace shows an accounting start for the session that appears
to be normal. I do notice that you are not sending a Framed-IP-Netmask,
but the radius accounting start shows an IP addres
do?
rgds
G. S. Rakhra
- Original Message -----
From: "Hugh Irvine" <[EMAIL PROTECTED]>
To: "G. S. Rakhra" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, September 16, 2003 12:42 PM
Subject: Re: (RADIATOR) Configuring Radiator Radius server fo
Hello Robert -
This is really a problem with the PPPoE clients, not Radiator. This
topic has been discussed on the list before and the consensus of
opinion is that it is better to apply filters rather than NAK'ing. The
reason for this of course is that a NAK will not stop the requests.
See the
tips.
Nevertheless, the Windows problem is persisting. Once you give username
and password, you can not change it any more. And also the problem with
a funny usrname azbycx which, I don't know where from is coming,
remains
as before.
Regards
Dordaneh
-Original Message-----
From: Hugh Irvi
Hello William -
There were some patches for this in Radiator 3.4.
From the history file ("doc/history.html"):
Improvements to SessionDatabase SQL, so that the NAS ID, NAS port and
SQL quoted
Acct-Session-Id are available in the AddQuery.
The latest version is Radiator 3.6 (plus patches) so
Hello Karl -
I agree with you - the Radiator processing looks very slow.
Can you tell me what type of machine you are running (hardware and
software distribution)?
And can you tell me what else is running on the machine? Perhaps you
could run a "top" and send it to me?
The reason you are se
Hello Ivo -
I suspect that the environment in which you are running Radiator does
not include the environment variables you have configured. I suggest
you run "radiusd" by hand first, in a shell that has the correct
environment:
perl radiusd -foreground -log_stdout -trace 4 -config_file .
S
0.0 2.5 0:00 bash
Hugh Irvine <[EMAIL PROTECTED]> schrieb am 09.18.2003 03:13:18 AM:
>
> Hello Karl -
>
> I agree with you - the Radiator processing looks very slow.
>
> Can you tell me what type of machine you are runnin
201 - 300 of 5222 matches
Mail list logo
