FreeRadius and CoovaAP (Ivan Kalik)

LGM lmazzella at gmail.com
Sat Jun 21 19:02:00 CEST 2008 

Yes, That's exactly my point. CHAP will not work.
We've been using the internal Chillispot captive portal on a WRT54GL
running the CoovaAP firmware. Is there any way of using that internal
captive portal but having it send PAP passwords instead of CHAP? It
would be much easier for my configuration if that internal portal was
being used rather than an external page.
Thank you for the prompt response to my initial question.

/Luc


On Sat, Jun 21, 2008 at 12:39 PM,
<freeradius-users-request at lists.freeradius.org> wrote:
> Send Freeradius-Users mailing list submissions to
>        freeradius-users at lists.freeradius.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>        http://lists.freeradius.org/mailman/listinfo/freeradius-users
> or, via email, send a message with subject or body 'help' to
>        freeradius-users-request at lists.freeradius.org
>
> You can reach the person managing the list at
>        freeradius-users-owner at lists.freeradius.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Freeradius-Users digest..."
>
>
> Today's Topics:
>
>   1. Re: FreeRadius and CoovaAP (Ivan Kalik)
>   2. Re: dhcp server (DHCPFlags feature) (Andrew Hood)
>   3. Re: freeradius assign duplicate ip address Error (Ivan Kalik)
>   4. Re: dhcp server (DHCPFlags feature) (A.L.M.Buxey at lboro.ac.uk)
>   5. Re: No Aoth Type problem again (Ivan Kalik)
>   6. Re: Freeradius-Users Digest, Vol 38, Issue 116 (Andy An)
>   7. When to use proxy Radius (Yago F. Hansen)
>   8. Re: Kicking off billing scipt in accounting block (Pete Kay)
>   9. Re: Kicking off billing scipt in accounting block (Alan DeKok)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Sat, 21 Jun 2008 16:33:37 +0100
> From: "Ivan Kalik" <tnt at kalik.net>
> Subject: Re: FreeRadius and CoovaAP
> To: "FreeRadius users mailing list"
>        <freeradius-users at lists.freeradius.org>
> Message-ID: <UzBzZ63g.1214062417.4201120.tnt at kalik.co.yu>
> Content-Type: text/plain; charset=ISO-8859-2
>
> You can't authenticate chap against ldap (AD). Use pap or mschap
> (ntlm_auth).
>
> Ivan Kalik
> Kalik Informatika ISP
>
>
> Dana 21/6/2008, "LGM" <lmazzella at gmail.com> pi?e:
>
>>Hello list,
>>
>>Has anybody implemented CoovaAP with FreeRadius talking to LDAP (Win
>>2003 Active Directory)?
>>
>>I've been attempting to configure CoovaAP to authenticate against
>>Active Directory using FreeRadius binded to LDAP. The LDAP binding
>>goes fine. I can also successfully authenticate a user with a radtest
>>command from the local machine.
>>I run into problems when I enter a username and password into the
>>authentication page on my WRT54GL running CoovaAP. The password is
>>passed to FreeRadius as CHAP. LDAP fails with the error
>>"User-Password" is required for authentication. Cannot use
>>"CHAP-Password"
>>Is it possible for CoovaAP to pass usernames and passwords in a form
>>that LDAP can authenticate? I've been considering editing the
>>ChilliLibrary.js on the WRT54GL but that seems like a heavy handed
>>(and likely ineffective) way of going about it. Any help/suggestions
>>would be greatly appreciated.
>>Thank you in advance.
>>
>>
>>/Luc
>>-
>>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>>
>>
>
>
>
> ------------------------------
>
> Message: 2
> Date: Sun, 22 Jun 2008 02:01:22 +1000
> From: Andrew Hood <freeradius at andyhood.net>
> Subject: Re: dhcp server (DHCPFlags feature)
> To: FreeRadius users mailing list
>        <freeradius-users at lists.freeradius.org>
> Message-ID: <485D25D2.40007 at andyhood.net>
> Content-Type: text/plain; charset=us-ascii
>
> Alan DeKok wrote:
>> Haralds Ulmanis wrote:
>>
>>>Just checked out from cvs .. and got compile error:
>>>...
>>>/root/freeradius/radiusd/src/main/listen.c:309: undefined reference to
>>>`request_stats_reply'
>>
>>
>>   Edit src/main/Makefile, and add "stats.c" to the SERVER_SRCS line.
>>
>>   It's in Makefile.in, but you probably didn't re-run "configure", and
>> likely don't want to do that, either.
>
> That sounds odd, assuming normal auto* practice. The top Makefile should
> contain a rule:
>
> Makefile: Makefile.in
>
> which would run "./config.status --recheck"
>
> What platform and version of make was this?
>
> --
> REALITY.SYS not found: Universe halted.
>
>
> ------------------------------
>
> Message: 3
> Date: Sat, 21 Jun 2008 17:10:48 +0100
> From: "Ivan Kalik" <tnt at kalik.net>
> Subject: Re: freeradius assign duplicate ip address Error
> To: freeradius-users at lists.freeradius.org
> Message-ID: <SEhNjjZn.1214064648.4062820.tnt at kalik.co.yu>
> Content-Type: text/plain; charset=ISO-8859-2
>
> Can you produce a debug demonstrating this?
>
> Ivan Kalik
> Kalik Informatika ISP
>
>
> Dana 21/6/2008, "Deep Purple" <jinjusi at yahoo.co.kr> pi?e:
>
>>freeradius assign duplicate ip address ,
>>??i using ippool module and file,
>>for example user1 get the??172.16.1.30
>>and some times (not always ) user2 get the same??172.16.1.30
>>freeradius-1.1.7.tar.gz
>>freeradius-client-1.1.5.tar.bz2
>>pptpd-1.3.3-1.fc5.i386.rpm
>>Please Help me
>>
>>
>>      ________________________________________________________
>>180??? ????????? ??????! ?????? - ?????? ?????? ???????????? ????????? ??????? ????????? ??????! ????????? ????????? ??????????????????.
>>http://kr.content.mail.yahoo.com/cgland
>>
>>-
>>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
>
> ------------------------------
>
> Message: 4
> Date: Sat, 21 Jun 2008 17:15:09 +0100
> From: A.L.M.Buxey at lboro.ac.uk
> Subject: Re: dhcp server (DHCPFlags feature)
> To: FreeRadius users mailing list
>        <freeradius-users at lists.freeradius.org>
> Message-ID: <20080621161509.GA23492 at lboro.ac.uk>
> Content-Type: text/plain; charset=us-ascii
>
> Hi,
>
>> That sounds odd, assuming normal auto* practice. The top Makefile should
>> contain a rule:
>>
>> Makefile: Makefile.in
>>
>> which would run "./config.status --recheck"
>
> aye - only the libltdl has such practice. that might
> explain things and the gotcha
>
> alan
>
>
> ------------------------------
>
> Message: 5
> Date: Sat, 21 Jun 2008 17:18:28 +0100
> From: "Ivan Kalik" <tnt at kalik.net>
> Subject: Re: No Aoth Type problem again
> To: "FreeRadius users mailing list"
>        <freeradius-users at lists.freeradius.org>
> Message-ID: <uzgQMku0.1214065108.6112610.tnt at kalik.co.yu>
> Content-Type: text/plain; charset=ISO-8859-2
>
>>So, for the sake of 'clean' configs I reinstalled freeRadius 2.0.5 (which I
>>was running before btw..) and changed nothing except "default_eap_type =
>>peap". To my amazement it ran perfectly! Then I turned MySQL auth on and it
>>worked!
>>After all these hours figuring out freeRadius and following HowToos, it now
>>runs out of the box! Where there so many changes from 2.0.3 to 2.0.5?
>>
> Not really. Only significant thing that changed there was that
> inner-tunnel config file was copied to the place it was suposed to be
> (you had to do-it-yourself in previous version - oversight).
>
> Ivan Kalik
> Kalik Informatika ISP
>
>
>
> ------------------------------
>
> Message: 6
> Date: Sat, 21 Jun 2008 09:24:13 -0700
> From: Andy An <andyan at eciad.ca>
> Subject: Re: Freeradius-Users Digest, Vol 38, Issue 116
> To: freeradius-users at lists.freeradius.org
> Message-ID: <485D2B2D.3080509 at eciad.ca>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
> Hi Jelle:
> Thanks for your good news.
> I will try to reinstall the freeradius 2.0.5 again next Monday (hope to
> have the same luck).
> Really really a great appreciate for both Alan and Ivan for your helps.
> Andy
>
>
>
> freeradius-users-request at lists.freeradius.org wrote:
>> Send Freeradius-Users mailing list submissions to
>>       freeradius-users at lists.freeradius.org
>>
>> To subscribe or unsubscribe via the World Wide Web, visit
>>       http://lists.freeradius.org/mailman/listinfo/freeradius-users
>> or, via email, send a message with subject or body 'help' to
>>       freeradius-users-request at lists.freeradius.org
>>
>> You can reach the person managing the list at
>>       freeradius-users-owner at lists.freeradius.org
>>
>> When replying, please edit your Subject line so it is more specific
>> than "Re: Contents of Freeradius-Users digest..."
>>
>>
>> Today's Topics:
>>
>>    1. Re: No Aoth Type problem again (Jelle Langbroek)
>>    2. Problem in connecting to switch on telnet (Guk Viktor)
>>    3. Re: Kicking off billing scipt in accounting block (Pete Kay)
>>    4. radacct/radutmp out of sync (Tuc at T-B-O-H.NET)
>>    5. FreeRadius and CoovaAP (LGM)
>>    6. Re: radacct/radutmp out of sync (Alan DeKok)
>>    7. Re: Kicking off billing scipt in accounting block (Alan DeKok)
>>
>>
>> ----------------------------------------------------------------------
>>
>> Message: 1
>> Date: Sat, 21 Jun 2008 12:23:15 +0200
>> From: "Jelle Langbroek" <jml at orkz.net>
>> Subject: Re: No Aoth Type problem again
>> To: "FreeRadius users mailing list"
>>       <freeradius-users at lists.freeradius.org>
>> Message-ID:
>>       <7796c3f70806210323w22d3617s7a8995523637cef1 at mail.gmail.com>
>> Content-Type: text/plain; charset="iso-8859-1"
>>
>> So, for the sake of 'clean' configs I reinstalled freeRadius 2.0.5 (which I
>> was running before btw..) and changed nothing except "default_eap_type =
>> peap". To my amazement it ran perfectly! Then I turned MySQL auth on and it
>> worked!
>> After all these hours figuring out freeRadius and following HowToos, it now
>> runs out of the box! Where there so many changes from 2.0.3 to 2.0.5?
>>
>> Anyway, thanks for all the help Alan and Ivan!
>>
>> Jelle
>>
>> 2008/6/20 Alan DeKok <aland at deployingradius.com>:
>>
>>
>
>
> ------------------------------
>
> Message: 7
> Date: Sat, 21 Jun 2008 17:21:47 +0100
> From: "Yago F. Hansen" <sti at soportec.com>
> Subject: When to use proxy Radius
> To: "FreeRadius users mailing list"
>        <freeradius-users at lists.freeradius.org>
> Message-ID: <000801c8d3ba$e84409d0$c901a8c0 at BAREBONE>
> Content-Type: text/plain; format=flowed; charset="iso-8859-1";
>        reply-type=original
>
> Hi everybody:
>
> I am going to planify a new infrastructure with FreeRadius. I would like to
> ask to you, whats the rule to planify the use of proxy servers for the size
> in users or the size in use or the redundancy?
>
> Thank you from now
>
>
>
> ------------------------------
>
> Message: 8
> Date: Sun, 22 Jun 2008 00:21:50 +0800
> From: "Pete Kay" <petedao at gmail.com>
> Subject: Re: Kicking off billing scipt in accounting block
> To: "FreeRadius users mailing list"
>        <freeradius-users at lists.freeradius.org>
> Message-ID:
>        <7aa8bd9d0806210921kbeeb05aq60790713e8a6a805 at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Hi Alan,
>
> I have tried the following:
> accounting{
>
>      sql
>
>        exec  /etc/billing/bill
> }
>
>
> But it still does not work.  I checked the unlang, but it does not give me
> much hint....
> Could you give some suggestions how I can get the billing script to run?
>
> Thanks,
> Pete
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <https://lists.freeradius.org/pipermail/freeradius-users/attachments/20080622/4ac97f2e/attachment.html>
>
> ------------------------------
>
> Message: 9
> Date: Sat, 21 Jun 2008 18:39:15 +0200
> From: Alan DeKok <aland at deployingradius.com>
> Subject: Re: Kicking off billing scipt in accounting block
> To: FreeRadius users mailing list
>        <freeradius-users at lists.freeradius.org>
> Message-ID: <485D2EB3.8030001 at deployingradius.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Pete Kay wrote:
>> I have tried the following:
>> accounting{
>>
>>       sql
>>
>>         exec  /etc/billing/bill
>> }
>
>  That don't work.  The entries are module names, not lists of parameters.
>
>  Read the example for the "exec" module to see how to execute a
> specific program.  See the "echo" example.
>
>> But it still does not work.  I checked the unlang, but it does not give
>> me much hint....
>
>  It tells you how you can run shell scripts.  Use back-ticks.
>
>  Alan DeKok.
>
>
> ------------------------------
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
> End of Freeradius-Users Digest, Vol 38, Issue 117
> *************************************************
>



-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

More information about the Freeradius-Users mailing list