Sorry Alan,<br><br>but the webpage tells that its don't work. Its impossible? Correct?<br><br>So, how I can fix that the other way? <br><br>My pptp-options:<br><br>==<br>epiderme:/etc/ppp# cat pptpd-options<br>name pptpd<br>
refuse-pap<br>##refuse-chap<br>require-chap<br>##refuse-mschap<br>require-mschap<br>require-mschap-v2<br>require-mppe-128<br>proxyarp<br>nodefaultroute<br>debug<br>lock<br>nobsdcomp<br>plugin radius.so<br>#plugin radattr.so <br>
radius-config-file /etc/radiusclient/radiusclient.conf<br>auth<br>==<br><br>And my radiusd.conf:<br><br>==<br>prefix = /usr/local<br>exec_prefix = ${prefix}<br>sysconfdir = ${prefix}/etc<br>localstatedir = /var<br>sbindir = ${exec_prefix}/sbin<br>
logdir = /var/log<br>raddbdir = ${sysconfdir}/raddb<br>radacctdir = ${logdir}/radacct<br>confdir = ${raddbdir}<br>run_dir = ${localstatedir}/run/radiusd<br>log_file = ${logdir}/radius.log<br>libdir = ${exec_prefix}/lib<br>
pidfile = ${run_dir}/radiusd.pid<br>max_request_time = 30<br>delete_blocked_requests = no<br>cleanup_delay = 5<br>max_requests = 1024<br>bind_address = *<br>port = 0<br>hostname_lookups = no<br>allow_core_dumps = no<br>regular_expressions = yes<br>
extended_expressions = yes<br>log_stripped_names = no<br>log_auth = yes<br>log_auth_badpass = no<br>log_auth_goodpass = no<br>usercollide = no<br>lower_user = no<br>lower_pass = no<br>nospace_user = no<br>nospace_pass = no<br>
checkrad = ${sbindir}/checkrad<br>security {<br> max_attributes = 200<br> reject_delay = 1<br> status_server = no<br>}<br>proxy_requests = no<br>$INCLUDE ${confdir}/clients.conf<br>snmp = no<br>thread pool {<br>
start_servers = 5<br> max_servers = 32<br> min_spare_servers = 3<br> max_spare_servers = 10<br> max_requests_per_server = 0<br>}<br>modules {<br> pap {<br> encryption_scheme = crypt<br>
}<br> chap {<br> authtype = CHAP<br> }<br> unix {<br> cache = no<br> cache_reload = 600<br> radwtmp = ${logdir}/radwtmp<br> }<br>
mschap {<br> authtype = MS-CHAP<br> use_mppe = yes<br> require_encryption = no<br> require_strong = no<br> with_ntdomain_hack = yes<br> }<br>
ldap {<br> server = "<a href="http://ldap.telemedicina.ufsc.br">ldap.telemedicina.ufsc.br</a>"<br> identity = "cn=Manager,dc=telemedicina,dc=ufsc,dc=br"<br> password = "XXXXXXX"<br>
basedn = "ou=Users,dc=telemedicina,dc=ufsc,dc=br"<br> filter = "(&(objectClass=posixAccount)(uid=%u))"<br><br> start_tls = no<br> dictionary_mapping = ${raddbdir}/ldap.attrmap<br>
ldap_connections_number = 5<br> password_header = "{Cleartext-Password}"<br> password_attribute = sambaNTPassword<br> timeout = 4<br> timelimit = 3<br>
net_timeout = 1<br> compare_check_items = no<br> }<br> realm suffix {<br> format = suffix<br> delimiter = "@"<br> ignore_default = no<br>
ignore_null = no<br> }<br> checkval {<br> item-name = Calling-Station-Id<br> check-name = Calling-Station-Id<br> data-type = string<br> }<br>
preprocess {<br> huntgroups = ${confdir}/huntgroups<br> hints = ${confdir}/hints<br> with_ascend_hack = no<br> ascend_channels_per_line = 23<br> with_ntdomain_hack = no<br>
with_specialix_jetstream_hack = no<br> with_cisco_vsa_hack = no<br> }<br> files {<br> usersfile = ${confdir}/users<br> compat = no<br> }<br>
detail {<br> detailfile = ${radacctdir}/%{Client-IP-Address}/detail-%Y%m%d<br> detailperm = 0600<br> }<br> acct_unique {<br> key = "User-Name, Acct-Session-Id, NAS-IP-Address, Client-IP-Address, NAS-Port"<br>
}<br> radutmp {<br> filename = ${logdir}/radutmp<br> username = %{User-Name}<br> case_sensitive = yes<br> check_with_nas = yes<br> perm = 0600<br>
callerid = "yes"<br> }<br> radutmp sradutmp {<br> filename = ${logdir}/sradutmp<br> perm = 0644<br> callerid = "no"<br> }<br>
attr_filter {<br> attrsfile = ${confdir}/attrs<br> }<br> counter daily {<br> filename = ${raddbdir}/db.daily<br> key = User-Name<br> count-attribute = Acct-Session-Time<br>
reset = daily<br> counter-name = Daily-Session-Time<br> check-name = Max-Daily-Session<br> allowed-servicetype = Framed-User<br> cache-size = 5000<br>
}<br> always fail {<br> rcode = fail<br> }<br> always reject {<br> rcode = reject<br> }<br> always ok {<br> rcode = ok<br> simulcount = 0<br>
mpp = no<br> }<br> expr {<br> }<br> digest {<br> }<br> exec {<br> wait = yes<br> input_pairs = request<br> }<br> exec echo {<br>
wait = yes<br> program = "/bin/echo %{User-Name}"<br> input_pairs = request<br> output_pairs = reply<br> }<br> ippool main_pool {<br> range-start = <a href="http://150.162.67.201">150.162.67.201</a><br>
range-stop = <a href="http://150.162.67.220">150.162.67.220</a><br> netmask = <a href="http://255.255.255.0">255.255.255.0</a><br> cache-size = 800<br> session-db = ${raddbdir}/db.ippool<br>
ip-index = ${raddbdir}/db.ipindex<br> override = no<br> maximum-timeout = 0<br> }<br>}<br>instantiate {<br> exec<br> expr<br>}<br>authorize {<br> preprocess<br>
files<br> ldap<br> chap<br> mschap<br> suffix<br> #eap<br> pap<br>}<br>authenticate {<br> Auth-Type PAP {<br> pap<br> }<br> Auth-Type LDAP {<br>
ldap<br> }<br> Auth-Type CHAP {<br> chap<br> }<br> Auth-Type MS-CHAP {<br> mschap<br> }<br> unix<br> #eap<br>}<br>preacct {<br>
preprocess<br> #acct_unique<br> #files<br>}<br>accounting {<br> detail<br> unix<br> radutmp<br>}<br>session {<br> radutmp<br>}<br>post-auth {<br> #main_pool<br> #ldap<br>
}<br>pre-proxy {<br>}<br>post-proxy {<br> #eap<br>}<br>==<br><br>I apreciate your help.<br><br>Thanks a lot,<br>Douglas<br><br><div class="gmail_quote">On Wed, Nov 26, 2008 at 5:04 PM, Alan DeKok <span dir="ltr"><<a href="mailto:aland@deployingradius.com">aland@deployingradius.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div class="Ih2E3d">Douglas Macedo wrote:<br>
> how I can fix that?<br>
<br>
</div> Read the web page. It tells you.<br>
<div><div></div><div class="Wj3C7c"><br>
Alan DeKok.<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>Douglas Macedo<br><a href="mailto:dmacedo@gmail.com">dmacedo@gmail.com</a><br>--<br>Avalia-se a inteligência de um indivíduo pela quantidade de incertezas que ele é capaz de suportar.<br>
(Immanuel Kant)<br>