Hello again<br>I finally got the freeradius build 2.1.5 to initialize under SunOS 5.10 Generic_138889-02 i86pc i386 i86pc.<br>Here is the data<br><br>1. Got mysql from blastwave via pkg-get<br>2. Got openssl from blastwave via pk-get install openssl<br>
3. downloaded freeradius-server-2.1.4.tar.gz from <a href="http://freeradius.org">freeradius.org</a><br>4. tar -xvfz freeradius-server-2.1.4.tar.gz<br>5. mv freeradius-server-2.1.4 /usr/src/freeradius<br>6. cd /usr/src/freeradius<br>
7. ./configure --with-openssl-includes=/opt/csw/include/openssl --with-openssl-libraries=/opt/csw/lib<br>8. gmake<br>9. gmake install<br>10. cd /usr/local/etc/raddb/certs<br><br>created the following openssl script from the Makefile<br>
<br>11. vi radss.sh<br><br>#!/bin/bash<br><br>#<br># Diffie-Hellman parameters<br>#<br>openssl dhparam -out dh 1024<br><br>#<br># Create a new self-signed CA certificate<br>#<br>openssl req -new -x509 -keyout ca.key -out ca.pem -days 3660 -config ./ca.cnf<br>
<br>openssl x509 -inform PEM -outform DER -in ca.pem -out ca.der<br><br>openssl req -new -out server.csr -keyout server.key -config ./server.cnf<br><br>openssl ca -batch -keyfile ca.key -cert ca.pem -in server.csr -key whatever -out server.crt -extensions xpserver_ext -extfile xpextensions -config ./server.cnf<br>
<br>openssl pkcs12 -export -in server.crt -inkey server.key -out server.p12 -passin pass:whatever -passout pass:whatever<br><br>openssl pkcs12 -in server.p12 -out server.pem -passin pass:whatever -passout pass:whatever<br>
<br>#<br>#Verify Server Certificate<br>#<br>openssl verify -CAfile ca.pem server.pem<br><br>#<br># <br># Create a new client certificate, signed by the the above server<br># certificate.<br>#<br>#<br>openssl req -new -out client.csr -keyout client.key -config ./client.cnf<br>
<br>openssl ca -batch -keyfile server.key -cert server.crt -in client.csr -key whatever -out client.crt -extensions xpclient_ext -extfile xpextensions -config ./client.cnf<br><br>openssl pkcs12 -export -in client.crt -inkey client.key -out client.p12 -passin pass:whatever -passout pass:whatever<br>
<br>openssl pkcs12 -in client.p12 -out client.pem -passin pass:whatever -passout pass:whatever<br><br>cp client.pem urugn@support.com.pem<br><br>12. chmod +x radssl<br>13 ./radssl<br><br>manually executed the following command thats included in the Makefile<br>
<br>14. date > ./random;<br><br>Finally ran radiusd -X<br><br>15. radiusd -X<br><br>Lots of debug with the following output<br><br>Listening on authentication address * port 1812<br>Listening on accounting address * port 1813<br>
Listening on command file /usr/local/var/run/radiusd/radiusd.sock<br>Listening on proxy address * port 1814<br>Ready to process requests.<br><br>Well i think under solaris the auto build process is not finished hopefully this will be fixed in the 2.1.6 release.<br>
Next i will be interested in solaris router to act as the radius client.<br><br>One thing very confusing is solaris router a NAS/RAS and how can i get it to authenticate LAN subnets to the radius?<br>Any info or links will be appreciated.<br>
<br>Thanks in advance.<br><br><br><br><br><div class="gmail_quote">On Wed, May 13, 2009 at 10:27 AM, Urugn <span dir="ltr"><<a href="mailto:urugn.tony@gmail.com">urugn.tony@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Thanks Alan<br><br>debud mode would be radiusd -x or radiusd -xx or the extendd debug mode radiusd -X<br><br>i have tried radiusd -xx and still got the following error and the server does not start<br><br>/usr/local/etc/raddb/certs/bootstrap: make: not found<br>
/usr/local/etc/raddb/certs/bootstrap: test: unknown operator ==<div><div></div><div class="h5"><br><br><br><div class="gmail_quote">On Tue, May 12, 2009 at 3:09 PM, Alan DeKok <span dir="ltr"><<a href="mailto:aland@deployingradius.com" target="_blank">aland@deployingradius.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><a href="mailto:tony@urugn.com" target="_blank">tony@urugn.com</a> wrote:<br>
> Errors initializing modules<br>
> I thot may be ad trace the problem and directly executed<br>
> /usr/local/etc/raddb/certs/bootstrap Here is the output<br>
> sh: test: argument expected<br>
> *** Error code 1<br>
> The following command caused the error:<br>
> if [ -e /dev/urandom ] ; then \<br>
> dd if=/dev/urandom of=./random count=10 >/dev/null 2>&1; \ else \<br>
> date > ./random; \<br>
> fi<br>
> make: Fatal error: Command failed for target `random'<br>
> ./bootstrap: test: unknown operator ==<br>
<br>
</div> Just re-run the server in debug mode. There's a typo in the script<br>
that will be fixed in 2.1.6.<br>
<font color="#888888"><br>
Alan DeKok.<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
<br>
</font></blockquote></div><br>
</div></div></blockquote></div><br>