New activity for FreeRADIUS (the high performance and highly configurable RADIUS server) ====== gpgsig -----BEGIN PGP SIGNATURE----- iQEcBAABCAAGBQJYWWLZAAoJEH0Oec13Yh7NtDcIAKZDTrbIuHbGXZ2FOVV5nBXs zBpbN6r/+XRgAHQEmo45FshxS1vuSRlR0WlHRvwBgtFk7D4U476l1JXlJ/oOalyw ouDSyLMyQCKEgn6rN77m7YfpYhbfcVgT/94b0SCSW4sHAKb4Hf0pq+kHa9Nk2Gol NIL11reMjh9SQYHgZaQfAzI/2W3Tovfk1LOBOlFbTyxZpXbUN0FF6475IxlwtU7E fvGZvRWybE0i+Qi4kJfPQlg7b3DuYrw0RTEATWqXQCsKwHKmVMpcPYrX3p/T2YVo GGtGUzHd4Uu4a8TUkww6ylw+xjSESgBCqTIB6DOVvTpLRRmcSSxLOkxTJDyStuY= =uYVZ -----END PGP SIGNATURE----- note recent changes Alan T. DeKok@2016-12-20T16:56:54Z Files modified: * doc/ChangeLog Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/79c5409258235377ba272... ====== gpgsig -----BEGIN PGP SIGNATURE----- iQEcBAABCAAGBQJYWWJjAAoJEH0Oec13Yh7NoLYH/1DjReNsqZnWE2VU6nPSdxrN nW8vuoNhEGRs+kVHxtVd6Kit2Y93Xa1VXpmgMfNOJ3cCsBsNjqbjBd1rVk+YzFOe XrwCfVtXzdhji6MLVIwrStpZYBo4CS3BMjJCWg9VP+ar9XwNjAo6gx4ryVkV4f9E g/UCZSVupTWkzdbw+JmvCcHjT6GVjougVQ688vCjKFgyECfA9zEB0GTT72FOy3s/ ASvwq+iD71uOFu764LLZl/5AicBZz//GMiPxtnCf5tsyYG5HdUX6wspuywh6x3zL 8cPM/7kon8aenX3QiqSHL9n9GtLY6+rYUH6SzxqroGg3sIpVCDq15PhYhXtmXRw= =JD95 -----END PGP SIGNATURE----- add recv_coa which is a copy of authorize Alan T. DeKok@2016-12-20T16:54:51Z Files modified: * src/modules/rlm_rest/rest.h * src/modules/rlm_rest/rlm_rest.c Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/848ad8590118f8db413dd... ====== Merge pull request #1835 from qnet-herwin/retry_winbind_auth_with_normalized_username Allow authentication retry in winbind Matthew Newton (via GitHub)@2016-12-20T13:08:31Z Files modified: * raddb/mods-available/mschap * src/modules/rlm_mschap/auth_wbclient.c * src/modules/rlm_mschap/rlm_mschap.c * src/modules/rlm_mschap/rlm_mschap.h Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/ae9115ededa62345f6634... ====== Allow authentication retry in winbind A setup with the following properties: * Active Directory backend * FreeRadius with eap-inner-proxy * Windows client with single sign-on * User using different casing in username than in backend may result in failing connections. It looks like Windows reads the correct username from the domain server once it has logged in, and uses that to create the MS-CHAP2-Response attribute. The User-Name attribute is still the one with the incorrect casing, causing the authentication to fail. The introduced config option kicks in after a failed authentication: it reads the correct username from the backend, tries another authentication, and uses the found User-Name to calculate MS-CHAP2-Response if the second authentication works. Herwin Weststrate@2016-12-20T11:22:34Z Files modified: * raddb/mods-available/mschap * src/modules/rlm_mschap/auth_wbclient.c * src/modules/rlm_mschap/rlm_mschap.c * src/modules/rlm_mschap/rlm_mschap.h Commit diff: https://github.com/FreeRADIUS/freeradius-server/commit/9f63a6a6e799ae343d71c... ====== -- This commit summary was generated @2016-12-21T00:00:02Z by lgfeed version 0.00 (https://github.com/arr2036/lgfeed).