Dear Guys, i have this setup Serv1: Linux Server CentOS 5.6 { - Chillispot - FreeRADIUS - Apache - Mysql } Serv2: Windows Server 2003 { - Active Directory } now i will explain how i did setup this and what is my problem . I integrated chillispot & mysql with FreeRADIUS . When the client enter his username and password it's come to FreeRADIUS and do Authentication via NTLM-AUTH Active Directory to verfiy user entry Then do Authorization via mysql . # If the user found in Active Directory only and not existing in Myql will login without any policy like Limited Download and login-time ..etc # If the user found in Active Directory and Mysql will be login with policy . How can i take the users on Active Directory and create them on mysql DB through some script php or else , lets say if after some time there many users created in Active Directory so they will not found in mysql . How i do that Automatic not manual ? I attached two example of my debuging mode in FreeRADIUS http://freeradius.1045715.n5.nabble.com/file/n4499034/test.pdf test.pdf http://freeradius.1045715.n5.nabble.com/file/n4499034/user1.pdf user1.pdf I hope found someone solve my problem . Thanks Best Regards, Metab -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p449903... Sent from the FreeRadius - User mailing list archive at Nabble.com.
This my second post and no reply ???? UP UP -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p449994... Sent from the FreeRadius - User mailing list archive at Nabble.com.
Are you new to this list? If so please remember that this list is maintained by volunteers, if you want professional support at your fingertips go pay for it. Also, the debugs you posted are incomplete. Please post the FULL debug output and wait patiently. Please do not mangle your debugs, sanitize them, but post them in full. Jake Sallee Godfather of Bandwidth System Engineer University of Mary Hardin-Baylor 900 College St. Belton, Texas 76513 Fone: 254-295-4658 Phax: 254-295-4221 -----Original Message----- From: freeradius-users-bounces+jake.sallee=umhb.edu@lists.freeradius.org [mailto:freeradius-users-bounces+jake.sallee=umhb.edu@lists.freeradius.org] On Behalf Of motaibi Sent: Friday, June 17, 2011 3:50 PM To: freeradius-users@lists.freeradius.org Subject: Re: NTLM Auth and mysql This my second post and no reply ???? UP UP -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p449994... Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I'm sorry man , but it's real related to freeradius it's my main software -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p450006... Sent from the FreeRadius - User mailing list archive at Nabble.com.
Oh oh... I can already feel the pain - I've very empathetic... No, not pathetic. Well, some would argue that point. ANYWAY - If I were you I'd put the flame suit on cause it's almost a sure thing you'll be getting toasty very soon :) -----Original Message----- From: freeradius-users-bounces+ggatten=waddell.com@lists.freeradius.org [mailto:freeradius-users-bounces+ggatten=waddell.com@lists.freeradius.org] On Behalf Of motaibi Sent: Friday, June 17, 2011 4:43 PM To: freeradius-users@lists.freeradius.org Subject: RE: NTLM Auth and mysql I'm sorry man , but it's real related to freeradius it's my main software -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p450006... Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html <font size="1"> <div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'> </div> "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system." </font>
I should also note that all the questions you asked are not in any way related to FreeRADIUS. Jake Sallee Godfather of Bandwidth System Engineer University of Mary Hardin-Baylor 900 College St. Belton, Texas 76513 Fone: 254-295-4658 Phax: 254-295-4221 -----Original Message----- From: freeradius-users-bounces+jake.sallee=umhb.edu@lists.freeradius.org [mailto:freeradius-users-bounces+jake.sallee=umhb.edu@lists.freeradius.org] On Behalf Of motaibi Sent: Friday, June 17, 2011 10:08 AM To: freeradius-users@lists.freeradius.org Subject: NTLM Auth and mysql Dear Guys, i have this setup Serv1: Linux Server CentOS 5.6 { - Chillispot - FreeRADIUS - Apache - Mysql } Serv2: Windows Server 2003 { - Active Directory } now i will explain how i did setup this and what is my problem . I integrated chillispot & mysql with FreeRADIUS . When the client enter his username and password it's come to FreeRADIUS and do Authentication via NTLM-AUTH Active Directory to verfiy user entry Then do Authorization via mysql . # If the user found in Active Directory only and not existing in Myql will login without any policy like Limited Download and login-time ..etc # If the user found in Active Directory and Mysql will be login with policy . How can i take the users on Active Directory and create them on mysql DB through some script php or else , lets say if after some time there many users created in Active Directory so they will not found in mysql . How i do that Automatic not manual ? I attached two example of my debuging mode in FreeRADIUS http://freeradius.1045715.n5.nabble.com/file/n4499034/test.pdf test.pdf http://freeradius.1045715.n5.nabble.com/file/n4499034/user1.pdf user1.pdf I hope found someone solve my problem . Thanks Best Regards, Metab -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p449903... Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Yup, maybe a M$ AD or MySQL forum? More likely someone there has a "replication" - or at minimum a "dump all" script to take AD info and dump into MySQL. I SORTA like the idea though - could come in handy when AD Admins won't cooperate with what you're trying to do. But this assumes they're give you an account with at least RO/view (whatever) access to all AD objects you need to copy / replicate. Our web team does some sort of batch process; reads AD via LDAP and updates mysql tables. I THINK to enumerate new users, group memberships, etc. - so that's always an option. Ie; read AD via LDAP and output to mysql using mysql calls/functions/, sql update/inserts, etc. Actually, sounds like they do almost what you want - cause they determine application perms based on MySQL info.... If you're nice I'll ask someone about it :) G -----Original Message----- From: freeradius-users-bounces+ggatten=waddell.com@lists.freeradius.org [mailto:freeradius-users-bounces+ggatten=waddell.com@lists.freeradius.org] On Behalf Of Sallee, Stephen (Jake) Sent: Friday, June 17, 2011 4:06 PM To: FreeRadius users mailing list Subject: RE: NTLM Auth and mysql I should also note that all the questions you asked are not in any way related to FreeRADIUS. Jake Sallee Godfather of Bandwidth System Engineer University of Mary Hardin-Baylor 900 College St. Belton, Texas 76513 Fone: 254-295-4658 Phax: 254-295-4221 -----Original Message----- From: freeradius-users-bounces+jake.sallee=umhb.edu@lists.freeradius.org [mailto:freeradius-users-bounces+jake.sallee=umhb.edu@lists.freeradius.org] On Behalf Of motaibi Sent: Friday, June 17, 2011 10:08 AM To: freeradius-users@lists.freeradius.org Subject: NTLM Auth and mysql Dear Guys, i have this setup Serv1: Linux Server CentOS 5.6 { - Chillispot - FreeRADIUS - Apache - Mysql } Serv2: Windows Server 2003 { - Active Directory } now i will explain how i did setup this and what is my problem . I integrated chillispot & mysql with FreeRADIUS . When the client enter his username and password it's come to FreeRADIUS and do Authentication via NTLM-AUTH Active Directory to verfiy user entry Then do Authorization via mysql . # If the user found in Active Directory only and not existing in Myql will login without any policy like Limited Download and login-time ..etc # If the user found in Active Directory and Mysql will be login with policy . How can i take the users on Active Directory and create them on mysql DB through some script php or else , lets say if after some time there many users created in Active Directory so they will not found in mysql . How i do that Automatic not manual ? I attached two example of my debuging mode in FreeRADIUS http://freeradius.1045715.n5.nabble.com/file/n4499034/test.pdf test.pdf http://freeradius.1045715.n5.nabble.com/file/n4499034/user1.pdf user1.pdf I hope found someone solve my problem . Thanks Best Regards, Metab -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p449903... Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html <font size="1"> <div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'> </div> "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system." </font>
Hi Gary Thanks man for reply i will try with some of Mysql forms and meanwhile ask your web team how he did it ? i real appreciate help dude -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p450007... Sent from the FreeRadius - User mailing list archive at Nabble.com.
OK - I'll check with them. Don't hold your breath though! 1.) They're not known to be the most responsive. 2.) I'll likely have to seek approval before sharing the code, and that could take who knows how long... MAYBE I could sanitize it and break it apart into ... blocks? And the post the blocks somewhere. Nonetheless, I need to ensure I don't violate any company policy and what not. G -----Original Message----- From: freeradius-users-bounces+ggatten=waddell.com@lists.freeradius.org [mailto:freeradius-users-bounces+ggatten=waddell.com@lists.freeradius.org] On Behalf Of motaibi Sent: Friday, June 17, 2011 4:49 PM To: freeradius-users@lists.freeradius.org Subject: RE: NTLM Auth and mysql Hi Gary Thanks man for reply i will try with some of Mysql forms and meanwhile ask your web team how he did it ? i real appreciate help dude -- View this message in context: http://freeradius.1045715.n5.nabble.com/NTLM-Auth-and-mysql-tp4499034p450007... Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html <font size="1"> <div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'> </div> "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system." </font>
participants (4)
-
Alan DeKok -
Gary Gatten -
motaibi -
Sallee, Stephen (Jake)