Freeradius-Users Digest, Vol 11, Issue 39

Atkins, Dwane P ATKINSD at uthscsa.edu
Fri Mar 10 15:10:32 CET 2006 

Thanks for all the input.  I have one more question.

Is there a way that I can input the start and stop time for user as far as in like an expiration date?  Let say you are a contractor and need access for the 5 duty days you are in town.  Can I put a config in that says, start on the 1st, end on the 5th?

Thanks for all you inputs.  Truly helpful.

Dwane

-----Original Message-----
From: freeradius-users-bounces+atkinsd=uthscsa.edu at lists.freeradius.org [mailto:freeradius-users-bounces+atkinsd=uthscsa.edu at lists.freeradius.org] On Behalf Of freeradius-users-request at lists.freeradius.org
Sent: Friday, March 10, 2006 5:36 AM
To: freeradius-users at lists.freeradius.org
Subject: Freeradius-Users Digest, Vol 11, Issue 39

Send Freeradius-Users mailing list submissions to
	freeradius-users at lists.freeradius.org

To subscribe or unsubscribe via the World Wide Web, visit
	http://lists.freeradius.org/mailman/listinfo/freeradius-users
or, via email, send a message with subject or body 'help' to
	freeradius-users-request at lists.freeradius.org

You can reach the person managing the list at
	freeradius-users-owner at lists.freeradius.org

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Freeradius-Users digest..."


Today's Topics:

   1. RE: freeradius newbie (mnisay)
   2. RE: perl scripts (mnisay)
   3. Re: Reload on freeradius 1.1.0 (Andr? Lemos)
   4. Re: Reload on freeradius 1.1.0 (Andr? Lemos)
   5. Re: Reload on freeradius 1.1.0 (Andr? Lemos)
   6. Re: Reload on freeradius 1.1.0 (Andr? Lemos)


----------------------------------------------------------------------

Message: 1
Date: Fri, 10 Mar 2006 11:25:30 +0100
From: "mnisay" <mnisay at aim-consultants.com>
Subject: RE: freeradius newbie
To: "'FreeRadius users mailing list'"
	<freeradius-users at lists.freeradius.org>
Message-ID: <01c101c6442c$f5b90130$14c9ffd5 at billgates>
Content-Type: text/plain; charset="windows-1250"

how about 

1.	Is there a good document that I can follow that will give me
step-by-step instructions to install freeradius on Fedora 4?  I would even
do FreeBSD if need be but I am more familiar with the FC 4 processes.  

 
yum install freeradius 

 

2.	Is there a GUI front-end that will allow us to https into the
FreeRadius Server and make changes to the mysql database?  

 
google for phpmyadmin and dialupadmin 

 

3.	Where would I find the debug documents that I read about when I
execute the radtest executable?  

 
man radrest 

 


-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.375 / Virus Database: 268.2.1/278 - Release Date: 3/9/2006
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://list.xs4all.nl/pipermail/freeradius-users/attachments/20060310/d91620fc/attachment-0001.html

------------------------------

Message: 2
Date: Fri, 10 Mar 2006 11:26:59 +0100
From: "mnisay" <mnisay at aim-consultants.com>
Subject: RE: perl scripts
To: "'FreeRadius users mailing list'"
	<freeradius-users at lists.freeradius.org>
Message-ID: <01c601c6442d$29c17840$14c9ffd5 at billgates>
Content-Type: text/plain; charset="windows-1250"


 
 > Could somebody share with some scripts that authorize users in radius.
 > Im trying to write my own script, but i don't find any docs.
 > Could somebody help me. 
 
authorize users in radius?
freeradius can authorize users by default. 
 


--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.375 / Virus Database: 268.2.1/278 - Release Date: 3/9/2006



-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.375 / Virus Database: 268.2.1/278 - Release Date: 3/9/2006
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://list.xs4all.nl/pipermail/freeradius-users/attachments/20060310/ed1594b3/attachment-0001.html

------------------------------

Message: 3
Date: Fri, 10 Mar 2006 10:28:21 +0000
From: Andr? Lemos <alemos at criticalsoftware.com>
Subject: Re: Reload on freeradius 1.1.0
To: FreeRadius users mailing list
	<freeradius-users at lists.freeradius.org>
Message-ID: <441154C5.9020606 at criticalsoftware.com>
Content-Type: text/plain; charset="iso-8859-1"

No dice...

I've chowned and chmoed and still I get the same problem.

Any more sugestions?

Alan DeKok wrote:
> =?ISO-8859-1?Q?Andr=E9_Lemos?= <alemos at criticalsoftware.com> wrote:
>   
>> doesn't anyone also have this problem?
>>     
>
>   It works in my tests.
>
>   Hmm... the code prints the SSL errors to stderr.  They're lost when
> running in daemon mode.  Yuck.
>
>   I *suspect* that the files aren't readable by the server after a
> HUP.  Try making them owned by the UID the server is running as, and
> making them readable by that uid.
>
>   Alan DeKok.

-- 
**_____________________**
* *André Ventura Lemos**
**Software Engineer**
**Critical Software, SA**
**Webpage:** 	**www.andrelemos.com**
**MSN:** 	**tux at tuxslare.org**
**GSM:** 	**+351916401042**
**TLF:** 	**+351239989100**




DISCLAIMER: This message may contain confidential information or privileged material and is intended only for the individual(s) named. If you are not a named addressee and mistakenly received this message you should not copy or otherwise disseminate it: please delete this e-mail from your system and notify the sender immediately. E-mail transmissions are not guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete or contain viruses. Therefore, the sender does not accept liability for any errors or omissions in the contents of this message that arise as a result of e-mail transmissions. Please request a hard copy version if verification is required. Critical Software.



------------------------------

Message: 4
Date: Fri, 10 Mar 2006 10:34:04 +0000
From: Andr? Lemos <alemos at criticalsoftware.com>
Subject: Re: Reload on freeradius 1.1.0
To: FreeRadius users mailing list
	<freeradius-users at lists.freeradius.org>
Message-ID: <4411561C.8030409 at criticalsoftware.com>
Content-Type: text/plain; charset="iso-8859-1"

Do you see anything in here?

write(6, "Fri Mar 10 10:32:38 2006 : Info:"..., 86) = 86
close(6)                                = 0
munmap(0xb7fb6000, 4096)                = 0
open("/etc/raddb/certs/cert-srv.pem", O_RDONLY) = 6
fstat64(6, {st_mode=S_IFREG|0644, st_size=2439, ...}) = 0
old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS,
-1, 0) = 0xb7fb6000
read(6, "Bag Attributes\n    localKeyID: 0"..., 4096) = 2439
close(6)                                = 0
munmap(0xb7fb6000, 4096)                = 0
write(2, "12836:error:0906D06C:PEM routine"..., 100) = 100
write(2, "12836:error:14085005:SSL routine"..., 70) = 70
open("/var/log/freeradius/radius.log", O_WRONLY|O_APPEND|O_CREAT, 0666) = 6
fstat64(6, {st_mode=S_IFREG|0644, st_size=128573, ...}) = 0
old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS,
-1, 0) = 0xb7fb6000
fstat64(6, {st_mode=S_IFREG|0644, st_size=128573, ...}) = 0
_llseek(6, 128573, [128573], SEEK_SET)  = 0
time(NULL)                              = 1141986758
write(6, "Fri Mar 10 10:32:38 2006 : Error"..., 78) = 78


Alan DeKok wrote:
> =?ISO-8859-1?Q?Andr=E9_Lemos?= <alemos at criticalsoftware.com> wrote:
>   
>> doesn't anyone also have this problem?
>>     
>
>   It works in my tests.
>
>   Hmm... the code prints the SSL errors to stderr.  They're lost when
> running in daemon mode.  Yuck.
>
>   I *suspect* that the files aren't readable by the server after a
> HUP.  Try making them owned by the UID the server is running as, and
> making them readable by that uid.
>
>   Alan DeKok.
>
> - 
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
>   

-- 
**_____________________**
* *André Ventura Lemos**
**Software Engineer**
**Critical Software, SA**
**Webpage:** 	**www.andrelemos.com**
**MSN:** 	**tux at tuxslare.org**
**GSM:** 	**+351916401042**
**TLF:** 	**+351239989100**




DISCLAIMER: This message may contain confidential information or privileged material and is intended only for the individual(s) named. If you are not a named addressee and mistakenly received this message you should not copy or otherwise disseminate it: please delete this e-mail from your system and notify the sender immediately. E-mail transmissions are not guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete or contain viruses. Therefore, the sender does not accept liability for any errors or omissions in the contents of this message that arise as a result of e-mail transmissions. Please request a hard copy version if verification is required. Critical Software.



------------------------------

Message: 5
Date: Fri, 10 Mar 2006 10:41:45 +0000
From: Andr? Lemos <alemos at criticalsoftware.com>
Subject: Re: Reload on freeradius 1.1.0
To: FreeRadius users mailing list
	<freeradius-users at lists.freeradius.org>
Message-ID: <441157E9.8080604 at criticalsoftware.com>
Content-Type: text/plain; charset="iso-8859-1"

copied over vanila configurations from another freeradius 1.1.0
configuration, and now it seems to work fine.

odd...

Alan DeKok wrote:
> =?ISO-8859-1?Q?Andr=E9_Lemos?= <alemos at criticalsoftware.com> wrote:
>   
>> doesn't anyone also have this problem?
>>     
>
>   It works in my tests.
>
>   Hmm... the code prints the SSL errors to stderr.  They're lost when
> running in daemon mode.  Yuck.
>
>   I *suspect* that the files aren't readable by the server after a
> HUP.  Try making them owned by the UID the server is running as, and
> making them readable by that uid.
>
>   Alan DeKok.
>
> - 
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
>   

-- 
**_____________________**
* *André Ventura Lemos**
**Software Engineer**
**Critical Software, SA**
**Webpage:** 	**www.andrelemos.com**
**MSN:** 	**tux at tuxslare.org**
**GSM:** 	**+351916401042**
**TLF:** 	**+351239989100**




DISCLAIMER: This message may contain confidential information or privileged material and is intended only for the individual(s) named. If you are not a named addressee and mistakenly received this message you should not copy or otherwise disseminate it: please delete this e-mail from your system and notify the sender immediately. E-mail transmissions are not guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete or contain viruses. Therefore, the sender does not accept liability for any errors or omissions in the contents of this message that arise as a result of e-mail transmissions. Please request a hard copy version if verification is required. Critical Software.



------------------------------

Message: 6
Date: Fri, 10 Mar 2006 10:44:00 +0000
From: Andr? Lemos <alemos at criticalsoftware.com>
Subject: Re: Reload on freeradius 1.1.0
To: FreeRadius users mailing list
	<freeradius-users at lists.freeradius.org>
Message-ID: <44115870.9010805 at criticalsoftware.com>
Content-Type: text/plain; charset="iso-8859-1"

nevermind... the tls/ttls was just commented out by default

Alan DeKok wrote:
> =?ISO-8859-1?Q?Andr=E9_Lemos?= <alemos at criticalsoftware.com> wrote:
>   
>> doesn't anyone also have this problem?
>>     
>
>   It works in my tests.
>
>   Hmm... the code prints the SSL errors to stderr.  They're lost when
> running in daemon mode.  Yuck.
>
>   I *suspect* that the files aren't readable by the server after a
> HUP.  Try making them owned by the UID the server is running as, and
> making them readable by that uid.
>
>   Alan DeKok.
>
> - 
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
>   

-- 
**_____________________**
* *André Ventura Lemos**
**Software Engineer**
**Critical Software, SA**
**Webpage:** 	**www.andrelemos.com**
**MSN:** 	**tux at tuxslare.org**
**GSM:** 	**+351916401042**
**TLF:** 	**+351239989100**




DISCLAIMER: This message may contain confidential information or privileged material and is intended only for the individual(s) named. If you are not a named addressee and mistakenly received this message you should not copy or otherwise disseminate it: please delete this e-mail from your system and notify the sender immediately. E-mail transmissions are not guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete or contain viruses. Therefore, the sender does not accept liability for any errors or omissions in the contents of this message that arise as a result of e-mail transmissions. Please request a hard copy version if verification is required. Critical Software.



------------------------------

- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


End of Freeradius-Users Digest, Vol 11, Issue 39
************************************************

More information about the Freeradius-Users mailing list