aide
rima rim
k.rima86 at hotmail.fr
Tue Jul 17 11:24:53 CEST 2012
> From: freeradius-users-request at lists.freeradius.org
> Subject: Freeradius-Users Digest, Vol 87, Issue 46
> To: freeradius-users at lists.freeradius.org
> Date: Tue, 17 Jul 2012 10:54:59 +0200
>
> Send Freeradius-Users mailing list submissions to
> freeradius-users at lists.freeradius.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://lists.freeradius.org/mailman/listinfo/freeradius-users
> or, via email, send a message with subject or body 'help' to
> freeradius-users-request at lists.freeradius.org
>
> You can reach the person managing the list at
> freeradius-users-owner at lists.freeradius.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Freeradius-Users digest..."
>
>
> Today's Topics:
>
> 1. Re: Help needed configuring MAB on FreeRADIUS and Cisco
> switch (Alan DeKok)
> 2. Re: v2.1.x/src/modules/rlm_mschap/rlm_mschap.c (Alan DeKok)
> 3. radacct is not filled up (Andreas Meyer)
> 4. Re: radacct is not filled up (Fajar A. Nugraha)
> 5. Re: radacct is not filled up (Andreas Meyer)
> 6. Re: radacct is not filled up (Fajar A. Nugraha)
> 7. Re: Help needed configuring MAB on FreeRADIUS and Cisco
> switch (Kaya Saman)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Mon, 16 Jul 2012 18:24:42 -0400
> From: Alan DeKok <aland at deployingradius.com>
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: Help needed configuring MAB on FreeRADIUS and Cisco
> switch
> Message-ID: <500494AA.1040209 at deployingradius.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Kaya Saman wrote:
> >> There is a file in the "raddb" directory named "users".
> >
> > I **DID** do this....... !!
>
> You didn't SAY that. You were told to edit the "users" file.
> Instead, you went on a long round-about adventure, looking at other files.
>
> > There's no need to be so severe as the ban me!
>
> After 13 years of running this list, I've discovered it's the ONLY way
> to make some people follow instructions. I can be nice, and explain the
> same thing until I get frustrated. Or, I can threaten to ban people,
> and have them *immediately* start following instructions.
>
> Alan DeKok.
>
>
> ------------------------------
>
> Message: 2
> Date: Mon, 16 Jul 2012 18:35:13 -0400
> From: Alan DeKok <aland at deployingradius.com>
> To: JJJ.Hooper at bristol.ac.uk, FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: v2.1.x/src/modules/rlm_mschap/rlm_mschap.c
> Message-ID: <50049721.6040401 at deployingradius.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> James JJ Hooper wrote:
> > I may have miscounted, but shouldn't that be:
> > snprintf(buffer + 44, sizeof(buffer) - 44,
>
> Yup. I'll fix it.
>
>
> ------------------------------
>
> Message: 3
> Date: Tue, 17 Jul 2012 00:59:25 +0200
> From: Andreas Meyer <anmeyer at anup.de>
> To: freeradius-users at lists.freeradius.org
> Subject: radacct is not filled up
> Message-ID: <20120717005925.4388efb0 at itx.bitcorner.intern>
> Content-Type: text/plain; charset=US-ASCII
>
> Hello!
>
> I authenticate a users against a mysql-db and everything is fine. Get entries
> in the radpostauth table but the radacct table stays emtpy, instead the
> logging is done in /usr/var/log/radius/radacct/192.168.1.254
>
> # itx:/usr/var/log/radius/radacct/192.168.1.254 # ll
> insgesamt 284
> -rw------- 1 root root 12420 12. Jul 16:38 auth-detail-20120712
> -rw------- 1 root root 12420 13. Jul 19:35 auth-detail-20120713
> -rw------- 1 root root 6210 14. Jul 23:21 auth-detail-20120714
> -rw------- 1 root root 9078 15. Jul 17:06 auth-detail-20120715
> -rw------- 1 root root 180883 16. Jul 17:26 auth-detail-20120716
> -rw------- 1 root root 12640 17. Jul 00:43 auth-detail-20120717
> -rw------- 1 root root 1242 3. Jul 22:35 reply-detail-20120703
> -rw------- 1 root root 2008 12. Jul 16:38 reply-detail-20120712
> -rw------- 1 root root 2008 13. Jul 19:35 reply-detail-20120713
> -rw------- 1 root root 1004 14. Jul 23:21 reply-detail-20120714
> -rw------- 1 root root 1004 15. Jul 13:39 reply-detail-20120715
> -rw------- 1 root root 5041 16. Jul 17:26 reply-detail-20120716
> -rw------- 1 root root 2016 17. Jul 00:43 reply-detail-20120717
>
> I cannot find the place where in a configurationfile I can change
> the value to log into the radacct table.
>
> This is what I have in sql.conf:
>
> acct_table1 = "radacct"
> acct_table2 = "radacct"
> postauth_table = "radpostauth"
> authcheck_table = "radcheck"
> authreply_table = "radreply"
> groupcheck_table = "radgroupcheck"
> groupreply_table = "radgroupreply"
> usergroup_table = "radusergroup"
>
> Andreas
>
>
> ------------------------------
>
> Message: 4
> Date: Tue, 17 Jul 2012 10:38:02 +0700
> From: "Fajar A. Nugraha" <list at fajar.net>
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: radacct is not filled up
> Message-ID:
> <CAG1y0sdFr3w=Fh+qc1-i5gM52c8M-51bJ7miF8DFFRV6Dx4LCA at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> On Tue, Jul 17, 2012 at 5:59 AM, Andreas Meyer <anmeyer at anup.de> wrote:
> > Hello!
> >
> > I authenticate a users against a mysql-db and everything is fine. Get entries
> > in the radpostauth table but the radacct table stays emtpy, instead the
> > logging is done in /usr/var/log/radius/radacct/192.168.1.254
> >
> > # itx:/usr/var/log/radius/radacct/192.168.1.254 # ll
> > insgesamt 284
> > -rw------- 1 root root 12420 12. Jul 16:38 auth-detail-20120712
> > -rw------- 1 root root 12420 13. Jul 19:35 auth-detail-20120713
> > -rw------- 1 root root 6210 14. Jul 23:21 auth-detail-20120714
> > -rw------- 1 root root 9078 15. Jul 17:06 auth-detail-20120715
> > -rw------- 1 root root 180883 16. Jul 17:26 auth-detail-20120716
> > -rw------- 1 root root 12640 17. Jul 00:43 auth-detail-20120717
> > -rw------- 1 root root 1242 3. Jul 22:35 reply-detail-20120703
> > -rw------- 1 root root 2008 12. Jul 16:38 reply-detail-20120712
> > -rw------- 1 root root 2008 13. Jul 19:35 reply-detail-20120713
> > -rw------- 1 root root 1004 14. Jul 23:21 reply-detail-20120714
> > -rw------- 1 root root 1004 15. Jul 13:39 reply-detail-20120715
> > -rw------- 1 root root 5041 16. Jul 17:26 reply-detail-20120716
> > -rw------- 1 root root 2016 17. Jul 00:43 reply-detail-20120717
> >
> > I cannot find the place where in a configurationfile I can change
> > the value to log into the radacct table.
>
> Did you read http://wiki.freeradius.org/SQL-HOWTO ?
>
> Search for "accounting"
>
> --
> Fajar
>
>
> ------------------------------
>
> Message: 5
> Date: Tue, 17 Jul 2012 09:44:22 +0200
> From: Andreas Meyer <anmeyer at anup.de>
> To: freeradius-users at lists.freeradius.org
> Subject: Re: radacct is not filled up
> Message-ID: <20120717094422.64e6b1cf at itx.bitcorner.intern>
> Content-Type: text/plain; charset=US-ASCII
>
> Hello!
>
> "Fajar A. Nugraha" <list at fajar.net> wrote:
>
> > On Tue, Jul 17, 2012 at 5:59 AM, Andreas Meyer <anmeyer at anup.de> wrote:
> > > Hello!
> > >
> > > I authenticate a users against a mysql-db and everything is fine. Get entries
> > > in the radpostauth table but the radacct table stays emtpy, instead the
> > > logging is done in /usr/var/log/radius/radacct/192.168.1.254
>
>
> > > I cannot find the place where in a configurationfile I can change
> > > the value to log into the radacct table.
> >
> > Did you read http://wiki.freeradius.org/SQL-HOWTO ?
> >
> > Search for "accounting"
>
> Yes, I read the SQL-Howto. Made a change in the dialup.conf from
> sql_user_name = "%{User-Name}" to
> sql_user_name = "%{%{Stripped-User-Name}:-%{%{User-Name}:-DEFAULT}}"
>
> and the debug output shows that the radiusd is using stripped user-name.
> But the radacct is not filled up. All is written to the logfile in
> /usr/var/log/radius/radacct/192.168.1.254
>
> I wonder if it might have something to do with the buffered-sql in
> /usr/etc/raddb/sites-available. I made no changes to that file.
>
> mysql> use radius;
> Database changed
> mysql> show tables;
> +------------------+
> | Tables_in_radius |
> +------------------+
> | badusers |
> | mtotacct |
> | nas |
> | radacct |
> | radcheck |
> | radgroupcheck |
> | radgroupreply |
> | radpostauth |
> | radreply |
> | radusergroup |
> | totacct |
> | userinfo |
> +------------------+
> 12 rows in set (0.01 sec)
>
> Everything is fine and radcheck and radpostauth and userinfo and so on is
> written to the database exept for the radacct information.
>
> Andreas
>
>
> ------------------------------
>
> Message: 6
> Date: Tue, 17 Jul 2012 14:49:37 +0700
> From: "Fajar A. Nugraha" <list at fajar.net>
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: radacct is not filled up
> Message-ID:
> <CAG1y0sfhziFXxOpea1CfShGJh0-zbYr8NcVsnoCqk7CvZCmuXQ at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> On Tue, Jul 17, 2012 at 2:44 PM, Andreas Meyer <anmeyer at anup.de> wrote:
> >> > I cannot find the place where in a configurationfile I can change
> >> > the value to log into the radacct table.
> >>
> >> Did you read http://wiki.freeradius.org/SQL-HOWTO ?
> >>
> >> Search for "accounting"
> >
> > Yes, I read the SQL-Howto. Made a change in the dialup.conf from
> > sql_user_name = "%{User-Name}" to
> > sql_user_name = "%{%{Stripped-User-Name}:-%{%{User-Name}:-DEFAULT}}"
> >
> > and the debug output shows that the radiusd is using stripped user-name.
> > But the radacct is not filled up. All is written to the logfile in
> > /usr/var/log/radius/radacct/192.168.1.254
> >
> > I wonder if it might have something to do with the buffered-sql in
> > /usr/etc/raddb/sites-available. I made no changes to that file.
>
> Re-read the wiki page. If you HAVE read it correctly, you would've
> seen that you need to change something in that file.
>
> --
> Fajar
>
>
> ------------------------------
>
> Message: 7
> Date: Tue, 17 Jul 2012 09:54:57 +0100
> From: Kaya Saman <kayasaman at gmail.com>
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: Help needed configuring MAB on FreeRADIUS and Cisco
> switch
> Message-ID:
> <CAPj0R5+JPYXNtzwuavkKTAoeh9ARJ8PFOFKuo5w5Rj09MSYVTQ at mail.gmail.com>
> Content-Type: text/plain; charset="iso-8859-1"
>
> Hi Alan,
>
> sorry for the mishaps yesterday......
>
> On Mon, Jul 16, 2012 at 4:20 PM, alan buxey <A.L.M.Buxey at lboro.ac.uk> wrote:
> [...]
> >
> >> By placing the entry you suggested at the top of the /etc/raddb/users
> >> file and restarting the server I got this:
> >
> > well, no you didnt...or rather, if you did stick that in the users file
> > then its certainly not the users file that the server is reading. you are editing
> > the live server config and not some extracted archive file?
> >
>
>
> Let's just try to focus on this issue and get a basic system up and
> running before continuing on - as that is inevitably what you were
> trying to do :-)
>
>
> Ok so first let's get back to real basics and check where we are in
> the file system:
>
>
> # cd /etc/raddb
>
> # ls
> acct_users clients.conf policy.conf sql
> attrs dictionary policy.txt sql.conf
> attrs.access_challenge eap.conf preproxy_users sqlippool.conf
> attrs.access_reject example.pl proxy.conf templates.conf
> attrs.accounting_response hints radiusd.conf users
> attrs.pre-proxy huntgroups sites-available
> certs modules sites-enabled
>
> # cat users | more
> 0015c5537baa Cleartext-Password := "0015c5537baa"
> Tunnel-Type:0 = VLAN,
> Tunnel-Medium-Type:0 = IEEE-802,
> Tunnel-Private-Group-Id:0 = "3",
> Tunnel-Preference = 0x000000
>
> #
> # Please read the documentation file ../doc/processing_users_file,
> # or 'man 5 users' (after installing the server) for more information.
> #
> # This file contains authentication security and configuration
> # information for each user. Accounting requests are NOT processed
> # through this file. Instead, see 'acct_users', in this directory.
> #
> # The first field is the user's name and can be up to
> # 253 characters in length. This is followed (on the same line) with
> # the list of authentication requirements for that user. This can
> # include password, comm server name, comm server port number, protocol
> # type (perhaps set by the "hints" file), and huntgroup name (set by
>
>
> I have additionally attached the full file just incase!
>
>
> Let's see in the file system if there are any other files called users
> which maybe the 'source' of the Radius service:
>
>
> # find / -name users
> /usr/bin/users
> /etc/selinux/targeted/contexts/users
> /etc/raddb/users
> /var/www/daloradius/contrib/configs/freeradius-1.1.7/cfg1/freeradius/users
>
>
> Will disabling SElinux help, could that be blocking things as it
> usually does with TFTP???
>
>
> Regards,
>
>
> Kaya
> -------------- next part --------------
> A non-text attachment was scrubbed...
> Name: users
> Type: application/octet-stream
> Size: 6732 bytes
> Desc: not available
> URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120717/e9511277/attachment.obj>
>
> ------------------------------
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
> End of Freeradius-Users Digest, Vol 87, Issue 46
> ************************************************
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20120717/cbcc56ce/attachment-0001.html>
More information about the Freeradius-Users
mailing list