freeradius sql groups not working
James w
spyda46 at hotmail.com
Mon Sep 29 09:29:26 CEST 2014
Does anybody have any suggestions, could this be a bug ? Shall i try another version, its running on RHEL 7 Free radius version 3.0.1
> From: freeradius-users-request at lists.freeradius.org
> Subject: Freeradius-Users Digest, Vol 113, Issue 128
> To: freeradius-users at lists.freeradius.org
> Date: Mon, 29 Sep 2014 04:06:31 +0200
>
> Send Freeradius-Users mailing list submissions to
> freeradius-users at lists.freeradius.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
> http://lists.freeradius.org/mailman/listinfo/freeradius-users
> or, via email, send a message with subject or body 'help' to
> freeradius-users-request at lists.freeradius.org
>
> You can reach the person managing the list at
> freeradius-users-owner at lists.freeradius.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Freeradius-Users digest..."
>
>
> Today's Topics:
>
> 1. Re: How to send disconnect message to the NAS? (Alan DeKok)
> 2. Re: EAP and rlm_perl. Is it possible to build custom logic
> for VPN peers? (Oleksandr Yermolenko)
> 3. Re: EAP and rlm_perl. Is it possible to build custom logic
> for VPN peers? (Oleksandr Yermolenko)
> 4. version 2.2.5 repo (Rando Nakarmi)
> 5. Re: version 2.2.5 repo (Alan DeKok)
> 6. Re: EAP and rlm_perl. Is it possible to build custom logic
> for VPN peers? (Alan DeKok)
> 7. Re: Problem in Module Statistics in freeradius (Himanshu Pandey)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Sun, 28 Sep 2014 11:08:16 -0400
> From: Alan DeKok <aland at deployingradius.com>
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: How to send disconnect message to the NAS?
> Message-ID: <54282460.1090603 at deployingradius.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Xin wrote:
> > Thanks a lot for your reply, I have understood I can use update control
> > section to control send or not. And one more question, what is the virtual
> > server in home_server_pool section. Just find the server
> > originate-coa.example.com section?
>
> The behavior is documented in that file.
>
> > If this is right, can you tell me the
> > usage of pre-proxy section? I have already understand the purpose of the
> > post-proxy is to handle the COA/DM response.
>
> Read the file. This is documented.
>
> Alan DeKok.
>
>
> ------------------------------
>
> Message: 2
> Date: Sun, 28 Sep 2014 18:52:59 +0300
> From: Oleksandr Yermolenko <aae at sumix.com>
> To: Alan DeKok <aland at deployingradius.com>
> Subject: Re: EAP and rlm_perl. Is it possible to build custom logic
> for VPN peers?
> Message-ID: <54282EDB.20904 at sumix.com>
> Content-Type: text/plain; charset=utf-8; format=flowed
>
>
> >> Is it possible to use any of EAP methods (I mean EAP-PEAP, EAP-TTLS or
> >> EAP-TLS ...) with rlm_perl.
> > What does that mean?
> can I use authenticate, authorize, accounting hooks (or post_auth)?
> I looked at example.pl.
>
> Just put "perl" in somewhere eap.conf file?
>
> >
> > You can run the perl module when the server receives a packet. It
> > doesn't matter whether the packet contains PAP, CHAP, MS-CHAP, or any
> > EAP type.
> >
> > What do you want to *do* in rlm_perl? Knowing that probably more
> > useful, and will get you a better answer.
> authenticate a lot of VPN clients (currently I can choose EAP method),
> keeping them in mysql or ldap. According their properties give a
> personal access to
> different local resources. Accounting: updating start/stop/alive
> messages. POD if it's possible
> for strongswan.
> >
> > Alan DeKok.
>
>
>
> ------------------------------
>
> Message: 3
> Date: Sun, 28 Sep 2014 18:52:59 +0300
> From: Oleksandr Yermolenko <aae at sumix.com>
> To: Alan DeKok <aland at deployingradius.com>
> Subject: Re: EAP and rlm_perl. Is it possible to build custom logic
> for VPN peers?
> Message-ID: <54282EDB.20904 at sumix.com>
> Content-Type: text/plain; charset=utf-8; format=flowed
>
>
> >> Is it possible to use any of EAP methods (I mean EAP-PEAP, EAP-TTLS or
> >> EAP-TLS ...) with rlm_perl.
> > What does that mean?
> can I use authenticate, authorize, accounting hooks (or post_auth)?
> I looked at example.pl.
>
> Just put "perl" in somewhere eap.conf file?
>
> >
> > You can run the perl module when the server receives a packet. It
> > doesn't matter whether the packet contains PAP, CHAP, MS-CHAP, or any
> > EAP type.
> >
> > What do you want to *do* in rlm_perl? Knowing that probably more
> > useful, and will get you a better answer.
> authenticate a lot of VPN clients (currently I can choose EAP method),
> keeping them in mysql or ldap. According their properties give a
> personal access to
> different local resources. Accounting: updating start/stop/alive
> messages. POD if it's possible
> for strongswan.
> >
> > Alan DeKok.
>
>
>
> ------------------------------
>
> Message: 4
> Date: Sun, 28 Sep 2014 19:14:18 +0000
> From: Rando Nakarmi <randonakarmi at gmail.com>
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: version 2.2.5 repo
> Message-ID:
> <CAG+85v_XJ_v8cJGu-tMqi+eWNSsnME=7mZcv5yqAhB6d9K+_KA at mail.gmail.com>
> Content-Type: text/plain; charset="utf-8"
>
> HI,
>
> I see both in RHEL and epel , the freeradius version 2.1.12-4 is available
> but not the 2.2.5 which is the newest version on 2.x.x series.
>
> I am used to do yum, where can I get version 2.2.5 in yum repo for RHEL
> base linux.
>
> R
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140928/4120d983/attachment-0001.html>
>
> ------------------------------
>
> Message: 5
> Date: Sun, 28 Sep 2014 17:39:58 -0400
> From: Alan DeKok <aland at deployingradius.com>
> To: FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: version 2.2.5 repo
> Message-ID: <5428802E.8060003 at deployingradius.com>
> Content-Type: text/plain; charset=UTF-8
>
> Rando Nakarmi wrote:
> > I see both in RHEL and epel , the freeradius version 2.1.12-4 is
> > available but not the 2.2.5 which is the newest version on 2.x.x series.
> >
> > I am used to do yum, where can I get version 2.2.5 in yum repo for RHEL
> > base linux.
>
> Ask Redhat for a new version. We don't control the release of
> packages on RHEL.
>
> Alan DeKok.
>
>
> ------------------------------
>
> Message: 6
> Date: Sun, 28 Sep 2014 17:42:28 -0400
> From: Alan DeKok <aland at deployingradius.com>
> To: aae at sumix.com, FreeRadius users mailing list
> <freeradius-users at lists.freeradius.org>
> Subject: Re: EAP and rlm_perl. Is it possible to build custom logic
> for VPN peers?
> Message-ID: <542880C4.5020603 at deployingradius.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Oleksandr Yermolenko wrote:
> > can I use authenticate, authorize, accounting hooks (or post_auth)?
> > I looked at example.pl.
>
> Then you would know that the perl module can be used in those
> sections. The "example.pl" has comments saying this.
>
> > Just put "perl" in somewhere eap.conf file?
>
> No. You don't just put random text into random files. It helps to
> understand how the server works.
>
> There is a "authorize" section. You can list modules there. This is
> documented. See raddb/sites-available/default.
>
> > authenticate a lot of VPN clients (currently I can choose EAP method),
> > keeping them in mysql or ldap.
>
> The server already has SQL and LDAP modules. You really don't want to
> re-implement all of them in Perl.
>
> > According their properties give a
> > personal access to
> > different local resources. Accounting: updating start/stop/alive
> > messages. POD if it's possible
> > for strongswan.
>
> See raddb/sites-available/originate-coa for how to send disconnect
> messages.
>
> Alan DeKok.
>
>
> ------------------------------
>
> Message: 7
> Date: 29 Sep 2014 02:06:21 -0000
> From: "Himanshu Pandey" <pandey_himanshu80 at rediffmail.com>
> To: "freeradius-users at lists.freeradius.org"
> <freeradius-users at lists.freeradius.org>
> Subject: Re: Problem in Module Statistics in freeradius
> Message-ID:
> <1411912518.S.6312.16903.F.H.TkFsYW4gRGVLb2sAUmU6IFByb2JsZW0gaW4gTW9kdWxlIFN0YXRpc3RpY3MgaW4gZnJlZXJhZGl1cw__.RU.rfs310,
> rfs310, 76,
> 303.f4-235-76.old.replied.1411956381.30440 at webmail.rediffmail.com>
> Content-Type: text/plain; charset="utf-8"
>
> DONE.
>
> From: Alan DeKok <aland at deployingradius.com>
> Sent: Sun, 28 Sep 2014 19:25:18
> To: FreeRadius users mailing list <freeradius-users at lists.freeradius.org>
> Subject: Re: Problem in Module Statistics in freeradius
> Himanshu Pandey wrote:
>
> > I added the following code in modcall.c under the function
>
> > modcall_recurse():
>
>
>
> This list is for *using* FreeRADIUS. It's not for learning how to
>
> program.
>
>
>
> You're making beginners errors in the code. Don't do that.
>
>
>
> Alan DeKok.
>
> -
>
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140929/85e5ea96/attachment.html>
>
> ------------------------------
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
> End of Freeradius-Users Digest, Vol 113, Issue 128
> **************************************************
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140929/d275ebd5/attachment-0001.html>
More information about the Freeradius-Users
mailing list