Questions tagged [freeradius2]

Freeradius version 2

Freeradius version 2

49 questions
13
votes
6 answers

openVPN disconnect via command line in linux

Is there a way to disconnect an openvpn connection that was established by free-radius with a shell command line? I have all information about the openvpn connection: Username Client IP AccountSeassionID ...
hamedsh
  • 379
  • 2
  • 5
  • 18
8
votes
2 answers

FreeRADIUS 2 should use a different Python than default

We've got a FreeRADIUS 2 deamon installed on a CentOS 5.7 server. We'd like to use a pre-written Python module to do authorization but there's a problem: The Python module we've got requires Python 2.6 or more but the Python that comes installed…
henriksen
  • 273
  • 2
  • 7
5
votes
2 answers

FreeRADIUS2 and LDAP Authentication

I am currently running a CentOS 5.5 box with FreeRADIUS2 on it. I have the simple authentication turned on right now (username and pass is set via /etc/raddb/users). I want to have FreeRADIUS authenticate users via my current OpenLDAP server. Can…
arukaen
  • 73
  • 2
  • 4
4
votes
2 answers

Using SHA1 user password fields in freeradius radius server

I have proprietary web application which stores user password in form of sha1$79b2c$b3704ec5703ef28ded379cf6c6de4c4160aa029b. This is a salted sha1 hash. I want to use this presaved information for freeradius as well. Crypt-Password attribute is…
seaquest
  • 668
  • 2
  • 11
  • 25
3
votes
4 answers

OpenWRT Dynamic VLAN

I'm setting up an wireless AP with OpenWRT to support dynamic vlan's, provided by a RADIUS server. I found a guide on OpenWRT.org which I followed, and with some extra research I'm almost there. The only thing not working is the dynamic vlan…
3
votes
1 answer

Use Framed-IP-Address RADIUS attribute for IP allocation with DHCP on Windows Server 2012R2

I have configured a DHCP server on Windows Server with an NPS Policy, connected to a FreeRADIUS2 server running on pfSense. Authentication is based on MAC address. If MAC address is not present in FreeRADIUS, Windows does not deliver an address, and…
ju71
  • 31
  • 1
  • 2
3
votes
1 answer

Reload Freeradius clients without restart the service

Is there a way to reload the Freeradius clients configuration without restarting the service? I'm using: Ubuntu Server 12 Freeradius 2.1.10 MySQL v5.5.20 (I'm storing the clients in the "nas" table)
PachinSV
  • 193
  • 1
  • 1
  • 9
3
votes
2 answers

Freeradius authentication failed for unknown reason

I followed this instruction to force freeradius to use mysql database. and run freeradius in debug mod. but it rejects all authentication. mysql database : mysql> select * from radcheck; +----+----------+-----------+----+---------+ | id | username |…
Moein Hosseini
  • 241
  • 3
  • 6
  • 13
3
votes
1 answer

Radius Certificate Based (eap) Authentication

We are currently putting in place a freeradius server that uses certificates to authenticate via a wireless connection. We have this working for 802.1x but Novell's client for Windows 7 breaks the 802.1x protocol. So we have to have the certificate…
lilott8
  • 496
  • 5
  • 14
2
votes
0 answers

Freeradius radacct table is empty

I am using Freeradius 2 in FreeBSD server. The server is able to authenticate the user in MySQL database but i found that radacct table is not updated. I have check the configuration in the /sites-enable/default. sql has been uncomment in…
ZKT
  • 21
  • 2
2
votes
1 answer

How to use Calling-Station-Id on a per user basis in freeRADIUS?

I am trying to limit every user to a small set of Mac-IDs in RADIUS, by directly including the appropriate information in the users file. It would be acceptable even if every user was limited to one mac. The server is running FreeRADIUS version…
ronno
  • 123
  • 1
  • 1
  • 7
2
votes
2 answers

Restrict FreeRADIUS clients to access service from different LANs with same user and password

I have FreeRADIUS installed on my server, and also have two LANs (or may be more) managed by this server. Let's say LAN A:192.168.1.0, and LAN B: 192.168.2.0. I'm using FreeRADIUS in combination with postgres database. In my radcheck table I have…
artaxerxe
  • 521
  • 2
  • 10
  • 22
1
vote
2 answers

Why freeradius server says invalid Message-Authenticator which is generated from radtest?

I am learning how to use freeradius, the version is v2.1.12. When I run radtest, there is no response from server, I see server side debug message has the following: Received packet from 127.0.0.1 with invalid Message-Authenticator! (Shared secret…
my_question
  • 111
  • 1
  • 1
  • 3
1
vote
0 answers

Use two Auth-Type in FreeRadius

I have a RADIUS server with works with mysql, I use this RADIUS for AAA for 2 different services, Service1 uses Auth-Type as "PAP" and Service2 uses "EAP" radcheck table +-----+----------+--------------------+----+--------------+ | id | username |…
Varun Taliyan
  • 26
  • 1
  • 7
1
vote
1 answer

openvpn radius-plugin does not assign framed-ip-address from freeradius to clients

I am new to openvpn. I have an openvpn setup on ubuntu 14.04 which has a radius AAA backend for authentication, authorization and accounting. In addition to this, we have configured freeradius to assign ips from a pool as framed-ip-address. From…
4_dev
  • 49
  • 1
  • 1
  • 6
1
2 3 4