Debian :: FreeRADIUS MySQL Authentication
Apr 8, 2015
I'm currently trying to set up FreeRADIUS with DaloRADIUS and I'm stuck at FreeRADIUS getting clients (as NAS-es) from the MySQL database.
FreeRADIUS will no longer start after uncommenting the following line in my /etc/freeradius/sql.conf (which is supposed to let it use the MySQL database):
Code: Select allreadclients = yes
I have ran "freeradius -X" to find out what's going on with this output:
Code: Select allrlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
rlm_sql (sql): Attempting to connect to radius@localhost:/radius
rlm_sql (sql): starting 0
rlm_sql (sql): Attempting to connect rlm_sql_mysql #0
rlm_sql_mysql: Starting connect to MySQL server for #0
[Code] ....
So it seems that the radius user is not authenticated. However I have verified that the login details I entered in my sql.conf are the correct ones (I even tried manually logging in with them and it worked).
View 1 Replies
ADVERTISEMENT
Feb 4, 2016
I am trying in debian 8.2 but i am not found packet libapache2-mod-auth-radius whereas i have been include dvd1-3 debian and dvd1-2 update debian in my system. Where is that packet stand?
View 1 Replies
View Related
Oct 15, 2010
I'm running freeradius2-2.1.7-7.el5, on CentOS 5.5. I have gotten all of the authentication setup for active directory and I know that the machine is able to pass requests along to our AD server. However it doesn't appear that freeradius is doing the same. I have been looking at the attached radius -x output for about 2 days now and I have done a ton of searching and have come up relatively empty handed.
View 3 Replies
View Related
Nov 7, 2010
Its 2 weeks i'm trying to configure freeradius2 on centos5 64bit after installed it from yum.all seems working, but i cant authenticate unix users.after digging in many sites its simply cant find user name and password ( ++[unix] returns notfound )Also how can i paste here all the radiusd -X log lines? i can't find any
radius.log file.
View 10 Replies
View Related
Jun 11, 2011
I configured the server freeradius with mysql and I think I configured well freeradius and mysql but when I m testing my configuration with:
radtest nezar azerty 127.0.0.1 0 azerty1234
I have always:
rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=108, length=20
View 1 Replies
View Related
May 10, 2011
Pam-mysql can not connect to the database and below are my configurations.
saslfinger -s Output:
root@mailbackup:/# saslfinger -s
saslfinger - postfix Cyrus sasl configuration Tue May 10 10:12:10 EAT 2011
version: 1.0.2
mode: server-side SMTP AUTH
-- basics --
Postfix: 2.7.2
System: Slackware 13.1.0
-- smtpd is linked to --libsasl2.so.2 => /usr/local/lib/libsasl2.so.2 (0x00007f74ebfb7000)
-- active SMTP AUTH and TLS parameters for smtpd --
-- listing of /usr/lib64/sasl2 --
-- listing of /usr/local/lib/sasl2 --
-- content of /usr/lib64/sasl2/smtpd.conf --
-- content of /usr/local/lib/sasl2/smtpd.conf --
-- active services in /etc/postfix/master.cf --
-- mechanisms on localhost --
View 3 Replies
View Related
Apr 6, 2011
My system is
Code:
We use courier mail server for pop3 mailboxes, and postfix for in/out mail delivery
Code:
Now Pop3 users, could not authenticate with there username/pass
It does not work now, and I have this message in my log file
Code:
I could see in my postfix.main
Code:
And I could successful run query from mysql
Code:
I tried to change the password for this user, insert new user to the same tables, but no success to authenticate
I suppose that the problem is authentication of courier mail demon (which in my mind ) should work with mysql 'mail' database in the way is postfix work
Code:
I could not find any reference with courir demon to mysql database username,password to authenticate users..
So, my quetions is, if it's possible to tracert mysql db to find out if courier demon 'asking' for authentication, or is there any error with this, and which configuration file should be checked, in order to find out what authentication method is courier mail demon use for.
View 1 Replies
View Related
Apr 1, 2016
If I am running a script, let's say a install script. Is there a way to make Su repeat authentication rather then just returning "Authentication failed" and continuing the script?
View 3 Replies
View Related
Jan 18, 2011
I'm using openSUSE 11.1 and would like to authenticate vsftp users against a mysql database. The newest version of pam-mysql I can find is from 2005. I'm concerned about using something from what appears to be a dead project. Is there an alternative? I'm trying to come up with a solution where I can manage FTP users from an application running from Windows desktops.
View 1 Replies
View Related
Nov 17, 2010
I am running Ubuntu 10.04 LTS. I am trying to run a query browser for mysql but keep receiving the following error:
X11 connection rejected because of wrong authentication.
The application 'mysql-query-browser-bin' lost its connection to the display localhost:10.0; most likely the X server was shut down or you killed/destroyed the application.
In ssh_config, I do have ForwardX11 set to yes.
View 4 Replies
View Related
Aug 20, 2010
I can't get mysql to update from lenny (mysql-5.0) to squeeze (5.1). apt tries to start the server but comes up with some kind of configuration script error.
View 1 Replies
View Related
Jun 7, 2011
I think this goes here, but I'm not sure. I decided that XAMPP had been troublesome enough. MySQL never worked. So I decided to instal the LAMP stack offered by YaST. I went about installing it thinking that it would all work. But it seems that I was wrong. So I try to start mysql, and here's what I get:
Code:
the-matrix:~ # mysql start
ERROR 2002 (HY000): Can't connect to local MySQL server through socket '/var/mysql/mysql.sock' (2) or
Code:
the-matrix:~ # rcmysql start
Starting service MySQL warning: /var/mysql/mysql.sock didn't appear within 30 seconds
chmod: cannot access `/var/run/mysql/mysqld.pid': No such file or directory
[Code]...
View 6 Replies
View Related
Jan 24, 2011
Could anyone send me a good how to for freeradius with mysql authentication and daloRadius?
View 7 Replies
View Related
Jun 2, 2010
i am using liferay5.2(mysql included in the download pack) on fedora. while liferay is working fine but i cannot connect to mysql.i am getting the error
[
[root@localhost ~]# ln -s /var/lib/mysql/mysql.sock /tmp
[root@localhost ~]# /etc/init.d/mysqld start
Timeout error occurred trying to start MySQL Daemon.
[code]....
i didnt find the mysql.sock file in the location /var/lib/mysql/mysql.sock. i cannot find the portal-ext.properties file also to make intial settings.
View 9 Replies
View Related
Apr 26, 2010
I recently installed freeradius using Yast,but wehen I tried to run it in a debug mode code...
View 4 Replies
View Related
Jun 14, 2011
I run an 11.04 Server with Bind9, DHCP, Apache 2 PHP5, PostgreSQL8.4 and would like to install an FreeradiusServer. After I downloaded the packages with code...
View 1 Replies
View Related
Nov 16, 2010
Im having a lot of trouble configuring freeradius for Ubuntu. I have freeradius installed but Im having trouble finding any information on how to edit the configuration files to create users and be able to WPA2 Enterprise. The wireless router that I am using is an Linksys WRT54gl.
View 2 Replies
View Related
Mar 7, 2010
I have installed freeradius from repositories in both Debian and Ubuntu. I have built from source with 'fakeroot dpkg-buildpackage -b -uc' on both the official freeradius source code and the source provided by apt-src in both Debian and Ubuntu. On a normal install via aptitude there is no ssl-support, I understand this is because of license issues. Otherwise is works, but is of course useless in a wifi-auth setup. On a install from source code, after editing debian/rules and debian/control as recommended different places on the net, freeradius fail to start because of ssl error. Same on install via source code downloaded directly from [URL]... Anyone have a working ssl-enabled freeradius server running Debian or the likes?
View 1 Replies
View Related
Apr 21, 2011
setting up a freeradius server and coovachilli in my ubuntu9.10.. I want software and hardware system requirments needed to install freeradius,coovachilli,mysql and apache.
View 2 Replies
View Related
Feb 6, 2011
I was trying to install and configure freeradius server in centos 5.5 .I installed freeradius 2.1.7. I added a sigle line at the top of the users file like this. bob Cleartext-Password := "hello". when I tried to test using radtest command (radtest bob hello 127.0.0.1 0 testing123).but Igot access-reject mesage from radius server. first I was trying on the same pc with defferent terminal. I serched and tried lot of options but all the time I got the same access reject message. I put debug message in debug site. I can see lot of users posted the same error message in many forums. But I cant find any solutions. I installed ntradping in my laptop and tried but same error. Delaying reject of request 0 for 1 seconds. Going to the next request. Waking up in 0.9 seconds. Sending delayed reject for request 0. Sending Access-Reject of id 16 to 10.10.204.73 port 1619. Waking up in 4.9 seconds. Cleaning up request 0 ID 16 with timestamp +3. Ready to process requests.
View 2 Replies
View Related
Jan 13, 2011
I have been battling with FreeRadius with LDAP backend and Microsofts built-in supplicant. I found on some directions that the certificate you use have to have a EKU(Enhanced Key Usage) with an ODI of 1.3.6.1.5.5.7.3.1 and a Client side Cert with the same except a ODI of 1.3.6.1.5.5.7.3.2. First off, is this still the case in Windows 7/xp?If it is, how do I add that to a certificate with OpenSSL, FYI I am using the ca.cnf/server.cnf under the /etc/raddb/certs directory.Another question, has anyone got the MS Supplicant to work with Freeradius and a LDAP backend? If so can you point me in the direction of some good walk through?
View 1 Replies
View Related
Feb 16, 2011
I have a radius server with just one NAS. I requires the following.
1. After authenticating User1 User2 & User 3 can connect to 192.168.1.0 network but rest users User4 User5 User6 wont be able to connect 192.168.1.0
2. User4 User5 User6 will be denied connecting to network 192.168.2.0 after authenticating but rest users which are not specified can connect.
These User1, User2... User6 are system users of the machine.
View 1 Replies
View Related
Sep 12, 2010
I am about to install FreeRadius on my machine and the download page for the RPM lists all the software requirements to install it but I don't know how to check my machine to see if it has all those requirements.
View 11 Replies
View Related
Mar 6, 2009
how to install freeradius with dialup admin support on CentOS 5. .
View 1 Replies
View Related
Aug 6, 2010
This is for freeradius-1.1.7. I'm trying to compile freeradius to get around the missing rlm_eap_tls.so library, following/adapting the instructions in this thread.
Now I'm stuck at an error that says:
/bin/bash: line 20: --with-rlm_sql_postgresql_lib_dir=/usr/lib/freeradius: No such file or directory
/bin/bash: line 20: --with-rlm_sql_postgresql_include_dir=/usr/include/postgresql: No such file or directory
The directories named DO exist. The line numbers make no sense. A script error, perhaps? Or, a badly worded error message that actually means something else?
View 4 Replies
View Related
Jan 5, 2010
I've configured the RADIUS to use a PostgreSQL DB for accounting. Everything works fine if the connection from the RAD to the SQL is OK. If the PostgreSQL service dead, the RAD will skip the failed connection and continue to work. That's OK, too. But if I shutdown the network interface of the SQL (simulating a connection lost - timeout problem), the RAD thread which processes accounting request will be hung up, remains as active and unresponsive forever. So the RAD will not return anything to accounting client (my NAS).
As more accounting requests come, spare threads for processing the requests will reduce and be used up eventually. I've debugged for a while and found it's the problem of PQexec() function. The function blocks the thread eternally till if the connection lost. I know the RAD version is a little outdated, but I cannot replace it right now. I wonder if there's a way to make the RAD reply to the NAS even when the connection between the RAD and the SQL lost.
View 1 Replies
View Related
Jan 10, 2010
I want to configure SSH key-based authentication and SSH password Authentication in same machine for different user .
View 1 Replies
View Related
Mar 14, 2011
On Ubuntu server 10.10, with a relay smtp server with authentication via postfix; I keep getting 535: Incorrect authentication data. I'm sure my username and password is correct. Heres how I set up postfix: I created a file called smarthosts.conf in my /etc/postfix/ directory that contains the following:
[Code].....
my server uses plain text authentication on port 25. I would like to use security like SSL, but this particular server is unsecured.
View 9 Replies
View Related
Jan 17, 2011
I need to make a choice on what authentication protocol I want to use for Authentication and Authorization. I was looking at Radius and then literature suggested that Diameter was a better protocol. Keep in mind I need this on a hetrogeneous setup ( linux & windows together). Diameter seemed like a good fit until I discovered that the open source code no longer seems to be maintained ( C/C++).
I was also looking at Kerberos as an option though there is alot overhead with the server. SSL/TLS or EAP? I am looking for simple but secure and am new at the security protocols.
View 2 Replies
View Related
Mar 12, 2010
I have a problem with ldap client authentication in ubuntu. I am using rhel5 as openldap server and I configured ubuntu as client, when I am trying to login the following message is coming."su: Authentication service cannot retrieve authentication info. Sorry"
But when I do search through "ldapsearch" command output is coming without any errors, Can anybody explain what would be problem.
View 1 Replies
View Related
