Q1 - I like to be able to log incorrect passwords in RadiusDesk is this handled by radiusd.conf, the default file or in another location.
In the past we would always do this in radiusd.conf
Q2 - Is freeradius suppose to restart or reload every 10 minutes is that the cron that's doing this. See below
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect to rd@localhost:/rd
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect rlm_sql_mysql #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql_mysql: Starting connect to MySQL server for #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Connected new DB handle, #0
etc..1-4
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server <default>
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server dynamic_client_server
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server inner-tunnel
Sat Apr 5 22:30:02 2014 : Info: Ready to process requests.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Someone has been encountering this too. I guess one of the cron jobs check
every 10 minutes to see if freeradius is stopped and tries to start it. As
for logging passwords, I believe you can log authentication data for any
permanent/voucher you create. It might not be what you want but it is a
good place to start.
Q1 - I like to be able to log incorrect passwords in RadiusDesk is this
handled by radiusd.conf, the default file or in another location.
In the past we would always do this in radiusd.conf
Q2 - Is freeradius suppose to restart or reload every 10 minutes is that
the cron that's doing this. See below
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Driver rlm_sql_mysql
(module rlm_sql_mysql) loaded and linked
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect to
rd@localhost:/rd
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect
rlm_sql_mysql #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Connected new DB handle, #0
etc..1-4
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server dynamic_client_server
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server inner-tunnel
Sat Apr 5 22:30:02 2014 : Info: Ready to process requests.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Someone has been encountering this too. I guess one of the cron jobs check
every 10 minutes to see if freeradius is stopped and tries to start it. As
for logging passwords, I believe you can log authentication data for any
permanent/voucher you create. It might not be what you want but it is a
good place to start.
Q1 - I like to be able to log incorrect passwords in RadiusDesk is this
handled by radiusd.conf, the default file or in another location.
In the past we would always do this in radiusd.conf
Q2 - Is freeradius suppose to restart or reload every 10 minutes is that
the cron that's doing this. See below
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Driver rlm_sql_mysql
(module rlm_sql_mysql) loaded and linked
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect to
rd@localhost:/rd
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect
rlm_sql_mysql #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql_mysql: Starting connect to MySQL
server for #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Connected new DB handle, #0
etc..1-4
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server
dynamic_client_server
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server inner-tunnel
Sat Apr 5 22:30:02 2014 : Info: Ready to process requests.
Last edit: Mfawa Alfred Onen 2014-04-06
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
The NAS Devices applet -> When you edit a NAS device you can check under the "Enhancements" sub-tab (The last one) there is check boxes to do a per NAS device option for the logging of authentication requests.
I'm not sure though how well it will work with Dynamic NAS devices.
This logged requests can then be viewed under the Activity monitor applet. This comes in handy if you suspect someone is providing wrong passwords or trying to get into a NAS while they should not be while excluding the rest of the other NAS devices.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
then the cron job... although it runs every 10 minutes; it will only restart the FreeRADIUS server if there has been changes to the NAS table (You perhaps added a NAS device or edit another one etc)
So you can confirm by not making changes for at least 10 minutes to the NAS table; check when the cron runs; it should NOT restart FreeRADIUS.
If it does....
"Houston, we have a problem"
Cheers
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Q1 - I like to be able to log incorrect passwords in RadiusDesk is this handled by radiusd.conf, the default file or in another location.
In the past we would always do this in radiusd.conf
Q2 - Is freeradius suppose to restart or reload every 10 minutes is that the cron that's doing this. See below
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Driver rlm_sql_mysql (module rlm_sql_mysql) loaded and linked
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect to rd@localhost:/rd
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Attempting to connect rlm_sql_mysql #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql_mysql: Starting connect to MySQL server for #0
Sat Apr 5 22:30:02 2014 : Info: rlm_sql (sql): Connected new DB handle, #0
etc..1-4
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server <default>
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server dynamic_client_server
Sat Apr 5 22:30:02 2014 : Info: Loaded virtual server inner-tunnel
Sat Apr 5 22:30:02 2014 : Info: Ready to process requests.
Someone has been encountering this too. I guess one of the cron jobs check
every 10 minutes to see if freeradius is stopped and tries to start it. As
for logging passwords, I believe you can log authentication data for any
permanent/voucher you create. It might not be what you want but it is a
good place to start.
On Sun, Apr 6, 2014 at 4:12 AM, Webcoaster inteliport@users.sf.net wrote:
There is a line in the cron script
*/10 * * www-data /var/www/cake2/rd_cake/Console/cake -app
/var/www/cake2/rd_cake Freeradius >> /dev/null 2>&1
On Sun, Apr 6, 2014 at 1:20 PM, Mfawa Alfred Onen muffycompoqm@gmail.comwrote:
Last edit: Mfawa Alfred Onen 2014-04-06
Thanks I'll do some research on the both and report back.
Hi Guys,
The NAS Devices applet -> When you edit a NAS device you can check under the "Enhancements" sub-tab (The last one) there is check boxes to do a per NAS device option for the logging of authentication requests.
I'm not sure though how well it will work with Dynamic NAS devices.
This logged requests can then be viewed under the Activity monitor applet. This comes in handy if you suspect someone is providing wrong passwords or trying to get into a NAS while they should not be while excluding the rest of the other NAS devices.
then the cron job... although it runs every 10 minutes; it will only restart the FreeRADIUS server if there has been changes to the NAS table (You perhaps added a NAS device or edit another one etc)
So you can confirm by not making changes for at least 10 minutes to the NAS table; check when the cron runs; it should NOT restart FreeRADIUS.
If it does....
Cheers