. .

Category: system configuration RSS feed for this category

Comments Off on Reverse Group Membership Maintenance

Reverse Group Membership Maintenance

The memberof overlay updates an attribute (by default memberOf) whenever changes occur to the membership attribute (by default member) of entries of the objectclass (by default groupOfNames) configured to trigger updates. Add memberof module in cn=config dn: cn=module{0},cn=config changetype: modify add: olcModuleLoad olcModuleLoad: memberof.la Turn on memberof in the db dn: olcOverlay=memberof,olcDatabase={1}bdb,cn=config changetype: add objectClass: olcMemberOf objectClass: olcOverlayConfig objectClass: olcConfig objectClass: top olcOverlay: memberof olcMemberOfDangling: ignore olcMemberOfRefInt: TRUE olcMemberOfGroupOC: groupOfNames olcMemberOfMemberAD: member olcMemberOfMemberOfAD: memberOf It does not automatically update the existing data in the database, you need to re-load the DB to take effective Testing the function dn: uid=test1,ou=People,dc=q-station,dc=net changetype:

Continue reading »
,
Comments Off on Slackware 64bit multilib installation

Slackware 64bit multilib installation

Slackware 64bit is a pure 64-bit OS. In case, you should running/building 32bit program, then you may need to modify your system to support 32bit library or compiler by installing multilib.

Continue reading »
,
Comments Off on Strongwan IKEv2 VPN for Windows 7

Strongwan IKEv2 VPN for Windows 7

We will build a IKEv2 VPN for Windows 7 using strongSwan and client authenticate itself using MSCHAPv2.

Continue reading »
, , ,
Comments Off on My Add-on package for Slackware 13.37

My Add-on package for Slackware 13.37

You won’t interest in this post as it serve for my private usage to record down which package should I install with my Slackware. lame a52 libdca x264 ffmpeg libbluray (for bluray only) libaacs – place the KEYDB.cfg in ~/.config/aacs (for bluray decrypt) mplayer audacious3 32bit compatibility for 64 Virtual box

Continue reading »
Comments Off on Linux L2TP/IPsec VPN server

Linux L2TP/IPsec VPN server

Building a L2TP/IPsec VPN server on Linux could be easy but troublesome. This post list out the steps to setup the tunnel. L2TP/IPsec is another type of VPN tunnerl, beside PPTP, which could be get connected by WinXP, or other Windows platform, out of the box.

Continue reading »
, , ,
Comments Off on Linux as PEAP/MSCHAPv2 Client

Linux as PEAP/MSCHAPv2 Client

This summarize my experience on using Linux as a PEAP/MSCHAv2 client and using wpa_supplicant to connect to the 802.1x AP.

Continue reading »
,
Comments Off on Linux PPTP server

Linux PPTP server

Building a VPN server with PPTP in Linux authenticating with RADIUS.

Continue reading »
, , ,
Comments Off on Proxying a PEAP/MSCHAPv2 request

Proxying a PEAP/MSCHAPv2 request

Let make it simple, sometimes, your RADIUS server may need to proxy a PEAP/MSCHAPv2 request to another RADIUS (Home Server) to authenticate a user.

Continue reading »
,
Comments Off on hostapd & 802.1x & freeradius

hostapd & 802.1x & freeradius

Setting up an AP which accept PEAP/MSCHAPv2 authentication using Linux with a ‘Master Mode-able’ wifi device, sometimes, is not quite worth. Using ready-made network appliance should be more easy and stable. However, setting up a RADIUS server to terminate the PEAP/MSCHAPv2 request can’t be avoided.

Continue reading »
, ,
Comments Off on Freeradius special setup

Freeradius special setup

Some special setup which you may find useful when configure Freeradius.

Continue reading »
« Older Entries