# test.cfg - this is the combined auth config that I threw together # Foreground LogStdout LogDir /etc/radiator DbDir . DictionaryFile /etc/radiator/dictionary # User a lower trace level in production systems: Trace 4 Identifier Cisco Secret ############# DupInterval 0 Identifier Sophos Secret ############# DupInterval 0 Identifier Paolo Secret ############# DupInterval 0 # This is where we authenticate a PEAP inner request, which will be an # EAP request. The username of the inner request will anonymous by # default, although the identity of the EAP request will be the real # username we are trying to authenticate. Identifier Cisco DBSource dbi:mysql:radiator:##.###.##.###:3306 DBUsername ###### DBAuth ######### AuthSelect select PASSWORD from SUBSCRIBERS where USERNAME=%0 AuthColumnDef 0, User-Password, check AccountingTable ACCOUNTING AcctColumnDef USERNAME,User-Name AcctColumnDef TIME_STAMP,Timestamp,integer AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer AcctColumnDef ACCTSESSIONID,Acct-Session-Id AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause AcctColumnDef NASIDENTIFIER,NAS-Identifier AcctColumnDef NASPORT,NAS-Port,integer AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address # AcctFailedLogFileName /etc/radiator/missedaccounting # SQLRecoveryFile /etc/radiator/missedaccounting # Identifier radiator DBSource dbi:mysql:radiator:##.##.###.##:3306 DBUsername ####### DBAuth ######### AddQuery insert into RADONLINE (USERNAME, ACCTSESSIONID, TIME_STAMP, FRAMEDIPADDRESS) values ('%u', %3, %{Timestamp}, '%{Framed-IP-Address}') Filename %L/%m-%Y-LKSD LogSuccess 1 LogFailure 1 FailureFormat %l:%n:%P:POP%{Called-Station-Id}:%{Calling-Station-Id}:%1 SuccessFormat %l:%n:OK Identifier Sophos DBSource dbi:mysql:radiator:##.##.##.##:3306 DBUsername ####### DBAuth ########## AuthSelect select Password, Groupname from RadUsers where Username=%0 AuthColumnDef 0, User-Password, check AuthColumnDef 1, Reply-Message, reply AccountingTable ACCOUNTING AcctColumnDef USERNAME,User-Name AcctColumnDef TIME_STAMP,Timestamp,integer AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer AcctColumnDef ACCTSESSIONID,Acct-Session-Id AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause AcctColumnDef NASIDENTIFIER,NAS-Identifier AcctColumnDef NASPORT,NAS-Port,integer AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address # AcctFailedLogFileName /etc/radiator/missedaccounting # Identifier Paolo DBSource dbi:mysql:radiator:##.##.##.##:3306 DBUsername ####### DBAuth ########### AuthSelect select Password, Groupname from RadUsers where Username=%0 AuthColumnDef 0, User-Password, check AuthColumnDef 1, Reply-Message, reply AccountingTable ACCOUNTING AcctColumnDef USERNAME,User-Name AcctColumnDef TIME_STAMP,Timestamp,integer AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer AcctColumnDef ACCTSESSIONID,Acct-Session-Id AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer AcctColumnDef ACCTTERMINATECAUSE,Acct-Terminate-Cause AcctColumnDef NASIDENTIFIER,NAS-Identifier AcctColumnDef NASPORT,NAS-Port,integer AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address # AcctFailedLogFileName /etc/radiator/missedaccounting # SessionDatabase radiator #AuthLog AuthBy Cisco AcctLogFileName /etc/radiator/cisco/%m-%Y-Local SessionDatabase radiator # AuthLog /etc/radiator/sophos AuthBy Sophos AcctLogFileName /etc/radiator/sophos/%m-%Y-Local SessionDatabase radiator # AuthLog /etc/radiator/paolo AuthBy Paolo AcctLogFileName /etc/radiator/paolo/%m-%Y-Local