(RADIATOR) AuthBy PLATYPUS Query

Hugh Irvine hugh at open.com.au
Thu Jul 26 18:09:10 CDT 2001 

Hello William -

In your AuthBy SQL clause, you will have to process the results of the 
AuthSelect query with a series of AuthColumnDef's.

Have a look at section 6.26 in the Radiator 2.18.2 reference manual.

regards

Hugh

On Friday 27 July 2001 04:21, William Hernandez wrote:
> OK, I've switched to AuthBy SQL since the AuthSelect in AuthBy
> PLATYPUS seems to do an append to the default select.
>
> I test with:
> radpwtst -trace -s www.prw.net -user user at prdigital.com -password
> userpw -auth_port 1812 -noacct -secret prwradius -dictionary
> /etc/raddb/dictionary
> and get the following error:
> Thu Jul 26 13:49:35 2001: ERR: Bad attribute=value pair: Y
>
> --------------------- Attachments:
> adius.log  --------------------------
> Thu Jul 26 13:49:19 2001: INFO: Server started: Radiator 2.18.2
> on www.prw.net
> Thu Jul 26 13:49:22 2001: INFO: Trace level changed to 4
> Thu Jul 26 13:49:22 2001: INFO: Trace level increased to 4
> Thu Jul 26 13:49:35 2001: DEBUG: Packet dump:
> *** Received from 208.249.78.3 port 36427 ....
> Code:       Access-Request
> Identifier: 34
> Authentic:  1234567890123456
> Attributes:
>         User-Name = "user at prdigital.com"
>         Service-Type = Framed-User
>         NAS-IP-Address = 203.63.154.1
>         NAS-Port = 1234
>         NAS-Port-Type = Async
>         User-Password =
> "<146><208><238><158><247><22><144><5><164><133><228><17
> 4><1>H<30>x"
>
> Thu Jul 26 13:49:35 2001: DEBUG: Check if Handler
> Realm=surfea.net should be used to handle this request
> Thu Jul 26 13:49:35 2001: DEBUG: Check if Handler
> Realm=prwebtv.net should be used to handle this request
> Thu Jul 26 13:49:35 2001: DEBUG: Check if Handler
> Realm=holaplaneta.net should be used to handle this request
> Thu Jul 26 13:49:35 2001: DEBUG: Check if Handler
> Realm=prwebtv.net should be used to handle this request
> Thu Jul 26 13:49:35 2001: DEBUG: Check if Handler
> Realm=holaplaneta.net should be used to handle this request
> Thu Jul 26 13:49:35 2001: DEBUG: Check if Handler
> Realm=prdigital.com should beused to handle this request
> Thu Jul 26 13:49:35 2001: DEBUG: Handling request with Handler
> 'Realm=prdigital.com'
> Thu Jul 26 13:49:35 2001: DEBUG: prw-sessiondb Deleting session
> for user at prdigital.com, 203.63.154.1, 1234
> Thu Jul 26 13:49:35 2001: DEBUG: do query is: delete from
> RADONLINE where NASIDENTIFIER='203.63.154.1' and NASPORT01234
>
> Thu Jul 26 13:49:35 2001: DEBUG: Handling with Radius::AuthSQL
> Thu Jul 26 13:49:35 2001: DEBUG: Handling with Radius::AuthSQL
> Thu Jul 26 13:49:35 2001: DEBUG: Query is: select password,
> active, timeleft, blockuser, guarantor from customer where
> username='user'
>
> Thu Jul 26 13:49:35 2001: ERR: Bad attribute=value pair: Y
> Thu Jul 26 13:49:35 2001: DEBUG: Radius::AuthSQL looks for match
> with user at prdigital.com
> Thu Jul 26 13:49:35 2001: DEBUG: Radius::AuthSQL ACCEPT:
> Thu Jul 26 13:49:35 2001: DEBUG: Access accepted for
> user at prdigital.com
> Thu Jul 26 13:49:35 2001: DEBUG: Packet dump:Thu Jul 26 13:49:35
> 2001: DEBUG: Access accepted for user at prdigital.com
> Thu Jul 26 13:49:35 2001: DEBUG: Packet dump:
> *** Sending to 208.249.78.3 port 36427 ....
> Code:       Access-Accept
> Identifier: 34
> Authentic:  1234567890123456
> Attributes:
>         Service-Type = Framed-User
>         Framed-Protocol = PPP
>         Framed-IP-Netmask = 255.255.255.255
>         Framed-Compression = Van-Jacobson-TCP-IP
>         Ascend-Idle-Limit = 900
> --------------------- Attachments:
> adius.cfg  --------------------------
> <AuthBy SQL>
>         Identifier prdigital-plat
>
>         DBSource        dbi:Sybase:database=plat
>         DBUsername    ********
>         DBAuth            ********
>
>         AuthSelect select password, active, timeleft, blockuser,
> guarantor \
>                from customer where username='%U'
>
>         AddToReply Service-Type = Framed-User, \
>                 Framed-Protocol = PPP, \
>                 Framed-IP-Netmask = 255.255.255.255, \
>                 Framed-Compression = Van-Jacobson-TCP-IP, \
>                 Ascend-Idle-Limit = 900
> </AuthBy>
> # This clause handles users who login as user at prdigital.com
> <Handler Realm=prdigital.com>
>         SessionDatabase prw-sessiondb
>         AuthBy prdigital-plat
>
>         AcctLogFileName /var/log/radacct/prdigital/detail
>         PasswordLogFileName
> /var/log/radacct/prdigital/radius.log
>         ExcludeFromPasswordLog  root
> </Handler>
>
> # This clause handles prdigital.com users who login without the
> domain
> <Handler Called-Station-Id=/5050$/>
>         # The following line adds prdigital.com to username
>         RewriteUsername s/(.*)/$1\@prdigital.com/
>         SessionDatabase prdigital-sessiondb
>
>         AuthBy prdigital-plat
>
>         AcctLogFileName /var/log/radacct/prdigital/detail
>         PasswordLogFileName
> /var/log/radacct/prdigital/radius.log
>         ExcludeFromPasswordLog  root
> </Handler>
>
> -----Original Message-----
> From: owner-radiator at open.com.au
> [mailto:owner-radiator at open.com.au]On
> Behalf Of William Hernandez
> Sent: Thursday, July 26, 2001 12:16 PM
> To: Radiator
> Subject: (RADIATOR) AuthBy PLATYPUS Query
>
>
> We're testing AuthBy PLATYPUS and I'm getting the following:
>
> Thu Jul 26 11:42:47 2001: DEBUG: Handling with
> Radius::AuthPLATYPUS
> Thu Jul 26 11:42:47 2001: DEBUG: Query is: select password,
> active, timeleft, blockuser, guarantor from customer where
> username='user at domain.com'
>
> This appears to be using username='%u' in the query. Can I use
> AuthSelect in AuthBy PLATYPUS or should I use AuthBy SQL instead?
>
> Thanks in advance,
> William
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.

-- 
Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list