(RADIATOR) AuthyByPolicy

Hugh Irvine hugh at open.com.au
Wed May 16 08:01:05 CDT 2001


Hello Mariano -

Note that an AuthBy RADIUS clause will *always* return IGNORE.

regards

Hugh


At 18:14 -0300 15/5/01, Mariano Absatz wrote:
>El 15 May 2001, a las 21:54, Chris Cronje - MWeb escribió:
>
>>  Hi There
>>
>>  I was wondering if anyone has done this before ?
>>  I'm using Radiator to authenticate off another Radiator server, like a
>>  proxy. If the radius server fails, I want my proxy to mark the server dead
>>  for 10 minutes and then continue to the next Authby clause, which is AuthBy
>>  FILE.
>>
>>  What happens in practise is that if my proxy receives a timeout, it
>>  retransmits once, marks the server dead for 10 minutes and then says:
>>
>>  Tue May 15 21:53:41 2001: INFO: AuthRADIUS could not find a working host to
>>  forward to. Ignoring
>>
>>  But, it never goes to the next AuthBy statement.
>>
>>  Am I doing something wrong in my config here ?
>>
>>
>>  <Realm DEFAULT>
>>  AuthByPolicy ContinueUntilIgnore
>I never did this, but I think the above line should read
>
>AuthByPolicy ContinueWhileIgnore
>
>In fact, I guess that if your other radius server is actually working,
>this server would be trying the <AuthBy FILE> after the <AuthBy RADIUS>
>allways (since it wasn't ignored and that is the condition to stop the
>AuthByPolicy).
>
>>       <AuthBy RADIUS>
>>           Host x.x.x.x
>>           Retries 1
>>           RetryTimeout 3
>>           FailureBackoffTime 600
>>           Secret M at x$3$$!0n$
>>       </AuthBy>
>>
>>       <AuthBy FILE>
>>           Filename users    
>>           AcceptIfMissing
>>        </AuthBy>      
>>
>>  </Realm>   
>
>===
>Archive at http://www.open.com.au/archives/radiator/
>Announcements on radiator-announce at open.com.au
>To unsubscribe, email 'majordomo at open.com.au' with
>'unsubscribe radiator' in the body of the message.

-- 

NB: I am travelling this week, so there may be delays in our correspondence.

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list