(RADIATOR) profiles
Ingvar Berg (ERA)
Ingvar.Berg at era.ericsson.se
Wed Sep 5 00:57:51 CDT 2001
Hi Fred,
Have you considered using ServerChecksPassword? By using that, you can remove the admin password from the config file (and network traffic :).
/Ingvar
> -----Original Message-----
> From: Fred Albrecht [mailto:Fred at vwo.co.za]
> Sent: den 4 september 2001 16:24
> To: 'radiator at open.com.au'
> Subject: RE: (RADIATOR) profiles
>
>
> Thanx Hugh and Rob
>
> I actually got the config working about an hour after I sent
> my email. I
> just had to look very carefully at the profiles file in the goodies
> directory. Here's my solution:
>
> <Handler Realm=the_realm>
> AcctLogFileName %L/the_realm/%d-%m-%Y.log
> RewriteUsername s/^([^@]+).*/$1/
> RewriteUsername s/^.*\/(.*)/$1/
> RewriteUsername s/^.*\\(.*)/$1/
> AuthByPolicy ContinueWhileAccept
> <AuthBy LDAP2>
> Host host
> HoldServerConnection
> NoDefaultIfFound
>
> AuthDN uid=.....
> AuthPassword .....
>
> BaseDN ou=...
>
> UsernameAttr uid
> PasswordAttr userPassword
>
> AuthAttrDef accountname,Class,reply
> AuthAttrDef radiusauthentication,Profile,reply
> </AuthBy>
> <AuthBy FILE>
> Filename ./profiles
> StripFromReply Profile
> </AuthBy>
> </Handler>
>
> In LDAP the user's profile gets returned with the first
> authby clause. The
> profile then gets used in the ./profiles file with the Reply:
> keyword as
> follows:
>
> DEFAULT Reply:Profile=ISDN
> Service-Type = Framed-User,
> Framed-Protocol = PPP,
> Port-Limit = 1
>
> DEFAULT NAS-Port-Type=Async, Reply:Profile=WEB
>
> DEFAULT NAS-Port-Type=Async, Reply:Profile=BEACH
> Filter-Id = "filter.in"
>
> DEFAULT NAS-Port-Type=Async, Reply:Profile=DEFAULT
>
>
> hehehehehehheheheheheee
>
> :)
> fred
>
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list