(RADIATOR) problem with : Auth By SYSTEM

Per Lütkemeyer pel at dmdata.dk
Wed May 15 06:07:24 CDT 2002


Senario :
  Radiator v.3  running on SuSE enterprise v.7
  Using "AuthBy System" for user validation
  Radiator is used to give admin rights when telnet to routers.
 

Problem :
  User account is expired but Radiator still authenticates user and 
permits login......!
  Se config below.
  If the same user logs in to the server thats running radiator using 
telnet, the message "Access denied" is displayed.



Med venlig hilsen / Kind regards

Per Lütkemeyer
Netværkskonsulent
-----------------------
DMdata a/s
pel at dmdata.dk
-----------------------


Config-file:
*******************************************************************

#------------------------------------------------
# Global parameters
#------------------------------------------------
#
Foreground
# LogStdout
#
AuthPort 1645
AcctPort 1646
LogDir          /var/radiator
LogFile         /var/radiator/logfile.txt
DictionaryFile  /usr/local/src/Radiator-3.0/dictionary
Trace           4
#
#------------------------------------------------
# Clients
#------------------------------------------------
<Client DEFAULT>
        Secret  hundelort
        Identifier      Test
        IdenticalClients        127.0.0.1
</Client>



################################################
# Handlers
################################################

<Realm DEFAULT>
    <AuthBy FILE>
        Filename /usr/local/etc/grupper.cfg
    </AuthBy>
</Realm>

<AuthBy SYSTEM>
    Identifier System
</AuthBy>
*******************************************************************



grupper.cfg -file :
******************************************

#------------------------------------------------------------
DEFAULT Auth-Type = System, Group = users, Client-Identifier = Test
        cisco-avpair = "service=shell",
        Service-Type = Administrative-User,
        cisco-avpair = "shell:priv-lvl=15"

*******************************************************************


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.open.com.au/pipermail/radiator/attachments/20020515/b9d6717b/attachment.html>


More information about the radiator mailing list