(RADIATOR) How to custom authentication query?

Hugh Irvine hugh at open.com.au
Wed Aug 27 23:11:40 CDT 2003 

Hello Lin -

You should look at a trace 4 debug of the various access requests that 
you receive to see what you can use to differentiate between the 
different services. Perhaps you can use "NAS-Port-Type" or possibly the 
"Calling-Station-Id and/or "Called-Station-Id".

BTW - we are available for contract consulting services if required.

regards

Hugh


On Thursday, Aug 28, 2003, at 13:45 Australia/Melbourne, Huaikun Lin 
wrote:

> Hi Hugh
>
> Thank you for help.
>
> But we have half dialup customers coming from the same radius 
> clients(proxies, not
> controlled by us.) as ADSL. Is there any way can solve the problem?
>
> Lin
>
> At 01:36 PM 8/28/2003 +1000, Hugh Irvine wrote:
>
>
>> Hello Lin -
>>
>> This is usually done by setting up Handlers for the different types 
>> of access, possibly with seperate session databases if required.
>>
>> # define Client clauses with Identifiers
>>
>> <Client ....>
>>         Identifier DIALUP
>>         .....
>> </Client>
>>
>> <Client .....>
>>         Identifier ADSL
>>         .....
>> </Client>
>>
>> .....
>>
>> # define Session Databases with different tables
>>
>> <SessionDatabase SQL>
>>         Identifier DIALUPSDB
>>         .....
>> </SessionDatabase>
>>
>> <SessionDatabase SQL>
>>         Identifier ADSLSDB
>>         .....
>> </SessionDatabase>
>>
>> # define Handlers
>>
>> <Handler Client-Identifer = DIALUP>
>>         SessionDatabase DIALUPSDB
>>         .....
>> </Handler>
>>
>> <Handler Client-Identifer = ADSL>
>>         SessionDatabase ADSLSDB
>>         .....
>> </Handler>
>>
>>
>> regards
>>
>> Hugh
>>
>>
>> On Thursday, Aug 28, 2003, at 13:18 Australia/Melbourne, Huaikun Lin 
>> wrote:
>>
>>> Hi
>>>
>>> At 12:59 PM 8/28/2003 +1000, Hugh Irvine wrote:
>>>
>>>
>>>> Hello Lin -
>>>>
>>>> See section 6.32 in the Radiator 3.6 reference manual 
>>>> ("doc/ref.html"), and the code in "Radius/AuthEMERALD.pm" if you 
>>>> are interested in the nitty-gritty details.
>>>
>>> We are using platypus 4.0. Have many different type of dialup and 
>>> ADSL rates.
>>> The normal dialup use one realm, ADSL use another realm ...
>>>
>>> Is it possible write custom queries for doing authentication  in 
>>> radius.cfg?
>>>
>>> For example:
>>> I want :
>>> -normal dialup customers using authentication statement1
>>> -use authentication statement2 authenticate ADSL customers
>>> -...
>>>
>>>
>>> What we want to achieve is control dialup accounts can only be
>>> used as dial up. Not be abled to use as ADSL.
>>> And ADSL can only used as ADSL and not be used as dial up.
>>>
>>>
>>> Lin
>>>
>>>
>>>> regards
>>>>
>>>> Hugh
>>>>
>>>>
>>>> On Thursday, Aug 28, 2003, at 11:40 Australia/Melbourne, Huaikun 
>>>> Lin wrote:
>>>>
>>>>> Hi
>>>>>
>>>>> I am using radiator 3.6 with SQL server 7.
>>>>>
>>>>> Use AuthBy EMERALD module to authenticate dialup.
>>>>>
>>>>> If I want to custom the authentication query statement,what should 
>>>>> I do?
>>>>>
>>>>>
>>>>>
>>>>> Lin
>>>>>
>>>>> ---
>>>>> Outgoing mail is certified Virus Free.
>>>>> Checked by AVG anti-virus system (http://www.grisoft.com).
>>>>> Version: 6.0.512 / Virus Database: 309 - Release Date: 8/19/2003
>>>>
>>>> NB: have you included a copy of your configuration file (no 
>>>> secrets),
>>>> together with a trace 4 debug showing what is happening?
>>>>
>>>> --
>>>> Radiator: the most portable, flexible and configurable RADIUS server
>>>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>>>> -
>>>> Nets: internetwork inventory and management - graphical, extensible,
>>>> flexible with hardware, software, platform and database 
>>>> independence.
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> ---
>>>> Incoming mail is certified Virus Free.
>>>> Checked by AVG anti-virus system (http://www.grisoft.com).
>>>> Version: 6.0.512 / Virus Database: 309 - Release Date: 8/19/2003
>>>
>>> ---
>>> Outgoing mail is certified Virus Free.
>>> Checked by AVG anti-virus system (http://www.grisoft.com).
>>> Version: 6.0.512 / Virus Database: 309 - Release Date: 8/19/2003
>>
>> NB: have you included a copy of your configuration file (no secrets),
>> together with a trace 4 debug showing what is happening?
>>
>> --
>> Radiator: the most portable, flexible and configurable RADIUS server
>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>> -
>> Nets: internetwork inventory and management - graphical, extensible,
>> flexible with hardware, software, platform and database independence.
>>
>>
>>
>>
>>
>> ---
>> Incoming mail is certified Virus Free.
>> Checked by AVG anti-virus system (http://www.grisoft.com).
>> Version: 6.0.512 / Virus Database: 309 - Release Date: 8/19/2003
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.512 / Virus Database: 309 - Release Date: 8/19/2003
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list