(RADIATOR) How to Parse <Handler> before <Realm>
Hugh Irvine
hugh at open.com.au
Fri Jan 10 22:28:01 CST 2003
Hello Marc -
I will need to see the complete configuration file (no secrets)
together with a trace 4 debug showing what is happening.
Could you also please tell me what hardware/software platform you are
running on and what version of Radiator?
regards
Hugh
On Saturday, Jan 11, 2003, at 03:49 Australia/Melbourne, Marc wrote:
>
> Hi Giuseppe, and thanks for your prompt reply.
>
> Are you sure this should work ? On my server it produces the following
> error :
>
> Can't call method "log" on unblessed reference at
> /usr/lib/perl5/site_perl/5.6.0/Radius/AuthGeneric.pm line 697.
>
> I've only changed what stated in your mail :
>
> <Handler User-Password=ascend>
>
> <AuthBy INTERNAL>
> DefaultResult REJECT
> </AuthBy>
>
> </Handler>
>
> <Handler>
> # Lets check everything and log to SQL
> AuthBy DoChecks
>
> # Logging accounting also in the standard way
> AcctLogFileName %L/accounting.log
>
> # Log authentication success and failure
> AuthLog myauthlogger
> </Handler>
>
> Do you know what may be wrong ?
>
> Thanks again,
> M
>
>
> On Fri, 10 Jan 2003 16:49:59 +0100
> Giuseppe Denora <g.denora at elitel.it> wrote:
>
>> Hi Marc,
>>
>> I think it's not a good idea mixing REALMs and HANDLERs, i suggest the
>> following cfg
>>
>> <Handler User-Password=ascend>
>>
>> <AuthBy INTERNAL>
>> DefaultResult REJECT
>> </AuthBy>
>>
>> </Handler>
>>
>> <Handler>
>> # Lets check everything and log to SQL
>> AuthBy DoChecks
>>
>> # Log authentication success and failure
>> AuthLog myauthlogger
>> </Handler>
>>
>> Bye
>>
>>
>>
>>
>>
>>
>> Marc wrote:
>>
>>> Hi to everybody,
>>>
>>> Does anybody can give me some advice on why all requests that should
>>> be
>>> rejected (the ones with User-Password attribute set to ascend) are
>>> granted instead ?
>>>
>>> The scenario is the following :
>>>
>>> The bottom of my radius.cfg file looks like :
>>>
>>> <Handler User-Password=ascend>
>>>
>>> <AuthBy INTERNAL>
>>> DefaultResult REJECT
>>> </AuthBy>
>>>
>>> </Handler>
>>>
>>> <Realm DEFAULT>
>>> # Lets check everything and log to SQL
>>> AuthBy DoChecks
>>>
>>> # Log authentication success and failure
>>> AuthLog myauthlogger
>>> </Realm>
>>>
>>> And there are no more Realm or Handler statements before those.
>>>
>>> I've looked into radiator documentation and it says :
>>>
>>> * Look for a Realm with an exact match on the realm name
>>> * If still no exact match, look for a matching regular expression
>>> Realm
>>> * If still no match, look for a <Realm DEFAULT>
>>> * If still no match, look at each Handler in the order they appear
>>> in
>>> the configuration file until one where all the check items match the
>>> request.
>>> * If still no match, ignore (i.e. do not reply to) the request.
>>>
>>> If that's true and I understand it well, how can I do to ALWAYS parse
>>> the hanlder statement before the Realm DEFAULT ?
>>>
>>> Thank you very much in advance,
>>> M
>>> ===
>>> Archive at http://www.open.com.au/archives/radiator/
>>> Announcements on radiator-announce at open.com.au
>>> To unsubscribe, email 'majordomo at open.com.au' with
>>> 'unsubscribe radiator' in the body of the message.
>>>
>>>
>>>
>>>
>>>
>>>
>>
>>
>>
>>
>
>
> --
> Marc Perea - System Administration Staff
> Mail: marc.perea at electronic-group.com
> Tel: (+34) 93 600 23 23
> Fax: (+34) 93 600 23 10
> ----------------
> Electronic Group - http://www.electronic-group.com
>
> ===
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list