(RADIATOR) Time check item
Hugh Irvine
hugh at open.com.au
Thu Jan 16 16:18:44 CST 2003
Hello Anton -
I would suggest you do something like this:
# define AuthBy clauses
<AuthBy SQL>
Identifier Normal
DBSource dbi:mysql:radius:localhost
DBUsername xxx
DBAuth xxx
AuthSelect select PASSWORD, CHECKATTR, REPLYATTR \
from SUBSCRIBERS \
where USERNAME=%0 and ACTIVE=1 and (PLAN=1 or PLAN=3 or PLAN=4)
AuthColumnDef 0, User-Password, check
AuthColumnDef 1, GENERIC, check
AuthColumnDef 2, GENERIC, reply
AddToReply Framed-Protocol = PPP,Framed-IP-Netmask =
255.255.255.0,Ascend-Client-Primary-DNS=216.110.167.160,AscendClient-S
econdary-DNS=200.52.66.125
</AuthBy>
<AuthBy SQL>
Identifier Nocturno
DBSource dbi:mysql:radius:localhost
DBUsername xxx
DBAuth xxxx
AuthSelect select PASSWORD \
from SUBSCRIBERS \
where USERNAME=%0 and ACTIVE=1 and PLAN=2
AuthColumnDef 0, User-Password, check
AddToReply Framed-Protocol = PPP,Framed-IP-Netmask =
255.255.255.0,Ascend-Client-Primary-DNS=216.110.167.160,Ascend-Client-S
econdary-DNS=200.52.66.125,Session-timeout="until Time"
</AuthBy>
<AuthBy FILE>
Identifier CheckUsers
Filename %D/users.defaults
</AuthBy>
.....
# define Realms or Handlers
<Handler ....>
AuthBy CheckUsers
.....
</Handler>
.....
Then the file "users.defaults" would look like this:
# file users.defaults
DEFAULT Time = "Wk0000-0800", Auth-Type = Nocturno
DEFAULT Auth-Type = Normal
Please let me know how you get on.
regards
Hugh
On Friday, Jan 17, 2003, at 02:30 Australia/Melbourne, Anton Krall
wrote:
> Hi Hugh
>
> Right now.. I have 2 Authbys:
>
> <AuthBy SQL>
> Identifier Normal
> DBSource dbi:mysql:radius:localhost
> DBUsername xxx
> DBAuth xxx
>
> AuthSelect select PASSWORD, CHECKATTR, REPLYATTR \
> from SUBSCRIBERS \
> where USERNAME=%0 and ACTIVE=1 and (PLAN=1 or PLAN=3 or PLAN=4)
>
> AuthColumnDef 0, User-Password, check
> AuthColumnDef 1, GENERIC, check
> AuthColumnDef 2, GENERIC, reply
>
> AddToReply Framed-Protocol = PPP,Framed-IP-Netmask =
> 255.255.255.0,Ascend-Client-Primary-DNS=216.110.167.160,AscendClient-S
> econdary-DNS=200.52.66.125
> </AuthBy>
>
> <AuthBy SQL>
> Identifier Nocturno
> DBSource dbi:mysql:radius:localhost
> DBUsername xxx
> DBAuth xxxx
>
> AuthSelect select PASSWORD \
> from SUBSCRIBERS \
> where USERNAME=%0 and ACTIVE=1 and PLAN=2
>
> AuthColumnDef 0, User-Password,From owner-radiator at open.com.au Thu Jan 16 11:35:28 2003
Received: (from majordomo at localhost)
by server1.open.com.au (8.11.0/8.11.0) id h0GHZSX23357
for radiatorzz-list; Thu, 16 Jan 2003 11:35:28 -0600
X-Authentication-Warning: server1.open.com.au: majordomo set sender to owner-radiator at open.com.au using -f
Received: from intruder.com.mx (ns2.intruder.com.mx [216.110.167.185])
by server1.open.com.au (8.11.0/8.11.0) with ESMTP id h0GHZIx23351;
Thu, 16 Jan 2003 11:35:19 -0600
Received: from localhost (guardian.intruder.com.mx [127.0.0.1])
by intruder.com.mx (Postfix) with ESMTP
id 2975127B93; Thu, 16 Jan 2003 16:25:20 -0600 (CST)
Received: from AKRALL (unknown [148.243.56.146])
by intruder.com.mx (Postfix) with ESMTP
id 46CC327B91; Thu, 16 Jan 2003 16:25:19 -0600 (CST)
From: "Anton Krall" <akrall at intruder.com.mx>
To: "'Hugh Irvine'" <hugh at open.com.au>
Cc: <radiator at open.com.au>
Subject: RE: (RADIATOR) Time check item
Date: Thu, 16 Jan 2003 16:34:45 -0600
Organization: Intruder Consulting
Message-ID: <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAAkNgmqCA0+E2lypJxWxwyT8KAAAAQAAAAE5DHrbdUv0yEFHU8DNzgJQEAAAAA at intruder.com.mx>
MIME-Version: 1.0
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.2627
X-Original-To: akrall at intruder.com.mx
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
Importance: Normal
In-Reply-To: <E8131612-2923-11D7-8841-0003931DEC06 at open.com.au>
X-Authentication-Warning: server1.open.com.au: majordomo set sender to owner-radiator at open.com.au using -f
X-Virus-Scanned: by AMaViS new-20020517
Sender: owner-radiator at open.com.au
Precedence: bulk
List-Id: <radiator.list-id.open.com.au>
Update:
I tried the idea... And it worked like a charm!!!
Damn! I love this software!
Anton Krall
-------------------
Hugh
I came up with this idea.. What do you think:
Create a new table on the radius db called radiusattribs. Inside the
table make columns named plan, attribs
So that you can use the authselect on the authby like this:
AuthSelect select PASSWORD, radiusattribs.ATTRIBS from SUBSCRIBERS,
RADIUSATTRIBS where USERNAME=%0 and ACTIVE=1 and PLAN=2 and
SUBSCRIBERS.PLAN=RADIUSATTRIBS=PLAN
The output would be the pw and the attribs for that plan.. All as check
items..
And in the authby, put the sessiontime as:
AddToReply Framed-Protocol = PPP,Framed-IP-Netmask =
255.255.255.0,Ascend-Client-Primary-DNS=216.110.167.160,Ascend-Client-S
econdary-DNS=200.52.66.125,Session-timeout="until Time"
What do you think??
__________________________________________________________________
Anton Krall
CEO
Intruder Consulting
Email: akrall at intruder.com.mx
Tel: (55)5233-9281
Celular: (044)55-5105-5160
ICQ#: 4979450
MSN: akrall at hotmail.com
AIM: antonkrall
Web: www.intruder.com.mx
Outside Mexico
Tel: (+52)555-233-9281
Celular: (+52)555-105-5160
%-----Original Message-----
%From: Hugh Irvine [mailto:hugh at open.com.au]
%Sent: Jueves, 16 de Enero de 2003 01:27 a.m.
%To: Anton Krall
%Cc: radiator at open.com.au
%Subject: Re: (RADIATOR) Time check item
%
%
%
%Hello Anton -
%
%As mentioned previously, the answer depends on what else you are doing
%in your configuration file and how you are going to recognise and
%process the radius requests. You can use Handlers or cascaded AuthBy
%clauses, it depends on what else is required.
%
%Please outline your requirements in more detail and I will try to make
%a sensible suggestion.
%
%regards
%
%Hugh
%
%
%On Thursday, Jan 16, 2003, at 18:18 Australia/Melbourne, Anton Krall
%wrote:
%
%> If I needed to hard code the check into the authby so that the user
%> record (SQL) would only have username and pw?
%>
%> __________________________________________________________________
%> Anton Krall
%> CEO
%>
%>
%> %-----Original Message-----
%> %From: owner-radiator at open.com.au
%%[mailto:owner-radiator at open.com.au]
%> On Behalf Of Hugh Irvine
%> %Sent: Jueves, 16 de Enero de 2003 12:09 a.m.
%> %To: Anton Krall
%> %Cc: radiator at open.com.au
%> %Subject: Re: (RAD check
>
> Here is where I need the Time = "Wk0000-0800"
>
> AddToReply Framed-Protocol = PPP,Framed-IP-Netmask =
> 255.255.255.0,Ascend-Client-Primary-DNS=216.110.167.160,Ascend-Client-S
> econdary-DNS=200.52.66.125,Session-timeout="until Time"
> </AuthBy>
>
> So that if a user has PLAN=2 on the SUBSCRIBERS db, he will be thrown
> into AuthBy SQL Nocturno and will only be able to login between 0000
> and
> 0800.
>
> __________________________________________________________________
> Anton Krall
> CEO
> Intruder Consulting
>
> Email: akrall at intruder.com.mx
> Tel: (55)5233-9281
> Celular: (044)55-5105-5160
> ICQ#: 4979450
> MSN: akrall at hotmail.com
> AIM: antonkrall
> Web: www.intruder.com.mx
>
> Outside Mexico
> Tel: (+52)555-233-9281
> Celular: (+52)555-105-5160
>
>
> %-----Original Message-----
> %From: Hugh Irvine [mailto:hugh at open.com.au]
> %Sent: Jueves, 16 de Enero de 2003 01:27 a.m.
> %To: Anton Krall
> %Cc: radiator at open.com.au
> %Subject: Re: (RADIATOR) Time check item
> %
> %
> %
> %Hello Anton -
> %
> %As mentioned previously, the answer depends on what else you are doing
> %in your configuration file and how you are going to recognise and
> %process the radius requests. You can use Handlers or cascaded AuthBy
> %clauses, it depends on what else is required.
> %
> %Please outline your requirements in more detail and I will try to make
> %a sensible suggestion.
> %
> %regards
> %
> %Hugh
> %
> %
> %On Thursday, Jan 16, 2003, at 18:18 Australia/Melbourne, Anton Krall
> %wrote:
> %
> %> If I needed to hard code the check into the authby so that the user
> %> record (SQL) would only have username and pw?
> %>
> %> __________________________________________________________________
> %> Anton Krall
> %> CEO
> %>
> %>
> %> %-----Original Message-----
> %> %From: owner-radiator at open.com.au
> %%[mailto:owner-radiator at open.com.au]
> %> On Behalf Of Hugh Irvine
> %> %Sent: Jueves, 16 de Enero de 2003 12:09 a.m.
> %> %To: Anton Krall
> %> %Cc: radiator at open.com.au
> %> %Subject: Re: (RADIATOR) Time check item
> %> %
> %> %
> %> %
> %> %Hello Anton -
> %> %
> %> %A check item usually goes in a user record.
> %> %
> %> %Ie:
> %> %
> %> %someuser Password = xxxxxxx, Time = "Wk0000-0800"
> %> % ......
> %> %
> %> %There are other possibilities depending on what else you
> %are doing in
> %> %your configuration file. %
> %> %regards
> %> %
> %> %Hugh
> %> %
> %> %
> %> %On Thursday, Jan 16, 2003, at 16:19 Australia/Melbourne, Anton
> Krall
> %> %wrote:
> %> %
> %> %> Guys.. I trying to make 2 AuthBy SQL.. one is a standard
> %one and the
> %> %> other is for a dialup plan called Nightly
> %> %>
> %> %> The 2nd one has to have a check item: Time = "Wk0000-0800"
> %> %>
> %> %> Thing is... where do I put the check item? I forgot :((((
> %> %>
> %> %> Thx for the help.
> %> %>
> %> %>
> __________________________________________________________________
> %> %> Anton Krall
> %> %>
> %> %>
> %> %> ===
> %> %> Archive at http://www.open.com.au/archives/radiator/
> %> %> Announcements on radiator-announce at open.com.au
> %> %> To unsubscribe, email 'majordomo at open.com.au' with 'unsubscribe
> %> %> radiator' in the body of the message.
> %> %>
> %> %>
> %> %
> %> %--
> %> %Radiator: the most portable, flexible and configurable RADIUS
> %> %server anywhere. Available on *NIX, *BSD, Windows 95/98/2000,
> %> %NT, MacOS X.
> %> %-
> %> %Nets: internetwork inventory and management - graphical,
> %> %extensible, flexible with hardware, software, platform and
> %> %database independence.
> %> %
> %> %===
> %> %Archive at http://www.open.com.au/archives/radiator/
> %> %Announcements on radiator-announce at open.com.au
> %> %To unsubscribe, email 'majordomo at open.com.au' with
> %> %'unsubscribe radiator' in the body of the message.
> %> %
> %> %
> %>
> %>
> %> ===
> %> Archive at http://www.open.com.au/archives/radiator/
> %> Announcements on radiator-announce at open.com.au
> %> To unsubscribe, email 'majordomo at open.com.au' with 'unsubscribe
> %> radiator' in the body of the message.
> %>
> %>
> %
> %--
> %Radiator: the most portable, flexible and configurable RADIUS
> %server anywhere. Available on *NIX, *BSD, Windows 95/98/2000,
> %NT, MacOS X.
> %-
> %Nets: internetwork inventory and management - graphical,
> %extensible, flexible with hardware, software, platform and
> %database independence.
> %
> %
> %
>
>
>
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
IATOR) Time check item
%> %
%> %
%> %
%> %Hello Anton -
%> %
%> %A check item usually goes in a user record.
%> %
%> %Ie:
%> %
%> %someuser Password = xxxxxxx, Time = "Wk0000-0800"
%> % ......
%> %
%> %There are other possibilities depending on what else you
%are doing in
%> %your configuration file. %
%> %regards
%> %
%> %Hugh
%> %
%> %
%> %On Thursday, Jan 16, 2003, at 16:19 Australia/Melbourne, Anton Krall
%> %wrote: %> % %> %> Guys.. I trying to make 2 AuthBy SQL.. one is a
standard
%one and the
%> %> other is for a dialup plan called Nightly
%> %>
%> %> The 2nd one has to have a check item: Time = "Wk0000-0800" %> %>
%> %> Thing is... where do I put the check item? I forgot :(((( %> %> %>
%> Thx for the help. %> %> %> %>
__________________________________________________________________
%> %> Anton Krall
%> %>
%> %>
%> %> ===
%> %> Archive at http://www.open.com.au/archives/radiator/
%> %> Announcements on radiator-announce at open.com.au
%> %> To unsubscribe, email 'majordomo at open.com.au' with 'unsubscribe %>
%> radiator' in the body of the message. %> %> %> %> %> % %> %-- %>
%Radiator: the most portable, flexible and configurable RADIUS %>
%server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, %> %NT,
MacOS X. %> %- %> %Nets: internetwork inventory and management -
graphical, %> %extensible, flexible with hardware, software, platform
and %> %database independence. %> % %> %=== %> %Archive at
http://www.open.com.au/archives/radiator/
%> %Announcements on radiator-announce at open.com.au
%> %To unsubscribe, email 'majordomo at open.com.au' with
%> %'unsubscribe radiator' in the body of the message.
%> %
%> %
%>
%>
%> ===
%> Archive at http://www.open.com.au/archives/radiator/
%> Announcements on radiator-announce at open.com.au
%> To unsubscribe, email 'majordomo at open.com.au' with 'unsubscribe
%> radiator' in the body of the message.
%>
%>
%
%--
%Radiator: the most portable, flexible and configurable RADIUS
%server anywhere. Available on *NIX, *BSD, Windows 95/98/2000,
%NT, MacOS X.
%-
%Nets: internetwork inventory and management - graphical,
%extensible, flexible with hardware, software, platform and
%database independence.
%
%
%
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list