(RADIATOR) AddToReply

Hugh Irvine hugh at open.com.au
Fri Oct 10 02:04:44 CDT 2003


Hello Andrea -

If you want to add the attributes shown below for everyone that does 
not have them set in their reply attributes (ie. only have the ones 
that are different in the user records) you should do something like 
this:

	<AuthBy SQL>
		.....
		AddToReplyIfNotExist Class = 3, Idle-Timeout = 600
		....
	</AuthBy>

I see from your other mail that you have already learned how to change 
the AuthSelect statement.

regards

Hugh


On Friday, Oct 10, 2003, at 11:36 Australia/Melbourne, Andrea 
Brancatelli wrote:

>
> in my SUBSCRIBERS table I have the following entry:
>
> Username = ugo
> Password = ....
> Checkattr = (NULL)
> ReplyAttr = 'Class = 3, Idle-Timeout = 600'
> TimeLeft = (NULL)
>
> WHERE am I supposed to see the replyattr? The access point is not 
> doing what is specified there and radpwtst doesn't show any reply 
> attribute as well. what's wrong?
>
> I have to send "Class = 3, Idle-Timeout = 600" to almost anyone. How 
> do I do that? The best solution would be a per-user granularity (so 
> the SUBSCRIBERS table fits) but it doesn't seem to work.
>
> Any suggestion?
>
> here's radpwtst output:
>
>
> Reading dictionary file '/etc/radiator/dictionary'
> sending Access-Request...
> Packet dump:
> *** Sending to 127.0.0.1 port 1645 ....
> Code:       Access-Request
> Identifier: 161
> Authentic:  1234567890123456
> Attributes:
>         User-Name = "ugo"
>         Service-Type = Framed-User
>         NAS-IP-Address = 203.63.154.1
>         NAS-Port = 1234
>         Called-Station-Id = "123456789"
>         Calling-Station-Id = "987654321"
>         NAS-Port-Type = Async
>         User-Password = 
> "<145>g<172><177><131><203><179>k<178>1<195>]<152><25>7<136>"
>
> Packet dump:
> *** Received from 127.0.0.1 port 1645 ....
> Code:       Access-Accept
> Identifier: 161
> Authentic:  <132>|<244>c<P<177><160><148><17><28><28>kxD<144>
> Attributes:
>
> OK
> sending Accounting-Request Start...
> Packet dump:
> *** Sending to 127.0.0.1 port 1646 ....
> Code:       Accounting-Request
> Identifier: 162
> Authentic:  <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
>         User-Name = "ugo"
>         Service-Type = Framed-User
>         NAS-IP-Address = 203.63.154.1
>         NAS-Port = 1234
>         NAS-Port-Type = Async
>         Acct-Session-Id = "00001234"
>         Acct-Status-Type = Start
>         Called-Station-Id = "123456789"
>         Calling-Station-Id = "987654321"
>         Acct-Delay-Time = 0
>
> Packet dump:
> *** Received from 127.0.0.1 port 1646 ....
> Code:       Accounting-Response
> Identifier: 162
> Authentic:  -<203>Fc<170>z~f<169><19><233><139><223><231>8<225>
> Attributes:
>
> OK
> sending Accounting-Request Stop...
> Packet dump:
> *** Sending to 127.0.0.1 port 1646 ....
> Code:       Accounting-Request
> Identifier: 163
> Authentic:  <0><0><0><0><0><0><0><0><0><0><0><0><0><0><0><0>
> Attributes:
>         User-Name = "ugo"
>         Service-Type = Framed-User
>         NAS-IP-Address = 203.63.154.1
>         NAS-Port = 1234
>         NAS-Port-Type = Async
>         Acct-Session-Id = "00001234"
>         Acct-Status-Type = Stop
>         Called-Station-Id = "123456789"
>         Calling-Station-Id = "987654321"
>         Acct-Delay-Time = 0
>         Acct-Session-Time = 1000
>         Acct-Input-Octets = 20000
>         Acct-Output-Octets = 30000
>
> Packet dump:
> *** Received from 127.0.0.1 port 1646 ....
> Code:       Accounting-Response
> Identifier: 163
> Authentic:  
> <248>a<136>X<242><233><202><174><164>v<152><194><218><22>A<8>
> Attributes:
>
> OK
>
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.

===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list