(RADIATOR) Redback Static IP Problem
Hugh Irvine
hugh at open.com.au
Thu Sep 4 20:06:52 CDT 2003
Hello Al -
As mentioned in my previous mail, an Auth-Type check item will pass the
authentication to another AuthBy clause.
Here is an example (similar to your own case):
# define AuthBy clauses
<AuthBy FILE>
Identifier CheckUser
....
</AuthBy>
<AuthBy LDAP2>
Identifier CheckLDAP
.....
</AuthBy>
# define Realms or Handlers
<Handler ...>
# call the AuthBy FILE clause, which in turn will call the AuthBy
LDAP2 clause
AuthBy CheckUser
....
</Handler>
Now the file that is used by the AuthBy FILE will contain this:
# define users with reply attributes, but do authentication from LDAP
# "Auth-Type = CheckLDAP" will pass the authentication to the AuthBy
LDAP2 clause
someuser Auth-Type = CheckLDAP, ....
.....
To say any more about your current problem I will need to see the
configuration file (no secrets) together with a trace 4 debug from
Radiator showing what is happening.
regards
Hugh
On Friday, Sep 5, 2003, at 01:39 Australia/Melbourne, Charles Alexander
McCain wrote:
>
> Hugh,
>
> I tried, what you had told me, it seems to work that way, however some
> of
> the static users aren't getting their ip's . This is happening at
> random,
> and i cannot tell that there is anything special about them besides
> being
> static. The nas reports that they cannot pull the ip.
> The trace 4 i sent previously should show the problem we're seeing.
> I can't seem to figure this one out. Seems like a very strange problem
> with it happening at random.
>
> Thanks,
> Al
>
>
> On Thu, 4 Sep 2003, Charles Alexander McCain wrote:
>
>>
>> Hugh,
>>
>> What about my dynamic users ? Dialup and ADSL share the same realm.
>> If i
>> have a realm with only AuthBY SQL in it, how exactly will they
>> interact
>> with ldap ? I'm sure you're right, i am just curious as to how that
>> works.
>>
>> Thanks,
>> Al
>>
>>
>> On Thu, 4 Sep 2003, Hugh Irvine wrote:
>>
>>>
>>> Hello Al -
>>>
>>> As I can't find your name or email address in our database, I wonder
>>> whether you could tell me the name of the company that has purchased
>>> this copy of Radiator? Please reply to me directly.
>>>
>>> I understand what you are trying to do, but your configuration file
>>> is
>>> not correct.
>>>
>>> The Auth-Type = CheckLDAP check item in your SQL database will cause
>>> Radiator to send the authentication to LDAP. Therefore you only need
>>> the AuthBy SQL clause in the Realm (you can think of it like a
>>> subroutine call).
>>>
>>> <Realm DEFAULT>
>>> # the AuthBy LDAP2 clause will be called from the AuthBy SQL clause
>>> <AuthBy SQL>
>>> .....
>>> </AuthBy>
>>> .....
>>> </Realm>
>>>
>>> regards
>>>
>>> Hugh
>>>
NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list