(RADIATOR) UserID "biu.ac.il" ----> several wifis

Kaplan Ilana ilana at mail.biu.ac.il
Wed Jul 6 02:07:12 CDT 2005 


Dear Support,

Since I still did not got ant reply, I wonder if there is some problem in
our side to send out emails.Please reply to this email to the following
two addresses:
ilana at mail.biu.ac.il
and
october211 at hotmail.com

  Thanks,
    Ilana

---------- Forwarded message ----------
Date: Tue, 5 Jul 2005 09:13:59 +0300
From: Kaplan Ilana <ilana at mail.biu.ac.il>
To: radius-support at open.com.au
Cc: yoav at mail.biu.ac.il, Noam G. Nudelman <noam at mail.biu.ac.il>
Subject: several wifis  (fwd)



Dear Support,

I am resending you the email I sent you on July 3rd,since we did not
receive any reply. Please let us know that you received it.

Thanks,
  Ilana

---------- Forwarded message ----------
Date: Sun, 3 Jul 2005 17:51:46 +0300
From: Kaplan Ilana <ilana at mail.biu.ac.il>
To: radius-support at open.com.au
Cc: yoav at mail.biu.ac.il, Noam G. Nudelman <noam at mail.biu.ac.il>,
     Ronny Dolerzani <Ronny.Dolerzani at mail.biu.ac.il>, dror at mail.biu.ac.il
Subject: several wifis


Dear Support,

We are using Radiator 3.13 and we are in a process of developing
our wireless lan.
In the attached configuration file which we build with your help
we have only two kind of users , one who authenticate with user
and password and uses the PEAP eaptype and the other who authenticate
with his certificate (that we create with openSSL)  and uses the TLS
eaptype.
We return the ssid value from the Radiator configuration file either by:
AddToReply cisco-avpair="ssid=BIU-Academic"
or
AddToReplyIfNotExist cisco-avpair="ssid=BIU-Personnel"

We need now to give an answer for the following needs:
1- there are several ssid which will use PEAP eaptype and several
   ssid which will use the TLS eaptype.
2- users needs to be predefined in a way that they will be able to
   authenticate and work only in certain PEAP and certain TLS
   wifis.

Please advise.

  Thanks a lot for your help ,
          Ilana

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 Ilana Kaplan                           email:  ilana at mail.biu.ac.il
 Unix Administration Team               tel  :  972-3-5317987 (ext. 108)
 Computation Center
 Bar-Ilan University                    fax  :  972-3-5344446
 Ramat-Gan 52900, Israel

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-------------- next part --------------

LogDir          /usr/biu/radiator/raddb.wireless
DbDir           /usr/biu/radiator/raddb.wireless
Trace 		4
AuthPort        1812
AcctPort        1813


<Handler TunnelledByPEAP=1>
	<AuthBy FILE>
		Filename %D/userstp

		EAPType MSCHAP-V2
		AddToReply cisco-avpair="ssid=BIU-Academic"
		EAPTLS_CRLCheck 
		EAPTLS_CRLFile %D/certificates/crl.pem
	</AuthBy>
</Handler>


<Handler>
    <AuthBy GROUP>
	<AuthBy FILE>
		Filename %D/userstp
		EAPType PEAP,TLS
		EAPTLS_CAFile %D/certificates/demoCA/cacert.pem
		EAPTLS_CertificateFile %D/certificates/cert-srv.pem
		EAPTLS_CertificateType PEM
		EAPTLS_PrivateKeyFile %D/certificates/cert-srv.pem
		EAPTLS_PrivateKeyPassword whatever
		EAPTLS_MaxFragmentSize 1000
		EAPTLS_CRLCheck 
		EAPTLS_CRLFile %D/certificates/crl.pem
		AutoMPPEKeys
		SSLeayTrace 4
		EAPTLS_PEAPVersion 0
		AddToReplyIfNotExist cisco-avpair="ssid=BIU-Personnel"
	</AuthBy>
   </AuthBy>	
   MaxSessions 1 
   AcctLogFileName %L/details
</Handler>

More information about the radiator mailing list