(RADIATOR) password policies

Hugh Irvine hugh at open.com.au
Thu Jun 9 20:11:18 CDT 2005 

Hello -

See section 6.51 in the Radiator 3.13 reference manual ("doc/ref.html").

There is also an example configuration file in "goodes/lsa.cfg".

regards

Hugh


On 10 Jun 2005, at 02:57, tech ref wrote:

> Is the group permission set in Active Directory or inside <AuthLSA> in
> the config file?
>
> I use domain accounts because I want the user accounts in my two
> Radiator in the two Win2003 to be synchronized, not because router
> users have domain accounts originally.
>
> Another question, I find that the username is case-sensitive by  
> AuthFILE.
> But if I create a user account in windows, the username is not case- 
> sensitive.
>
> How can I make the username to be case-sensitive so that only exact
> username can log in to the routers?
>
> On 6/7/05, Jeff Wolfe <wolfe at ems.psu.edu> wrote:
>
>> tech ref wrote:
>>
>>> Should I set the password policy in Default Domain Controller  
>>> Security
>>> Settings or Default Domain Security Settings?
>>>
>>> Also, as the account is stored inside Active Directory, that  
>>> means the
>>> users also can access into the Windows server? Recall that I use  
>>> it as
>>> a means to authenticate users who access to the routers of my  
>>> network.
>>>
>>
>> Those are questions for your domain admin.. I'm not a windows domain
>> admin, so I can't tell you for sure about the first one.. The second,
>> yes, you'd have to create a group of authorized users for your  
>> routers
>> and a group of authorized users for your PCs and assign the  
>> permissions
>> accordingly. I assumed all your router users would have domain
>> accounts.. if that's not the case, maybe you don't want to use your
>> windows domain for this.
>>
>> -JEff
>>
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>>
>>
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list