(RADIATOR) Radmin setup question with Autenthication
Hugh Irvine
hugh at open.com.au
Mon May 9 18:24:57 CDT 2005
Hello Ryko -
One way to do this is as follows:
# define Client device(s) with Identifier
<Client x.x.x.x>
Identifier Network-Devices
.....
</Client>
<Client y.y.y.y>
Identifier Network-Devices
.....
</Client>
......
Then have a separate Handler for these Clients"
<Handler Client-Identifier = Network-Devices>
.....
</Handler>
Then in Radmin for this user(s) you can specify a check item of
Client-Identifier = Network-Devices
regards
Hugh
On 9 May 2005, at 21:40, Prins, R. wrote:
>
>
> Ok It doesn't work the way I thought it would (just use the
> Auth-Type="Network-Devices as a check attribute). It actively executes
> the clause with Identifier "Network-Devices", causing a loop
> (correspondence off-list with Hugh)
>
> Let me take it one step broader:
>
> What I am trying: I want to give a user in the Radmin DB an attribute
> "Network-Devices" which enables him to access certain Clients. Users
> without that attribute should get a deny, but only when they want to
> access "Network-Devices".
>
> What is the best way to tackle this problem? Which check- or
> reply-items
> can I use?
>
> Thanks in advance, Ryko Prins
>
> -----Original Message-----
> From: owner-radiator at open.com.au [mailto:owner-radiator at open.com.au] On
> Behalf Of Prins, R.
> Sent: 04 mei 2005 10:34
> To: Radiator MailingList
> Subject: (RADIATOR) Radmin setup question with Autenthication
>
>
>
>
> I try to implement user authorization with Radmin.
>
> In Radmin I have created a service profile called "Network-Devices".
> (Quotes aren't part of the configuraton text anywhere)
>
> In Radmin I have created a check item Auth-Type="Network-Devices"
>
> In Radmin I have created a user with the service profile
> "Network-Devices".
>
> In Radiator I have created a Realm "radmin" using the default
> configuration from "goodies".
>
> In the Authby RADMIN clause I have added an identifier
> "Network-Devices"
>
> It works very well without the Auth-Type set as a check item
>
> If I define the check item I get an endless loop in Radiator
>
> What did I do wrong"?
>
>
>
> --
> I am using the free version of SPAMfighter for private users. It has
> removed 13953 spam emails to date. Paying users do not have this
> message
> in their emails. Try www.SPAMfighter.com for free now!
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive
(www.open.com.au/archives/radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list