(RADIATOR) Radiator Features - LDAPv3, Directed Realm and Proxy Accounting
Hugh Irvine
hugh at open.com.au
Thu Sep 8 22:32:53 CDT 2005
Hello Albert -
Comments below.
On 9 Sep 2005, at 11:56, Albert Lai wrote:
> hi,
>
> I would like to know whether the Radiator support the following
> functions
> and how can I achieved it.
>
> 1. Does the Radiator support LDAPv3? I have read the reference
> manual and
> there is only the following configuration statement for LDAP
> authentication:
> AuthBy LDAP, AuthBy LDAP2 and AuthBy LDAPSDK. If it support LDAPv3,
> can I
> use the same configuration method as LDAPv2?
>
Yes Radiator supports LDAPv3 - you simply need to add "Version 3" to
your AuthBy LDAP2 clause.
<AuthBy LDAP2>
.....
Version 3
......
</AuthBy>
> 2. For the support of Directed Realm feature, is there a limit on
> the number
> of directed realm that I can have based on the licence of the software
> purchased? What is the licensing scheme for this feature?
>
I am not exactly sure what you mean by Directed Realm, but if you are
talking about proxy radius based on Realms it is supported in the
standard Radiator product. There are no limits and no licensing
required.
> 3. For proxy radius, will it store a copy of the accounting log
> locally
> while it forward a copy of the accounting log to the backend radius
> server
> that authenticate the radius client? If so, is this a default mode of
> operation or need to turn it on manually?
>
You can configure multiple destinations for the accounting data,
including a local file, an SQL database(s) and/or multiple proxy
destinations.
To configure a local accounting file you would do something like this:
<Realm some.realm>
<AuthBy RADIUS>
.....
</AuthBy>
AcctLogFileName %L/accounting-%Y-%m-%d
</Realm>
This is an example that will create a new accounting file in the log
directory every day with the file name of the form:
accounting-2005-09-09
You can use whatever special characters you wish to generate the file
names (see section 6.2 in the Radiator 3.13 reference manual "doc/
ref.html").
regards
Hugh
> Thanks!
>
> Albert Lai
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list