(RADIATOR) Radiator Features - LDAPv3, Directed Realm and Proxy Accounting

Hugh Irvine hugh at open.com.au
Thu Sep 8 23:16:14 CDT 2005 

Hello Albert -

Radiator includes this support in the standard product - there are no  
limits and no additional licences required.

For each Realm you would simply have a separate set of user records  
(maintained however you wish).

For example:

<Realm some.realm>
         <AuthBy SQL>
                 .....
         </AuthBy>
</Realm>

<Realm another.realm>
         <AuthBy SQL>
                 .....
         </AuthBy>
</Realm>

.....

You can use flat files, SQL databases, LDAP databases, or radius  
proxy however you wish.

regards

Hugh



On 9 Sep 2005, at 14:05, Albert Lai wrote:

> hi Hugh,
>
> thanks for the prompt response.
>
> The Direct Realm function  that I referred to is Radius Hosting  
> function in
> a Radius wholesell setup. Below is a similar feature found in Funk
> Steelbelted radius. Maybe Radiator used a different terminology for  
> this
> feature:
>
> http://www.funk.com/radius/carrier_isp/dr_ds.asp
>
> Thanks.
>
> Albert Lai
>
> -----Original Message-----
> From: Hugh Irvine [mailto:hugh at open.com.au]
> Sent: 09 September 2005 11:33
> To: Albert Lai
> Cc: radiator at open.com.au
> Subject: Re: (RADIATOR) Radiator Features - LDAPv3, Directed Realm and
> Proxy Accounting
>
>
>
> Hello Albert -
>
> Comments below.
>
>
> On 9 Sep 2005, at 11:56, Albert Lai wrote:
>
>
>> hi,
>>
>> I would like to know whether the Radiator support the following
>> functions
>> and how can I achieved it.
>>
>> 1. Does the Radiator support LDAPv3? I have read the reference
>> manual and
>> there is only the following configuration statement for LDAP
>> authentication:
>> AuthBy LDAP, AuthBy LDAP2 and AuthBy LDAPSDK. If it support LDAPv3,
>> can I
>> use the same configuration method as LDAPv2?
>>
>>
>
> Yes Radiator supports LDAPv3 - you simply need to add "Version 3" to
> your AuthBy LDAP2 clause.
>
>          <AuthBy LDAP2>
>                  .....
>                  Version 3
>                  ......
>          </AuthBy>
>
>
>> 2. For the support of Directed Realm feature, is there a limit on
>> the number
>> of directed realm that I can have based on the licence of the  
>> software
>> purchased? What is the licensing scheme for this feature?
>>
>>
>
> I am not exactly sure what you mean by Directed Realm, but if you are
> talking about proxy radius based on Realms it is supported in the
> standard Radiator product. There are no limits and no licensing
> required.
>
>
>> 3. For proxy radius, will it store a copy of the accounting log
>> locally
>> while it forward a copy of the accounting log to the backend radius
>> server
>> that authenticate the radius client?  If so, is this a default  
>> mode of
>> operation or need to turn it on manually?
>>
>>
>
> You can configure multiple destinations for the accounting data,
> including a local file, an SQL database(s) and/or multiple proxy
> destinations.
>
> To configure a local accounting file you would do something like this:
>
> <Realm some.realm>
>          <AuthBy RADIUS>
>                  .....
>          </AuthBy>
>          AcctLogFileName %L/accounting-%Y-%m-%d
> </Realm>
>
> This is an example that will create a new accounting file in the log
> directory every day with the file name of the form:
>
>          accounting-2005-09-09
>
> You can use whatever special characters you wish to generate the file
> names (see section 6.2 in the Radiator 3.13 reference manual "doc/
> ref.html").
>
> regards
>
> Hugh
>
>
>
>> Thanks!
>>
>> Albert Lai
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>>
>>
>
>
> NB:
>
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive (www.open.com.au/archives/
> radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
>
> --
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
>
>


NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list