(RADIATOR) how to verify Max simultaneous login

Hugh Irvine hugh at open.com.au
Tue May 13 00:43:44 CDT 2008


Hello Scott -

I will need to see the Radiator log file showing what is happening  
(the BRAS log isn't useful).

I am guessing there is a problem due to the NAS-Port attribute always  
being the same but I will need to see the Radiator log to be able to  
say anything.

regards

Hugh



On 13 May 2008, at 10:48, ScottXiao163 wrote:

>
>
> C:\Documents and Settings\Administrator>perl \perl\bin\radpwtst - 
> user demo3 -pas
> sword demo3 -nostop
> sending Access-Request...
> OK
> sending Accounting-Request Start...
> OK
>
> C:\Documents and Settings\Administrator>
>
>
> Hi Hugh
> Thanks!
> I used your advice to test and found the 2nd windows was denied due  
> to simutaneous login limit.it works. but how come the 2nd user  
> still able to login with the same user ID when they use winxp pppoe  
> client to authenticate through a RM9000? In the environment , we  
> use a BRAS(MA5200G),RM9000-PMS,RM9000-PORTAL,RADIUS(radiator) 
> connected to a layer 2 swtich,gateway IP is  0.20.20.1,a  RAS 
> (MA5200G)Eth1/1/3.
> I attached bras log file here too. Is there anything special I need  
> config on the bras as well? Thanks!
>
> C:\Documents and Settings\Administrator>perl \perl\bin\radpwtst - 
> user demo3 -pas
> sword demo3 -noacct -nas_port 1111
> sending Access-Request...
> Rejected: Request Denied
>
> C:\Documents and Settings\Administrator>
> ----- Original Message ----- From: "Hugh Irvine" <hugh at open.com.au>
> To: "ScottXiao163" <scottshaw at 163.com>
> Cc: "Radiator" <radiator at open.com.au>; "Mike McCauley"  
> <mikem at open.com.au>
> Sent: Tuesday, May 13, 2008 7:19 AM
> Subject: Re: (RADIATOR) how to verify Max simultaneous login
>
>
>>
>> Hello Scott -
>>
>> You need to run the first radpwtst like this:
>>
>> perl radpwtst -user test -password test -nostop
>>
>> this will send an access request, followed by an accounting start
>>
>> then you run the second radpwtst like this:
>>
>> perl radpwtst -user test -password test -noacct -nas_port 1111
>>
>> you need to use a different -nas_port from the first radpwtst, as  
>> Radiator will do a delete from the session database using the -  
>> nas_port attribute.
>>
>> Have a look at the trace 4 debug to see what happens.
>>
>> Here is the help for radpwtst:
>>
>> Radiator-4.2 hugh$ perl radpwtst -h
>>
>> usage: radpwtst [-h] [-time] [-iterations n]
>>           [-trace [level]] [-s server] [-secret secret]
>>           [-noauth] [-noacct][-nostart] [-nostop] [-status]
>>           [-chap] [-mschap] [-mschapv2] [-eapmd5] [-eapotp] [-  
>> eapgtc] [-sip]
>>           [-eaphex xxxxxxxxxxxxx]
>>           [-accton] [-acctoff] [-framed_ip_address address]
>>           [-auth_port port] [-acct_port port] [-identifier n]
>>           [-user username] [-password password]
>>           [-nas_ip_address address] [-nas_identifier string]
>>           [-nas_port port] [-nas_port_type type] [-service_type   
>> service]
>>           [-calling_station_id string] [-called_station_id string]
>>           [-session_id string] [-interactive]
>>           [-delay_time n] [-session_time n] [-input_octets n]
>>           [-output_octets n] [-timeout n] [-dictionary file,file]
>>           [-gui] [-class string] [-useoldascendpasswords]
>>           [-code requestcode] [-raw data] [-rawfile filename]
>>           [-rawfileseq filename]
>>           [-outport port] [-bind_address dotted-ip-address]
>>           [-options optionfile] [-decoded]
>>           [attribute=value]...
>>
>>
>> regards
>>
>> Hugh
>>
>>
>> On 12 May 2008, at 21:09, ScottXiao163 wrote:
>>
>>> Hello ,
>>> I have a question regarding  how to verify Max simultaneous  
>>> login,  can any of you help ?Thanks!
>>> The environment is :
>>> win2003 server, radiator 4.2, radmin , MS SQL server 2005, IIS
>>> I have created the cfg file with radmin configured. I am trying  
>>> to verify if the 2nd user is not allowed to login when I  
>>> configured  the "Max simultaneous login" to be "1". I use radmin  
>>> to add user  demo2, and user radpwdtst to test, with 2 command  
>>> line windows. but  it authenticated too fast that the 1st has  
>>> done whenn I tried to  run the 2nd radpwsts to verify. how can I  
>>> test it ? in another  environment I was told 2 users both were  
>>> able to login even they  set the value to 1. We use the same  
>>> environment but I just don't  have any tool to verify this.Please  
>>> help! Thanks !
>>> best regards
>>> Scott<my radius.cfg>
>>
>>
>>
>> NB:
>>
>> Have you read the reference manual ("doc/ref.html")?
>> Have you searched the mailing list archive (www.open.com.au/ 
>> archives/ radiator)?
>> Have you had a quick look on Google (www.google.com)?
>> Have you included a copy of your configuration file (no secrets),
>> together with a trace 4 debug showing what is happening?
>> Have you checked the RadiusExpert wiki:
>> http://www.open.com.au/wiki/index.php/Main_Page
>>
>> -- 
>> Radiator: the most portable, flexible and configurable RADIUS server
>> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
>> Includes support for reliable RADIUS transport (RadSec),
>> and DIAMETER translation agent.
>> -
>> Nets: internetwork inventory and management - graphical, extensible,
>> flexible with hardware, software, platform and database independence.
>> -
>> CATool: Private Certificate Authority for Unix and Unix-like systems.
>>
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message. <mycfg.cfg><log- 
>> simu.txt><dis bras logbuffer.txt>



NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
Have you checked the RadiusExpert wiki:
http://www.open.com.au/wiki/index.php/Main_Page

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.


More information about the radiator mailing list