[RADIATOR] MySQL Authentication

Adam Gerson agersonl at cgps.org
Thu Jun 3 13:59:58 CDT 2010 

I have installed the perl DBI and DBD modules for MySQL via MacPorts. My 
test perl script now successfully connects to my database with the same 
connection string I am using in my Radiator config. However Raditor 
still can not connect.


<PERL SCRIPT>
#!/usr/bin/perl

# PERL MODULES WE WILL BE USING
use DBI;
use DBD::mysql;

# HTTP HEADER
print "Content-type: text/html \n\n";

# CONFIG VARIABLES
$platform = "mysql";
$database = "jamfsoftware";
$host = "localhost";
$port = "3306";
$tablename = "inventory";
$user = "jamfsoftware";
$pw = "****";

#DATA SOURCE NAME
$dsn = "dbi:mysql:jamfsoftware:127.0.0.1";

# PERL DBI CONNECT (RENAMED HANDLE)
$dbstore = DBI->connect($dsn, $user, $pw) or die "Unable to connect: 
$DBI::errstr\n";
print $dbstore;
</PERL SCRIPT>

<PERL SCRIPT OUTPUT>
sidekick:~ sadmin$ perl 
/usr/local/src/Radiator/Radiator-Locked-4.6/goodies/adam.pl
Content-type: text/html

DBI::db=HASH(0x1008d9780)sidekick:~ sadmin$
</PERL SCRIPT OUTPUT>

<RADIATOR OUTPUT>
sidekick:Radiator-Locked-4.6 root# perl radiusd -foreground -log_stdout 
-trace 4 -config_file /etc/radiator/radius.cfg
Thu Jun  3 14:08:30 2010: DEBUG: Finished reading configuration file 
'/etc/radiator/radius.cfg'
This Radiator license will expire on 2011-02-01
This Radiator license will stop operating after 1000 requests
To purchase an unlimited full source version of Radiator, see
http://www.open.com.au/ordering.html
To extend your license period, contact admin at open.com.au

Thu Jun  3 14:08:30 2010: DEBUG: Reading dictionary file 
'/etc/radiator/dictionary'
Thu Jun  3 14:08:30 2010: DEBUG: Creating authentication port 0.0.0.0:1645
Thu Jun  3 14:08:30 2010: DEBUG: Creating accounting port 0.0.0.0:1646
Thu Jun  3 14:08:30 2010: NOTICE: Server started: Radiator 4.6 on 
sidekick.cgps.org (LOCKED)
Thu Jun  3 14:08:37 2010: DEBUG: Packet dump:
*** Received from 192.168.1.92 port 58712 ....
Code:       Access-Request
Identifier: 77
Authentic:  |M<230>"<166><30><233>a<246><225><147>s<227>4<10>^
Attributes:
	User-Name = "kjkj"
	User-Password = 
<182><214><241><177><31><245><10><213>t<156><211>g<169><143>(R
	NAS-IP-Address = 192.168.1.92
	Service-Type = Login-User
	Framed-IP-Address = 10.93.3.23
	Called-Station-Id = "00:19:92:02:B4:3A"
	Calling-Station-Id = ""
	NAS-Identifier = "Bluesocket"
	Acct-Session-Id = "00:19:92:02:B4:3A:1275588516"
	NAS-Port-Type = Wireless-IEEE-802-11

Thu Jun  3 14:08:37 2010: DEBUG: Handling request with Handler 
'Realm=DEFAULT'
Thu Jun  3 14:08:37 2010: DEBUG:  Deleting session for kjkj, 192.168.1.92,
Thu Jun  3 14:08:37 2010: DEBUG: Handling with Radius::AuthSQL:
Thu Jun  3 14:08:37 2010: DEBUG: Handling with Radius::AuthSQL:
Thu Jun  3 14:08:37 2010: ERR: Could not connect to SQL database with 
DBI->connect dbi:mysql:jamfsoftware:127.0.0.1, jamfsoftware, ***:
Thu Jun  3 14:08:37 2010: ERR: Could not connect to any SQL database. 
Request is ignored. Backing off for 600 seconds
Thu Jun  3 14:08:37 2010: DEBUG: AuthBy SQL result: IGNORE, User 
database access error
</RADIATOR OUTPUT>

<RADIUS.CFG>
# radius.cfg
#
# Example Radiator configuration file.
# This very simple file will allow you to get started with
# a simple system. You can then add and change features.
# We suggest you start simple, prove to yourself that it
# works and then develop a more complicated configuration as required.
#
# This example will authenticate from a standard users file in
# DbDir/users and log accounting to LogDir/detail.
#
# It will accept requests from any client and try to handle request
# for any realm.
#
# You should consider this file to be a starting point only
# $Id: linux-radius.cfg,v 1.3 2002/03/24 23:07:49 mikem Exp $

#Foreground
#LogStdout
LogDir		/var/log/radius
DbDir		/etc/radiator
# Use a low trace level in production systems. Increase
# it to 4 or 5 for debugging, or use the -trace flag to radiusd
Trace 		5

# You will probably want to add other Clients to suit your site,
# one for each NAS you want to work with
<Client DEFAULT>
	Secret	***
	DupInterval 0
</Client>

<Realm DEFAULT>
     <AuthBy SQL>
	# Adjust DBSource, DBUsername, DBAuth to suit your DB
	
	DBSource	dbi:mysql:jamfsoftware:127.0.0.1
	DBUsername	jamfsoftware
	DBAuth		***

	# You can customise the SQL query used to get user details with the
         # AuthSelect parameter:
	AuthSelect SELECT computer_id FROM WHERE mac_address = %0
	AuthSelect select mac_address from jamfsoftware.computers c where 
mac_address = '%{Calling-Station-Id}"
	AuthColumnDef 0, %{Calling-Station-Id}, check
     </AuthBy>
	# Log accounting to a detail file
	AcctLogFileName	%L/detail
</Realm>
<RADIUS.CFG>

-- 
Adam Gerson
Assistant Director of Technology
Columbia Grammar and Prep School
phone. 212-749-6200 ex. 321
fax.  212-428-6806
agerson at cgps.org
http://www.cgps.org

More information about the radiator mailing list