[RADIATOR] multiple hosts

[Alexander Hartmaier]

Synchronous will block the Radiator process until a reply is received or the configured timeout is exceeded.
During this time Radiator won't handle any other requests and will be marked as unreachable by the radius clients if their timeout*retry is lower than the combined timeout*retry of the AuthBy RADIUS clauses.

I strongly recommend to *NOT* use Synchronous, *EVER*.

Best regards, Alexander Hartmaier

Am 2011-11-23 02:21, schrieb Martin Burton:

Oops, forgot one important keyword in there.  You need to put the
Synchronous flag in the AuthBy RADIUS clause for host1.  If you don't
then Radiator will move onto the next AuthBy without waiting for a reply.

     <AuthBy RADIUS>
         <Host host1.herts.ac.uk>
             Secret xxxx
         </Host>
         Synchronous
     </AuthBy>


Check the info in the Radiator manual about the implications of using
Synchronous though.

Cheers,

Martin.

On 23/11/2011 01:10, Martin Burton wrote:


You could probably achieve what you need using an AuthByPolicy, like:

<Handler Realm= domain.ac.uk>
    RewriteUsername s/^([^@]+).*/$1/
    AuthByPolicy ContinueWhileReject
    <AuthBy RADIUS>
        <Host host1.herts.ac.uk>
            Secret xxxx
        </Host>
    </AuthBy>
    <AuthBy RADIUS>
        <Host host2.herts.ac.uk>
            Secret xxxxx
        </Host>
    </AuthBy>
    # Log accounting to the detail file in LogDir
    AcctLogFileName %L/detail
</Handler>

HTH.


On 23/11/2011 00:01, Judy Angel wrote:



Radius V4.2.
I am looking to authenticate on two servers. If the userid is not available
in host1 try host2. The config below works fine on host1 but if the return
fails as the userid does not exist it does not check for the userid in
host2. Should this be possible?


<Handler Realm= domain.ac.uk>
        RewriteUsername s/^([^@]+).*/$1/
        <AuthBy RADIUS>

                <Host host1.herts.ac.uk>
                Secret xxxx
                </Host>
                <Host host2.herts.ac.uk>
                Secret xxxxx
                </Host>
        </AuthBy>
      # Log accounting to the detail file in LogDir
    AcctLogFileName %L/detail
</Handler>

Thanks
Judy Angel
University of Hertfordshire

_______________________________________________
radiator mailing list
radiator at open.com.au<mailto:radiator at open.com.au>
http://www.open.com.au/mailman/listinfo/radiator





_______________________________________________
radiator mailing list
radiator at open.com.au<mailto:radiator at open.com.au>
http://www.open.com.au/mailman/listinfo/radiator







_______________________________________________
radiator mailing list
radiator at open.com.au<mailto:radiator at open.com.au>
http://www.open.com.au/mailman/listinfo/radiator


*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
T-Systems Austria GesmbH Rennweg 97-99, 1030 Wien
Handelsgericht Wien, FN 79340b
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
Notice: This e-mail contains information that is confidential and may be privileged.
If you are not the intended recipient, please notify the sender and then
delete this e-mail immediately.
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.open.com.au/pipermail/radiator/attachments/20111124/4ec7bf59/attachment.html