[RADIATOR] multiple hosts
Alexander Hartmaier
alexander.hartmaier at t-systems.at
Thu Nov 24 09:51:31 CST 2011
Synchronous will block the Radiator process until a reply is received or the configured timeout is exceeded.
During this time Radiator won't handle any other requests and will be marked as unreachable by the radius clients if their timeout*retry is lower than the combined timeout*retry of the AuthBy RADIUS clauses.
I strongly recommend to *NOT* use Synchronous, *EVER*.
Best regards, Alexander Hartmaier
Am 2011-11-23 02:21, schrieb Martin Burton:
Oops, forgot one important keyword in there. You need to put the
Synchronous flag in the AuthBy RADIUS clause for host1. If you don't
then Radiator will move onto the next AuthBy without waiting for a reply.
<AuthBy RADIUS>
<Host host1.herts.ac.uk>
Secret xxxx
</Host>
Synchronous
</AuthBy>
Check the info in the Radiator manual about the implications of using
Synchronous though.
Cheers,
Martin.
On 23/11/2011 01:10, Martin Burton wrote:
You could probably achieve what you need using an AuthByPolicy, like:
<Handler Realm= domain.ac.uk>
RewriteUsername s/^([^@]+).*/$1/
AuthByPolicy ContinueWhileReject
<AuthBy RADIUS>
<Host host1.herts.ac.uk>
Secret xxxx
</Host>
</AuthBy>
<AuthBy RADIUS>
<Host host2.herts.ac.uk>
Secret xxxxx
</Host>
</AuthBy>
# Log accounting to the detail file in LogDir
AcctLogFileName %L/detail
</Handler>
HTH.
On 23/11/2011 00:01, Judy Angel wrote:
Radius V4.2.
I am looking to authenticate on two servers. If the userid is not available
in host1 try host2. The config below works fine on host1 but if the return
fails as the userid does not exist it does not check for the userid in
host2. Should this be possible?
<Handler Realm= domain.ac.uk>
RewriteUsername s/^([^@]+).*/$1/
<AuthBy RADIUS>
<Host host1.herts.ac.uk>
Secret xxxx
</Host>
<Host host2.herts.ac.uk>
Secret xxxxx
</Host>
</AuthBy>
# Log accounting to the detail file in LogDir
AcctLogFileName %L/detail
</Handler>
Thanks
Judy Angel
University of Hertfordshire
_______________________________________________
radiator mailing list
radiator at open.com.au<mailto:radiator at open.com.au>
http://www.open.com.au/mailman/listinfo/radiator
_______________________________________________
radiator mailing list
radiator at open.com.au<mailto:radiator at open.com.au>
http://www.open.com.au/mailman/listinfo/radiator
_______________________________________________
radiator mailing list
radiator at open.com.au<mailto:radiator at open.com.au>
http://www.open.com.au/mailman/listinfo/radiator
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
T-Systems Austria GesmbH Rennweg 97-99, 1030 Wien
Handelsgericht Wien, FN 79340b
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
Notice: This e-mail contains information that is confidential and may be privileged.
If you are not the intended recipient, please notify the sender and then
delete this e-mail immediately.
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.open.com.au/pipermail/radiator/attachments/20111124/4ec7bf59/attachment.html
More information about the radiator
mailing list