[RADIATOR] multiple hosts

Judy Angel J.Angel at herts.ac.uk
Thu Nov 24 17:37:41 CST 2011


Have you solved the multi hosts config in another way?
Judy

--On 24 November 2011 16:51 +0100 Alexander Hartmaier 
<alexander.hartmaier at t-systems.at> wrote:

> Synchronous will block the Radiator process until a reply is received or
> the configured timeout is exceeded. During this time Radiator won't
> handle any other requests and will be marked as unreachable by the radius
> clients if their timeout*retry is lower than the combined timeout*retry
> of the AuthBy RADIUS clauses.
>
> I strongly recommend to *NOT* use Synchronous, *EVER*.
>
> Best regards, Alexander Hartmaier
>
> Am 2011-11-23 02:21, schrieb Martin Burton:
>
>
> Oops, forgot one important keyword in there.  You need to put the
> Synchronous flag in the AuthBy RADIUS clause for host1.  If you don't
> then Radiator will move onto the next AuthBy without waiting for a reply.
>
>      <AuthBy RADIUS>
>          <Host host1.herts.ac.uk>
>              Secret xxxx
>          </Host>
> 	 Synchronous
>      </AuthBy>
>
>
> Check the info in the Radiator manual about the implications of using
> Synchronous though.
>
> Cheers,
>
> Martin.
>
> On 23/11/2011 01:10, Martin Burton wrote:
>
>
>
> You could probably achieve what you need using an AuthByPolicy, like:
>
> <Handler Realm= domain.ac.uk>
>     RewriteUsername s/^([^@]+).*/$1/
>     AuthByPolicy ContinueWhileReject
>     <AuthBy RADIUS>
>         <Host host1.herts.ac.uk>
>             Secret xxxx
>         </Host>
>     </AuthBy>
>     <AuthBy RADIUS>
>         <Host host2.herts.ac.uk>
>             Secret xxxxx
>         </Host>
>     </AuthBy>
>     # Log accounting to the detail file in LogDir
>     AcctLogFileName %L/detail
> </Handler>
>
> HTH.
>
>
> On 23/11/2011 00:01, Judy Angel wrote:
>
>
>
>
> Radius V4.2.
> I am looking to authenticate on two servers. If the userid is not
> available  in host1 try host2. The config below works fine on host1 but
> if the return  fails as the userid does not exist it does not check for
> the userid in  host2. Should this be possible?
>
>
> <Handler Realm= domain.ac.uk>
>         RewriteUsername s/^([^@]+).*/$1/
>         <AuthBy RADIUS>
>
>                 <Host host1.herts.ac.uk>
>                 Secret xxxx
>                 </Host>
>                 <Host host2.herts.ac.uk>
>                 Secret xxxxx
>                 </Host>
>         </AuthBy>
>       # Log accounting to the detail file in LogDir
>     AcctLogFileName %L/detail
> </Handler>
>
> Thanks
> Judy Angel
> University of Hertfordshire
>
> _______________________________________________
> radiator mailing list
> radiator at open.com.au
> http://www.open.com.au/mailman/listinfo/radiator
>
>
>
>
>
>
> _______________________________________________
> radiator mailing list
> radiator at open.com.au
> http://www.open.com.au/mailman/listinfo/radiator
>
>
>
>
>
>
>
>
> _______________________________________________
> radiator mailing list
> radiator at open.com.au
> http://www.open.com.au/mailman/listinfo/radiator
>
>
>
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
> "*"* T-Systems Austria GesmbH Rennweg 97-99, 1030 Wien
> Handelsgericht Wien, FN 79340b
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
> "*"* Notice: This e-mail contains information that is confidential and
> may be privileged. If you are not the intended recipient, please notify
> the sender and then delete this e-mail immediately.
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
> "*"*




More information about the radiator mailing list