<div dir="ltr">We have a few hundred devices we want to enable radius authentication on, a couple of different vendors and they could be any sort of random/unique IPs sourcing the auth request packets.<div><br></div><div>I was thinking if Vendor A had its own unique radius secret, and vendor B had it's unique secret to its own set of devices we could key off of that. I'd prefer not to add each individual IP to the clients table, I was hoping to just key off of the secret to force the appropriate Handler to be used. Make sense?</div><div><br></div><div>Any way of accomplishing what I want without having to add each client IP/secret set? Seems like it'd be a pain to maintain.</div><div><br></div><div>Thanks,</div><div><br></div><div>Cassidy </div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, Aug 26, 2019 at 3:54 PM Hugh Irvine <<a href="mailto:hugh@open.com.au">hugh@open.com.au</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;border-left-color:rgb(204,204,204);padding-left:1ex"><br>
Hello Cassidy -<br>
<br>
I’m not sure I understand the requirement - if you don’t have a Client device listed, Radiator will ignore any RADIUS requests coming from it.<br>
<br>
The usual way to do this sort of thing is with Identifier’s in the Client clauses, with Handler’s to match.<br>
<br>
Maybe give us a bit more detail on what you want to accomplish?<br>
<br>
regards<br>
<br>
Hugh<br>
<br>
> On 27 Aug 2019, at 06:27, Cassidy B. Larson <<a href="mailto:alandaluz@gmail.com" target="_blank">alandaluz@gmail.com</a>> wrote:<br>
> <br>
> Is there a way to do a Handler match based on the Secret?<br>
> <br>
> We have a number of different devices that I'd like to segregate into separate Handlers based on their Secret. I'd rather not have to update the ClientListSQL database each time I add a new one. <br>
> <br>
> Any thoughts?<br>
> <br>
> Thanks!<br>
> <br>
> -c<br>
> _______________________________________________<br>
> radiator mailing list<br>
> <a href="mailto:radiator@lists.open.com.au" target="_blank">radiator@lists.open.com.au</a><br>
> <a href="https://lists.open.com.au/mailman/listinfo/radiator" rel="noreferrer" target="_blank">https://lists.open.com.au/mailman/listinfo/radiator</a><br>
<br>
<br>
--<br>
<br>
Hugh Irvine<br>
<a href="mailto:hugh@open.com.au" target="_blank">hugh@open.com.au</a><br>
<br>
Radiator: the most portable, flexible and configurable RADIUS server <br>
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, <br>
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, <br>
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,<br>
DIAMETER, SIM, etc. <br>
Full source on Unix, Linux, Windows, macOS, Solaris, VMS, NetWare etc.<br>
<br>
_______________________________________________<br>
radiator mailing list<br>
<a href="mailto:radiator@lists.open.com.au" target="_blank">radiator@lists.open.com.au</a><br>
<a href="https://lists.open.com.au/mailman/listinfo/radiator" rel="noreferrer" target="_blank">https://lists.open.com.au/mailman/listinfo/radiator</a></blockquote></div>