Hi,
in the process of superseding Cisco ACS with freeradius, I have
enhanced the
dictionary.cisco.vpn3000
with
ATTRIBUTE CVPN3000-Authorization-type 65 integer
ATTRIBUTE CVPN3000-Succ-author-requirement66 integer
ATTRIBUTE CVPN3000-DN-Fields-String 67 string
this is needed for controlling authorization of external groups.
Is there any official way to make this public available??
regards,
Arne Spetzler
PS.: These atts are *not* documented by Cisco. I got them by analysing the debug of
the VPN3000 talking with the ACS - but it works :)
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Auftrag von
[EMAIL PROTECTED]
Gesendet: Mittwoch, 17. Dezember 2003 05:43
An: [EMAIL PROTECTED]
Betreff: Freeradius-Users digest, Vol 1 #2639 - 8 msgs
Send Freeradius-Users mailing list submissions to
[EMAIL PROTECTED]
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.cistron.nl/mailman/listinfo/freeradius-users
or, via email, send a message with subject or body 'help' to
[EMAIL PROTECTED]
You can reach the person managing the list at
[EMAIL PROTECTED]
When replying, please edit your Subject line so it is more specific
than Re: Contents of Freeradius-Users digest...
Today's Topics:
1. freeradius mysql simultaneous-use question URGENT (Soujanya Rao)
2. Re: freeradius mysql simultaneous-use question URGENT
(Alan DeKok)
3. Re: Freeradius Ip address assignation (Kostas Kalevras)
4. RE: Freeradius Ip address assignation (Anson Rinesmith)
5. Turk kizlar vaoemae (Mustafa)
6. A excite game (cdangelo)
7. Re: Custom SQL Query (Amgaabaatar Purevjal)
8. Help needed. (Shashidhara S Bapat)
--__--__--
Message: 1
Date: Tue, 16 Dec 2003 13:14:18 -0800 (PST)
From: Soujanya Rao [EMAIL PROTECTED]
Subject: freeradius mysql simultaneous-use question URGENT
To: [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
--0-395077745-1071609258=:12985
Content-Type: text/plain; charset=us-ascii
Hi,
I am new to freeradius. I need some help in using
simultaneous-use for detecting double logins using mysql
only. Here is my current set up:
select * from radgroup check
++--- +---++---+
| id | GroupName | Attribute | op | Value |
+++++---+
| 2 | static | Auth-Type | == | Local |
+++++---+
| 4 | static | Simultaneous-Use | := | 1 |
++++-++
select * from usergroup
++-+-+
| id | UserName | GroupName |
++-+-+
| 33 | PW006 | static |
++--++
select * from radcheck
++---+++--+
| id | UserName | Attribute | op | Value |
++---+++--+
| 18 | PW006 | Password | == | abcd |
++---++-+-+
In my radius.conf I have a set up like this:
session {
sql
}
In sql.conf, the Simultaneous Use Checking Queries are uncommented
I am using NTRadping to test for simultaneous-use and am
failing to do so!
I am doing an accounting start using NTRadPing for the same
user with a different NAS-IP-Address (Additional RADIUS
attributes) and a different port NAS-Port (additional RADIUS
attribute). Though simultaneous-use is setup the user is not
stopped for double login at all. It creates two entries in
the radaact table and when I run accounting stop it updates
the relevant radacct records with the AcctStopTime.
Can anyone tell me where I am going wrong? This is urgent and
I am clueless as to what else needs to be done. The
sqltrace.log does not show that the uncommented statements in
sql.conf are executed. How do I make sure that they get
executed. Also please let me know if this is a correct
procedure for testing the same.
Thanks in advance,
Soujanya
.
-
Do you Yahoo!?
New Yahoo! Photos - easier uploading and sharing
--0-395077745-1071609258=:12985
Content-Type: text/html; charset=us-ascii
DIVHi,/DIV
DIVI am new to freeradius. I need some help in using
simultaneous-use for detecting double logins using mysql
only. Here is my current set up:/DIV
DIVnbsp;/DIV
DIVgt; select * from radgroup check/DIV
DIV++---
+---++---+BR| id |
GroupName |
Attributenbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp
;nbsp;nbsp;nbsp; nbsp; | opnbsp; | Value