Hello,
I would like to discuss several RADIUS server
questions. They are related to account expiration
date.
This is fragment of
/usr/local/etc/raddb/users
file
radexp Password == "test", Expiration == "15 Jan
1999"
Service-Type = "Administrative-User",
Filter-Id = "Yes-Web-Blocking"
radnexp Password == "test", Expiration == "15 Jan
2005"
Service-Type = "Administrative-User",
Filter-Id = "Yes-Web-Blocking"
Please, note one account is expired and the second one
is valid.
radnexp user logs in to RADIUS server.
Debug log is bellow
User-Name = "radnexp"
Password =
"W9\024mNe\216\th\201+\367\375XF\373"
NAS-IP-Address = 128.107.193.231
NAS-Identifier = "ce_http_radius_config"
Service-Type = Authenticate-Only
NAS-Port = 22121
modcall[autz]: Entering group at line 692
modcall[autz]: Module at line 692 returns ok
modcall[autz]: action for ok is 3
modcall[autz]: Module at line 695 returns ok
modcall[autz]: action for ok is 3
modcall[autz]: Module at line 696 returns notfound
modcall[autz]: action for notfound is 1
modcall[autz]: Group at line 692 returns ok
auth: Local
auth: Failed to validate the user.
Sending Access-Reject of id 207 to
128.107.193.231:23146
Finished request 1
Going to the next request
--- Walking the entire request list ---
Waking up in 6 seconds...
--- Walking the entire request list ---
Cleaning up request 1 ID 207 with timestamp 3b71145b
Nothing to do. Sleeping until we see a request.
Would you, please, explain me:
1. What does it mean
Module at line 696 returns notfound
message in the debug log
2. How I have to handle case where user's account is
expired?
RADIUS server returns REJECT error message. How RADIUS
client suppose to know if account has been expired?
3. Do you support RADIUS server Cisco extension?
What does it mean?
Best regards,
Leon
__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
