At 11:13 AM 10/4/2001 +0600, you wrote:
>Hello!
>
> >> > This is something I would love to see in freeradius also. Can we run
> >> > external scripts for authentication?
> >>
> >> Yes, sort of. Do:
> >>
> >>DEFAULT Auth-Type := Accept, Exec-Program := "/path/to/program %args"
>
> > OK.. I've done this. But by adding the line you mention above it
> > authenticated _everyone_ regardless if the external program exits 1 or 0.
>
>my freeradius works with
>
>
>DEFAULT Auth-Type := System
> Exec-Program-Wait = "/path/to/program",
This works. I've adapted this format with what was recommended earlier,
and have it:
DEFAULT Auth-Type := Accept
Exec-Program-Wait = "/path/to/program",
Doing this doesn't require the accounts to also be in the system passwd
files and they can then only reside in my database.
The question now, since I am used to xtradius is how to pass the args or
vars. XT would pass them to the script ie. ($ENV{"User-Name"}), or I
could specify them in execparams and pass them along via %u %p etc via
command line. So, how do I get them from freeradius?
> .....
>
>in users file
>if program returns 1 authentication failed.
>for Start, Stop and Alive packets I have
>=====================================================
>DEFAULT Acct-Status-Type == Start
> Exec-Program-Wait = "/path/to/radaccstart"
>
>DEFAULT Acct-Status-Type == Stop
> Exec-Program = "/path/to/radaccstop"
>
>DEFAULT Acct-Status-Type == Alive
> Exec-Program = "/path/to/radacccheck"
>=====================================================
>in acct_users file.
>
>All works fine!
>
>
>
>Michael.
>
>
>
>-
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
----------------------------------
Nathan Miller
Visp Systems Administration
Voice: 541-476-5352 ext. 4
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
