> "Vector" <[EMAIL PROTECTED]> wrote: > > After working on this for a while, it looked like realms might be the = > > answer but that didn't quite take care of it. If I put = > > '[EMAIL PROTECTED]' in the db then 'user' will no longer work, right? > > Yes. > > > There are going to be lots of realms and I would like to make this = > > generic if possible so that I don't need a separate hint to be able to = > > strip the realm. > > Have you read 'proxy.conf'? You can set up local realms, and in the > configuration for that realm, tell it to strip the realm. > > > Just looking for some guidence as to the 'best' way to do this so I = > > don't have a hacked up config of radius. Thnx again for the reply. > > Read the configuration files. *All* of them.
Actually yes, I did read all of them. To be honest I was a little confused because proxy.conf talks about local realms but And in radiusd.conf it says: # proxy_requests: Turns proxying of RADIUS requests on or off. # The server has proxying turned on by default. If your system is NOT # set up to proxy requests to another server, then you can turn proxying # If you have proxying turned off, and your configuration files say # to proxy a request, then an error message will be logged. # To disable proxying, change the "yes" to "no", and comment the proxy_requests = no since I'm not proxying to another server, I set it to no. BUT it sounds like if you want to *anything* with realms at all then proxy_requests must be 'yes' even if you aren't really sending them to another server. Here is what my realms files says: _____________ SNIP ___________ # Realm Remote server [:port] Options #---------------- --------------------- ------- #isp2.com radius.isp2.com nostrip #company.com radius.company.com:1600 #bla.com LOCAL #replicateme radius2.company.com notrealm somedomain.com LOCAL _____________ END SNIP ___________ Notice the absense of 'nostrip' And here it is being read in radius -xx -s: _____________ SNIP ___________ read_config_files: reading dictionary read_config_files: reading clients read_config_files: reading realms read_config_files: reading naslist _____________ END SNIP ___________ I had hoped that would be enough at least for the LOCAL realms to work. No luck. Really...I did read them,. I'm just new to radius so if you can bear with me I just might be able to contribute at some point. Seriously though, I read them. thnx, much for the reply and the assistance. vec - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
