On Mon, 2003-12-29 at 03:42, Oleg Polovinkin wrote:
> Please, help!
>
> I'm trying to migrate from version 0.8.1 to newest version 0.9.3.
> I use SQL database for authorization, authentication and accounting
> users (i.e. dialup users logins and passwords are hold in sql database).
> How can I do that in new version? There is no "sql" authorize{} and
> authenticate {} sections. And no "Auth-Type := SQL" in users file. And
> no even queries for authenticate in sample sql.conf ...
>
> When I try to use my old configs (with authorize and authenticate
> queries in sql.conf) and such radiusd.conf:
> ------------------------------------
> [skipped]
> authorize {
> preprocess
> suffix
> files
> sql
> }
> [skipped]
> authenticate {
> sql
> }
You are not understanding the difference between Authenticate and
Authorize. You are telling radius to try to login directly to mysql as
the user (ie. "mysql -u mydial -pmypass" not check for the user/pass in
a radcheck table). I suspect that this is not what you want.
Forget you are using sql and think about it again. You have a username
and pass that you are getting from somewhere, now you need to check them
against the ones the user gave you. How is the user connecting? Is
PAP, CHAP, etc involved?
Auth-Type should not be SQL.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
