Re: Freeradius-Users digest, Vol 1 #2893 - 16 msgs

[Edmund C. Greene]

The biggest thing I want here is real time updates.  I have a process in place where people go to a web page and authenticate then their mac address is placed in our DHCP server.  I would like to migrate this to radius to use MAC authentication.  I would envision the client entries being stored in the database and then a utility that told radius to add this one mac to it's in memory store and write it in the database also, kind of like the way dynamic DNS works.  I don't know how feasable this may be, but I imagine if I want it done I will have to do it myself, which is okay, I was just hoping it was done already. Just a thought. Edmund C. Greene Systems Integrator Boston College [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: Date: Tue, 24 Feb 2004 14:18:06 +0200 (EET) From: Kostas Kalevras <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Re: Can clients be dynamically added? Reply-To: [EMAIL PROTECTED] On Mon, 23 Feb 2004, Edmund C. Greene wrote: Greetings, I am looking at starting to use MAC authentication and I was wondering if there was a way to dynamically add clients without restarting the server every time. Can client entries be put into an SQL database or into LDAP so that they are read dynamically instead of using the clients.conf file? Currently clients are not stored in LDAP or SQL databases only in the clients.conf file. Patches are welcome though. Even if they were stored in SQL i don't think they would be dynamic the way you expect them to be. The server would just load the clients list from the LDAP/SQL database on startup instead of clients.conf (or use both), it wouldn't query the database on each incoming request. That's a waste of time and a very nice DoS. Your best bet is either to provide a relatively small patch to use sql for client storage or create a script that will add entries to the clients.conf file and then restart (kill -HUP the server). Thanks for your attention. Edmund C. Greene Systems Integrator Boston College [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html