Hello, I have set up Freeradius to authenticate against LDAP and with a Simultaneous-Use:=1 check item. That works just fine, access is rejected if I send an accounting-start packet for an LDAP entered user first, and granted again if I sent the appropriate accounting-stop.
However the Freeradius stores information about the users being logged in into its own database. If the NAS crashes silently without sending accounting-stop packets for the users currently logged on, then these users cannot log in after NAS recovery because of Freeradius still believing they would already be logged in. How can I make sure that Freeradius senses the fact that the users are not logged in anymore, despite an Accounting-Stop was never sent ? Can I use interim accounting with an appropriate timeout ? I could not find it on the web, so either I am blind or its not in the FAQ yet ... Fritz - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
