Hi,
I posted this question earlier and I think I am overlooking something.
I am trying to set up FreeRadius 1.0.0 so that I can keep some usernames
and passwords for given realms locally as well as proxy on to the home
servers if the username is not found in the local database.
As per your suggestion, I have changed my authorize section to look
like:
authorize {
group {
sql {
notfound = 1
}
files
}
}
I have also set up a test realm in proxy.conf:
realm dpl.test {
type = radius
authhost = 10.1.4.99:1812
accthost = 10.1.4.99:1813
secret = XXXXXXXX
# nostrip
}
>From the proxy server, I can authenticate against the home server
by using radtest or radclient and specifying the correct iformation.
I can also proxy requests through the proxy server to the home server
successfully.
I have set up [EMAIL PROTECTED] in the local radius servers database
and can authenticate successfully. I have set up [EMAIL PROTECTED]
in the home servers user file. But when I try to authenticate
[EMAIL PROTECTED] I get:
Access-Reject packet from host 127.0.0.1:1812
In your last response, you said to set Proxy-To-Ream
in the users file.
1. I am not exactly sure what should be put in the users file.
2. If I want to implement this on a larger scale, for example
add this capability for all realms we proxy to, is their a way
to do this with variables in the user file or another means?
Thanks Again for all of your help.
Dave
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
