----- Original Message ----- From: "Alexandre Coninx" <[EMAIL PROTECTED]>
To: <[email protected]>
Sent: Friday, March 18, 2005 5:11 PM
Subject: Re: authentication by mac adress, username and password
On Fri, Mar 18, 2005, Chris Knipe wrote:Why not just use Calling-Station-Id as a check item???
In fact, the logins and MAC addresses are in a postgreSQL database, along with much other data about our users. I certainly could have used the postgresql module (and i will probably try later), but i used an external script partly out of lazyness, and partly because when a user fails authorization, i want to do and log different things depending on the cause of the failure (unknown MAC, MAC owned by another user, disabled account, ...)
Good idea, thanks. I'm going to steal it and implement it aswell, hope you don't mind ;)
At the moment we just use the MAC as a CLI, but it is troublesome in that the logs do not indicate that the authentication fails due to MAC or Password... So this will definately be helpful. I never thought about it this way. I wanted to get auth failures into the DB in anycase somehow.
-- Chris.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
