Hello Chris -
On Fri, 12 Nov 1999, Admin wrote:
> >%_Having never used a RADIUS server before, I'm pleased to have found
Radiator so easy to get up and running. I'm hoping one of you can help me with
a simple query.
>
> We have a Bay Networks Versalar RAC 8000 which currently uses Bay's
proprietary ACP protocol to communicate with an NT Server. ACP performs two
functions for us at the moment: authentication from native NT user accounts,
and it also reads a simple text file which lets me assign static IP addresses
to specific dial-in users. It's this second task I need help with.
> >
Radiator is installed, tested, and using a config based on the provided
/goodies/nt.cfg is succesfully authenticating dial-in users. The only thing
stopping me from making the switch from ACP to RADIUS is how best to assign
static IPs. >
> From my reading of the reference manual, I need to AuthBy
FILE, but I can't get my head around exactly how to do this when I -also- want
the passwords to remain in NT (AuthBy NT). Can someone help by showing me the
minimum change required to my nt.cfg (see below) and also the minimum amount of
information I need to define in a USERS file, to make this possible. I guess
I'm after a USERS file which only states two things: "go look in NT for the
password", and for certain users "here's a static IP". >
> Thanks in advance.
> > Chris Core > GPM Internet > >
> /// nt.cfg /// >
> Foreground
> LogStdout
> LogDir .
> DbDir .
>
> <Client DEFAULT>
> Secret *******
> DupInterval 0
> </Client>
>
> <Realm DEFAULT>
> <AuthBy NT>
> Domain ****
> DomainController
> DefaultReply Service-Type=Framed-User,Framed-Protocol=PPP
> </AuthBy>
>
> AcctLogFileName ./detail
> </Realm>
>
Sure.
# Configuration file with Identifier NT-check for AuthBy NT
# Realm DEFAULT checks users file with AuthBy FILE
Foreground
LogStdout
LogDir .
DbDir .
<Client DEFAULT>
Secret *******
DupInterval 0
</Client>
<AuthBy NT>
Identifier NT-check
Domain ****
DomainController
</AuthBy>
<Realm DEFAULT>
<AuthBy FILE>
Filename %D/users
AddToReply Service-Type = Framed-User, Framed-Protocol = PPP
</AuthBy>
AcctLogFileName ./detail
</Realm>
# users file
DEFAULT Auth-Type = NT-check
user-with-IP-address Auth-Type = NT-check
Framed-IP-Address = xxx.xxx.xxx.xxx
user2-with-IP-address .....
....
hth
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
NT, Rhapsody
===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
