Hello Tom -
On Wed, 17 Nov 1999, Tom Gwilt wrote:
>
> Our users file contains the following:
> DEFAULT Auth-Type=System
> Service-Type = Framed-User,
> Framed-Protocol = PPP,
> Ascend-Base-Channel-Count = 1,
> Ascend-Maximum-Channels = 1
>
> My question is twofold:
>
> What is the format for a group file that I write myself? For instance, I
> want a group called dnp (disconnect non-pay). The usual Unix group file
> would have a groupname, password, ID, members, etc. In the proposed
> scenario, could I just create a text file called dnp, and add users (one
> per line) to that file and have it work?
>
No, the Group file must be in standard UNIX format. The user's entry in the
password file must contain a group entry that is found in the group file. In
other words you would specify your groups in the group file and change the
group entry in a user record in the password file to point to the appropriate
group definition.
> What order is necessary for the AuthBy Group clause and the entry in the
> users file for this to work?
>
Your users file would include a group check:
DEFAULT Auth-Type=System, Group = **whatever**
Service-Type = Framed-User,
Framed-Protocol = PPP,
Ascend-Base-Channel-Count = 1,
Ascend-Maximum-Channels = 1
Note that you can have multiple DEFAULT entries, one for each group as you have
described above.
hth
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
NT, Rhapsody
===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
