Re: (RADIATOR) AuthBY

Dean Brandt Sun, 9 Jan 2000 22:29:12 -0800

        Hi Hugh,

        Yep I only just worked that out 30 seconds before this arrived :)

        I actually used ContinueWhileReject

        Obviously that has the same effect.

        Thanks again for the great support.

        Cheers

Dean Brandt

+-------------------------------------------------+
Cain Internet Services
Melbourne - Adelaide - Sydney - Brisbane - Bendigo
Australia
Ph/Fax: 61-3-95373699
Mobile: 0413247188
www.cain.net.au
+-------------------------------------------------+



On Mon, 10 Jan 2000, Hugh Irvine wrote:

> 
> Hello Dean -
> 
> On Mon, 10 Jan 2000, Dean Brandt wrote:
> > Hi Hugh,
> > 
> >     Thanks for the tip...I now have this:
> > 
> > <Realm DEFAULT>
> >         <AuthBy GROUP>
> >         AuthByPolicy ContinueUntilReject
> > 
> >                 <AuthBy FILE>
> >                 # The filename defaults to %D/users
> >                 </AuthBy>
> > 
> >                 # Log accounting to the detail file in LogDir
> >                 AcctLogFileName %L/detail
> > 
> >                 <AuthBy UNIX>
> >                 Identifier System
> >                 Filename /etc/shadow
> >                 </AuthBy>
> >         </AuthBy>
> > 
> > </Realm>
> > 
> >     But it still fails.
> > 
> 
> The AuthBy GROUP in this context is not neccessary, and your AuthByPolicy will
> Reject if the user is not in the %D/users file. Try this:
> 
> <Realm DEFAULT>
>       AuthByPolicy ContinueUntilAccept
> 
>       <AuthBy FILE>
>               # The filename defaults to %D/users
>       </AuthBy>
> 
>       # Log accounting to the detail file in LogDir
>       AcctLogFileName %L/detail
> 
>       <AuthBy UNIX>
>               Filename /etc/shadow
>       </AuthBy>
> </Realm>
> 
> Just for reference, this could also be written as follows:
> 
> # construct an AuthBy GROUP with Identifier AuthByGroup
> 
> <AuthBy GROUP>
>       Identifier AuthByGroup
>       AuthByPolicy ContinueUntilReject
> 
>       <AuthBy FILE>
>               # The filename defaults to %D/users
>       </AuthBy>
> 
>       # Log accounting to the detail file in LogDir
>       AcctLogFileName %L/detail
> 
>       <AuthBy UNIX>
>               Filename /etc/shadow
>       </AuthBy>
> </AuthBy>
> 
> # configure the Realm DEFAULT to refer to the AuthBy GROUP
> 
> <Realm DEFAULT>
>       AuthBy AuthByGroup
> </Realm>
> 
> 
> This type of configuration is usually used when there are multiple clauses that
> refer to the same set of AuthBy's.
> 
> hth
> 
> Hugh
> 
> 
> -- 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
> NT, Rhapsody
> 


===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) AuthBY

Reply via email to
