Hello
I've looked through the archive list and haven't found the exact answer
I'm looking for :-) so I'll try here.
I'm using Radiator 2.16.1 on a FreeBSD 3.4 (soon to be 3.5 stable as soon
as I cvsup) machine.
The question I have is with the users file. On the old version of radius
we had (it was some hacked together program of an older, other version of
radius that I am not even sure what it was) our users file looked like
this:
DEFAULT Password = "UNIX", Sessions = 1
User-Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-Address = 255.255.255.254,
Framed-Netmask = 255.255.255.255,
Framed-Routing = None,
Framed-Compression = None,
Framed-MTU = 1500,
Port-Limit = 1,
Idle-Timeout = 900,
Session-Timeout = 21600
testuser Password = "UNIX"
Framed-Address = 10.10.10.1,
Port-Limit = 2
So if testuser logged in, she would be authenticated via this file, rather
then just checking the password database. The only reason we do this is
because, for example, testuser is an ISDN customer so they get dual
channel and a static IP address. Those are the only two settings that
change, and the other DEFAULT settings get sent along too, and everything
is good.
You'll notice the Password = "UNIX" line too, this means that to get the
password for the user, check the /etc/master.password file. This way you
don't have to have clear text in the file.
Radiator had a different format, and I have it set up like this:
DEFAULT Auth-Type = System, Service-Type = Framed-User
Framed-Protocol = PPP,
Framed-IP-Address = 255.255.255.254,
Framed-IP-Netmask = 255.255.255.255,
Framed-Routing = None,
Framed-Compression = None,
Framed-MTU = 1500,
Port-Limit = 1,
Idle-Timeout = 900,
Session-Timeout = 21600
testuser Password = "UNIX"
Framed-IP-Address = 10.10.10.1,
Port-Limit = 2
My questions are:
1. I don't think the Password = "UNIX" will work, will it? I have to
either put the plain text in there, or use the encrypted password. Is
there a way to get it to check the master.passwd file? If not, what is the
format for putting the password in for a FreeBSD based master.password
file?
2. Does everything look OK with that default users file? I have been
having issues with my Cisco AS5800, but going through the archive list has
helped me solve some of them. I was able to connect, but of course I had
to have the plain text password file in there. I also added this to my
radius.cfg and it seemed to work:
<Realm DEFAULT>
<AuthBy FILE>
Filename /usr/adm/radius/users
AddToReply Service-Type=Framed-User,Framed-Protocol=PPP
</AuthBy>
<AuthBy UNIX>
Identifier System
Filename /etc/master.passwd
AddToReply Service-Type=Framed-User,Framed-Protocol=PPP
</AuthBy>
Thanks for the help! Looking to start using Radiator as soon as possible
and get off the older version we have :-)
Dan Allen - Network Admin.
Charter Communications
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
